$ rpki-client -vvf repo-rpki.idnic.net/repo/ae86b092-527d-488f-a9f7-24797d9774cb/0/323030313a6466303a62353a3a2f34382d3438203d3e203436303439.roa File: 323030313a6466303a62353a3a2f34382d3438203d3e203436303439.roa (raw, json) Hash identifier: 2VAQFfeqQhEyAnMrmaTI9sSR0U2G484A8xe93rrxtaE= Subject key identifier: DB:08:E2:7B:3F:AE:64:35:CD:CD:66:24:EE:A4:58:29:E0:3D:F5:D2 Certificate issuer: /CN=F490341241E1B1C7D170AB872CA39A68309B3F3B Certificate serial: 4C463CB82FB875C23A1E10E67FAE3CB4CA2551B7 Authority key identifier: F4:90:34:12:41:E1:B1:C7:D1:70:AB:87:2C:A3:9A:68:30:9B:3F:3B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F490341241E1B1C7D170AB872CA39A68309B3F3B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ae86b092-527d-488f-a9f7-24797d9774cb/0/323030313a6466303a62353a3a2f34382d3438203d3e203436303439.roa Signing time: Mon 02 Jun 2025 01:03:25 +0000 ROA not before: Mon 02 Jun 2025 00:58:25 +0000 ROA not after: Mon 01 Jun 2026 01:03:25 +0000 asID: 46049 IP address blocks: 2001:df0:b5::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ae86b092-527d-488f-a9f7-24797d9774cb/0/F490341241E1B1C7D170AB872CA39A68309B3F3B.crl rsync://repo-rpki.idnic.net/repo/ae86b092-527d-488f-a9f7-24797d9774cb/0/F490341241E1B1C7D170AB872CA39A68309B3F3B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F490341241E1B1C7D170AB872CA39A68309B3F3B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 15:16:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:46:3c:b8:2f:b8:75:c2:3a:1e:10:e6:7f:ae:3c:b4:ca:25:51:b7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F490341241E1B1C7D170AB872CA39A68309B3F3B Validity Not Before: Jun 2 00:58:25 2025 GMT Not After : Jun 1 01:03:25 2026 GMT Subject: CN=DB08E27B3FAE6435CDCD6624EEA45829E03DF5D2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:e6:ff:4b:c9:ab:b0:87:16:f1:80:5f:17:d0: b4:cb:c7:a8:58:7e:1c:32:03:e9:8d:52:22:ac:65: e0:09:fc:c5:39:a1:a5:cc:5b:9d:c2:a2:6e:60:98: 01:36:7a:37:8a:7e:86:89:c1:ef:70:ea:c9:ae:10: 4f:85:f4:b4:58:37:c6:88:5a:bd:92:7d:a6:ef:e7: ac:70:f7:96:29:64:68:d9:45:89:8e:b6:17:1c:46: e1:9e:fd:ce:15:a3:0c:95:1d:49:cb:c3:5b:75:8e: e1:76:69:5f:81:6d:b6:b4:b6:e6:56:21:f4:12:88: 76:23:de:e0:db:3e:be:a2:b7:ac:92:9e:77:39:fe: 7d:8b:ee:7a:8a:46:05:6a:a7:d2:d2:1b:3d:da:ef: a2:fa:bd:e8:4e:16:41:20:33:dd:a8:72:ea:32:b8: 7b:5e:8f:b1:16:79:95:bf:23:5b:2d:f3:05:b1:79: 46:a2:4d:b9:8a:14:fb:82:3a:2f:fd:17:b6:23:46: 00:17:88:0c:03:35:a7:e5:28:0b:bf:ff:57:af:6e: 2d:91:6e:ec:8c:25:d6:48:14:ce:b7:ab:30:75:e2: 46:72:05:ad:9c:80:27:80:5b:ac:4d:f2:d3:e2:db: f7:4d:4c:2c:0e:6b:88:3e:0a:db:27:c5:31:8e:e9: e1:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:08:E2:7B:3F:AE:64:35:CD:CD:66:24:EE:A4:58:29:E0:3D:F5:D2 X509v3 Authority Key Identifier: