$ rpki-client -vvf repo-rpki.idnic.net/repo/b59cfd04-69d0-4d4c-8d09-2d2213842c2c/0/323030313a6466343a366330303a3a2f34382d3438203d3e20313333383032.roa File: 323030313a6466343a366330303a3a2f34382d3438203d3e20313333383032.roa (raw, json) Hash identifier: 6j5m2VjCwkXGfQzXHijMICktkY7XqIoC3rD1yeh02OI= Subject key identifier: DD:DD:C6:3D:60:9D:63:12:FB:EF:8E:87:D3:BD:5F:1D:E5:C7:2F:5F Certificate issuer: /CN=BD8CDE6FE3DF9FA1EDA6CEA462F77EF60478990D Certificate serial: 21549C9FBB31F57ECD9EC34927B226DE0830BF79 Authority key identifier: BD:8C:DE:6F:E3:DF:9F:A1:ED:A6:CE:A4:62:F7:7E:F6:04:78:99:0D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BD8CDE6FE3DF9FA1EDA6CEA462F77EF60478990D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b59cfd04-69d0-4d4c-8d09-2d2213842c2c/0/323030313a6466343a366330303a3a2f34382d3438203d3e20313333383032.roa Signing time: Mon 02 Jun 2025 02:04:02 +0000 ROA not before: Mon 02 Jun 2025 01:59:02 +0000 ROA not after: Mon 01 Jun 2026 02:04:02 +0000 asID: 133802 IP address blocks: 2001:df4:6c00::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b59cfd04-69d0-4d4c-8d09-2d2213842c2c/0/BD8CDE6FE3DF9FA1EDA6CEA462F77EF60478990D.crl rsync://repo-rpki.idnic.net/repo/b59cfd04-69d0-4d4c-8d09-2d2213842c2c/0/BD8CDE6FE3DF9FA1EDA6CEA462F77EF60478990D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BD8CDE6FE3DF9FA1EDA6CEA462F77EF60478990D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 17:26:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:54:9c:9f:bb:31:f5:7e:cd:9e:c3:49:27:b2:26:de:08:30:bf:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BD8CDE6FE3DF9FA1EDA6CEA462F77EF60478990D Validity Not Before: Jun 2 01:59:02 2025 GMT Not After : Jun 1 02:04:02 2026 GMT Subject: CN=DDDDC63D609D6312FBEF8E87D3BD5F1DE5C72F5F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:be:93:13:67:c3:1c:ee:8d:42:2e:b3:d5:9d: 76:8a:1c:dd:42:2a:69:bd:10:5b:ae:d6:3c:2d:ef: e6:17:d7:c3:ed:20:a7:a0:1d:92:ec:00:62:ea:1e: 4a:bd:95:b3:2a:58:05:9e:24:8c:9d:26:59:b2:30: 74:0e:48:06:ea:1f:c9:d1:54:b1:ea:de:4a:d9:bf: c9:44:f2:5e:bf:f8:78:54:d4:1e:8b:24:94:99:55: ca:2a:13:d4:ef:b9:26:55:70:9b:39:92:a5:44:74: 77:00:a2:b5:09:6d:e6:b8:0b:5c:93:a2:0c:f0:aa: d2:02:46:74:c3:57:83:14:20:b9:8f:e9:a7:5a:8d: 88:15:0e:d0:a0:0c:9d:b7:cd:6a:ec:9c:23:35:83: c6:14:4f:66:de:25:01:6a:49:08:a0:83:d8:79:e6: 6e:09:6d:35:21:74:85:95:df:37:f5:55:47:90:ee: cf:89:18:53:5f:9c:2d:50:c8:d3:cd:f1:e2:67:7c: 9d:58:b3:77:cf:33:08:cd:ee:dc:8c:55:b1:03:8f: a7:e8:c6:dd:78:08:63:00:26:e6:c5:04:d6:5e:e8: 77:69:c2:ed:8c:c6:dc:b7:25:1b:d0:ff:c9:17:5f: 40:57:96:01:fd:dd:36:26:e0:2c:0f:df:f4:e4:a2: cf:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:DD:C6:3D:60:9D:63:12:FB:EF:8E:87:D3:BD:5F:1D:E5:C7:2F:5F X509v3 Authority Key Identifier: keyid:BD:8C:DE:6F:E3:DF:9F:A1:ED:A6:CE:A4:62:F7:7E:F6:04:78:99:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b59cfd04-69d0-4d4c-8d09-2d2213842c2c/0/BD8CDE6FE3DF9FA1EDA6CEA462F77EF60478990D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BD8CDE6FE3DF9FA1EDA6CEA462F77EF60478990D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b59cfd04-69d0-4d4c-8d09-2d2213842c2c/0/323030313a6466343a366330303a3a2f34382d3438203d3e20313333383032.