$ rpki-client -vvf repo-rpki.idnic.net/repo/b3785e65-51e2-4b1b-82f9-e753ad4b240f/0/323030313a6466333a623938303a3a2f34382d3438203d3e203137353338.roa File: 323030313a6466333a623938303a3a2f34382d3438203d3e203137353338.roa (raw, json) Hash identifier: ifCGuusxkGprBC7NulQNufNvo7SVC5amSJ/1S4uaqjQ= Subject key identifier: EE:0C:05:17:BB:D5:29:9A:5C:57:47:CE:42:36:92:4E:13:FF:30:AA Certificate issuer: /CN=95D9136845FAFA0795735D4A9B0FF9F746461AB3 Certificate serial: 2AE1B22A9AED41C6EB8434C17157A5978D861D8F Authority key identifier: 95:D9:13:68:45:FA:FA:07:95:73:5D:4A:9B:0F:F9:F7:46:46:1A:B3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/95D9136845FAFA0795735D4A9B0FF9F746461AB3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b3785e65-51e2-4b1b-82f9-e753ad4b240f/0/323030313a6466333a623938303a3a2f34382d3438203d3e203137353338.roa Signing time: Mon 02 Jun 2025 02:04:18 +0000 ROA not before: Mon 02 Jun 2025 01:59:18 +0000 ROA not after: Mon 01 Jun 2026 02:04:18 +0000 asID: 17538 IP address blocks: 2001:df3:b980::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b3785e65-51e2-4b1b-82f9-e753ad4b240f/0/95D9136845FAFA0795735D4A9B0FF9F746461AB3.crl rsync://repo-rpki.idnic.net/repo/b3785e65-51e2-4b1b-82f9-e753ad4b240f/0/95D9136845FAFA0795735D4A9B0FF9F746461AB3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/95D9136845FAFA0795735D4A9B0FF9F746461AB3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 15:32:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:e1:b2:2a:9a:ed:41:c6:eb:84:34:c1:71:57:a5:97:8d:86:1d:8f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=95D9136845FAFA0795735D4A9B0FF9F746461AB3 Validity Not Before: Jun 2 01:59:18 2025 GMT Not After : Jun 1 02:04:18 2026 GMT Subject: CN=EE0C0517BBD5299A5C5747CE4236924E13FF30AA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:99:45:8c:e5:54:35:81:70:04:2f:10:de:6d: 01:39:aa:fe:79:f8:03:5c:0d:49:40:71:25:1a:ee: db:09:5b:2d:cd:31:45:91:ad:83:c9:8c:22:96:fb: b1:1a:65:06:05:2c:cb:2c:47:d8:3e:40:ee:e2:63: aa:fa:da:e0:02:e0:bd:eb:59:52:fd:49:9c:f2:af: 2e:c5:b7:e8:b8:85:23:fe:63:aa:e8:ae:41:c2:d7: 6c:f8:80:2b:98:3f:30:38:6b:41:65:ce:3a:90:45: 13:3d:4e:61:50:71:a5:75:e0:a8:da:44:1b:3a:fe: 92:3c:df:53:32:aa:7d:9d:78:93:cd:2d:81:62:69: 9d:d8:7f:ae:a1:16:b7:79:3a:ca:5c:22:08:f2:56: db:d8:c9:e9:b4:6d:4f:3e:bb:4d:92:99:76:b6:b0: 78:4d:9d:ae:1b:f6:24:09:92:23:a5:53:b5:5e:af: dd:24:cf:91:4f:76:7b:47:6e:9b:1d:aa:6a:bb:54: 4c:73:16:45:bd:ff:4a:3c:0e:ec:10:be:d8:5d:14: d7:dc:92:c7:2a:1d:f8:a7:b7:ae:56:73:8b:6d:09: 82:b6:c2:14:3c:ee:5f:43:c6:bf:c4:50:4b:ac:c7: f5:38:9d:b2:62:56:6e:83:52:d6:03:3b:37:ec:37: a1:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:0C:05:17:BB:D5:29:9A:5C:57:47:CE:42:36:92:4E:13:FF:30:AA X509v3 Authority Key Identifier: keyid:95:D9:13:68:45:FA:FA:07:95:73:5D:4A:9B:0F:F9:F7:46:46:1A:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b3785e65-51e2-4b1b-82f9-e753ad4b240f/0/95D9136845FAFA0795735D4A9B0FF9F746461AB3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/95D9136845FAFA0795735D4A9B0FF9F746461AB3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b3785e65-51e2-4b1b-82f9-e753ad4b240f/0/323030313a6466333a623938303a3a2f34382d3438203d3e203137353338.