$ rpki-client -vvf repo-rpki.idnic.net/repo/bd1ee5e2-338c-4d20-807e-e50b75583db8/0/323030313a6466303a61383a3a2f34382d3438203d3e203436303532.roa File: 323030313a6466303a61383a3a2f34382d3438203d3e203436303532.roa (raw, json) Hash identifier: ceA/XjkZTjtckNNE+B0y8t16H7RYtmT+yFrD+MsXpYk= Subject key identifier: 55:CC:56:D1:31:77:C8:9B:6B:83:4F:36:3D:22:B4:97:23:BA:A5:6B Certificate issuer: /CN=3D13C6FB9DB22CE134706325357C20E1DC9A1269 Certificate serial: 2BF71B459A9463DBDA19180B73FC4E4E9D67F319 Authority key identifier: 3D:13:C6:FB:9D:B2:2C:E1:34:70:63:25:35:7C:20:E1:DC:9A:12:69 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D13C6FB9DB22CE134706325357C20E1DC9A1269.cer Subject info access: rsync://repo-rpki.idnic.net/repo/bd1ee5e2-338c-4d20-807e-e50b75583db8/0/323030313a6466303a61383a3a2f34382d3438203d3e203436303532.roa Signing time: Thu 28 Aug 2025 05:00:00 +0000 ROA not before: Thu 28 Aug 2025 04:55:00 +0000 ROA not after: Thu 27 Aug 2026 05:00:00 +0000 asID: 46052 IP address blocks: 2001:df0:a8::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/bd1ee5e2-338c-4d20-807e-e50b75583db8/0/3D13C6FB9DB22CE134706325357C20E1DC9A1269.crl rsync://repo-rpki.idnic.net/repo/bd1ee5e2-338c-4d20-807e-e50b75583db8/0/3D13C6FB9DB22CE134706325357C20E1DC9A1269.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D13C6FB9DB22CE134706325357C20E1DC9A1269.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Sep 2025 17:32:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:f7:1b:45:9a:94:63:db:da:19:18:0b:73:fc:4e:4e:9d:67:f3:19 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3D13C6FB9DB22CE134706325357C20E1DC9A1269 Validity Not Before: Aug 28 04:55:00 2025 GMT Not After : Aug 27 05:00:00 2026 GMT Subject: CN=55CC56D13177C89B6B834F363D22B49723BAA56B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:cb:22:26:90:7f:7a:22:cf:d4:ca:56:44:e9: 0f:fb:22:13:10:31:19:8a:f4:03:8d:1f:67:59:f2: cb:b2:10:24:ab:f7:4a:67:8e:6b:5d:7d:80:5b:e2: 1e:75:a4:cc:2a:10:d6:6d:9e:2b:4e:e0:61:df:de: 4e:94:3a:cf:f2:a5:d4:54:9b:51:65:b6:41:5a:e5: 9a:a7:0e:9d:53:cc:7d:b5:9b:f9:d4:01:f8:88:06: 89:9c:56:e8:3d:8c:cf:3d:bb:8b:27:3a:66:d6:96: 60:94:82:b3:32:8f:fc:7c:1d:e1:b9:fc:58:11:2d: f5:e6:b2:bb:2d:be:af:d2:a8:72:30:9d:b8:33:f6: a3:f5:32:47:4a:92:0f:81:c1:a2:08:63:8f:24:0b: 22:78:b5:49:f0:47:e6:c3:38:33:1f:09:22:c6:31: d6:90:2a:f9:6a:34:91:a1:f4:10:f0:07:c2:96:bf: 0f:e1:2a:81:a8:0a:5a:2f:09:85:e3:c0:f6:a1:c0: b0:d7:16:f0:a4:0e:2f:3f:95:3b:18:44:ae:41:ca: 0d:53:2d:15:10:33:1b:9c:ea:c3:27:34:8b:c4:98: da:8c:c8:54:42:00:29:b6:54:41:03:7d:62:22:1c: 5f:04:d1:20:0d:a4:f0:fc:4d:64:ff:0b:ff:a2:8e: d0:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:CC:56:D1:31:77:C8:9B:6B:83:4F:36:3D:22:B4:97:23:BA:A5:6B X509v3 Authority Key Identifier: keyid:3D:13:C6:FB:9D:B2:2C:E1:34:70:63:25:35:7C:20:E1:DC:9A:12:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/bd1ee5e2-338c-4d20-807e-e50b75583db8/0/3D13C6FB9DB22CE134706325357C20E1DC9A1269.