$ rpki-client -vvf repo-rpki.idnic.net/repo/c00ae0f1-b8c0-452f-8e89-1dfc3f594d4c/0/323030313a6466343a6630303a3a2f34382d3438203d3e203535363931.roa File: 323030313a6466343a6630303a3a2f34382d3438203d3e203535363931.roa (raw, json) Hash identifier: e63YtFc38q9Y3dJcmDjIpL3Gn24BOS6camkXts2Jt7o= Subject key identifier: 6D:BF:F8:9D:76:4A:BE:18:65:35:F6:4F:44:35:5C:99:AD:59:B5:B2 Certificate issuer: /CN=CE826E79683ED6E5CE61FEA244B6B79133E98EE3 Certificate serial: 1514126D00798FC2230CE2088794A6ECD2E51D2F Authority key identifier: CE:82:6E:79:68:3E:D6:E5:CE:61:FE:A2:44:B6:B7:91:33:E9:8E:E3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CE826E79683ED6E5CE61FEA244B6B79133E98EE3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c00ae0f1-b8c0-452f-8e89-1dfc3f594d4c/0/323030313a6466343a6630303a3a2f34382d3438203d3e203535363931.roa Signing time: Mon 02 Jun 2025 02:03:46 +0000 ROA not before: Mon 02 Jun 2025 01:58:46 +0000 ROA not after: Mon 01 Jun 2026 02:03:46 +0000 asID: 55691 IP address blocks: 2001:df4:f00::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c00ae0f1-b8c0-452f-8e89-1dfc3f594d4c/0/CE826E79683ED6E5CE61FEA244B6B79133E98EE3.crl rsync://repo-rpki.idnic.net/repo/c00ae0f1-b8c0-452f-8e89-1dfc3f594d4c/0/CE826E79683ED6E5CE61FEA244B6B79133E98EE3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CE826E79683ED6E5CE61FEA244B6B79133E98EE3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 17:41:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:14:12:6d:00:79:8f:c2:23:0c:e2:08:87:94:a6:ec:d2:e5:1d:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CE826E79683ED6E5CE61FEA244B6B79133E98EE3 Validity Not Before: Jun 2 01:58:46 2025 GMT Not After : Jun 1 02:03:46 2026 GMT Subject: CN=6DBFF89D764ABE186535F64F44355C99AD59B5B2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:8a:88:60:3c:dc:f9:0c:21:7c:1a:76:b8:3b: b9:ab:b7:20:87:0f:d3:2d:42:83:b1:ff:22:11:28: 53:5b:07:e2:82:fb:00:76:58:3d:92:eb:de:01:e8: ae:1e:5d:ad:34:a2:77:ff:8f:36:69:84:0c:d8:38: f2:99:26:3a:4b:39:80:7e:b3:6c:7c:dd:7d:c2:2c: 53:e2:ef:12:77:09:12:05:99:57:c4:5e:a4:89:94: 22:cf:58:7b:b5:93:4f:c7:1b:b8:03:53:60:56:a6: 87:d5:07:41:84:30:4e:26:a0:3b:1c:24:25:81:3b: 71:7a:7a:ba:d4:77:ce:7c:c1:bb:95:20:4b:d4:24: 97:f8:42:34:bb:76:65:1e:1f:34:a4:b5:a8:48:4d: 7a:e2:64:11:8d:97:56:2b:2c:0b:8d:b1:25:42:42: ab:34:34:eb:03:33:16:58:38:6b:12:bd:ca:07:68: 94:37:6d:0c:3a:5c:54:4c:67:f1:39:6f:1a:4a:0b: 8c:d1:80:53:40:5a:bb:fe:1e:25:f5:77:3b:5b:96: 38:42:de:a3:b4:a0:ee:73:7d:d4:54:bb:e0:1c:52: bd:eb:45:f9:f3:f9:d7:d9:46:31:87:e5:6f:5b:a6: d6:34:3d:9c:06:00:81:2c:05:f5:4d:7f:ec:d7:2f: 8e:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:BF:F8:9D:76:4A:BE:18:65:35:F6:4F:44:35:5C:99:AD:59:B5:B2 X509v3 Authority Key Identifier: keyid:CE:82:6E:79:68:3E:D6:E5:CE:61:FE:A2:44:B6:B7:91:33:E9:8E:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c00ae0f1-b8c0-452f-8e89-1dfc3f594d4c/0/CE826E79683ED6E5CE61FEA244B6B79133E98EE3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CE826E79683ED6E5CE61FEA244B6B79133E98EE3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c00ae0f1-b8c0-452f-8e89-1dfc3f594d4c/0/323030313a6466343a6630303a3a2f34382d3438203d3e203535363931.