$ rpki-client -vvf repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/323030313a6431303a383431303a3a2f34382d3438203d3e20313331313139.roa File: 323030313a6431303a383431303a3a2f34382d3438203d3e20313331313139.roa (raw, json) Hash identifier: McVkIfORU9dtjsrjsOkr171X/vURjfE2aEuSMP86xXU= Subject key identifier: B4:DD:45:42:D9:77:BF:FD:AE:90:FC:43:DD:55:B2:CD:D9:11:62:E1 Certificate issuer: /CN=7E2CF346D5DE840DC0EE944C918EDC5137D6998A Certificate serial: 428AF2FFB0E83263F37E4AC54FDDFC111B10E1DB Authority key identifier: 7E:2C:F3:46:D5:DE:84:0D:C0:EE:94:4C:91:8E:DC:51:37:D6:99:8A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/323030313a6431303a383431303a3a2f34382d3438203d3e20313331313139.roa Signing time: Mon 02 Jun 2025 01:02:28 +0000 ROA not before: Mon 02 Jun 2025 00:57:28 +0000 ROA not after: Mon 01 Jun 2026 01:02:28 +0000 asID: 131119 IP address blocks: 2001:d10:8410::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.crl rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 18:25:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:8a:f2:ff:b0:e8:32:63:f3:7e:4a:c5:4f:dd:fc:11:1b:10:e1:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7E2CF346D5DE840DC0EE944C918EDC5137D6998A Validity Not Before: Jun 2 00:57:28 2025 GMT Not After : Jun 1 01:02:28 2026 GMT Subject: CN=B4DD4542D977BFFDAE90FC43DD55B2CDD91162E1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:a3:0d:4f:15:fa:e5:b4:e6:25:29:ae:ff:9d: 0a:c7:61:e2:7b:08:98:6b:af:25:fc:53:25:f7:1b: 62:44:0d:db:82:51:88:44:a6:fc:ad:f0:8d:5e:81: e6:47:04:77:c1:5a:23:af:59:08:6d:7a:ad:7f:a4: 2a:32:21:1e:89:2c:b6:43:b3:2b:1c:b7:d8:19:04: eb:21:2c:e4:fc:4b:06:9f:c4:73:63:e6:71:dc:5b: 42:57:55:ba:12:98:47:34:db:4d:77:8a:5e:2a:7b: 2f:f1:2f:f4:38:bc:75:91:2c:47:91:f3:55:87:75: d9:26:84:36:b7:9e:8b:d1:cd:f8:9c:78:4a:2a:ec: c0:15:08:80:f9:81:67:ec:ed:c7:eb:17:d1:3b:82: eb:75:bc:a2:9f:24:e6:62:51:4a:82:08:9d:b3:48: e3:6e:b1:4e:1f:cf:eb:ea:d5:58:eb:48:d7:3a:cc: d9:8f:41:2e:d2:dc:24:26:a6:3b:ea:f4:01:29:74: 87:bf:78:82:35:12:4d:1b:41:53:c2:3f:ee:4f:28: d4:a2:eb:bd:34:8e:93:02:4d:1e:43:fe:1e:37:2a: 74:04:06:8a:c8:1a:71:eb:90:c8:ed:11:1e:f0:ca: 62:ab:46:aa:c3:44:a0:dd:e1:ad:d2:22:7f:72:8c: 28:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:DD:45:42:D9:77:BF:FD:AE:90:FC:43:DD:55:B2:CD:D9:11:62:E1 X509v3 Authority Key Identifier: keyid:7E:2C:F3:46:D5:DE:84:0D:C0:EE:94:4C:91:8E:DC:51:37:D6:99:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/323030313a6431303a383431303a3a2f34382d3438203d3e20313331313139.