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D13C6FB9DB22CE134706325357C20E1DC9A1269.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/bd1ee5e2-338c-4d20-807e-e50b75583db8/0/323030313a6466303a61383a3a2f34382d3438203d3e203436303532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df0:a8::/48 Signature Algorithm: sha256WithRSAEncryption 8d:bb:30:44:5e:68:33:40:08:00:21:7c:61:21:a2:ca:c4:1d: b1:d9:82:20:81:0f:9c:4c:79:d5:82:19:1c:40:37:d1:3e:a1: 42:24:0b:a3:1c:57:0b:da:ef:07:48:70:c2:ea:15:a8:f5:d7: 63:ff:01:44:3e:a3:e5:d4:10:15:65:dc:82:71:1a:38:dc:7e: df:ae:2e:a0:a5:b2:38:75:51:0c:52:91:83:0f:5a:a8:2e:53: 00:60:70:27:9a:ef:98:ce:33:54:f0:e6:a9:ed:d8:78:e1:96: 93:9a:a8:3a:f7:06:35:cd:8a:ef:ef:75:19:b6:e8:71:7c:e2: 8f:5c:cf:d5:fc:9c:ec:ce:9c:aa:be:0f:5a:68:a6:dc:4e:e7: 14:e3:0f:37:b7:c0:2d:d3:1a:3d:bd:aa:20:b3:c1:80:33:f0: a9:10:5c:ed:88:6a:dc:f9:3a:45:1a:8a:dc:9a:fc:74:de:f6: 39:d7:49:44:b9:1c:b8:9e:5c:43:2c:db:42:f9:ad:d0:c1:de: ac:fe:5b:3a:3e:cf:a6:d0:c7:8c:60:6e:9c:7e:ae:d8:2c:7d: 2a:33:a4:e8:8f:51:dd:83:2d:05:de:34:a2:5e:67:47:0a:ce: f4:01:00:bd:a9:ec:ff:ca:e2:bb:f0:49:d0:9e:bb:16:45:5e: 4e:e9:b3:59 -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUK/cbRZqUY9vaGRgLc/xOTp1n8xkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0QxM0M2RkI5REIyMkNFMTM0NzA2MzI1MzU3QzIwRTFE QzlBMTI2OTAeFw0yNTA4MjgwNDU1MDBaFw0yNjA4MjcwNTAwMDBaMDMxMTAvBgNV BAMTKDU1Q0M1NkQxMzE3N0M4OUI2QjgzNEYzNjNEMjJCNDk3MjNCQUE1NkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDbyyImkH96Is/UylZE6Q/7IhMQ MRmK9AONH2dZ8suyECSr90pnjmtdfYBb4h51pMwqENZtnitO4GHf3k6UOs/ypdRU m1FltkFa5ZqnDp1TzH21m/nUAfiIBomcVug9jM89u4snOmbWlmCUgrMyj/x8HeG5 /FgRLfXmsrstvq/SqHIwnbgz9qP1MkdKkg+BwaIIY48kCyJ4tUnwR+bDODMfCSLG MdaQKvlqNJGh9BDwB8KWvw/hKoGoClovCYXjwPahwLDXFvCkDi8/lTsYRK5Byg1T LRUQMxuc6sMnNIvEmNqMyFRCACm2VEEDfWIiHF8E0SANpPD8TWT/C/+ijtBJAgMB AAGjggI3MIICMzAdBgNVHQ4EFgQUVcxW0TF3yJtrg082PSK0lyO6pWswHwYDVR0j BBgwFoAUPRPG+52yLOE0cGMlNXwg4dyaEmkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i ZDFlZTVlMi0zMzhjLTRkMjAtODA3ZS1lNTBiNzU1ODNkYjgvMC8zRDEzQzZGQjlE QjIyQ0UxMzQ3MDYzMjUzNTdDMjBFMURDOUExMjY5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0QxM0M2RkI5REIyMkNFMTM0NzA2MzI1MzU3QzIwRTFEQzlB MTI2OS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2JkMWVlNWUyLTMzOGMtNGQyMC04 MDdlLWU1MGI3NTU4M2RiOC8wLzMyMzAzMDMxM2E2NDY2MzAzYTYxMzgzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzNDM2MzAzNTMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN8ACoMA0G CSqGSIb3DQEBCwUAA4IBAQCNuzBEXmgzQAgAIXxhIaLKxB2x2YIggQ+cTHnVghkc QDfRPqFCJAujHFcL2u8HSHDC6hWo9ddj/wFEPqPl1BAVZdyCcRo43H7fri6gpbI4 dVEMUpGDD1qoLlMAYHAnmu+YzjNU8Oap7dh44ZaTmqg69wY1zYrv73UZtuhxfOKP XM/V/Jzszpyqvg9aaKbcTucU4w83t8At0xo9vaogs8GAM/CpEFztiGrc+TpFGorc mvx03vY510lEuRy4nlxDLNtC+a3Qwd6s/ls6Ps+m0MeMYG6cfq7YLH0qM6Toj1Hd gy0F3jSiXmdHCs70AQC9qez/yuK78EnQnrsWRV5O6bNZ -----END CERTIFICATE-----Generated at Sun Sep 7 15:37:46 2025 by rpki-client