$ rpki-client -vvf repo-rpki.idnic.net/repo/c6bec8e9-6568-478d-bd26-f6e777875511/0/323030313a6466323a356434303a3a2f34382d3438203d3e20313530393832.roa File: 323030313a6466323a356434303a3a2f34382d3438203d3e20313530393832.roa (raw, json) Hash identifier: aaTI5DoDn0m6HY51IbL0xWwP9olw3MDvU4KJjwdfj4s= Subject key identifier: 71:73:89:7B:71:2D:FD:BF:54:F4:D6:3E:DD:5C:6E:47:3C:B0:36:E8 Certificate issuer: /CN=D456F5EAD8D734455DAEF896A9055409FF4A078F Certificate serial: 697C7DA17071F73D01CDA7210A34950C0EB89EE9 Authority key identifier: D4:56:F5:EA:D8:D7:34:45:5D:AE:F8:96:A9:05:54:09:FF:4A:07:8F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D456F5EAD8D734455DAEF896A9055409FF4A078F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c6bec8e9-6568-478d-bd26-f6e777875511/0/323030313a6466323a356434303a3a2f34382d3438203d3e20313530393832.roa Signing time: Fri 21 Mar 2025 07:00:00 +0000 ROA not before: Fri 21 Mar 2025 06:55:00 +0000 ROA not after: Fri 20 Mar 2026 07:00:00 +0000 asID: 150982 IP address blocks: 2001:df2:5d40::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c6bec8e9-6568-478d-bd26-f6e777875511/0/D456F5EAD8D734455DAEF896A9055409FF4A078F.crl rsync://repo-rpki.idnic.net/repo/c6bec8e9-6568-478d-bd26-f6e777875511/0/D456F5EAD8D734455DAEF896A9055409FF4A078F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D456F5EAD8D734455DAEF896A9055409FF4A078F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 09:08:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:7c:7d:a1:70:71:f7:3d:01:cd:a7:21:0a:34:95:0c:0e:b8:9e:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D456F5EAD8D734455DAEF896A9055409FF4A078F Validity Not Before: Mar 21 06:55:00 2025 GMT Not After : Mar 20 07:00:00 2026 GMT Subject: CN=7173897B712DFDBF54F4D63EDD5C6E473CB036E8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:8a:2d:3b:4f:77:ec:30:40:46:fc:07:a7:de: a7:35:25:b2:a9:0c:74:73:ac:a4:3d:14:39:b6:34: 85:75:80:71:ab:a5:f0:92:7a:49:cc:e8:83:1c:b1: d4:f6:30:78:38:91:2b:32:db:d0:65:6d:bd:c7:73: da:c3:f3:e2:68:ad:d3:56:fe:c9:70:3e:07:d8:3a: 10:41:b7:90:e9:f9:56:93:12:12:e0:54:af:e9:93: b8:95:bd:a0:06:2c:39:f9:0e:45:e1:76:ef:d6:cf: 19:9e:03:20:8d:33:48:87:33:55:ed:21:11:bb:6e: fc:27:59:b1:e9:09:32:13:f9:7c:a0:6d:07:ee:5b: c2:eb:41:dc:4c:c3:f6:46:c8:e9:74:2e:ff:36:3a: f3:73:67:bc:0f:21:1a:aa:07:1f:f8:88:a1:19:78: 07:23:67:b9:87:96:35:4a:69:17:54:f7:5d:76:35: b2:ac:46:dc:b5:97:75:f9:d0:cf:ae:d2:3c:56:38: e2:05:4e:e3:c9:99:89:f6:0f:b0:2a:34:fa:b8:10: d5:99:27:69:ae:9a:e2:15:be:b0:15:59:d2:42:0f: e5:e1:66:8e:62:d2:b3:6c:98:37:c0:a2:f1:27:e8: 58:67:55:68:64:2c:b8:c6:58:3f:35:76:70:cb:a9: f1:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:73:89:7B:71:2D:FD:BF:54:F4:D6:3E:DD:5C:6E:47:3C:B0:36:E8 X509v3 Authority Key Identifier: keyid:D4:56:F5:EA:D8:D7:34:45:5D:AE:F8:96:A9:05:54:09:FF:4A:07:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c6bec8e9-6568-478d-bd26-f6e777875511/0/D456F5EAD8D734455DAEF896A9055409FF4A078F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D456F5EAD8D734455DAEF896A9055409FF4A078F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c6bec8e9-6568-478d-bd26-f6e777875511/0/323030313a6466323a356434303a3a2f34382d3438203d3e20313530393832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df2:5d40::/48 Signature Algorithm: sha256WithRSAEncryption 65:1b:d0:fc:c6:d0:f4:5a:8e:5c:94:a3:5f:d5:69:fc:58:9d: 44:b7:ef:ad:b2:29:cc:94:22:02:1c:e0:d7:74:41:6e:e8:29: af:80:43:f7:54:5d:1e:4d:81:9d:aa:36:49:56:87:a8:df:78: b7:4a:21:2f:ba:ac:dc:b2:a5:a4:22:2c:a5:ad:86:79:e0:8b: 2b:f8:19:b6:b2:51:80:6e:94:a5:be:af:87:b6:a5:f7:e8:26: bd:a2:c7:af:bc:35:75:45:87:bd:8d:c5:da:de:c0:2d:e7:6a: 52:52:20:d8:0a:ff:6b:b9:e5:77:16:15:ad:49:12:10:73:3e: 50:be:10:55:5d:3f:ef:31:cf:37:6d:19:29:4a:ae:ef:7f:b2: 28:7c:c4:61:55:5d:77:c7:66:73:e5:db:99:39:ef:5f:06:4a: 39:3e:fb:3e:12:e6:3a:f7:32:9b:85:93:9c:61:32:a8:fe:a7: 3b:ae:37:3d:fe:38:45:0a:e1:b2:e2:14:0c:61:c1:51:e9:13: be:04:15:91:fc:6c:aa:51:f9:c2:b6:30:bc:ee:7b:8c:e5:97: 8c:20:a3:b6:04:71:3c:b0:39:da:71:3d:8d:61:00:c2:06:11: e1:c7:bd:a8:7e:2e:b2:a1:49:76:f9:1d:e7:15:e0:e5:db:e7: 02:93:31:ad -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUaXx9oXBx9z0BzachCjSVDA64nukwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDQ1NkY1RUFEOEQ3MzQ0NTVEQUVGODk2QTkwNTU0MDlG RjRBMDc4RjAeFw0yNTAzMjEwNjU1MDBaFw0yNjAzMjAwNzAwMDBaMDMxMTAvBgNV BAMTKDcxNzM4OTdCNzEyREZEQkY1NEY0RDYzRURENUM2RTQ3M0NCMDM2RTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZii07T3fsMEBG/Aen3qc1JbKp DHRzrKQ9FDm2NIV1gHGrpfCSeknM6IMcsdT2MHg4kSsy29Blbb3Hc9rD8+JordNW /slwPgfYOhBBt5Dp+VaTEhLgVK/pk7iVvaAGLDn5DkXhdu/WzxmeAyCNM0iHM1Xt IRG7bvwnWbHpCTIT+XygbQfuW8LrQdxMw/ZGyOl0Lv82OvNzZ7wPIRqqBx/4iKEZ eAcjZ7mHljVKaRdU9112NbKsRty1l3X50M+u0jxWOOIFTuPJmYn2D7AqNPq4ENWZ J2mumuIVvrAVWdJCD+XhZo5i0rNsmDfAovEn6FhnVWhkLLjGWD81dnDLqfGnAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUcXOJe3Et/b9U9NY+3VxuRzywNugwHwYDVR0j BBgwFoAU1Fb16tjXNEVdrviWqQVUCf9KB48wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j NmJlYzhlOS02NTY4LTQ3OGQtYmQyNi1mNmU3Nzc4NzU1MTEvMC9ENDU2RjVFQUQ4 RDczNDQ1NURBRUY4OTZBOTA1NTQwOUZGNEEwNzhGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDQ1NkY1RUFEOEQ3MzQ0NTVEQUVGODk2QTkwNTU0MDlGRjRB MDc4Ri5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M2YmVjOGU5LTY1NjgtNDc4ZC1i ZDI2LWY2ZTc3Nzg3NTUxMS8wLzMyMzAzMDMxM2E2NDY2MzIzYTM1NjQzNDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNTMwMzkzODMyLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8l1AMA0GCSqGSIb3DQEBCwUAA4IBAQBlG9D8xtD0Wo5clKNf1Wn8WJ1Et++tsinM lCICHODXdEFu6CmvgEP3VF0eTYGdqjZJVoeo33i3SiEvuqzcsqWkIiylrYZ54Isr +Bm2slGAbpSlvq+HtqX36Ca9osevvDV1RYe9jcXa3sAt52pSUiDYCv9rueV3FhWt SRIQcz5QvhBVXT/vMc83bRkpSq7vf7IofMRhVV13x2Zz5duZOe9fBko5Pvs+EuY6 9zKbhZOcYTKo/qc7rjc9/jhFCuGy4hQMYcFR6RO+BBWR/GyqUfnCtjC87nuM5ZeM IKO2BHE8sDnacT2NYQDCBhHhx72ofi6yoUl2+R3nFeDl2+cCkzGt -----END CERTIFICATE-----Generated at Sun Apr 6 11:01:37 2025 by rpki-client