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df3:b980::/48 Signature Algorithm: sha256WithRSAEncryption 98:1c:9f:fe:ad:6e:6e:d3:35:f7:db:0a:c3:da:a5:3f:b1:c4: 37:0d:56:1d:1b:db:30:34:ce:22:55:3f:c9:c7:48:07:24:dc: 24:09:c8:f2:47:a1:bc:ba:58:f9:c1:87:14:5d:54:7d:00:2e: 5a:ca:2d:6d:59:60:61:e8:11:19:d9:ca:c7:26:71:1b:f7:f1: 3c:18:84:5f:ed:a0:9e:4c:e0:dd:07:3c:38:e3:bf:f2:13:21: 0b:7c:80:c2:4a:ec:66:d6:5c:e8:46:65:be:35:8b:64:c3:a5: e6:0a:f2:8b:01:a8:41:f3:75:ad:25:5a:43:9e:1f:d5:ef:9d: e5:34:07:21:40:c5:3c:5d:43:b9:26:73:95:ae:c8:f1:43:fb: e9:e1:6f:a4:d2:2a:02:f3:66:0e:17:7c:6e:f6:4d:68:15:a4: da:4f:fe:97:09:1d:2a:7b:d8:13:75:d2:f2:0a:67:a2:ad:da: 4f:1c:a0:68:04:ba:09:35:e8:56:ef:83:49:1f:05:df:78:67: a0:d4:33:9a:87:f7:c4:50:09:32:50:50:46:6b:1e:7a:d8:63: 63:c9:34:52:aa:d2:d3:bb:cd:39:0c:c5:81:b0:55:b7:54:98: e6:e6:7a:fc:16:d0:d3:25:e0:fb:cf:6b:69:73:f3:fa:b3:00: fd:ca:4e:19 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUKuGyKprtQcbrhDTBcVell42GHY8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTVEOTEzNjg0NUZBRkEwNzk1NzM1RDRBOUIwRkY5Rjc0 NjQ2MUFCMzAeFw0yNTA2MDIwMTU5MThaFw0yNjA2MDEwMjA0MThaMDMxMTAvBgNV BAMTKEVFMEMwNTE3QkJENTI5OUE1QzU3NDdDRTQyMzY5MjRFMTNGRjMwQUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/mUWM5VQ1gXAELxDebQE5qv55 +ANcDUlAcSUa7tsJWy3NMUWRrYPJjCKW+7EaZQYFLMssR9g+QO7iY6r62uAC4L3r WVL9SZzyry7Ft+i4hSP+Y6rorkHC12z4gCuYPzA4a0FlzjqQRRM9TmFQcaV14Kja RBs6/pI831Myqn2deJPNLYFiaZ3Yf66hFrd5OspcIgjyVtvYyem0bU8+u02SmXa2 sHhNna4b9iQJkiOlU7Ver90kz5FPdntHbpsdqmq7VExzFkW9/0o8DuwQvthdFNfc kscqHfint65Wc4ttCYK2whQ87l9Dxr/EUEusx/U4nbJiVm6DUtYDOzfsN6G9AgMB AAGjggI7MIICNzAdBgNVHQ4EFgQU7gwFF7vVKZpcV0fOQjaSThP/MKowHwYDVR0j BBgwFoAUldkTaEX6+geVc11Kmw/590ZGGrMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i Mzc4NWU2NS01MWUyLTRiMWItODJmOS1lNzUzYWQ0YjI0MGYvMC85NUQ5MTM2ODQ1 RkFGQTA3OTU3MzVENEE5QjBGRjlGNzQ2NDYxQUIzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTVEOTEzNjg0NUZBRkEwNzk1NzM1RDRBOUIwRkY5Rjc0NjQ2 MUFCMy5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IzNzg1ZTY1LTUxZTItNGIxYi04 MmY5LWU3NTNhZDRiMjQwZi8wLzMyMzAzMDMxM2E2NDY2MzMzYTYyMzkzODMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNzM1MzMzOC5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACABDfO5 gDANBgkqhkiG9w0BAQsFAAOCAQEAmByf/q1ubtM199sKw9qlP7HENw1WHRvbMDTO IlU/ycdIByTcJAnI8kehvLpY+cGHFF1UfQAuWsotbVlgYegRGdnKxyZxG/fxPBiE X+2gnkzg3Qc8OOO/8hMhC3yAwkrsZtZc6EZlvjWLZMOl5gryiwGoQfN1rSVaQ54f 1e+d5TQHIUDFPF1DuSZzla7I8UP76eFvpNIqAvNmDhd8bvZNaBWk2k/+lwkdKnvY E3XS8gpnoq3aTxygaAS6CTXoVu+DSR8F33hnoNQzmof3xFAJMlBQRmseethjY8k0 UqrS07vNOQzFgbBVt1SY5uZ6/BbQ0yXg+89raXPz+rMA/cpOGQ== -----END CERTIFICATE-----Generated at Thu Jun 5 18:35:33 2025 by rpki-client