$ rpki-client -vvf repo-rpki.idnic.net/repo/ca75b741-846a-4330-9659-05ffe82698ee/0/323030313a6466323a376638303a3a2f34382d3438203d3e20313333383033.roa File: 323030313a6466323a376638303a3a2f34382d3438203d3e20313333383033.roa (raw, json) Hash identifier: tl64BNKIeWPiWplSwphcJa2kjFiO8+8RBPcNGp3Fo5U= Subject key identifier: 42:69:98:EA:0C:71:FB:C5:6D:3A:B2:1D:57:84:1E:3A:80:AD:48:84 Certificate issuer: /CN=7FAD2077691F807236683910594F23BA68280CD9 Certificate serial: 1F9FD574628A8CA60556695587C83EAB7DCB16AC Authority key identifier: 7F:AD:20:77:69:1F:80:72:36:68:39:10:59:4F:23:BA:68:28:0C:D9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7FAD2077691F807236683910594F23BA68280CD9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ca75b741-846a-4330-9659-05ffe82698ee/0/323030313a6466323a376638303a3a2f34382d3438203d3e20313333383033.roa Signing time: Mon 02 Jun 2025 02:04:37 +0000 ROA not before: Mon 02 Jun 2025 01:59:37 +0000 ROA not after: Mon 01 Jun 2026 02:04:37 +0000 asID: 133803 IP address blocks: 2001:df2:7f80::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ca75b741-846a-4330-9659-05ffe82698ee/0/7FAD2077691F807236683910594F23BA68280CD9.crl rsync://repo-rpki.idnic.net/repo/ca75b741-846a-4330-9659-05ffe82698ee/0/7FAD2077691F807236683910594F23BA68280CD9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7FAD2077691F807236683910594F23BA68280CD9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 07:58:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:9f:d5:74:62:8a:8c:a6:05:56:69:55:87:c8:3e:ab:7d:cb:16:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7FAD2077691F807236683910594F23BA68280CD9 Validity Not Before: Jun 2 01:59:37 2025 GMT Not After : Jun 1 02:04:37 2026 GMT Subject: CN=426998EA0C71FBC56D3AB21D57841E3A80AD4884 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:71:09:98:58:02:84:58:84:b2:35:10:d2:92: 43:58:1f:5c:4f:b6:26:81:bc:f1:d3:41:29:d9:5b: 5a:f4:21:fe:85:2c:06:a2:d6:75:ee:f3:03:e6:a9: 3a:20:ab:98:f2:0b:61:0e:48:6c:f4:73:58:a4:ed: ea:2c:62:24:63:3c:19:e6:f7:7b:eb:15:35:79:6e: f1:0c:20:f7:e1:c0:4e:3a:a4:2e:cc:7a:7c:26:67: 77:7f:ca:5e:70:9e:aa:ce:31:99:3c:cf:ba:71:d1: a1:af:b7:89:c4:33:0a:ec:e2:db:6d:51:8a:e0:99: 7e:89:2e:3b:02:f1:65:03:89:59:22:2a:95:bf:9d: 94:d6:43:ec:96:19:e4:2d:ae:8d:b5:2b:89:5a:c1: de:53:2d:4e:86:c1:f5:c0:10:24:74:92:29:23:5c: e6:82:07:5d:14:92:0d:7e:c1:ee:ec:30:c6:28:00: a1:a9:64:16:51:c6:97:e8:17:e9:79:12:2c:cd:40: b9:de:5b:86:af:d9:8a:1a:2d:18:e1:c3:84:03:8b: 83:f4:dd:cc:cc:43:d9:5c:3c:ab:cc:2f:fb:35:92: 93:80:33:02:0f:36:b3:6f:17:0f:8e:03:8a:ba:f6: 60:b0:b1:eb:83:ee:23:83:dc:e7:17:65:6a:07:ac: c6:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:69:98:EA:0C:71:FB:C5:6D:3A:B2:1D:57:84:1E:3A:80:AD:48:84 X509v3 Authority Key Identifier: keyid:7F:AD:20:77:69:1F:80:72:36:68:39:10:59:4F:23:BA:68:28:0C:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ca75b741-846a-4330-9659-05ffe82698ee/0/7FAD2077691F807236683910594F23BA68280CD9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7FAD2077691F807236683910594F23BA68280CD9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ca75b741-846a-4330-9659-05ffe82698ee/0/323030313a6466323a376638303a3a2f34382d3438203d3e20313333383033.