$ rpki-client -vvf repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/323030313a6431303a393430303a3a2f33382d3438203d3e20313335343738.roa File: 323030313a6431303a393430303a3a2f33382d3438203d3e20313335343738.roa (raw, json) Hash identifier: mYEPcDWqh45DZX0iAyYKAz59fadnIYlQXPhKnTSk7hQ= Subject key identifier: 94:D8:78:2B:B3:C6:54:E8:7B:01:44:7F:00:D6:D6:72:AD:DA:3E:33 Certificate issuer: /CN=7E2CF346D5DE840DC0EE944C918EDC5137D6998A Certificate serial: 482F6EAFBA1B2B8EDE9CCF96DF7426BC491F4FAC Authority key identifier: 7E:2C:F3:46:D5:DE:84:0D:C0:EE:94:4C:91:8E:DC:51:37:D6:99:8A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/323030313a6431303a393430303a3a2f33382d3438203d3e20313335343738.roa Signing time: Mon 02 Jun 2025 01:02:28 +0000 ROA not before: Mon 02 Jun 2025 00:57:28 +0000 ROA not after: Mon 01 Jun 2026 01:02:28 +0000 asID: 135478 IP address blocks: 2001:d10:9400::/38 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.crl rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 18:25:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:2f:6e:af:ba:1b:2b:8e:de:9c:cf:96:df:74:26:bc:49:1f:4f:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7E2CF346D5DE840DC0EE944C918EDC5137D6998A Validity Not Before: Jun 2 00:57:28 2025 GMT Not After : Jun 1 01:02:28 2026 GMT Subject: CN=94D8782BB3C654E87B01447F00D6D672ADDA3E33 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:12:59:96:8b:ab:f6:df:96:cf:07:2a:a4:8f: 22:fb:a0:e0:fe:dd:13:93:92:30:55:38:81:b3:88: 73:f9:3f:f9:5d:bb:1c:ae:91:6e:82:4d:bc:e2:84: a5:46:85:e6:cf:c3:05:79:0b:7f:78:70:0c:a9:25: d1:52:af:70:44:cf:c0:51:5e:e1:71:86:3e:bd:28: fe:b0:8d:a4:d0:08:08:cc:c4:50:c3:84:09:d4:1f: 21:a0:d5:16:2f:cf:fb:e9:e9:35:85:71:0e:52:a3: 41:de:06:32:c2:b0:25:3a:12:3c:66:20:df:22:0d: 88:48:30:99:47:ad:88:b1:86:1b:65:16:71:0a:8c: 71:ec:93:a6:81:a0:c3:ee:03:73:95:44:ce:dc:03: 34:9e:50:91:2a:c2:08:ce:0d:e3:b8:0b:65:b0:e4: 33:69:cc:f7:46:b3:f7:01:36:ab:b4:98:e1:06:7e: 8b:c7:42:9a:48:7f:57:5c:1d:f3:32:8f:1b:45:3e: 9f:ad:d9:f1:b3:e9:7c:1c:cd:00:c9:e2:f3:2d:43: 60:54:8d:13:b3:0a:75:76:78:cf:26:cb:b4:91:41: 81:cb:0e:6a:fe:80:e1:58:3c:02:7e:9f:65:04:b6: c3:2e:19:f7:87:08:d8:a4:e7:fe:8e:31:24:2a:13: 4a:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:D8:78:2B:B3:C6:54:E8:7B:01:44:7F:00:D6:D6:72:AD:DA:3E:33 X509v3 Authority Key Identifier: keyid:7E:2C:F3:46:D5:DE:84:0D:C0:EE:94:4C:91:8E:DC:51:37:D6:99:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/323030313a6431303a393430303a3a2f33382d3438203d3e20313335343738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:d10:9400::/38 Signature Algorithm: sha256WithRSAEncryption 20:ca:f9:db:ef:03:76:7b:74:e7:14:b4:86:e3:26:c9:97:d7: 81:8e:c2:19:be:9d:74:50:05:be:9c:64:8b:4e:9d:ef:81:16: 79:9a:fc:a4:07:0b:8d:d2:27:35:f0:18:ac:12:aa:d6:8f:ec: 06:ff:29:3e:df:9c:9b:b8:40:43:58:7b:07:3f:c9:3b:d5:b0: bc:ef:bb:53:f3:44:ce:71:a3:b8:b3:7c:b8:ae:2c:2c:4d:3f: 6b:78:31:1f:1b:70:1a:a1:dd:dd:cf:0e:5e:eb:e1:9e:15:3f: 5f:ac:f6:24:1b:d5:ef:72:5b:48:03:47:6c:cf:fb:15:ca:07: 30:99:5e:fb:98:08:d1:e6:92:d4:b0:f9:e2:bc:30:1d:3a:23: 58:15:fa:82:97:83:9b:7a:a5:61:69:3b:c7:58:e1:a3:c3:08: c6:0e:e7:f5:0b:32:2f:fe:fe:04:58:2c:51:74:8f:22:cd:2b: a2:aa:50:63:75:fd:14:9e:37:92:e6:f4:14:83:5c:5e:61:77: 64:50:c9:41:32:d5:d3:ab:26:68:af:b0:2e:a8:1a:82:b6:e5: e1:f9:73:76:ea:90:30:fa:d8:3c:81:54:7e:7b:4b:95:66:86: fe:d4:75:23:64:a8:75:01:83:91:15:3f:b2:b4:18:80:91:be: 28:b2:01:a1 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUSC9ur7obK47enM+W33QmvEkfT6wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0UyQ0YzNDZENURFODQwREMwRUU5NDRDOTE4RURDNTEz N0Q2OTk4QTAeFw0yNTA2MDIwMDU3MjhaFw0yNjA2MDEwMTAyMjhaMDMxMTAvBgNV BAMTKDk0RDg3ODJCQjNDNjU0RTg3QjAxNDQ3RjAwRDZENjcyQUREQTNFMzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/ElmWi6v235bPByqkjyL7oOD+ 3ROTkjBVOIGziHP5P/lduxyukW6CTbzihKVGhebPwwV5C394cAypJdFSr3BEz8BR XuFxhj69KP6wjaTQCAjMxFDDhAnUHyGg1RYvz/vp6TWFcQ5So0HeBjLCsCU6Ejxm IN8iDYhIMJlHrYixhhtlFnEKjHHsk6aBoMPuA3OVRM7cAzSeUJEqwgjODeO4C2Ww 5DNpzPdGs/cBNqu0mOEGfovHQppIf1dcHfMyjxtFPp+t2fGz6XwczQDJ4vMtQ2BU jROzCnV2eM8my7SRQYHLDmr+gOFYPAJ+n2UEtsMuGfeHCNik5/6OMSQqE0phAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUlNh4K7PGVOh7AUR/ANbWcq3aPjMwHwYDVR0j BBgwFoAUfizzRtXehA3A7pRMkY7cUTfWmYowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l YTcwMjcyNi1iMmM2LTQ2ZmMtODI5Ny0yZGJkZWM2ZDZkNWQvMC83RTJDRjM0NkQ1 REU4NDBEQzBFRTk0NEM5MThFREM1MTM3RDY5OThBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0UyQ0YzNDZENURFODQwREMwRUU5NDRDOTE4RURDNTEzN0Q2 OTk4QS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2VhNzAyNzI2LWIyYzYtNDZmYy04 Mjk3LTJkYmRlYzZkNmQ1ZC8wLzMyMzAzMDMxM2E2NDMxMzAzYTM5MzQzMDMwM2Ez YTJmMzMzODJkMzQzODIwM2QzZTIwMzEzMzM1MzQzNzM4LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYCIAEN EJQwDQYJKoZIhvcNAQELBQADggEBACDK+dvvA3Z7dOcUtIbjJsmX14GOwhm+nXRQ Bb6cZItOne+BFnma/KQHC43SJzXwGKwSqtaP7Ab/KT7fnJu4QENYewc/yTvVsLzv u1PzRM5xo7izfLiuLCxNP2t4MR8bcBqh3d3PDl7r4Z4VP1+s9iQb1e9yW0gDR2zP +xXKBzCZXvuYCNHmktSw+eK8MB06I1gV+oKXg5t6pWFpO8dY4aPDCMYO5/ULMi/+ /gRYLFF0jyLNK6KqUGN1/RSeN5Lm9BSDXF5hd2RQyUEy1dOrJmivsC6oGoK25eH5 c3bqkDD62DyBVH57S5Vmhv7UdSNkqHUBg5EVP7K0GICRviiyAaE= -----END CERTIFICATE-----Generated at Fri Jun 6 16:50:36 2025 by rpki-client