$ rpki-client -vvf repo-rpki.idnic.net/repo/c4f07987-b8ec-444a-9b44-291011ff46a6/0/323030313a6466343a323038303a3a2f34382d3438203d3e20313430343436.roa File: 323030313a6466343a323038303a3a2f34382d3438203d3e20313430343436.roa (raw, json) Hash identifier: /sVHS2YVPGN4I7pjlv0CumuB8iSOyLfbW32z22cHMqg= Subject key identifier: 27:48:E5:A1:3E:B1:A0:CF:06:A0:0C:D3:23:B3:04:59:C2:D2:F7:72 Certificate issuer: /CN=94159FAF0A979502CAB6C5ADDCAE4CFDECDEEDEF Certificate serial: 62F05D1EBF266D120C02A886F743327E84B8B800 Authority key identifier: 94:15:9F:AF:0A:97:95:02:CA:B6:C5:AD:DC:AE:4C:FD:EC:DE:ED:EF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/94159FAF0A979502CAB6C5ADDCAE4CFDECDEEDEF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c4f07987-b8ec-444a-9b44-291011ff46a6/0/323030313a6466343a323038303a3a2f34382d3438203d3e20313430343436.roa Signing time: Wed 05 Mar 2025 13:00:50 +0000 ROA not before: Wed 05 Mar 2025 12:55:50 +0000 ROA not after: Wed 04 Mar 2026 13:00:50 +0000 asID: 140446 IP address blocks: 2001:df4:2080::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c4f07987-b8ec-444a-9b44-291011ff46a6/0/94159FAF0A979502CAB6C5ADDCAE4CFDECDEEDEF.crl rsync://repo-rpki.idnic.net/repo/c4f07987-b8ec-444a-9b44-291011ff46a6/0/94159FAF0A979502CAB6C5ADDCAE4CFDECDEEDEF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/94159FAF0A979502CAB6C5ADDCAE4CFDECDEEDEF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 16:48:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:f0:5d:1e:bf:26:6d:12:0c:02:a8:86:f7:43:32:7e:84:b8:b8:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=94159FAF0A979502CAB6C5ADDCAE4CFDECDEEDEF Validity Not Before: Mar 5 12:55:50 2025 GMT Not After : Mar 4 13:00:50 2026 GMT Subject: CN=2748E5A13EB1A0CF06A00CD323B30459C2D2F772 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:cf:e1:af:b5:0f:fe:fb:8c:0b:f8:95:68:29: 9c:39:ce:9a:ea:0f:b4:ae:f0:e2:82:3f:9d:5b:ee: b0:02:73:20:94:87:22:40:f4:20:e3:50:9b:6b:56: fe:ad:3f:97:39:10:11:89:ba:b0:33:c8:51:dc:d8: 51:86:9f:10:16:aa:c1:04:db:4e:e4:28:55:ff:b3: 6e:af:6b:f5:d6:ce:ae:21:f9:c3:e1:90:d7:e6:7a: 3f:14:d5:2a:68:1c:96:b9:d7:a8:16:f5:41:81:60: 77:99:f3:e5:13:ff:42:22:b7:14:37:97:3e:b7:76: 72:17:af:5c:77:42:a8:1d:74:17:16:5e:52:31:5f: 5f:76:98:1c:59:d7:79:44:48:d1:f2:80:f1:17:29: f2:2f:ca:93:f2:c3:e0:6d:cc:0f:06:ab:84:77:9f: 31:10:6e:0c:fe:2c:e8:d4:27:bb:0f:1b:a6:da:e9: cd:c2:bc:00:e4:a5:48:dd:db:d1:d8:06:1c:41:7b: 10:9a:f8:3b:5a:57:a8:3d:f3:3a:75:83:f8:ae:0c: ab:cb:8c:d1:45:93:b3:41:22:78:57:49:1b:07:11: 71:a0:98:43:d8:a9:8c:f1:89:a0:cb:d4:b3:0a:d0: 80:f5:4d:5d:64:67:91:df:fb:9f:57:07:0d:bc:4e: 72:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:48:E5:A1:3E:B1:A0:CF:06:A0:0C:D3:23:B3:04:59:C2:D2:F7:72 X509v3 Authority Key Identifier: keyid:94:15:9F:AF:0A:97:95:02:CA:B6:C5:AD:DC:AE:4C:FD:EC:DE:ED:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c4f07987-b8ec-444a-9b44-291011ff46a6/0/94159FAF0A979502CAB6C5ADDCAE4CFDECDEEDEF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/94159FAF0A979502CAB6C5ADDCAE4CFDECDEEDEF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c4f07987-b8ec-444a-9b44-291011ff46a6/0/323030313a6466343a323038303a3a2f34382d3438203d3e20313430343436.