$ rpki-client -vvf repo-rpki.idnic.net/repo/ca0b4f15-7720-4f2a-8343-8e37fae87a54/0/323030313a6466323a393130303a3a2f34382d3438203d3e20313336383433.roa File: 323030313a6466323a393130303a3a2f34382d3438203d3e20313336383433.roa (raw, json) Hash identifier: xEl9WKNeil5vick+EZGgBmq+d9hvCJ6SFKXlmIh83hQ= Subject key identifier: C5:C5:00:BE:06:14:3B:62:24:84:15:31:77:EA:D6:4F:34:72:8E:4E Certificate issuer: /CN=99CD13E1449FA448ABF9FC6A74D3B1313DDFABCF Certificate serial: 3DB8EB4B10AB211909988A186543A5729180947F Authority key identifier: 99:CD:13:E1:44:9F:A4:48:AB:F9:FC:6A:74:D3:B1:31:3D:DF:AB:CF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/99CD13E1449FA448ABF9FC6A74D3B1313DDFABCF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ca0b4f15-7720-4f2a-8343-8e37fae87a54/0/323030313a6466323a393130303a3a2f34382d3438203d3e20313336383433.roa Signing time: Mon 02 Jun 2025 02:04:54 +0000 ROA not before: Mon 02 Jun 2025 01:59:54 +0000 ROA not after: Mon 01 Jun 2026 02:04:54 +0000 asID: 136843 IP address blocks: 2001:df2:9100::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ca0b4f15-7720-4f2a-8343-8e37fae87a54/0/99CD13E1449FA448ABF9FC6A74D3B1313DDFABCF.crl rsync://repo-rpki.idnic.net/repo/ca0b4f15-7720-4f2a-8343-8e37fae87a54/0/99CD13E1449FA448ABF9FC6A74D3B1313DDFABCF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/99CD13E1449FA448ABF9FC6A74D3B1313DDFABCF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 23:10:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:b8:eb:4b:10:ab:21:19:09:98:8a:18:65:43:a5:72:91:80:94:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=99CD13E1449FA448ABF9FC6A74D3B1313DDFABCF Validity Not Before: Jun 2 01:59:54 2025 GMT Not After : Jun 1 02:04:54 2026 GMT Subject: CN=C5C500BE06143B622484153177EAD64F34728E4E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:a7:7b:9f:bb:cd:46:bb:f3:2e:c4:ad:28:f6: 15:83:fb:44:6e:54:45:a5:77:e3:06:7e:87:e4:58: 8c:21:a1:61:62:12:bb:07:b8:6b:cb:fc:56:3b:f0: 6d:77:bb:45:f4:50:89:e0:1e:af:0a:c2:f2:ce:8d: 25:71:cf:3b:34:e4:ff:06:fa:75:cd:bd:f0:58:01: 99:fe:1a:3b:b1:bc:64:c9:de:31:f9:b4:10:c7:d7: ce:05:8b:38:ce:4c:fe:0b:11:e4:0a:02:4b:b9:fd: 87:43:f8:ca:fd:0d:9d:aa:3e:cc:b7:a5:c0:ac:8b: 5b:72:58:e3:00:76:15:1d:56:e9:a5:4b:e7:02:d6: f9:fc:ac:38:8c:55:07:4d:a1:6b:24:62:a5:32:57: 5c:7e:6f:44:80:73:69:ed:eb:13:ca:fe:89:80:8d: 67:5c:2c:d3:32:22:c5:7e:95:76:bb:13:b2:15:40: 2f:68:4f:40:ad:34:07:ac:80:69:be:0e:16:71:b6: 25:0a:93:d0:ed:63:6c:18:2c:16:d7:5d:d0:73:09: 84:0a:bc:d2:8b:70:d9:8c:3e:dd:70:1e:83:25:c1: f0:4e:13:cd:48:93:d9:29:3f:12:2b:c6:46:47:9a: 5e:57:d9:cb:a2:2d:4e:2f:ef:52:5f:22:08:01:11: 4b:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:C5:00:BE:06:14:3B:62:24:84:15:31:77:EA:D6:4F:34:72:8E:4E X509v3 Authority Key Identifier: keyid:99:CD:13:E1:44:9F:A4:48:AB:F9:FC:6A:74:D3:B1:31:3D:DF:AB:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ca0b4f15-7720-4f2a-8343-8e37fae87a54/0/99CD13E1449FA448ABF9FC6A74D3B1313DDFABCF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/99CD13E1449FA448ABF9FC6A74D3B1313DDFABCF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ca0b4f15-7720-4f2a-8343-8e37fae87a54/0/323030313a6466323a393130303a3a2f34382d3438203d3e20313336383433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df2:9100::/48 Signature Algorithm: sha256WithRSAEncryption 1a:2f:61:92:08:32:5e:60:d2:50:ac:00:02:58:f8:d1:b3:24: 62:c6:9e:55:3d:95:c7:3a:60:6e:1c:3d:4b:67:a5:b2:ea:d5: 1c:70:11:5e:b5:95:8a:6a:e7:3f:3d:55:4d:f6:c6:b4:80:33: db:02:8c:d0:00:fc:69:54:fb:77:f9:ee:8d:5a:89:3f:f2:86: 99:aa:4d:0a:48:74:83:ca:c8:a1:b2:93:84:34:3b:c0:1c:ff: d3:56:6e:a7:97:fe:d4:10:71:98:1c:b4:3e:dc:4d:a2:4c:79: 72:bf:be:cf:c9:18:6d:4b:ea:b7:2f:fa:4c:6a:f8:69:9e:7e: 7e:be:70:7d:e4:a0:10:52:2a:c9:84:3e:66:81:d8:7c:e1:18: 7a:a2:2e:01:c1:eb:e8:59:33:33:89:24:a2:e9:9c:2c:fa:08: bf:83:1c:cf:ca:e8:5a:82:c5:53:9d:44:29:96:18:21:93:f1: 4f:1b:c3:47:79:fe:cf:9c:24:d8:25:2d:87:6c:ef:5d:b8:df: 15:cb:eb:b8:28:25:48:02:dc:fc:29:8a:48:b3:3c:06:d6:d7: 23:5e:42:d0:91:b6:20:8e:8e:f5:b7:ba:f4:8e:7a:46:29:e8: 92:ce:ba:ff:c7:8a:d7:80:2a:2a:84:c0:d5:99:f1:4c:7c:26: 45:d0:a3:d9 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUPbjrSxCrIRkJmIoYZUOlcpGAlH8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTlDRDEzRTE0NDlGQTQ0OEFCRjlGQzZBNzREM0IxMzEz RERGQUJDRjAeFw0yNTA2MDIwMTU5NTRaFw0yNjA2MDEwMjA0NTRaMDMxMTAvBgNV BAMTKEM1QzUwMEJFMDYxNDNCNjIyNDg0MTUzMTc3RUFENjRGMzQ3MjhFNEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1p3ufu81Gu/MuxK0o9hWD+0Ru VEWld+MGfofkWIwhoWFiErsHuGvL/FY78G13u0X0UIngHq8KwvLOjSVxzzs05P8G +nXNvfBYAZn+GjuxvGTJ3jH5tBDH184FizjOTP4LEeQKAku5/YdD+Mr9DZ2qPsy3 pcCsi1tyWOMAdhUdVumlS+cC1vn8rDiMVQdNoWskYqUyV1x+b0SAc2nt6xPK/omA jWdcLNMyIsV+lXa7E7IVQC9oT0CtNAesgGm+DhZxtiUKk9DtY2wYLBbXXdBzCYQK vNKLcNmMPt1wHoMlwfBOE81Ik9kpPxIrxkZHml5X2cuiLU4v71JfIggBEUsZAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUxcUAvgYUO2IkhBUxd+rWTzRyjk4wHwYDVR0j BBgwFoAUmc0T4USfpEir+fxqdNOxMT3fq88wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j YTBiNGYxNS03NzIwLTRmMmEtODM0My04ZTM3ZmFlODdhNTQvMC85OUNEMTNFMTQ0 OUZBNDQ4QUJGOUZDNkE3NEQzQjEzMTNEREZBQkNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTlDRDEzRTE0NDlGQTQ0OEFCRjlGQzZBNzREM0IxMzEzRERG QUJDRi5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NhMGI0ZjE1LTc3MjAtNGYyYS04 MzQzLThlMzdmYWU4N2E1NC8wLzMyMzAzMDMxM2E2NDY2MzIzYTM5MzEzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM2MzgzNDMzLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8pEAMA0GCSqGSIb3DQEBCwUAA4IBAQAaL2GSCDJeYNJQrAACWPjRsyRixp5VPZXH OmBuHD1LZ6Wy6tUccBFetZWKauc/PVVN9sa0gDPbAozQAPxpVPt3+e6NWok/8oaZ qk0KSHSDysihspOENDvAHP/TVm6nl/7UEHGYHLQ+3E2iTHlyv77PyRhtS+q3L/pM avhpnn5+vnB95KAQUirJhD5mgdh84Rh6oi4BwevoWTMziSSi6Zws+gi/gxzPyuha gsVTnUQplhghk/FPG8NHef7PnCTYJS2HbO9duN8Vy+u4KCVIAtz8KYpIszwG1tcj XkLQkbYgjo71t7r0jnpGKeiSzrr/x4rXgCoqhMDVmfFMfCZF0KPZ -----END CERTIFICATE-----Generated at Fri Jun 6 16:48:27 2025 by rpki-client