$ rpki-client -vvf repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/323030313a6431303a3a2f33322d3438203d3e2034373837.roa File: 323030313a6431303a3a2f33322d3438203d3e2034373837.roa (raw, json) Hash identifier: GH/AvB3XPKEHE15PdTdBvAXLFeT58VRzE2oxTkhNN5g= Subject key identifier: 58:7B:FF:EF:B8:A9:9A:1A:BD:D2:15:BC:02:9F:E4:50:CF:6B:0B:1A Certificate issuer: /CN=7E2CF346D5DE840DC0EE944C918EDC5137D6998A Certificate serial: 6821BDD5E3A32899C4C29A574E4BA6A78635A655 Authority key identifier: 7E:2C:F3:46:D5:DE:84:0D:C0:EE:94:4C:91:8E:DC:51:37:D6:99:8A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/323030313a6431303a3a2f33322d3438203d3e2034373837.roa Signing time: Mon 02 Jun 2025 01:02:29 +0000 ROA not before: Mon 02 Jun 2025 00:57:29 +0000 ROA not after: Mon 01 Jun 2026 01:02:29 +0000 asID: 4787 IP address blocks: 2001:d10::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.crl rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 18:25:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:21:bd:d5:e3:a3:28:99:c4:c2:9a:57:4e:4b:a6:a7:86:35:a6:55 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7E2CF346D5DE840DC0EE944C918EDC5137D6998A Validity Not Before: Jun 2 00:57:29 2025 GMT Not After : Jun 1 01:02:29 2026 GMT Subject: CN=587BFFEFB8A99A1ABDD215BC029FE450CF6B0B1A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:95:16:03:02:f3:c2:52:78:a9:76:35:82:d9: 64:06:39:94:da:9d:80:2e:90:9c:ba:1f:84:ec:3e: 07:10:c0:5c:d6:b8:0e:bb:12:07:50:39:1d:3e:e4: cd:45:2e:51:36:56:71:0e:23:b9:03:04:b7:b9:a9: 24:e1:2d:06:f8:7f:36:03:a9:e2:f7:3d:29:15:02: c6:80:a7:de:9d:69:52:f0:1a:2a:c9:5d:6e:75:c2: d4:40:f9:30:8c:c0:38:27:de:a9:e6:9c:c2:8c:73: 8d:90:69:47:16:ae:ad:75:7e:ca:19:ca:e7:27:e8: 3d:07:c1:0c:36:f7:98:4d:79:5b:fa:cd:cc:9d:6a: 6d:44:75:fe:ab:a7:88:c9:f0:a2:46:f9:c8:77:1c: f7:45:60:49:c0:74:4f:59:e2:ad:26:f7:ca:de:c3: 6f:1e:46:a6:65:31:8f:56:5b:0a:78:aa:61:ad:56: cf:53:10:53:45:e5:25:32:be:34:66:e8:85:5c:50: 01:6e:f9:91:0e:2a:9e:a5:3b:ec:5e:8b:99:40:2a: b1:ef:81:d7:66:01:7b:c3:c2:ef:fe:57:1b:6e:b4: 9c:7b:9c:3e:1a:e9:4e:34:c3:5a:ef:c7:4b:69:f2: 03:a0:27:9f:5a:1f:b1:08:c7:ff:bf:71:67:f2:ec: ed:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:7B:FF:EF:B8:A9:9A:1A:BD:D2:15:BC:02:9F:E4:50:CF:6B:0B:1A X509v3 Authority Key Identifier: keyid:7E:2C:F3:46:D5:DE:84:0D:C0:EE:94:4C:91:8E:DC:51:37:D6:99:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/323030313a6431303a3a2f33322d3438203d3e2034373837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:d10::/32 Signature Algorithm: sha256WithRSAEncryption 