$ rpki-client -vvf repo-rpki.idnic.net/repo/d9053d96-da17-4099-b707-da0eb2bf07bc/0/323030313a6466343a393830303a3a2f34382d3438203d3e203338373735.roa File: 323030313a6466343a393830303a3a2f34382d3438203d3e203338373735.roa (raw, json) Hash identifier: qOoJ0LJSDTjqqUqT336SaQD1ve+KUUM1X1KBlqt/05U= Subject key identifier: 5F:65:A8:53:FC:26:F1:B9:4C:2E:E7:6C:45:EF:F6:55:72:53:95:48 Certificate issuer: /CN=A7422B678A17489054C0697D44A3B19EB9F67509 Certificate serial: 271FE1D2102566D6E8CF39EDE6F0C468215AE644 Authority key identifier: A7:42:2B:67:8A:17:48:90:54:C0:69:7D:44:A3:B1:9E:B9:F6:75:09 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A7422B678A17489054C0697D44A3B19EB9F67509.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d9053d96-da17-4099-b707-da0eb2bf07bc/0/323030313a6466343a393830303a3a2f34382d3438203d3e203338373735.roa Signing time: Mon 02 Jun 2025 02:04:04 +0000 ROA not before: Mon 02 Jun 2025 01:59:04 +0000 ROA not after: Mon 01 Jun 2026 02:04:04 +0000 asID: 38775 IP address blocks: 2001:df4:9800::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d9053d96-da17-4099-b707-da0eb2bf07bc/0/A7422B678A17489054C0697D44A3B19EB9F67509.crl rsync://repo-rpki.idnic.net/repo/d9053d96-da17-4099-b707-da0eb2bf07bc/0/A7422B678A17489054C0697D44A3B19EB9F67509.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A7422B678A17489054C0697D44A3B19EB9F67509.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 11 Jun 2025 02:27:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:1f:e1:d2:10:25:66:d6:e8:cf:39:ed:e6:f0:c4:68:21:5a:e6:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A7422B678A17489054C0697D44A3B19EB9F67509 Validity Not Before: Jun 2 01:59:04 2025 GMT Not After : Jun 1 02:04:04 2026 GMT Subject: CN=5F65A853FC26F1B94C2EE76C45EFF65572539548 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:b8:b6:66:dc:b7:86:05:98:8e:03:d0:c7:e9: 8c:b1:a9:a5:f5:47:df:4b:f7:2e:fb:87:98:14:f7: 9c:9c:2c:c2:46:83:5e:6f:eb:50:47:1b:01:2d:a9: 3d:77:19:35:7c:4c:71:e5:c4:4b:7a:97:8c:b9:84: 66:7e:71:ae:92:3a:d7:ad:1b:0b:bc:b4:14:90:e8: da:cc:1b:32:dc:95:24:05:73:05:85:56:8f:44:08: 13:2c:05:d0:03:52:76:8a:6a:aa:b9:61:3a:cf:fa: 71:e6:d8:54:25:b5:08:d2:49:ea:f6:94:2e:66:68: d3:95:98:8b:cf:4e:3a:9a:e6:f8:c1:ab:33:ce:68: 30:93:3e:74:95:e0:16:fc:70:f4:e0:8e:19:99:4d: c2:f4:93:d9:f5:fb:33:e5:00:00:c6:c5:41:d1:d3: 10:6a:6d:2c:a7:5a:52:d1:5b:83:2c:9d:c2:56:f3: 51:f3:a7:71:7a:08:2c:d0:36:1c:bd:dd:aa:17:58: 49:4c:12:b6:ff:50:81:d3:23:a2:08:d4:a8:8f:59: 9c:aa:da:5f:14:a0:d1:45:35:a4:88:ed:63:7f:ba: 42:f9:c6:dd:f0:cd:c9:47:9a:ae:90:cb:d9:54:dc: 72:f1:59:5f:76:ee:4c:db:bb:20:84:53:44:18:23: 3b:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:65:A8:53:FC:26:F1:B9:4C:2E:E7:6C:45:EF:F6:55:72:53:95:48 X509v3 Authority Key Identifier: keyid:A7:42:2B:67:8A:17:48:90:54:C0:69:7D:44:A3:B1:9E:B9:F6:75:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d9053d96-da17-4099-b707-da0eb2bf07bc/0/A7422B678A17489054C0697D44A3B19EB9F67509.