$ rpki-client -vvf repo-rpki.idnic.net/repo/b7e26c83-5ed2-4c8b-8a03-6cb00d1ed338/0/323030313a6466363a616630303a3a2f34382d3438203d3e20313338303836.roa File: 323030313a6466363a616630303a3a2f34382d3438203d3e20313338303836.roa (raw, json) Hash identifier: pJzBSpecNdGxtRhriNjcTDwpDG6NNdRtxmQUp3nGEzE= Subject key identifier: CD:B3:6F:0A:E8:17:8D:BE:76:4E:09:BF:C8:0A:50:C9:F2:BC:DF:74 Certificate issuer: /CN=408585C1D62A4F618C0424E9BEDC3B91411C2276 Certificate serial: 47AF450DDC08E33A488BBE70FDB2F874C974B175 Authority key identifier: 40:85:85:C1:D6:2A:4F:61:8C:04:24:E9:BE:DC:3B:91:41:1C:22:76 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/408585C1D62A4F618C0424E9BEDC3B91411C2276.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b7e26c83-5ed2-4c8b-8a03-6cb00d1ed338/0/323030313a6466363a616630303a3a2f34382d3438203d3e20313338303836.roa Signing time: Wed 04 Jun 2025 03:02:52 +0000 ROA not before: Wed 04 Jun 2025 02:57:52 +0000 ROA not after: Wed 03 Jun 2026 03:02:52 +0000 asID: 138086 IP address blocks: 2001:df6:af00::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b7e26c83-5ed2-4c8b-8a03-6cb00d1ed338/0/408585C1D62A4F618C0424E9BEDC3B91411C2276.crl rsync://repo-rpki.idnic.net/repo/b7e26c83-5ed2-4c8b-8a03-6cb00d1ed338/0/408585C1D62A4F618C0424E9BEDC3B91411C2276.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/408585C1D62A4F618C0424E9BEDC3B91411C2276.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 12:28:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:af:45:0d:dc:08:e3:3a:48:8b:be:70:fd:b2:f8:74:c9:74:b1:75 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=408585C1D62A4F618C0424E9BEDC3B91411C2276 Validity Not Before: Jun 4 02:57:52 2025 GMT Not After : Jun 3 03:02:52 2026 GMT Subject: CN=CDB36F0AE8178DBE764E09BFC80A50C9F2BCDF74 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:55:3d:a4:c6:b4:49:bb:ce:8c:93:1b:3e:21: 58:9e:82:85:50:ea:de:1b:14:bb:e2:39:7b:04:62: ee:16:f7:a9:e5:c6:c9:2e:14:bf:ce:bf:01:bd:fd: 33:5a:23:64:ff:f1:ae:5c:e3:6a:b9:fe:29:5b:aa: 3c:62:f4:7b:94:7c:16:01:26:93:0c:e8:8a:c0:f4: d1:72:f5:f3:01:f9:1a:6d:d0:7b:f5:cc:1d:c7:78: aa:09:16:99:d2:9c:59:14:4a:dc:fb:85:c1:e7:b9: 6b:69:1d:f7:1e:89:d1:56:2e:e4:c2:eb:d0:35:d8: 69:4d:f5:27:59:e9:61:3d:39:f1:03:01:42:96:f2: 45:52:46:da:f9:cc:b4:dd:04:28:a7:74:cf:3b:0c: 82:b1:46:5e:9b:ee:41:3f:51:d9:54:3b:e3:b8:de: b5:65:a9:1e:4c:98:00:8a:2a:5d:72:fd:ae:8b:11: f1:7b:c2:26:25:2b:b5:6e:2d:10:73:0b:65:cd:d6: 55:f0:b0:ee:ea:09:b5:57:4f:ff:9b:9b:eb:fc:5d: 2a:de:fe:9d:c6:d0:01:f2:c4:1e:ed:ef:1d:e7:90: 9f:7b:3e:e0:f6:97:4a:e0:84:52:ed:96:b6:a4:02: 9a:90:0c:9e:5d:0d:cd:95:aa:d8:af:5a:36:0b:8a: 64:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:B3:6F:0A:E8:17:8D:BE:76:4E:09:BF:C8:0A:50:C9:F2:BC:DF:74 X509v3 Authority Key Identifier: keyid:40:85:85:C1:D6:2A:4F:61:8C:04:24:E9:BE:DC:3B:91:41:1C:22:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b7e26c83-5ed2-4c8b-8a03-6cb00d1ed338/0/408585C1D62A4F618C0424E9BEDC3B91411C2276.