keyid:F4:90:34:12:41:E1:B1:C7:D1:70:AB:87:2C:A3:9A:68:30:9B:3F:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ae86b092-527d-488f-a9f7-24797d9774cb/0/F490341241E1B1C7D170AB872CA39A68309B3F3B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F490341241E1B1C7D170AB872CA39A68309B3F3B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ae86b092-527d-488f-a9f7-24797d9774cb/0/323030313a6466303a62353a3a2f34382d3438203d3e203436303439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df0:b5::/48 Signature Algorithm: sha256WithRSAEncryption 6f:c4:2a:0b:8e:b2:fd:e6:e5:50:89:5d:5a:98:7a:ca:8c:77: 49:c6:7c:38:f3:67:34:08:44:8a:42:cc:d9:32:20:d9:38:ff: 48:07:61:c6:3c:d3:7a:6d:03:4b:48:78:d9:1a:24:29:39:b2: 6f:46:36:50:92:5e:30:47:c8:b9:b4:c7:25:24:99:e8:f9:0d: 53:16:f3:02:fa:9e:cd:fb:49:c1:e4:c1:b8:3b:37:c6:6e:46: d5:f8:bb:3d:17:36:e7:b5:00:49:c4:e9:15:15:08:bc:88:0c: 6e:e1:68:9e:7c:5a:a6:5a:ff:a4:2f:e4:a7:7e:f3:f8:43:b8: 08:3f:2f:5c:45:8b:c5:d8:26:5f:f5:d0:68:8d:ac:f6:9f:36: d4:85:82:b7:0b:82:e3:11:77:4b:f4:60:53:3a:13:3f:68:46: 14:95:bb:89:97:02:d3:c4:42:fb:32:b3:51:6b:db:e7:91:a0: f2:7b:4d:8d:da:a2:ad:7a:81:ba:29:f4:c7:6f:68:3b:7c:83: 0f:08:4c:b6:7c:ec:07:2c:4f:0e:c4:39:81:14:1f:a8:9f:c1: 99:d2:bc:e9:41:f8:a8:5b:5a:4f:c4:89:20:fe:b0:23:c6:2c: 69:c8:d6:8a:3a:70:1d:55:f8:7d:c1:2b:55:2c:9e:0d:b8:19: 3b:b6:05:f8 -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUTEY8uC+4dcI6HhDmf648tMolUbcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjQ5MDM0MTI0MUUxQjFDN0QxNzBBQjg3MkNBMzlBNjgz MDlCM0YzQjAeFw0yNTA2MDIwMDU4MjVaFw0yNjA2MDEwMTAzMjVaMDMxMTAvBgNV BAMTKERCMDhFMjdCM0ZBRTY0MzVDRENENjYyNEVFQTQ1ODI5RTAzREY1RDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDI5v9LyauwhxbxgF8X0LTLx6hY fhwyA+mNUiKsZeAJ/MU5oaXMW53Com5gmAE2ejeKfoaJwe9w6smuEE+F9LRYN8aI Wr2Sfabv56xw95YpZGjZRYmOthccRuGe/c4VowyVHUnLw1t1juF2aV+Bbba0tuZW IfQSiHYj3uDbPr6it6ySnnc5/n2L7nqKRgVqp9LSGz3a76L6vehOFkEgM92ocuoy uHtej7EWeZW/I1st8wWxeUaiTbmKFPuCOi/9F7YjRgAXiAwDNaflKAu//1evbi2R buyMJdZIFM63qzB14kZyBa2cgCeAW6xN8tPi2/dNTCwOa4g+CtsnxTGO6eFjAgMB AAGjggI3MIICMzAdBgNVHQ4EFgQU2wjiez+uZDXNzWYk7qRYKeA99dIwHwYDVR0j BBgwFoAU9JA0EkHhscfRcKuHLKOaaDCbPzswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h ZTg2YjA5Mi01MjdkLTQ4OGYtYTlmNy0yNDc5N2Q5Nzc0Y2IvMC9GNDkwMzQxMjQx RTFCMUM3RDE3MEFCODcyQ0EzOUE2ODMwOUIzRjNCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjQ5MDM0MTI0MUUxQjFDN0QxNzBBQjg3MkNBMzlBNjgzMDlC M0YzQi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FlODZiMDkyLTUyN2QtNDg4Zi1h OWY3LTI0Nzk3ZDk3NzRjYi8wLzMyMzAzMDMxM2E2NDY2MzAzYTYyMzUzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzNDM2MzAzNDM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN8AC1MA0G CSqGSIb3DQEBCwUAA4IBAQBvxCoLjrL95uVQiV1amHrKjHdJxnw482c0CESKQszZ MiDZOP9IB2HGPNN6bQNLSHjZGiQpObJvRjZQkl4wR8i5tMclJJno+Q1TFvMC+p7N +0nB5MG4OzfGbkbV+Ls9FzbntQBJxOkVFQi8iAxu4WiefFqmWv+kL+SnfvP4Q7gI Py9cRYvF2CZf9dBojaz2nzbUhYK3C4LjEXdL9GBTOhM/aEYUlbuJlwLTxEL7MrNR a9vnkaDye02N2qKteoG6KfTHb2g7fIMPCEy2fOwHLE8OxDmBFB+on8GZ0rzpQfio W1pPxIkg/rAjxixpyNaKOnAdVfh9wStVLJ4NuBk7tgX4 -----END CERTIFICATE-----Generated at Thu Jun 5 18:17:02 2025 by rpki-client