$ rpki-client -vvf repo-rpki.idnic.net/repo/dea79340-4db2-458d-95dd-af20b4fcdb3d/0/323030313a6466323a346238303a3a2f34382d3438203d3e20313339343537.roa File: 323030313a6466323a346238303a3a2f34382d3438203d3e20313339343537.roa (raw, json) Hash identifier: O/T9Xztwa1eZpftLg0Xl5KOsLOQM47dFO4VcGsJ1wDg= Subject key identifier: 28:AB:A9:EF:D6:6F:DA:30:2C:ED:D1:7B:96:EC:90:C8:46:BE:42:99 Certificate issuer: /CN=B89398BA603C43BDF711A2B31FADC8CDFFC9CC16 Certificate serial: 6776BB1AA1248ED0C15CD585D73B51A8232535DA Authority key identifier: B8:93:98:BA:60:3C:43:BD:F7:11:A2:B3:1F:AD:C8:CD:FF:C9:CC:16 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B89398BA603C43BDF711A2B31FADC8CDFFC9CC16.cer Subject info access: rsync://repo-rpki.idnic.net/repo/dea79340-4db2-458d-95dd-af20b4fcdb3d/0/323030313a6466323a346238303a3a2f34382d3438203d3e20313339343537.roa Signing time: Mon 02 Jun 2025 02:04:22 +0000 ROA not before: Mon 02 Jun 2025 01:59:22 +0000 ROA not after: Mon 01 Jun 2026 02:04:22 +0000 asID: 139457 IP address blocks: 2001:df2:4b80::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/dea79340-4db2-458d-95dd-af20b4fcdb3d/0/B89398BA603C43BDF711A2B31FADC8CDFFC9CC16.crl rsync://repo-rpki.idnic.net/repo/dea79340-4db2-458d-95dd-af20b4fcdb3d/0/B89398BA603C43BDF711A2B31FADC8CDFFC9CC16.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B89398BA603C43BDF711A2B31FADC8CDFFC9CC16.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 13:49:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:76:bb:1a:a1:24:8e:d0:c1:5c:d5:85:d7:3b:51:a8:23:25:35:da Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B89398BA603C43BDF711A2B31FADC8CDFFC9CC16 Validity Not Before: Jun 2 01:59:22 2025 GMT Not After : Jun 1 02:04:22 2026 GMT Subject: CN=28ABA9EFD66FDA302CEDD17B96EC90C846BE4299 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:3a:88:0e:b9:87:99:87:ea:46:c9:23:65:ce: 8a:76:68:a0:9a:80:8e:bc:9a:07:ac:4e:ab:b8:83: 64:ba:84:6f:95:37:81:6a:00:bb:84:e8:53:39:c5: a8:df:99:ff:e2:31:55:34:c4:be:03:3b:c8:60:27: 82:c0:80:5a:3d:fc:b0:0b:6e:c1:43:4d:ac:5c:cd: 39:f1:98:13:7c:82:f5:b5:c9:ee:89:6e:d2:fb:6c: 9a:be:61:94:d3:b6:39:46:b3:f8:92:56:0a:d8:a1: d5:68:12:b0:76:e1:c5:f6:fd:47:e9:51:9a:7a:b9: fc:2b:b5:02:7c:25:a9:cb:a2:44:41:db:a6:65:f9: 1c:ac:6e:37:6c:7d:63:a3:6d:f0:71:ae:e8:b2:8a: 1f:64:b1:2e:e7:7b:d3:4e:18:1d:3b:0f:be:31:93: e3:39:5a:3c:29:1f:03:30:2b:e1:94:31:fd:b3:5e: 1d:b8:1f:a7:d1:c7:28:01:b7:76:d4:34:bb:a4:06: 8f:b7:38:1d:1b:ae:87:44:6e:4b:30:7a:0e:28:19: 07:5b:7d:14:1a:49:c5:a4:c5:bc:21:fc:47:78:a1: 0f:04:f1:55:83:46:6d:35:0f:f1:4a:dd:ba:f2:aa: 47:a4:80:7f:eb:97:c2:a2:75:5f:7c:4b:fc:e4:70: f8:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:AB:A9:EF:D6:6F:DA:30:2C:ED:D1:7B:96:EC:90:C8:46:BE:42:99 X509v3 Authority Key Identifier: keyid:B8:93:98:BA:60:3C:43:BD:F7:11:A2:B3:1F:AD:C8:CD:FF:C9:CC:16 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/dea79340-4db2-458d-95dd-af20b4fcdb3d/0/B89398BA603C43BDF711A2B31FADC8CDFFC9CC16.