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/408585C1D62A4F618C0424E9BEDC3B91411C2276.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b7e26c83-5ed2-4c8b-8a03-6cb00d1ed338/0/323030313a6466363a616630303a3a2f34382d3438203d3e20313338303836.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df6:af00::/48 Signature Algorithm: sha256WithRSAEncryption 44:5c:c3:d7:c8:0b:92:e9:32:e7:6d:fc:06:a7:78:43:38:6f: 39:cb:65:d8:cd:8f:bb:06:c0:de:0a:fe:44:36:33:d2:c8:74: ba:e5:93:98:c4:ae:97:dc:4b:c5:c3:22:2a:dc:db:0a:f8:2a: 22:11:0b:40:ba:16:0d:fd:09:77:a3:12:4d:55:85:86:93:82: a6:14:47:aa:7f:c5:b8:80:77:c3:3a:27:24:91:5c:a2:67:97: fa:62:99:bc:00:82:58:cc:a2:a5:d2:13:f3:c8:46:79:55:f4: fc:98:d2:b0:ce:03:02:75:af:bc:b1:8d:65:87:60:72:d1:db: e5:82:09:1b:fc:5a:cf:f9:66:22:ad:eb:8f:13:8a:88:c1:82: 73:b9:72:80:d6:7b:e0:ef:49:79:dc:a2:f7:11:cb:7c:91:fa: ef:1b:e7:74:ef:93:97:fe:4f:fa:b1:4e:1c:79:d2:08:d0:be: f7:a6:57:f7:b1:aa:fc:1c:96:1e:be:46:a3:43:0a:e8:96:b3: 16:40:b7:b2:37:ce:9d:f0:9a:2d:5c:f2:97:4e:a8:6a:3b:32: 68:09:ce:27:2c:4f:98:0b:9a:6b:77:b7:03:57:91:60:a9:84: f4:9c:a1:2a:4e:b8:f7:89:99:25:82:f9:07:44:b4:de:e2:e5: e8:f9:a1:d2 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUR69FDdwI4zpIi75w/bL4dMl0sXUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDA4NTg1QzFENjJBNEY2MThDMDQyNEU5QkVEQzNCOTE0 MTFDMjI3NjAeFw0yNTA2MDQwMjU3NTJaFw0yNjA2MDMwMzAyNTJaMDMxMTAvBgNV BAMTKENEQjM2RjBBRTgxNzhEQkU3NjRFMDlCRkM4MEE1MEM5RjJCQ0RGNzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/VT2kxrRJu86Mkxs+IViegoVQ 6t4bFLviOXsEYu4W96nlxskuFL/OvwG9/TNaI2T/8a5c42q5/ilbqjxi9HuUfBYB JpMM6IrA9NFy9fMB+Rpt0Hv1zB3HeKoJFpnSnFkUStz7hcHnuWtpHfceidFWLuTC 69A12GlN9SdZ6WE9OfEDAUKW8kVSRtr5zLTdBCindM87DIKxRl6b7kE/UdlUO+O4 3rVlqR5MmACKKl1y/a6LEfF7wiYlK7VuLRBzC2XN1lXwsO7qCbVXT/+bm+v8XSre /p3G0AHyxB7t7x3nkJ97PuD2l0rghFLtlrakApqQDJ5dDc2VqtivWjYLimSlAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUzbNvCugXjb52Tgm/yApQyfK833QwHwYDVR0j BBgwFoAUQIWFwdYqT2GMBCTpvtw7kUEcInYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i N2UyNmM4My01ZWQyLTRjOGItOGEwMy02Y2IwMGQxZWQzMzgvMC80MDg1ODVDMUQ2 MkE0RjYxOEMwNDI0RTlCRURDM0I5MTQxMUMyMjc2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDA4NTg1QzFENjJBNEY2MThDMDQyNEU5QkVEQzNCOTE0MTFD MjI3Ni5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I3ZTI2YzgzLTVlZDItNGM4Yi04 YTAzLTZjYjAwZDFlZDMzOC8wLzMyMzAzMDMxM2E2NDY2MzYzYTYxNjYzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM4MzAzODM2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 9q8AMA0GCSqGSIb3DQEBCwUAA4IBAQBEXMPXyAuS6TLnbfwGp3hDOG85y2XYzY+7 BsDeCv5ENjPSyHS65ZOYxK6X3EvFwyIq3NsK+CoiEQtAuhYN/Ql3oxJNVYWGk4Km FEeqf8W4gHfDOickkVyiZ5f6Ypm8AIJYzKKl0hPzyEZ5VfT8mNKwzgMCda+8sY1l h2By0dvlggkb/FrP+WYireuPE4qIwYJzuXKA1nvg70l53KL3Ect8kfrvG+d075OX /k/6sU4cedII0L73plf3sar8HJYevkajQwrolrMWQLeyN86d8JotXPKXTqhqOzJo Cc4nLE+YC5prd7cDV5FgqYT0nKEqTrj3iZklgvkHRLTe4uXo+aHS -----END CERTIFICATE-----Generated at Sun Jun 8 04:57:23 2025 by rpki-client