$ rpki-client -vvf repo-rpki.idnic.net/repo/aa433934-3844-4653-8fac-1858b2823d1c/0/323030313a6466333a623838303a3a2f34382d3438203d3e203137353338.roa File: 323030313a6466333a623838303a3a2f34382d3438203d3e203137353338.roa (raw, json) Hash identifier: UN/a2XRTw8081uL/ZY93JqlCc8U4ClmN/ji+ij6yORg= Subject key identifier: 92:27:4A:12:EE:45:F9:74:28:B0:19:18:A5:65:D4:99:7E:27:CD:29 Certificate issuer: /CN=6A75F95EA11C3F984C5C610FE9222026394BA8E9 Certificate serial: 1A59A58457B4099DA8BB6B721BB6867AE4D7EB19 Authority key identifier: 6A:75:F9:5E:A1:1C:3F:98:4C:5C:61:0F:E9:22:20:26:39:4B:A8:E9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6A75F95EA11C3F984C5C610FE9222026394BA8E9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/aa433934-3844-4653-8fac-1858b2823d1c/0/323030313a6466333a623838303a3a2f34382d3438203d3e203137353338.roa Signing time: Mon 02 Jun 2025 02:04:11 +0000 ROA not before: Mon 02 Jun 2025 01:59:11 +0000 ROA not after: Mon 01 Jun 2026 02:04:11 +0000 asID: 17538 IP address blocks: 2001:df3:b880::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/aa433934-3844-4653-8fac-1858b2823d1c/0/6A75F95EA11C3F984C5C610FE9222026394BA8E9.crl rsync://repo-rpki.idnic.net/repo/aa433934-3844-4653-8fac-1858b2823d1c/0/6A75F95EA11C3F984C5C610FE9222026394BA8E9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6A75F95EA11C3F984C5C610FE9222026394BA8E9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 04:06:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:59:a5:84:57:b4:09:9d:a8:bb:6b:72:1b:b6:86:7a:e4:d7:eb:19 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6A75F95EA11C3F984C5C610FE9222026394BA8E9 Validity Not Before: Jun 2 01:59:11 2025 GMT Not After : Jun 1 02:04:11 2026 GMT Subject: CN=92274A12EE45F97428B01918A565D4997E27CD29 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:b6:80:96:c9:07:96:a3:ba:3d:a1:48:33:15: d9:83:30:66:9f:16:eb:0b:75:7b:a8:55:1a:99:4c: 0b:ed:66:16:75:bc:5f:0f:87:3d:09:e1:e5:bc:fd: 64:8e:a8:e0:74:4e:07:3e:9c:b6:01:f5:fa:4a:82: 67:69:06:fb:bb:02:65:cf:d3:0d:c3:9a:c8:40:5f: 92:1f:72:6b:81:a5:6f:c7:ec:67:a6:4e:7b:61:ec: e4:c4:1f:7c:c2:96:c8:fd:df:57:29:cf:59:a1:59: 10:ad:00:36:e8:3d:5a:f0:57:72:83:17:7f:66:46: c5:63:38:09:c2:fa:90:54:94:31:94:8e:86:54:29: f9:d9:86:8a:5d:9e:42:32:48:13:29:7d:7f:91:27: e2:64:e9:7c:c4:de:0d:31:8e:f4:67:90:d4:c8:bc: 3a:43:4e:c2:59:ee:a5:23:8a:4c:53:62:1c:05:8d: 85:28:c9:5a:d2:61:71:f3:7f:ca:e2:5e:1b:6c:18: b5:b7:a5:5d:ae:3d:17:f3:8a:bd:b6:d6:1c:81:da: fc:9e:0d:a2:6c:c2:ca:6c:c8:c6:02:02:bf:4a:4e: 0a:f6:e8:29:cd:ac:ed:8b:75:8f:e0:1b:19:98:e0: 36:34:15:11:c4:27:d2:cb:88:b3:fc:42:47:73:c4: 99:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:27:4A:12:EE:45:F9:74:28:B0:19:18:A5:65:D4:99:7E:27:CD:29 X509v3 Authority Key Identifier: keyid:6A:75:F9:5E:A1:1C:3F:98:4C:5C:61:0F:E9:22:20:26:39:4B:A8:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/aa433934-3844-4653-8fac-1858b2823d1c/0/6A75F95EA11C3F984C5C610FE9222026394BA8E9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6A75F95EA11C3F984C5C610FE9222026394BA8E9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/aa433934-3844-4653-8fac-1858b2823d1c/0/323030313a6466333a623838303a3a2f34382d3438203d3e203137353338.