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df4:6c00::/48 Signature Algorithm: sha256WithRSAEncryption 6d:30:2a:89:47:0a:3c:22:1f:6e:65:16:fa:72:86:14:42:9b: f5:15:4e:bc:0c:e7:c4:3e:1c:b2:00:35:58:77:ce:b0:3e:58: cc:6a:4f:f9:dd:d4:ad:a5:76:87:60:69:59:b0:5d:8f:95:ab: 48:25:c7:2f:d5:0c:2a:9c:83:63:aa:35:03:d4:88:28:3f:c9: e0:18:79:78:f2:1b:98:5a:6d:33:a1:7d:f8:22:04:b1:b9:69: a5:c4:06:b2:cc:c5:f5:3c:74:cf:5b:c8:fd:50:1e:83:43:24: 71:df:65:30:60:07:ee:c8:c5:89:79:8e:6e:f3:00:53:e7:8c: c7:a7:0c:1d:39:a5:6a:30:37:c4:75:33:9c:36:30:fa:6a:4a: a2:f0:ba:2e:6f:3a:83:34:d6:3c:7c:77:99:f7:f4:5b:ea:9c: 57:90:47:c4:d0:7b:c4:15:2a:ab:ff:1e:e9:b5:d8:53:9c:32: 13:19:8c:9b:2b:5d:7e:1f:9a:db:03:e2:ef:14:d7:13:21:08: bd:87:c3:68:78:ba:a6:84:cc:b2:04:83:78:12:27:e0:01:d3: b4:f0:2c:3d:8d:92:77:2c:71:96:e2:6b:6d:a2:0a:8a:75:c2: af:9b:19:a1:aa:16:21:35:74:4f:c0:0e:99:26:c8:91:11:f9: db:db:82:fc -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUIVScn7sx9X7NnsNJJ7Im3ggwv3kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkQ4Q0RFNkZFM0RGOUZBMUVEQTZDRUE0NjJGNzdFRjYw NDc4OTkwRDAeFw0yNTA2MDIwMTU5MDJaFw0yNjA2MDEwMjA0MDJaMDMxMTAvBgNV BAMTKERERERDNjNENjA5RDYzMTJGQkVGOEU4N0QzQkQ1RjFERTVDNzJGNUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQClvpMTZ8Mc7o1CLrPVnXaKHN1C Kmm9EFuu1jwt7+YX18PtIKegHZLsAGLqHkq9lbMqWAWeJIydJlmyMHQOSAbqH8nR VLHq3krZv8lE8l6/+HhU1B6LJJSZVcoqE9TvuSZVcJs5kqVEdHcAorUJbea4C1yT ogzwqtICRnTDV4MUILmP6adajYgVDtCgDJ23zWrsnCM1g8YUT2beJQFqSQigg9h5 5m4JbTUhdIWV3zf1VUeQ7s+JGFNfnC1QyNPN8eJnfJ1Ys3fPMwjN7tyMVbEDj6fo xt14CGMAJubFBNZe6Hdpwu2Mxty3JRvQ/8kXX0BXlgH93TYm4CwP3/Tkos95AgMB AAGjggI9MIICOTAdBgNVHQ4EFgQU3d3GPWCdYxL7746H071fHeXHL18wHwYDVR0j BBgwFoAUvYzeb+Pfn6Htps6kYvd+9gR4mQ0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i NTljZmQwNC02OWQwLTRkNGMtOGQwOS0yZDIyMTM4NDJjMmMvMC9CRDhDREU2RkUz REY5RkExRURBNkNFQTQ2MkY3N0VGNjA0Nzg5OTBELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkQ4Q0RFNkZFM0RGOUZBMUVEQTZDRUE0NjJGNzdFRjYwNDc4 OTkwRC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I1OWNmZDA0LTY5ZDAtNGQ0Yy04 ZDA5LTJkMjIxMzg0MmMyYy8wLzMyMzAzMDMxM2E2NDY2MzQzYTM2NjMzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzMzMzgzMDMyLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 9GwAMA0GCSqGSIb3DQEBCwUAA4IBAQBtMCqJRwo8Ih9uZRb6coYUQpv1FU68DOfE PhyyADVYd86wPljMak/53dStpXaHYGlZsF2PlatIJccv1QwqnINjqjUD1IgoP8ng GHl48huYWm0zoX34IgSxuWmlxAayzMX1PHTPW8j9UB6DQyRx32UwYAfuyMWJeY5u 8wBT54zHpwwdOaVqMDfEdTOcNjD6akqi8LoubzqDNNY8fHeZ9/Rb6pxXkEfE0HvE FSqr/x7ptdhTnDITGYybK11+H5rbA+LvFNcTIQi9h8NoeLqmhMyyBIN4EifgAdO0 8Cw9jZJ3LHGW4mttogqKdcKvmxmhqhYhNXRPwA6ZJsiREfnb24L8 -----END CERTIFICATE-----Generated at Sat Jun 7 14:02:52 2025 by rpki-client