$ rpki-client -vvf repo-rpki.idnic.net/repo/d3b8ae97-6818-48a9-abe4-edb96049f3c8/0/323030313a6466363a636330303a3a2f34382d3438203d3e203535363833.roa File: 323030313a6466363a636330303a3a2f34382d3438203d3e203535363833.roa (raw, json) Hash identifier: Xkph31LntzUaI1/CJr8Ltj+zXZ7Nq1uWNrqZKmCZlP8= Subject key identifier: 85:04:E4:AB:A6:AE:65:28:18:A9:BC:43:4C:EE:EF:18:A8:E3:49:98 Certificate issuer: /CN=3566B6CF00D7B0B673F8B526C56AEBDCB5ADBD28 Certificate serial: 76B8BD31DFCDC0ED58BD83A74A4E11ADB9C27ED7 Authority key identifier: 35:66:B6:CF:00:D7:B0:B6:73:F8:B5:26:C5:6A:EB:DC:B5:AD:BD:28 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3566B6CF00D7B0B673F8B526C56AEBDCB5ADBD28.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d3b8ae97-6818-48a9-abe4-edb96049f3c8/0/323030313a6466363a636330303a3a2f34382d3438203d3e203535363833.roa Signing time: Mon 02 Jun 2025 02:03:16 +0000 ROA not before: Mon 02 Jun 2025 01:58:16 +0000 ROA not after: Mon 01 Jun 2026 02:03:16 +0000 asID: 55683 IP address blocks: 2001:df6:cc00::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d3b8ae97-6818-48a9-abe4-edb96049f3c8/0/3566B6CF00D7B0B673F8B526C56AEBDCB5ADBD28.crl rsync://repo-rpki.idnic.net/repo/d3b8ae97-6818-48a9-abe4-edb96049f3c8/0/3566B6CF00D7B0B673F8B526C56AEBDCB5ADBD28.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3566B6CF00D7B0B673F8B526C56AEBDCB5ADBD28.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 15:53:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:b8:bd:31:df:cd:c0:ed:58:bd:83:a7:4a:4e:11:ad:b9:c2:7e:d7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3566B6CF00D7B0B673F8B526C56AEBDCB5ADBD28 Validity Not Before: Jun 2 01:58:16 2025 GMT Not After : Jun 1 02:03:16 2026 GMT Subject: CN=8504E4ABA6AE652818A9BC434CEEEF18A8E34998 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:cb:40:7e:8e:d0:f0:f1:76:ed:17:dc:63:7d: f9:48:64:b6:96:1e:3b:e9:1c:9b:36:41:76:ee:71: f8:a4:89:3d:45:a6:97:72:50:a9:96:a5:9a:4e:fb: 61:f2:b9:88:69:29:39:49:b9:d9:fe:83:34:48:89: 79:09:4a:5c:1a:da:bc:94:73:6b:e7:76:38:b1:2d: 27:f1:7d:26:81:d7:db:df:ff:00:67:67:0b:e1:e8: 89:8e:51:d9:d6:43:77:c9:65:3e:50:a9:b3:6b:59: 5f:b0:a5:ec:6e:12:13:09:e5:42:0c:5a:a7:c4:a5: 13:36:b0:ed:d7:27:f4:2e:03:71:05:ba:92:b1:e0: 07:ae:e5:eb:cb:ec:1e:16:ff:f3:8b:7b:06:22:19: f6:50:95:27:cb:77:58:11:e4:0f:2f:7d:b2:85:87: f4:1c:62:35:17:00:0c:74:31:23:bc:51:c1:60:62: 99:aa:6b:5b:62:b9:98:1c:6a:77:a7:e7:9e:e1:d4: ac:ac:51:97:70:08:af:18:40:28:e7:5e:c8:5b:04: 17:70:30:a0:50:5e:aa:56:bb:24:1e:53:37:92:ab: f5:ea:e5:74:ea:e1:06:ee:34:9d:af:e7:dc:36:d1: 8d:eb:8b:2e:7a:02:72:43:d3:42:80:f9:d9:b5:ce: 45:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:04:E4:AB:A6:AE:65:28:18:A9:BC:43:4C:EE:EF:18:A8:E3:49:98 X509v3 Authority Key Identifier: keyid:35:66:B6:CF:00:D7:B0:B6:73:F8:B5:26:C5:6A:EB:DC:B5:AD:BD:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d3b8ae97-6818-48a9-abe4-edb96049f3c8/0/3566B6CF00D7B0B673F8B526C56AEBDCB5ADBD28.