$ rpki-client -vvf repo-rpki.idnic.net/repo/d0962c6e-595a-47c4-aa7c-ef8e77cae642/0/323030313a6466343a663330303a3a2f34382d3438203d3e20313337333439.roa File: 323030313a6466343a663330303a3a2f34382d3438203d3e20313337333439.roa (raw, json) Hash identifier: bM2bCiWvvR67fLAxEBLdbaa9UVbcM3IM7NopO4JRa9U= Subject key identifier: 39:71:6E:F9:D1:C0:D2:DE:34:D5:CC:FD:80:FF:7D:8E:6D:F6:80:C9 Certificate issuer: /CN=EADA0AEE51F3910B50A065D57D946E3EAFA8BD11 Certificate serial: 5AD0880866219FE901C1F0FA1012C8BB93BA5A3E Authority key identifier: EA:DA:0A:EE:51:F3:91:0B:50:A0:65:D5:7D:94:6E:3E:AF:A8:BD:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EADA0AEE51F3910B50A065D57D946E3EAFA8BD11.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d0962c6e-595a-47c4-aa7c-ef8e77cae642/0/323030313a6466343a663330303a3a2f34382d3438203d3e20313337333439.roa Signing time: Mon 02 Jun 2025 02:03:08 +0000 ROA not before: Mon 02 Jun 2025 01:58:08 +0000 ROA not after: Mon 01 Jun 2026 02:03:08 +0000 asID: 137349 IP address blocks: 2001:df4:f300::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d0962c6e-595a-47c4-aa7c-ef8e77cae642/0/EADA0AEE51F3910B50A065D57D946E3EAFA8BD11.crl rsync://repo-rpki.idnic.net/repo/d0962c6e-595a-47c4-aa7c-ef8e77cae642/0/EADA0AEE51F3910B50A065D57D946E3EAFA8BD11.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EADA0AEE51F3910B50A065D57D946E3EAFA8BD11.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 13:29:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:d0:88:08:66:21:9f:e9:01:c1:f0:fa:10:12:c8:bb:93:ba:5a:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EADA0AEE51F3910B50A065D57D946E3EAFA8BD11 Validity Not Before: Jun 2 01:58:08 2025 GMT Not After : Jun 1 02:03:08 2026 GMT Subject: CN=39716EF9D1C0D2DE34D5CCFD80FF7D8E6DF680C9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:8f:3b:55:d5:b7:fb:df:9c:14:09:56:5d:fb: be:a1:87:b9:88:ab:ba:ae:91:1f:b3:ef:c1:2c:1d: 52:a7:ea:79:4b:c3:97:5c:9c:4e:e5:a1:44:ef:a0: 84:5b:3b:fe:1e:59:5e:27:97:3e:0d:df:34:a8:09: 6f:58:59:25:9d:4c:c6:c9:d2:50:98:ca:d9:d7:fd: 7a:cb:7d:8a:2f:ca:ae:88:ed:e4:d7:94:4b:b9:e7: 48:f1:41:db:9c:b6:b6:4f:8b:c5:1f:29:7b:fd:93: 22:0f:f6:15:9a:94:1c:c0:22:c7:66:9d:1c:3e:1f: 95:37:1f:77:3c:47:ab:0e:72:ff:91:56:30:e4:68: 88:d9:fa:b5:b0:55:91:19:e3:69:50:51:d2:7b:8a: 35:34:a1:d4:80:6d:a7:94:0a:31:4b:a1:5a:43:62: 2b:8e:a1:e3:23:1d:90:7d:8c:63:5b:17:08:9a:dd: 18:71:5a:8d:8e:97:d0:10:dd:7a:3c:4e:12:4d:24: 9e:eb:c9:76:1a:16:b1:6b:ff:c4:8e:3f:e1:c2:4e: c6:4e:c9:a9:8b:aa:31:2d:0e:d9:de:34:0f:8d:c0: d5:0c:33:f3:a2:18:e6:88:e0:4e:25:6b:21:43:5d: 28:f5:ae:fe:f4:47:20:8a:2b:06:f9:57:b5:12:51: 6e:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:71:6E:F9:D1:C0:D2:DE:34:D5:CC:FD:80:FF:7D:8E:6D:F6:80:C9 X509v3 Authority Key Identifier: keyid:EA:DA:0A:EE:51:F3:91:0B:50:A0:65:D5:7D:94:6E:3E:AF:A8:BD:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d0962c6e-595a-47c4-aa7c-ef8e77cae642/0/EADA0AEE51F3910B50A065D57D946E3EAFA8BD11.