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B89398BA603C43BDF711A2B31FADC8CDFFC9CC16.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/dea79340-4db2-458d-95dd-af20b4fcdb3d/0/323030313a6466323a346238303a3a2f34382d3438203d3e20313339343537.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df2:4b80::/48 Signature Algorithm: sha256WithRSAEncryption 0d:b0:70:86:9f:8c:aa:2e:a9:e6:d9:1a:0a:80:f1:fa:71:e5: 5d:97:7a:48:99:3f:2f:51:54:4f:5c:ec:db:95:ea:b4:30:92: cd:32:22:db:0b:2b:dd:bd:a7:bb:06:ef:0c:b4:9f:95:7c:4f: 3f:47:bf:e8:58:d5:98:2b:e3:fe:13:26:de:ed:ff:f5:18:6c: 1a:f0:91:d4:e6:af:3f:6c:c9:e2:9c:00:e6:44:6b:62:ba:ae: 96:8f:cf:fd:69:08:13:6b:51:58:43:a6:70:a5:26:c0:2b:00: c6:54:cd:d7:ef:85:56:4a:ec:72:06:7b:56:16:93:7a:be:d9: 78:cd:84:22:eb:58:ba:85:73:11:cf:e8:c9:92:2b:f3:9b:59: 5f:c6:7c:a1:58:e1:cc:bb:b8:2a:62:ac:28:65:76:f9:33:23: 8d:ed:89:54:96:42:8b:2c:53:f1:54:e6:a4:ec:22:fd:90:32: 5d:fa:f1:17:36:fc:17:9a:b8:df:6b:14:69:8a:21:5a:14:1c: 5f:7a:5e:6c:22:a7:24:de:83:78:40:b4:fd:9f:e0:be:94:81: a0:ea:17:39:02:be:dd:98:a8:47:e4:cd:87:76:ea:18:e3:09: d8:b9:76:35:5a:d8:49:6b:fa:14:7d:71:a0:f1:58:9e:08:bb: 19:45:bd:7e -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUZ3a7GqEkjtDBXNWF1ztRqCMlNdowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjg5Mzk4QkE2MDNDNDNCREY3MTFBMkIzMUZBREM4Q0RG RkM5Q0MxNjAeFw0yNTA2MDIwMTU5MjJaFw0yNjA2MDEwMjA0MjJaMDMxMTAvBgNV BAMTKDI4QUJBOUVGRDY2RkRBMzAyQ0VERDE3Qjk2RUM5MEM4NDZCRTQyOTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCkOogOuYeZh+pGySNlzop2aKCa gI68mgesTqu4g2S6hG+VN4FqALuE6FM5xajfmf/iMVU0xL4DO8hgJ4LAgFo9/LAL bsFDTaxczTnxmBN8gvW1ye6JbtL7bJq+YZTTtjlGs/iSVgrYodVoErB24cX2/Ufp UZp6ufwrtQJ8JanLokRB26Zl+RysbjdsfWOjbfBxruiyih9ksS7ne9NOGB07D74x k+M5WjwpHwMwK+GUMf2zXh24H6fRxygBt3bUNLukBo+3OB0brodEbksweg4oGQdb fRQaScWkxbwh/Ed4oQ8E8VWDRm01D/FK3bryqkekgH/rl8KidV98S/zkcPhDAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUKKup79Zv2jAs7dF7luyQyEa+QpkwHwYDVR0j BBgwFoAUuJOYumA8Q733EaKzH63Izf/JzBYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k ZWE3OTM0MC00ZGIyLTQ1OGQtOTVkZC1hZjIwYjRmY2RiM2QvMC9CODkzOThCQTYw M0M0M0JERjcxMUEyQjMxRkFEQzhDREZGQzlDQzE2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjg5Mzk4QkE2MDNDNDNCREY3MTFBMkIzMUZBREM4Q0RGRkM5 Q0MxNi5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RlYTc5MzQwLTRkYjItNDU4ZC05 NWRkLWFmMjBiNGZjZGIzZC8wLzMyMzAzMDMxM2E2NDY2MzIzYTM0NjIzODMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM5MzQzNTM3LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8kuAMA0GCSqGSIb3DQEBCwUAA4IBAQANsHCGn4yqLqnm2RoKgPH6ceVdl3pImT8v UVRPXOzbleq0MJLNMiLbCyvdvae7Bu8MtJ+VfE8/R7/oWNWYK+P+Eybe7f/1GGwa 8JHU5q8/bMninADmRGtiuq6Wj8/9aQgTa1FYQ6ZwpSbAKwDGVM3X74VWSuxyBntW FpN6vtl4zYQi61i6hXMRz+jJkivzm1lfxnyhWOHMu7gqYqwoZXb5MyON7YlUlkKL LFPxVOak7CL9kDJd+vEXNvwXmrjfaxRpiiFaFBxfel5sIqck3oN4QLT9n+C+lIGg 6hc5Ar7dmKhH5M2HduoY4wnYuXY1WthJa/oUfXGg8VieCLsZRb1+ -----END CERTIFICATE-----Generated at Sun Jun 8 11:17:19 2025 by rpki-client