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:d10:8410::/48 Signature Algorithm: sha256WithRSAEncryption a0:30:25:e6:5d:3a:72:45:4d:f0:50:77:4d:b9:53:8b:e9:c8: 20:5c:17:62:2d:d8:27:b1:05:34:be:a6:c6:d1:60:82:83:45: f0:32:f1:4a:c1:1f:d9:4d:54:31:de:46:78:f7:f7:94:58:eb: 9a:a7:47:83:dd:69:03:b5:75:d4:fb:d3:f1:05:c3:b4:cb:df: 85:54:15:78:2f:03:fb:1c:11:c4:a3:a0:64:aa:81:51:4a:b0: b4:7e:33:50:a4:a1:49:13:93:c3:3e:3d:be:2c:b3:47:01:3c: 8a:67:18:40:38:8e:08:90:d9:85:21:94:c8:02:95:5a:0e:b7: b4:44:bb:03:65:0b:c3:d1:87:d7:1d:d0:ca:25:ca:f1:e2:d4: 7b:aa:6a:ae:d3:8f:1b:53:de:14:ee:33:76:56:1b:8c:d6:4a: 6d:c4:8e:44:2e:ea:ba:32:17:b2:07:f9:fa:a9:dc:5f:41:56: 70:43:cc:95:1a:82:9e:30:49:eb:a4:55:11:c3:4e:e7:0e:45: 98:72:97:bc:c5:f3:43:69:e3:20:a3:c2:8c:06:54:46:e5:dc: 55:8d:3e:73:7e:c9:5a:e3:00:c9:08:1a:cb:88:35:ec:d4:72: 20:0d:71:5f:e1:d8:53:a6:61:0e:8e:46:b6:da:13:e0:02:9c: fd:90:55:c6 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUQory/7DoMmPzfkrFT938ERsQ4dswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0UyQ0YzNDZENURFODQwREMwRUU5NDRDOTE4RURDNTEz N0Q2OTk4QTAeFw0yNTA2MDIwMDU3MjhaFw0yNjA2MDEwMTAyMjhaMDMxMTAvBgNV BAMTKEI0REQ0NTQyRDk3N0JGRkRBRTkwRkM0M0RENTVCMkNERDkxMTYyRTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKow1PFfrltOYlKa7/nQrHYeJ7 CJhrryX8UyX3G2JEDduCUYhEpvyt8I1egeZHBHfBWiOvWQhteq1/pCoyIR6JLLZD sysct9gZBOshLOT8SwafxHNj5nHcW0JXVboSmEc02013il4qey/xL/Q4vHWRLEeR 81WHddkmhDa3novRzficeEoq7MAVCID5gWfs7cfrF9E7gut1vKKfJOZiUUqCCJ2z SONusU4fz+vq1VjrSNc6zNmPQS7S3CQmpjvq9AEpdIe/eII1Ek0bQVPCP+5PKNSi 6700jpMCTR5D/h43KnQEBorIGnHrkMjtER7wymKrRqrDRKDd4a3SIn9yjCgdAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUtN1FQtl3v/2ukPxD3VWyzdkRYuEwHwYDVR0j BBgwFoAUfizzRtXehA3A7pRMkY7cUTfWmYowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l YTcwMjcyNi1iMmM2LTQ2ZmMtODI5Ny0yZGJkZWM2ZDZkNWQvMC83RTJDRjM0NkQ1 REU4NDBEQzBFRTk0NEM5MThFREM1MTM3RDY5OThBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0UyQ0YzNDZENURFODQwREMwRUU5NDRDOTE4RURDNTEzN0Q2 OTk4QS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2VhNzAyNzI2LWIyYzYtNDZmYy04 Mjk3LTJkYmRlYzZkNmQ1ZC8wLzMyMzAzMDMxM2E2NDMxMzAzYTM4MzQzMTMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzMxMzEzMTM5LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN EIQQMA0GCSqGSIb3DQEBCwUAA4IBAQCgMCXmXTpyRU3wUHdNuVOL6cggXBdiLdgn sQU0vqbG0WCCg0XwMvFKwR/ZTVQx3kZ49/eUWOuap0eD3WkDtXXU+9PxBcO0y9+F VBV4LwP7HBHEo6BkqoFRSrC0fjNQpKFJE5PDPj2+LLNHATyKZxhAOI4IkNmFIZTI ApVaDre0RLsDZQvD0YfXHdDKJcrx4tR7qmqu048bU94U7jN2VhuM1kptxI5ELuq6 MheyB/n6qdxfQVZwQ8yVGoKeMEnrpFURw07nDkWYcpe8xfNDaeMgo8KMBlRG5dxV jT5zfsla4wDJCBrLiDXs1HIgDXFf4dhTpmEOjka22hPgApz9kFXG -----END CERTIFICATE-----Generated at Thu Jun 5 18:34:50 2025 by rpki-client