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EADA0AEE51F3910B50A065D57D946E3EAFA8BD11.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d0962c6e-595a-47c4-aa7c-ef8e77cae642/0/323030313a6466343a663330303a3a2f34382d3438203d3e20313337333439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df4:f300::/48 Signature Algorithm: sha256WithRSAEncryption b2:e0:80:b0:a8:bf:03:7b:f5:41:03:48:ff:7c:3a:5d:69:16: d9:45:40:3d:5f:8e:7a:b2:ed:80:05:04:dd:27:7b:55:3c:e1: 83:10:0d:07:d3:04:37:eb:18:d6:ae:02:c3:d9:c3:c5:e8:5b: 02:d3:51:10:4d:c4:5c:92:39:75:52:f8:3d:46:27:8c:40:53: 1b:2d:74:3e:34:be:62:01:0c:9f:1e:26:cb:d5:2a:b8:8d:e9: 79:89:92:da:3f:d8:d9:59:88:20:1d:c8:11:19:5a:47:6a:fb: 7f:a1:be:d2:1d:fc:d0:11:6c:21:ee:40:e3:02:95:03:36:74: cb:18:e3:44:09:44:31:d0:10:d6:b8:dd:c7:b3:8c:38:2a:06: c3:27:58:1a:ea:d8:9e:07:d6:31:90:ed:75:83:f8:85:47:ec: 94:14:98:42:b6:d0:8f:c4:df:15:71:24:75:96:20:4b:5e:c8: 26:3f:b1:70:ef:9a:1b:3f:5a:11:5c:ea:97:ee:6b:a6:ae:73: 0d:73:ce:f4:46:19:cc:7b:16:31:6d:65:9b:1e:24:82:02:c0: 01:f3:29:64:58:36:37:77:c4:01:cd:3c:e1:eb:33:e7:7f:88: a0:e0:1e:0b:1a:23:a6:1d:df:15:bc:20:14:f2:43:d2:49:ab: 6c:58:eb:59 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUWtCICGYhn+kBwfD6EBLIu5O6Wj4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRUFEQTBBRUU1MUYzOTEwQjUwQTA2NUQ1N0Q5NDZFM0VB RkE4QkQxMTAeFw0yNTA2MDIwMTU4MDhaFw0yNjA2MDEwMjAzMDhaMDMxMTAvBgNV BAMTKDM5NzE2RUY5RDFDMEQyREUzNEQ1Q0NGRDgwRkY3RDhFNkRGNjgwQzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEjztV1bf735wUCVZd+76hh7mI q7qukR+z78EsHVKn6nlLw5dcnE7loUTvoIRbO/4eWV4nlz4N3zSoCW9YWSWdTMbJ 0lCYytnX/XrLfYovyq6I7eTXlEu550jxQductrZPi8UfKXv9kyIP9hWalBzAIsdm nRw+H5U3H3c8R6sOcv+RVjDkaIjZ+rWwVZEZ42lQUdJ7ijU0odSAbaeUCjFLoVpD YiuOoeMjHZB9jGNbFwia3RhxWo2Ol9AQ3Xo8ThJNJJ7ryXYaFrFr/8SOP+HCTsZO yamLqjEtDtneNA+NwNUMM/OiGOaI4E4layFDXSj1rv70RyCKKwb5V7USUW45AgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUOXFu+dHA0t401cz9gP99jm32gMkwHwYDVR0j BBgwFoAU6toK7lHzkQtQoGXVfZRuPq+ovREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MDk2MmM2ZS01OTVhLTQ3YzQtYWE3Yy1lZjhlNzdjYWU2NDIvMC9FQURBMEFFRTUx RjM5MTBCNTBBMDY1RDU3RDk0NkUzRUFGQThCRDExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRUFEQTBBRUU1MUYzOTEwQjUwQTA2NUQ1N0Q5NDZFM0VBRkE4 QkQxMS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QwOTYyYzZlLTU5NWEtNDdjNC1h YTdjLWVmOGU3N2NhZTY0Mi8wLzMyMzAzMDMxM2E2NDY2MzQzYTY2MzMzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM3MzMzNDM5LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 9PMAMA0GCSqGSIb3DQEBCwUAA4IBAQCy4ICwqL8De/VBA0j/fDpdaRbZRUA9X456 su2ABQTdJ3tVPOGDEA0H0wQ36xjWrgLD2cPF6FsC01EQTcRckjl1Uvg9RieMQFMb LXQ+NL5iAQyfHibL1Sq4jel5iZLaP9jZWYggHcgRGVpHavt/ob7SHfzQEWwh7kDj ApUDNnTLGONECUQx0BDWuN3Hs4w4KgbDJ1ga6tieB9YxkO11g/iFR+yUFJhCttCP xN8VcSR1liBLXsgmP7Fw75obP1oRXOqX7mumrnMNc870RhnMexYxbWWbHiSCAsAB 8ylkWDY3d8QBzTzh6zPnf4ig4B4LGiOmHd8VvCAU8kPSSatsWOtZ -----END CERTIFICATE-----Generated at Thu Jun 5 18:38:20 2025 by rpki-client