73:27:1b:11:91:ed:68:18:9b:55:c6:e5:27:c4:2c:b8:e7:fe: d8:21:be:46:6f:ea:0f:09:e0:8a:eb:4f:4f:ae:a8:16:9a:19: ea:c3:d5:8e:73:ec:4f:c6:ed:eb:ee:14:03:1b:c1:fb:18:e6: 41:e5:e4:50:65:1c:5d:24:5d:5f:56:e5:78:7a:96:01:df:cb: 2f:05:7d:50:06:f6:64:18:84:eb:c1:03:ca:1f:5e:3f:4d:e7: 49:2e:c2:05:37:cb:02:b5:2a:93:8c:b2:a6:87:b5:46:6c:83: 49:c6:42:21:2f:63:f7:09:a0:06:07:3b:69:2b:73:0c:3f:41: 4d:83:fd:96:f9:fc:cb:a7:de:12:88:01:87:96:85:43:54:9e: 44:30:43:eb:ef:88:82:09:93:ec:56:28:66:72:32:bf:1d:b3: 7a:cc:24:7e:fb:94:e9:93:e3:02:48:20:8c:fb:1b:57:c5:e2: 07:4b:7f:6c:df:67:a4:4e:ae:2b:e8:00:ac:e8:52:b1:01:d6: a8:a4:1a:a4:ba:4a:1a:5e:c7:59:e8:08:e6:b2:1a:fb:ac:db: c8:d8:d7:36:fd:f0:a1:9e:08:64:2d:e9:c6:06:ee:41:b0:df: 1f:04:72:13:98:f9:a7:21:c9:a6:22:0a:d6:14:9a:1d:8e:bb: d7:f0:c8:a0 -----BEGIN CERTIFICATE----- MIIFIjCCBAqgAwIBAgIUaCG91eOjKJnEwppXTkump4Y1plUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0UyQ0YzNDZENURFODQwREMwRUU5NDRDOTE4RURDNTEz N0Q2OTk4QTAeFw0yNTA2MDIwMDU3MjlaFw0yNjA2MDEwMTAyMjlaMDMxMTAvBgNV BAMTKDU4N0JGRkVGQjhBOTlBMUFCREQyMTVCQzAyOUZFNDUwQ0Y2QjBCMUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzlRYDAvPCUnipdjWC2WQGOZTa nYAukJy6H4TsPgcQwFzWuA67EgdQOR0+5M1FLlE2VnEOI7kDBLe5qSThLQb4fzYD qeL3PSkVAsaAp96daVLwGirJXW51wtRA+TCMwDgn3qnmnMKMc42QaUcWrq11fsoZ yucn6D0HwQw295hNeVv6zcydam1Edf6rp4jJ8KJG+ch3HPdFYEnAdE9Z4q0m98re w28eRqZlMY9WWwp4qmGtVs9TEFNF5SUyvjRm6IVcUAFu+ZEOKp6lO+xei5lAKrHv gddmAXvDwu/+VxtutJx7nD4a6U40w1rvx0tp8gOgJ59aH7EIx/+/cWfy7O1ZAgMB AAGjggIsMIICKDAdBgNVHQ4EFgQUWHv/77ipmhq90hW8Ap/kUM9rCxowHwYDVR0j BBgwFoAUfizzRtXehA3A7pRMkY7cUTfWmYowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l YTcwMjcyNi1iMmM2LTQ2ZmMtODI5Ny0yZGJkZWM2ZDZkNWQvMC83RTJDRjM0NkQ1 REU4NDBEQzBFRTk0NEM5MThFREM1MTM3RDY5OThBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0UyQ0YzNDZENURFODQwREMwRUU5NDRDOTE4RURDNTEzN0Q2 OTk4QS5jZXIwgZsGCCsGAQUFBwELBIGOMIGLMIGIBggrBgEFBQcwC4Z8cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZWE3MDI3MjYtYjJjNi00NmZjLTgy OTctMmRiZGVjNmQ2ZDVkLzAvMzIzMDMwMzEzYTY0MzEzMDNhM2EyZjMzMzIyZDM0 MzgyMDNkM2UyMDM0MzczODM3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAIAENEDANBgkqhkiG9w0BAQsF AAOCAQEAcycbEZHtaBibVcblJ8QsuOf+2CG+Rm/qDwngiutPT66oFpoZ6sPVjnPs T8bt6+4UAxvB+xjmQeXkUGUcXSRdX1bleHqWAd/LLwV9UAb2ZBiE68EDyh9eP03n SS7CBTfLArUqk4yypoe1RmyDScZCIS9j9wmgBgc7aStzDD9BTYP9lvn8y6feEogB h5aFQ1SeRDBD6++IggmT7FYoZnIyvx2zeswkfvuU6ZPjAkggjPsbV8XiB0t/bN9n pE6uK+gArOhSsQHWqKQapLpKGl7HWegI5rIa+6zbyNjXNv3woZ4IZC3pxgbuQbDf HwRyE5j5pyHJpiIK1hSaHY671/DIoA== -----END CERTIFICATE-----Generated at Thu Jun 5 18:23:57 2025 by rpki-client