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df3:b880::/48 Signature Algorithm: sha256WithRSAEncryption 1b:76:28:02:72:b1:e2:a1:df:6c:f0:0d:a8:c8:dd:d8:3b:0a: fb:ac:fb:0c:57:d7:75:e0:e2:58:3d:e5:63:88:28:30:bb:16: ad:7d:3d:48:38:3a:9d:44:e7:04:0d:a1:6a:2b:7d:90:19:80: 9d:a9:73:72:c5:c9:ed:6a:77:35:99:06:60:a0:87:5f:6f:0b: f3:7a:7c:b5:79:f4:eb:e4:0d:ee:ef:44:93:6c:60:2b:cf:70: 78:ac:94:6f:40:5a:94:a2:cd:66:2c:a9:54:67:52:d6:b8:db: 92:50:d7:a0:1e:8f:1d:7c:6f:53:e1:06:5b:f4:95:53:48:5d: 6f:60:41:94:13:5a:00:8f:6c:51:cc:c6:55:79:48:fa:cc:d0: 56:8c:d0:a5:98:e4:0c:ff:67:64:38:20:01:11:b8:ed:38:dd: 77:49:e9:bd:9d:e7:ae:78:72:d3:3c:0f:65:57:c9:8a:66:85: 66:4c:24:13:b5:c5:07:a6:71:2f:6d:a5:69:c6:e4:fc:36:bf: 08:15:15:ab:37:64:39:c2:7e:06:88:7b:cd:cd:be:9e:02:68: e8:92:c4:fd:a2:42:a2:2a:08:b1:d7:f3:24:86:f0:70:6e:32: aa:27:75:44:8a:28:fe:4e:b6:b2:f2:bd:2c:01:98:28:72:f1: 7d:67:67:1f -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUGlmlhFe0CZ2ou2tyG7aGeuTX6xkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkE3NUY5NUVBMTFDM0Y5ODRDNUM2MTBGRTkyMjIwMjYz OTRCQThFOTAeFw0yNTA2MDIwMTU5MTFaFw0yNjA2MDEwMjA0MTFaMDMxMTAvBgNV BAMTKDkyMjc0QTEyRUU0NUY5NzQyOEIwMTkxOEE1NjVENDk5N0UyN0NEMjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCptoCWyQeWo7o9oUgzFdmDMGaf FusLdXuoVRqZTAvtZhZ1vF8Phz0J4eW8/WSOqOB0Tgc+nLYB9fpKgmdpBvu7AmXP 0w3DmshAX5IfcmuBpW/H7GemTnth7OTEH3zClsj931cpz1mhWRCtADboPVrwV3KD F39mRsVjOAnC+pBUlDGUjoZUKfnZhopdnkIySBMpfX+RJ+Jk6XzE3g0xjvRnkNTI vDpDTsJZ7qUjikxTYhwFjYUoyVrSYXHzf8riXhtsGLW3pV2uPRfzir221hyB2vye DaJswspsyMYCAr9KTgr26CnNrO2LdY/gGxmY4DY0FRHEJ9LLiLP8QkdzxJlLAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUkidKEu5F+XQosBkYpWXUmX4nzSkwHwYDVR0j BBgwFoAUanX5XqEcP5hMXGEP6SIgJjlLqOkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h YTQzMzkzNC0zODQ0LTQ2NTMtOGZhYy0xODU4YjI4MjNkMWMvMC82QTc1Rjk1RUEx MUMzRjk4NEM1QzYxMEZFOTIyMjAyNjM5NEJBOEU5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkE3NUY5NUVBMTFDM0Y5ODRDNUM2MTBGRTkyMjIwMjYzOTRC QThFOS5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FhNDMzOTM0LTM4NDQtNDY1My04 ZmFjLTE4NThiMjgyM2QxYy8wLzMyMzAzMDMxM2E2NDY2MzMzYTYyMzgzODMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNzM1MzMzOC5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACABDfO4 gDANBgkqhkiG9w0BAQsFAAOCAQEAG3YoAnKx4qHfbPANqMjd2DsK+6z7DFfXdeDi WD3lY4goMLsWrX09SDg6nUTnBA2hait9kBmAnalzcsXJ7Wp3NZkGYKCHX28L83p8 tXn06+QN7u9Ek2xgK89weKyUb0BalKLNZiypVGdS1rjbklDXoB6PHXxvU+EGW/SV U0hdb2BBlBNaAI9sUczGVXlI+szQVozQpZjkDP9nZDggARG47Tjdd0npvZ3nrnhy 0zwPZVfJimaFZkwkE7XFB6ZxL22lacbk/Da/CBUVqzdkOcJ+Boh7zc2+ngJo6JLE /aJCoioIsdfzJIbwcG4yqid1RIoo/k62svK9LAGYKHLxfWdnHw== -----END CERTIFICATE-----Generated at Sat Jun 7 06:18:23 2025 by rpki-client