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df4:2080::/48 Signature Algorithm: sha256WithRSAEncryption 73:0b:a0:a3:8b:ab:0c:eb:c2:e6:3a:cc:c0:1c:2d:e5:c8:2d: 93:ff:7f:dc:30:ee:dc:fc:40:92:45:be:5b:3b:aa:1c:85:7f: 34:99:b6:56:1c:56:81:53:00:45:4b:7a:70:8f:ce:7c:3b:ec: 93:a0:1f:e1:22:9f:48:34:f5:f1:47:65:92:da:8d:eb:9b:8b: 87:9b:08:c2:e0:55:27:83:fe:66:23:95:05:4f:ac:7a:77:07: d9:3b:62:16:ca:4d:2c:1b:7e:87:89:49:40:87:e6:b8:89:57: 98:f4:46:98:b5:ca:53:9d:68:90:22:fd:a4:86:9f:50:54:a5: 25:96:1e:0d:55:19:96:fe:29:f9:5c:ae:ff:55:f9:ed:09:41: 03:d8:7a:53:c4:ea:8b:4e:f2:d4:28:da:6d:5f:8b:48:ed:48: 69:7e:d7:0b:db:e9:67:b4:f0:e8:6e:77:e5:32:66:9b:05:a6: ba:d6:a6:99:85:6a:13:c7:38:4b:16:2c:48:37:76:2b:c2:a4: 12:5f:58:92:0c:ee:9c:bf:d7:4b:80:79:68:d5:9d:be:b6:4d: 4c:47:7d:f5:6c:22:5c:4e:36:06:e0:84:8e:fe:6c:52:79:bd: af:cd:17:8a:a5:8b:85:e6:11:a7:ed:b8:05:3c:37:8e:9c:bb: 5f:7b:c8:ab -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUYvBdHr8mbRIMAqiG90MyfoS4uAAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTQxNTlGQUYwQTk3OTUwMkNBQjZDNUFERENBRTRDRkRF Q0RFRURFRjAeFw0yNTAzMDUxMjU1NTBaFw0yNjAzMDQxMzAwNTBaMDMxMTAvBgNV BAMTKDI3NDhFNUExM0VCMUEwQ0YwNkEwMENEMzIzQjMwNDU5QzJEMkY3NzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/z+GvtQ/++4wL+JVoKZw5zprq D7Su8OKCP51b7rACcyCUhyJA9CDjUJtrVv6tP5c5EBGJurAzyFHc2FGGnxAWqsEE 207kKFX/s26va/XWzq4h+cPhkNfmej8U1SpoHJa516gW9UGBYHeZ8+UT/0IitxQ3 lz63dnIXr1x3QqgddBcWXlIxX192mBxZ13lESNHygPEXKfIvypPyw+BtzA8Gq4R3 nzEQbgz+LOjUJ7sPG6ba6c3CvADkpUjd29HYBhxBexCa+DtaV6g98zp1g/iuDKvL jNFFk7NBInhXSRsHEXGgmEPYqYzxiaDL1LMK0ID1TV1kZ5Hf+59XBw28TnJLAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUJ0jloT6xoM8GoAzTI7MEWcLS93IwHwYDVR0j BBgwFoAUlBWfrwqXlQLKtsWt3K5M/eze7e8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j NGYwNzk4Ny1iOGVjLTQ0NGEtOWI0NC0yOTEwMTFmZjQ2YTYvMC85NDE1OUZBRjBB OTc5NTAyQ0FCNkM1QUREQ0FFNENGREVDREVFREVGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTQxNTlGQUYwQTk3OTUwMkNBQjZDNUFERENBRTRDRkRFQ0RF RURFRi5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M0ZjA3OTg3LWI4ZWMtNDQ0YS05 YjQ0LTI5MTAxMWZmNDZhNi8wLzMyMzAzMDMxM2E2NDY2MzQzYTMyMzAzODMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNDMwMzQzNDM2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 9CCAMA0GCSqGSIb3DQEBCwUAA4IBAQBzC6Cji6sM68LmOszAHC3lyC2T/3/cMO7c /ECSRb5bO6ochX80mbZWHFaBUwBFS3pwj858O+yToB/hIp9INPXxR2WS2o3rm4uH mwjC4FUng/5mI5UFT6x6dwfZO2IWyk0sG36HiUlAh+a4iVeY9EaYtcpTnWiQIv2k hp9QVKUllh4NVRmW/in5XK7/VfntCUED2HpTxOqLTvLUKNptX4tI7UhpftcL2+ln tPDobnflMmabBaa61qaZhWoTxzhLFixIN3YrwqQSX1iSDO6cv9dLgHlo1Z2+tk1M R331bCJcTjYG4ISO/mxSeb2vzReKpYuF5hGn7bgFPDeOnLtfe8ir -----END CERTIFICATE-----Generated at Sun Apr 6 12:47:51 2025 by rpki-client