$ rpki-client -vvf repo-rpki.idnic.net/repo/e50da447-a138-4625-a420-a711ac243519/0/323030313a6466303a63623a3a2f34382d3438203d3e203435373836.roa File: 323030313a6466303a63623a3a2f34382d3438203d3e203435373836.roa (raw, json) Hash identifier: /ZSyzzH4osQQo8OEYTUKDqHS0TOIh680hRVxT7riSK4= Subject key identifier: 54:D4:56:32:60:36:FE:52:94:41:1E:E9:29:51:8E:D4:8B:36:F4:D1 Certificate issuer: /CN=BF076EA24A68CF152C323C7A3DFD3F92AFE8AA2B Certificate serial: 3F0130CE8FA52E13B1B22EB183C1A72A4F728293 Authority key identifier: BF:07:6E:A2:4A:68:CF:15:2C:32:3C:7A:3D:FD:3F:92:AF:E8:AA:2B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BF076EA24A68CF152C323C7A3DFD3F92AFE8AA2B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e50da447-a138-4625-a420-a711ac243519/0/323030313a6466303a63623a3a2f34382d3438203d3e203435373836.roa Signing time: Mon 02 Jun 2025 02:03:03 +0000 ROA not before: Mon 02 Jun 2025 01:58:03 +0000 ROA not after: Mon 01 Jun 2026 02:03:03 +0000 asID: 45786 IP address blocks: 2001:df0:cb::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e50da447-a138-4625-a420-a711ac243519/0/BF076EA24A68CF152C323C7A3DFD3F92AFE8AA2B.crl rsync://repo-rpki.idnic.net/repo/e50da447-a138-4625-a420-a711ac243519/0/BF076EA24A68CF152C323C7A3DFD3F92AFE8AA2B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BF076EA24A68CF152C323C7A3DFD3F92AFE8AA2B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 11 Jun 2025 02:27:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:01:30:ce:8f:a5:2e:13:b1:b2:2e:b1:83:c1:a7:2a:4f:72:82:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BF076EA24A68CF152C323C7A3DFD3F92AFE8AA2B Validity Not Before: Jun 2 01:58:03 2025 GMT Not After : Jun 1 02:03:03 2026 GMT Subject: CN=54D456326036FE5294411EE929518ED48B36F4D1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:03:ea:87:7c:d2:4d:78:86:27:d4:ac:b4:ca: 34:3b:95:ab:1e:45:99:f1:f2:18:ad:61:8b:6d:36: 6f:8d:8c:8b:5f:89:85:87:72:03:47:a9:f3:c3:1c: 3c:36:46:1b:f1:17:d1:7c:8a:42:e5:c1:bc:cc:c0: 57:85:c8:5b:40:33:e5:ee:3b:af:5a:a5:ce:ae:d4: 9f:8a:b2:48:77:5a:eb:4f:f9:01:62:e2:07:f3:90: 2c:99:d7:0b:f3:bd:94:cf:e5:3a:5d:0e:70:ff:0f: e8:a2:37:4b:78:56:61:0f:c4:48:46:3b:f8:92:29: 81:a5:7d:f9:6a:68:57:be:0c:b5:23:8e:48:a7:d7: 3f:86:79:c3:d9:c3:6a:e1:ef:1e:53:50:35:2e:25: f3:7f:d3:ba:bb:f4:47:70:ff:41:3f:58:b3:9d:3f: d5:7e:88:00:5d:9c:d4:05:dd:50:05:64:dd:4a:48: 56:33:55:c1:66:7e:0a:8c:8d:a5:31:4e:e6:16:45: ae:58:5c:04:38:91:99:0f:98:c1:3d:33:72:6f:fb: 0c:0c:c7:83:86:27:50:68:e9:ba:74:75:e7:b0:d5: 35:f9:1b:6e:ed:a8:23:75:d1:d5:1f:f7:be:12:96: bc:9f:d9:9a:59:b4:f4:98:bc:b3:ee:c8:32:f5:77: 3b:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:D4:56:32:60:36:FE:52:94:41:1E:E9:29:51:8E:D4:8B:36:F4:D1 X509v3 Authority Key Identifier: keyid:BF:07:6E:A2:4A:68:CF:15:2C:32:3C:7A:3D:FD:3F:92:AF:E8:AA:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e50da447-a138-4625-a420-a711ac243519/0/BF076EA24A68CF152C323C7A3DFD3F92AFE8AA2B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BF076EA24A68CF152C323C7A3DFD3F92AFE8AA2B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e50da447-a138-4625-a420-a711ac243519/0/323030313a6466303a63623a3a2f34382d3438203d3e203435373836.