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df2:7f80::/48 Signature Algorithm: sha256WithRSAEncryption af:d5:65:14:34:13:06:1c:6c:b8:91:df:9a:bf:46:c6:11:69: a8:d3:a4:c6:3a:7e:47:dd:6e:3a:fe:9e:8b:5d:b9:f2:10:f9: 8c:c3:ee:89:11:a5:02:c0:f5:74:b5:a8:da:b9:f8:8d:f7:05: 90:bc:99:4f:9b:5d:13:16:c6:4c:92:b9:56:0e:fd:06:15:08: 9f:db:a8:33:73:16:74:6f:50:25:c1:ad:4a:14:76:fe:7b:f3: 2d:67:8b:d0:2b:bd:f6:97:40:9e:b1:09:de:a8:f6:79:4b:8e: 23:17:d7:19:a9:ad:af:e3:8c:19:ea:9d:97:ec:ee:d6:c3:aa: 35:97:26:a3:49:53:8c:8b:0e:eb:f5:9d:a8:27:47:b7:9d:0b: b3:d4:53:b1:50:f2:46:9f:39:17:c6:8a:9f:a2:a6:c5:93:8c: 26:10:bc:3e:62:23:54:22:52:c4:ce:04:75:b7:14:05:f8:09: 35:95:18:41:4c:18:24:99:e5:58:4e:c3:40:d1:1c:f5:ba:66: cf:ad:a7:13:dc:16:cc:cd:9b:e9:fe:db:39:97:f6:de:f3:27: b3:8b:91:85:11:f3:56:d8:69:72:ea:74:a2:56:d3:19:fd:92: 4a:45:f4:71:f8:d9:e8:60:db:7c:17:94:60:17:39:36:b0:b9: 58:a3:01:9e -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUH5/VdGKKjKYFVmlVh8g+q33LFqwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0ZBRDIwNzc2OTFGODA3MjM2NjgzOTEwNTk0RjIzQkE2 ODI4MENEOTAeFw0yNTA2MDIwMTU5MzdaFw0yNjA2MDEwMjA0MzdaMDMxMTAvBgNV BAMTKDQyNjk5OEVBMEM3MUZCQzU2RDNBQjIxRDU3ODQxRTNBODBBRDQ4ODQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6cQmYWAKEWISyNRDSkkNYH1xP tiaBvPHTQSnZW1r0If6FLAai1nXu8wPmqTogq5jyC2EOSGz0c1ik7eosYiRjPBnm 93vrFTV5bvEMIPfhwE46pC7MenwmZ3d/yl5wnqrOMZk8z7px0aGvt4nEMwrs4ttt UYrgmX6JLjsC8WUDiVkiKpW/nZTWQ+yWGeQtro21K4lawd5TLU6GwfXAECR0kikj XOaCB10Ukg1+we7sMMYoAKGpZBZRxpfoF+l5EizNQLneW4av2YoaLRjhw4QDi4P0 3czMQ9lcPKvML/s1kpOAMwIPNrNvFw+OA4q69mCwseuD7iOD3OcXZWoHrMbPAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUQmmY6gxx+8VtOrIdV4QeOoCtSIQwHwYDVR0j BBgwFoAUf60gd2kfgHI2aDkQWU8jumgoDNkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j YTc1Yjc0MS04NDZhLTQzMzAtOTY1OS0wNWZmZTgyNjk4ZWUvMC83RkFEMjA3NzY5 MUY4MDcyMzY2ODM5MTA1OTRGMjNCQTY4MjgwQ0Q5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0ZBRDIwNzc2OTFGODA3MjM2NjgzOTEwNTk0RjIzQkE2ODI4 MENEOS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NhNzViNzQxLTg0NmEtNDMzMC05 NjU5LTA1ZmZlODI2OThlZS8wLzMyMzAzMDMxM2E2NDY2MzIzYTM3NjYzODMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzMzMzgzMDMzLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8n+AMA0GCSqGSIb3DQEBCwUAA4IBAQCv1WUUNBMGHGy4kd+av0bGEWmo06TGOn5H 3W46/p6LXbnyEPmMw+6JEaUCwPV0tajaufiN9wWQvJlPm10TFsZMkrlWDv0GFQif 26gzcxZ0b1Alwa1KFHb+e/MtZ4vQK732l0CesQneqPZ5S44jF9cZqa2v44wZ6p2X 7O7Ww6o1lyajSVOMiw7r9Z2oJ0e3nQuz1FOxUPJGnzkXxoqfoqbFk4wmELw+YiNU IlLEzgR1txQF+Ak1lRhBTBgkmeVYTsNA0Rz1umbPracT3BbMzZvp/ts5l/be8yez i5GFEfNW2Gly6nSiVtMZ/ZJKRfRx+NnoYNt8F5RgFzk2sLlYowGe -----END CERTIFICATE-----Generated at Thu Jun 5 19:17:02 2025 by rpki-client