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df4:f00::/48 Signature Algorithm: sha256WithRSAEncryption 63:c3:25:d7:df:47:41:79:b5:92:86:27:12:5f:6f:f8:2c:37: e1:fa:ed:4c:90:e6:f3:b9:dc:4a:8a:33:41:9e:a4:13:0e:85: bd:1f:76:b7:0c:38:cd:ea:92:3e:d2:1a:d0:7d:d0:0f:64:15: 1e:f3:c2:1e:c3:68:ab:78:cf:b5:a9:d1:e7:03:f8:75:a9:a7: 0b:61:4a:b9:8d:5b:bb:39:dc:1b:26:e7:95:67:0d:4e:24:5a: 30:1e:3f:ea:8f:bd:a9:cd:e5:b0:25:95:12:2b:e6:ee:a3:55: dc:36:ee:48:f2:76:c6:54:7d:56:ea:ff:6f:ae:35:10:a2:24: 97:2d:fd:bc:18:94:bb:a0:1b:0f:c9:36:75:10:c4:ce:59:ab: 4c:71:b8:c0:f2:92:06:b0:11:d0:06:f4:9a:bd:f5:85:4c:07: 1a:70:4c:51:78:a8:ae:eb:61:1f:31:86:c8:47:9e:c3:08:10: fd:f9:28:7b:16:e1:18:59:65:cf:02:83:9a:9e:b6:a0:74:30: 35:c4:58:e4:d8:f2:16:7b:bd:16:80:c0:a7:dd:e4:e8:66:07: 91:35:76:60:28:20:98:1d:2f:8d:fb:a5:49:bc:df:d6:28:9b: c6:65:ab:48:2e:dd:60:35:89:f1:19:ac:10:d9:44:0e:81:73: 24:71:ef:c3 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUFRQSbQB5j8IjDOIIh5Sm7NLlHS8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0U4MjZFNzk2ODNFRDZFNUNFNjFGRUEyNDRCNkI3OTEz M0U5OEVFMzAeFw0yNTA2MDIwMTU4NDZaFw0yNjA2MDEwMjAzNDZaMDMxMTAvBgNV BAMTKDZEQkZGODlENzY0QUJFMTg2NTM1RjY0RjQ0MzU1Qzk5QUQ1OUI1QjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGiohgPNz5DCF8Gna4O7mrtyCH D9MtQoOx/yIRKFNbB+KC+wB2WD2S694B6K4eXa00onf/jzZphAzYOPKZJjpLOYB+ s2x83X3CLFPi7xJ3CRIFmVfEXqSJlCLPWHu1k0/HG7gDU2BWpofVB0GEME4moDsc JCWBO3F6errUd858wbuVIEvUJJf4QjS7dmUeHzSktahITXriZBGNl1YrLAuNsSVC Qqs0NOsDMxZYOGsSvcoHaJQ3bQw6XFRMZ/E5bxpKC4zRgFNAWrv+HiX1dztbljhC 3qO0oO5zfdRUu+AcUr3rRfnz+dfZRjGH5W9bptY0PZwGAIEsBfVNf+zXL47VAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUbb/4nXZKvhhlNfZPRDVcma1ZtbIwHwYDVR0j BBgwFoAUzoJueWg+1uXOYf6iRLa3kTPpjuMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j MDBhZTBmMS1iOGMwLTQ1MmYtOGU4OS0xZGZjM2Y1OTRkNGMvMC9DRTgyNkU3OTY4 M0VENkU1Q0U2MUZFQTI0NEI2Qjc5MTMzRTk4RUUzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0U4MjZFNzk2ODNFRDZFNUNFNjFGRUEyNDRCNkI3OTEzM0U5 OEVFMy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2MwMGFlMGYxLWI4YzAtNDUyZi04 ZTg5LTFkZmMzZjU5NGQ0Yy8wLzMyMzAzMDMxM2E2NDY2MzQzYTY2MzAzMDNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzUzNjM5MzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAgAQ30DwAw DQYJKoZIhvcNAQELBQADggEBAGPDJdffR0F5tZKGJxJfb/gsN+H67UyQ5vO53EqK M0GepBMOhb0fdrcMOM3qkj7SGtB90A9kFR7zwh7DaKt4z7Wp0ecD+HWppwthSrmN W7s53Bsm55VnDU4kWjAeP+qPvanN5bAllRIr5u6jVdw27kjydsZUfVbq/2+uNRCi JJct/bwYlLugGw/JNnUQxM5Zq0xxuMDykgawEdAG9Jq99YVMBxpwTFF4qK7rYR8x hshHnsMIEP35KHsW4RhZZc8Cg5qetqB0MDXEWOTY8hZ7vRaAwKfd5OhmB5E1dmAo IJgdL437pUm839Yom8Zlq0gu3WA1ifEZrBDZRA6BcyRx78M= -----END CERTIFICATE-----Generated at Sat Jun 7 04:03:23 2025 by rpki-client