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A7422B678A17489054C0697D44A3B19EB9F67509.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d9053d96-da17-4099-b707-da0eb2bf07bc/0/323030313a6466343a393830303a3a2f34382d3438203d3e203338373735.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df4:9800::/48 Signature Algorithm: sha256WithRSAEncryption 3a:3c:f5:b0:50:22:5f:8b:e5:5f:93:5f:70:c3:45:4b:81:fa: 1b:8e:f0:80:b9:96:74:e7:21:c2:6b:74:07:d3:92:25:9e:0e: 07:1e:63:a1:8a:a6:26:c1:a2:4d:26:ad:9b:4d:07:cd:51:03: df:a3:78:a9:76:09:d3:68:43:fe:2d:13:f6:78:2d:61:e2:6e: f9:53:93:22:05:1c:84:79:23:3b:25:23:e6:30:40:c5:23:f7: ba:c0:5e:18:b6:7b:01:12:ab:d0:7d:ca:36:ef:11:cb:de:25: 3b:df:c7:32:73:24:b6:10:91:33:a2:bb:39:1c:e4:25:f5:50: ba:47:50:36:49:44:15:0f:65:48:d6:4c:15:28:ef:4d:8e:d1: fc:e3:9b:2f:13:a8:70:31:34:d4:84:1d:f9:fd:c4:01:62:9a: 4f:79:10:4b:48:ca:55:0e:43:7d:46:81:ab:6a:b4:52:be:8f: 72:c0:87:0c:92:00:38:4e:24:66:e4:72:17:33:56:17:ed:e6: 04:de:a0:08:1e:84:44:dc:2d:bb:66:fe:c2:4c:9d:51:d7:e0: 8f:0c:c8:91:8d:59:be:43:41:08:c1:8e:46:49:98:e0:f1:4d: af:38:0d:78:d7:19:21:cf:d8:6f:b5:14:dc:6f:ea:31:92:54: f3:7c:bc:62 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUJx/h0hAlZtbozznt5vDEaCFa5kQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTc0MjJCNjc4QTE3NDg5MDU0QzA2OTdENDRBM0IxOUVC OUY2NzUwOTAeFw0yNTA2MDIwMTU5MDRaFw0yNjA2MDEwMjA0MDRaMDMxMTAvBgNV BAMTKDVGNjVBODUzRkMyNkYxQjk0QzJFRTc2QzQ1RUZGNjU1NzI1Mzk1NDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZuLZm3LeGBZiOA9DH6YyxqaX1 R99L9y77h5gU95ycLMJGg15v61BHGwEtqT13GTV8THHlxEt6l4y5hGZ+ca6SOtet Gwu8tBSQ6NrMGzLclSQFcwWFVo9ECBMsBdADUnaKaqq5YTrP+nHm2FQltQjSSer2 lC5maNOVmIvPTjqa5vjBqzPOaDCTPnSV4Bb8cPTgjhmZTcL0k9n1+zPlAADGxUHR 0xBqbSynWlLRW4MsncJW81Hzp3F6CCzQNhy93aoXWElMErb/UIHTI6II1KiPWZyq 2l8UoNFFNaSI7WN/ukL5xt3wzclHmq6Qy9lU3HLxWV927kzbuyCEU0QYIzvZAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUX2WoU/wm8blMLudsRe/2VXJTlUgwHwYDVR0j BBgwFoAUp0IrZ4oXSJBUwGl9RKOxnrn2dQkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k OTA1M2Q5Ni1kYTE3LTQwOTktYjcwNy1kYTBlYjJiZjA3YmMvMC9BNzQyMkI2NzhB MTc0ODkwNTRDMDY5N0Q0NEEzQjE5RUI5RjY3NTA5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTc0MjJCNjc4QTE3NDg5MDU0QzA2OTdENDRBM0IxOUVCOUY2 NzUwOS5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q5MDUzZDk2LWRhMTctNDA5OS1i NzA3LWRhMGViMmJmMDdiYy8wLzMyMzAzMDMxM2E2NDY2MzQzYTM5MzgzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzMzODM3MzczNS5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACABDfSY ADANBgkqhkiG9w0BAQsFAAOCAQEAOjz1sFAiX4vlX5NfcMNFS4H6G47wgLmWdOch wmt0B9OSJZ4OBx5joYqmJsGiTSatm00HzVED36N4qXYJ02hD/i0T9ngtYeJu+VOT IgUchHkjOyUj5jBAxSP3usBeGLZ7ARKr0H3KNu8Ry94lO9/HMnMkthCRM6K7ORzk JfVQukdQNklEFQ9lSNZMFSjvTY7R/OObLxOocDE01IQd+f3EAWKaT3kQS0jKVQ5D fUaBq2q0Ur6PcsCHDJIAOE4kZuRyFzNWF+3mBN6gCB6ERNwtu2b+wkydUdfgjwzI kY1ZvkNBCMGORkmY4PFNrzgNeNcZIc/Yb7UU3G/qMZJU83y8Yg== -----END CERTIFICATE-----Generated at Sun Jun 8 23:41:48 2025 by rpki-client