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df0:cb::/48 Signature Algorithm: sha256WithRSAEncryption 8b:a5:7c:45:6f:98:ce:f5:48:34:4d:73:da:78:06:cb:14:2e: 78:c9:a2:82:e2:95:d4:92:19:58:d4:60:2d:fe:10:45:e4:06: 9a:a9:23:d6:6a:a5:4d:f0:2a:a6:d6:d3:b6:38:7b:d2:7d:52: 69:c3:14:41:f8:e5:42:e4:e7:60:0e:ee:74:4f:81:c0:5f:1a: da:b8:93:2c:49:4c:d5:2a:dd:9b:ff:1d:c2:95:30:b7:db:5c: a8:c2:8d:0a:f7:64:e7:44:7e:6e:5a:31:7f:38:13:81:c5:c4: 8d:7d:a0:e7:10:72:e4:21:07:fb:e7:c4:c3:d9:a8:6f:1f:e0: 5a:80:43:af:40:e9:05:db:96:d0:ff:1e:88:92:19:8a:b7:43: 11:d3:77:10:da:44:bd:72:d8:f8:3c:09:2c:d3:a3:16:84:6b: 5b:f2:81:9f:89:57:91:09:6b:5a:67:e5:f5:4b:5c:96:dd:db: 4e:69:48:9b:7e:cf:82:65:89:1e:a5:48:b3:05:23:f4:4d:93: 3a:c0:33:11:f3:cf:58:99:4c:27:27:a1:50:d4:25:58:b6:59: 38:29:01:3c:70:d0:f3:93:12:ee:5e:8b:35:cd:76:4c:5b:de: 1d:56:5f:72:db:e2:96:e7:0f:fc:9b:6e:ab:e0:91:50:27:b9: f3:54:9d:8c -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUPwEwzo+lLhOxsi6xg8GnKk9ygpMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkYwNzZFQTI0QTY4Q0YxNTJDMzIzQzdBM0RGRDNGOTJB RkU4QUEyQjAeFw0yNTA2MDIwMTU4MDNaFw0yNjA2MDEwMjAzMDNaMDMxMTAvBgNV BAMTKDU0RDQ1NjMyNjAzNkZFNTI5NDQxMUVFOTI5NTE4RUQ0OEIzNkY0RDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKA+qHfNJNeIYn1Ky0yjQ7lase RZnx8hitYYttNm+NjItfiYWHcgNHqfPDHDw2RhvxF9F8ikLlwbzMwFeFyFtAM+Xu O69apc6u1J+Kskh3WutP+QFi4gfzkCyZ1wvzvZTP5TpdDnD/D+iiN0t4VmEPxEhG O/iSKYGlfflqaFe+DLUjjkin1z+GecPZw2rh7x5TUDUuJfN/07q79Edw/0E/WLOd P9V+iABdnNQF3VAFZN1KSFYzVcFmfgqMjaUxTuYWRa5YXAQ4kZkPmME9M3Jv+wwM x4OGJ1Bo6bp0deew1TX5G27tqCN10dUf974Slryf2ZpZtPSYvLPuyDL1dzuNAgMB AAGjggI3MIICMzAdBgNVHQ4EFgQUVNRWMmA2/lKUQR7pKVGO1Is29NEwHwYDVR0j BBgwFoAUvwduokpozxUsMjx6Pf0/kq/oqiswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l NTBkYTQ0Ny1hMTM4LTQ2MjUtYTQyMC1hNzExYWMyNDM1MTkvMC9CRjA3NkVBMjRB NjhDRjE1MkMzMjNDN0EzREZEM0Y5MkFGRThBQTJCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkYwNzZFQTI0QTY4Q0YxNTJDMzIzQzdBM0RGRDNGOTJBRkU4 QUEyQi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U1MGRhNDQ3LWExMzgtNDYyNS1h NDIwLWE3MTFhYzI0MzUxOS8wLzMyMzAzMDMxM2E2NDY2MzAzYTYzNjIzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzNDM1MzczODM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN8ADLMA0G CSqGSIb3DQEBCwUAA4IBAQCLpXxFb5jO9Ug0TXPaeAbLFC54yaKC4pXUkhlY1GAt /hBF5AaaqSPWaqVN8Cqm1tO2OHvSfVJpwxRB+OVC5OdgDu50T4HAXxrauJMsSUzV Kt2b/x3ClTC321yowo0K92TnRH5uWjF/OBOBxcSNfaDnEHLkIQf758TD2ahvH+Ba gEOvQOkF25bQ/x6IkhmKt0MR03cQ2kS9ctj4PAks06MWhGtb8oGfiVeRCWtaZ+X1 S1yW3dtOaUibfs+CZYkepUizBSP0TZM6wDMR889YmUwnJ6FQ1CVYtlk4KQE8cNDz kxLuXos1zXZMW94dVl9y2+KW5w/8m26r4JFQJ7nzVJ2M -----END CERTIFICATE-----Generated at Sun Jun 8 18:44:57 2025 by rpki-client