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3566B6CF00D7B0B673F8B526C56AEBDCB5ADBD28.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d3b8ae97-6818-48a9-abe4-edb96049f3c8/0/323030313a6466363a636330303a3a2f34382d3438203d3e203535363833.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df6:cc00::/48 Signature Algorithm: sha256WithRSAEncryption 68:6d:c4:5c:e9:87:20:50:4d:10:b8:87:d2:fb:f6:4f:36:56: 99:b4:91:fe:a8:d7:89:06:1e:fa:58:dc:a1:1a:ce:97:c6:29: 33:0a:07:e8:5a:0f:4a:ba:6c:41:3e:97:c2:ce:d1:8d:2f:88: 18:24:0a:55:96:37:b3:9b:fc:33:fe:75:0f:9c:2d:fb:0f:a0: 03:da:ca:14:d4:e0:35:14:90:0f:98:21:92:16:c1:dc:73:15: ec:fa:8a:74:e7:1d:92:f4:fc:2a:02:f0:ce:3d:8f:5b:2c:99: 79:e6:9a:a5:06:5b:d4:76:49:8b:6b:bd:7c:2b:72:c7:81:ae: 5a:f4:26:a0:0e:77:6a:d2:52:69:40:35:4f:48:73:fd:99:fc: 5d:b7:92:4f:58:a7:84:c0:dd:8d:b0:8e:25:f5:7e:44:3b:d9: 31:c6:23:5c:d4:74:c8:84:63:63:4b:57:60:c0:a3:21:bb:e5: 86:df:f9:91:5e:8f:55:dd:85:65:c5:cc:27:dc:b3:98:5d:27: 94:ee:53:ae:a0:05:b2:f7:41:88:2e:06:3d:a1:37:01:59:85: 91:84:eb:2c:98:2c:4f:17:b4:82:d0:76:7f:0e:9f:2f:a4:92: 02:e8:ff:61:9e:8e:65:6e:7c:c9:73:12:5b:ec:39:8d:5c:28: ff:b0:03:4d -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUdri9Md/NwO1YvYOnSk4RrbnCftcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzU2NkI2Q0YwMEQ3QjBCNjczRjhCNTI2QzU2QUVCRENC NUFEQkQyODAeFw0yNTA2MDIwMTU4MTZaFw0yNjA2MDEwMjAzMTZaMDMxMTAvBgNV BAMTKDg1MDRFNEFCQTZBRTY1MjgxOEE5QkM0MzRDRUVFRjE4QThFMzQ5OTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPy0B+jtDw8XbtF9xjfflIZLaW HjvpHJs2QXbucfikiT1FppdyUKmWpZpO+2HyuYhpKTlJudn+gzRIiXkJSlwa2ryU c2vndjixLSfxfSaB19vf/wBnZwvh6ImOUdnWQ3fJZT5QqbNrWV+wpexuEhMJ5UIM WqfEpRM2sO3XJ/QuA3EFupKx4Aeu5evL7B4W//OLewYiGfZQlSfLd1gR5A8vfbKF h/QcYjUXAAx0MSO8UcFgYpmqa1tiuZgcanen557h1KysUZdwCK8YQCjnXshbBBdw MKBQXqpWuyQeUzeSq/Xq5XTq4QbuNJ2v59w20Y3riy56AnJD00KA+dm1zkV5AgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUhQTkq6auZSgYqbxDTO7vGKjjSZgwHwYDVR0j BBgwFoAUNWa2zwDXsLZz+LUmxWrr3LWtvSgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k M2I4YWU5Ny02ODE4LTQ4YTktYWJlNC1lZGI5NjA0OWYzYzgvMC8zNTY2QjZDRjAw RDdCMEI2NzNGOEI1MjZDNTZBRUJEQ0I1QURCRDI4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzU2NkI2Q0YwMEQ3QjBCNjczRjhCNTI2QzU2QUVCRENCNUFE QkQyOC5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QzYjhhZTk3LTY4MTgtNDhhOS1h YmU0LWVkYjk2MDQ5ZjNjOC8wLzMyMzAzMDMxM2E2NDY2MzYzYTYzNjMzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzUzNTM2MzgzMy5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACABDfbM ADANBgkqhkiG9w0BAQsFAAOCAQEAaG3EXOmHIFBNELiH0vv2TzZWmbSR/qjXiQYe +ljcoRrOl8YpMwoH6FoPSrpsQT6Xws7RjS+IGCQKVZY3s5v8M/51D5wt+w+gA9rK FNTgNRSQD5ghkhbB3HMV7PqKdOcdkvT8KgLwzj2PWyyZeeaapQZb1HZJi2u9fCty x4GuWvQmoA53atJSaUA1T0hz/Zn8XbeST1inhMDdjbCOJfV+RDvZMcYjXNR0yIRj Y0tXYMCjIbvlht/5kV6PVd2FZcXMJ9yzmF0nlO5TrqAFsvdBiC4GPaE3AVmFkYTr LJgsTxe0gtB2fw6fL6SSAuj/YZ6OZW58yXMSW+w5jVwo/7ADTQ== -----END CERTIFICATE-----Generated at Fri Jun 6 16:54:03 2025 by rpki-client