$ rpki-client -vvf repo-rpki.idnic.net/repo/f0e11ffc-e75a-4bf4-8448-c68e20335ee8/0/323030313a6466313a326430303a3a2f34382d3438203d3e20313336313132.roa File: 323030313a6466313a326430303a3a2f34382d3438203d3e20313336313132.roa (raw, json) Hash identifier: uiZFjhvQ9ciRjJRK7vZMZHXsl+bdrRUmgcpl6MwjW4M= Subject key identifier: D3:12:23:15:47:16:96:C8:2C:68:D3:55:A1:7F:34:0E:6C:BE:09:6E Certificate issuer: /CN=0FAFA39AA3875A4CF63BCF7E873087927B499D2F Certificate serial: 7A71ED98A2EB51A41E4101F502CB600AA0F6158C Authority key identifier: 0F:AF:A3:9A:A3:87:5A:4C:F6:3B:CF:7E:87:30:87:92:7B:49:9D:2F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0FAFA39AA3875A4CF63BCF7E873087927B499D2F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f0e11ffc-e75a-4bf4-8448-c68e20335ee8/0/323030313a6466313a326430303a3a2f34382d3438203d3e20313336313132.roa Signing time: Mon 17 Mar 2025 08:00:00 +0000 ROA not before: Mon 17 Mar 2025 07:55:00 +0000 ROA not after: Mon 16 Mar 2026 08:00:00 +0000 asID: 136112 IP address blocks: 2001:df1:2d00::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f0e11ffc-e75a-4bf4-8448-c68e20335ee8/0/0FAFA39AA3875A4CF63BCF7E873087927B499D2F.crl rsync://repo-rpki.idnic.net/repo/f0e11ffc-e75a-4bf4-8448-c68e20335ee8/0/0FAFA39AA3875A4CF63BCF7E873087927B499D2F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0FAFA39AA3875A4CF63BCF7E873087927B499D2F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 21:38:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:71:ed:98:a2:eb:51:a4:1e:41:01:f5:02:cb:60:0a:a0:f6:15:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0FAFA39AA3875A4CF63BCF7E873087927B499D2F Validity Not Before: Mar 17 07:55:00 2025 GMT Not After : Mar 16 08:00:00 2026 GMT Subject: CN=D3122315471696C82C68D355A17F340E6CBE096E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:34:16:f7:2a:4e:d4:b5:38:93:75:a5:7e:c5: f1:78:ce:2a:c0:1b:17:b2:c2:b9:8d:1f:74:bb:50: 01:ee:73:e4:5f:ee:f1:2d:8b:89:2e:db:7c:26:21: ab:12:ec:4b:c9:6b:59:8d:62:19:35:4e:af:0f:17: 31:d0:04:05:89:fe:f1:c1:8e:15:35:bd:12:45:0b: 84:b8:27:41:46:78:6f:bf:82:1a:c6:8f:d7:55:06: 79:95:6a:db:96:8d:78:4f:41:f8:ab:1e:e0:d6:0d: f1:12:12:c3:bb:49:b4:34:85:06:73:3e:04:1e:b3: 10:50:3f:24:0c:15:22:30:4e:03:db:2a:49:6e:4b: 8a:bd:b6:56:5f:cf:4b:f8:d7:d1:a5:06:3d:e4:c0: eb:ef:d8:ed:19:00:df:69:4c:78:b2:c3:6f:9c:53: 04:4c:77:7f:79:26:60:39:02:25:83:1e:03:ac:2f: 40:cd:1a:57:e3:2f:2e:c2:32:d6:d6:1c:90:17:82: 72:ac:53:5f:f4:90:f2:97:1e:c6:d7:a9:01:cc:e5: b8:8c:bc:55:75:58:7c:51:df:e6:93:30:94:c5:2b: 20:0b:69:2b:aa:f2:b4:06:e7:cd:e7:0b:8a:75:6a: 66:00:a8:6c:db:77:ad:a5:28:85:32:1a:01:1d:43: 3d:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:12:23:15:47:16:96:C8:2C:68:D3:55:A1:7F:34:0E:6C:BE:09:6E X509v3 Authority Key Identifier: keyid:0F:AF:A3:9A:A3:87:5A:4C:F6:3B:CF:7E:87:30:87:92:7B:49:9D:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f0e11ffc-e75a-4bf4-8448-c68e20335ee8/0/0FAFA39AA3875A4CF63BCF7E873087927B499D2F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0FAFA39AA3875A4CF63BCF7E873087927B499D2F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f0e11ffc-e75a-4bf4-8448-c68e20335ee8/0/323030313a6466313a326430303a3a2f34382d3438203d3e20313336313132.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df1:2d00::/48 Signature Algorithm: sha256WithRSAEncryption 56:5b:b2:80:ef:bb:69:80:7a:3e:3a:90:e1:b7:1f:e7:7d:a0: cb:f6:7b:a1:79:ab:c7:9c:e4:0b:86:a0:f4:f3:e1:07:5b:ff: 5d:94:71:fb:80:1b:94:69:07:29:ad:08:98:71:db:9e:84:63: b7:03:20:a5:92:65:d8:ab:50:5a:bf:3c:57:54:8f:31:12:13: 47:17:6f:1e:0f:ee:21:d8:b0:f1:69:24:8b:e5:e8:0d:df:39: 7b:1a:a2:55:c3:bf:09:de:f9:d9:76:36:33:78:cd:5d:4c:83: 3b:b3:8b:a4:7a:30:40:64:fd:24:ef:2b:82:9a:34:3c:99:dd: c8:65:9a:f9:7d:c6:26:85:f6:81:38:f9:5b:9d:21:47:82:d3: 34:aa:fb:52:f2:4f:2e:29:34:13:02:93:66:23:cb:a0:51:36: d5:e2:ca:b3:4d:3b:5e:f6:2b:f7:08:69:41:b9:15:8a:9e:6c: 70:20:b4:e5:92:b7:2b:f2:cf:14:2d:6d:db:cb:a2:83:74:40: d2:e5:80:2c:16:46:dc:75:86:35:4d:81:ff:df:49:3c:8f:bd: 4e:c0:30:5b:ce:82:e1:9d:d4:30:af:9d:b5:31:be:b7:39:2b: a7:27:70:ed:c1:a1:d9:e8:81:2e:89:18:3f:51:00:4c:8e:d5: 5b:5f:11:5c -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUenHtmKLrUaQeQQH1AstgCqD2FYwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEZBRkEzOUFBMzg3NUE0Q0Y2M0JDRjdFODczMDg3OTI3 QjQ5OUQyRjAeFw0yNTAzMTcwNzU1MDBaFw0yNjAzMTYwODAwMDBaMDMxMTAvBgNV BAMTKEQzMTIyMzE1NDcxNjk2QzgyQzY4RDM1NUExN0YzNDBFNkNCRTA5NkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDpNBb3Kk7UtTiTdaV+xfF4zirA GxeywrmNH3S7UAHuc+Rf7vEti4ku23wmIasS7EvJa1mNYhk1Tq8PFzHQBAWJ/vHB jhU1vRJFC4S4J0FGeG+/ghrGj9dVBnmVatuWjXhPQfirHuDWDfESEsO7SbQ0hQZz PgQesxBQPyQMFSIwTgPbKkluS4q9tlZfz0v419GlBj3kwOvv2O0ZAN9pTHiyw2+c UwRMd395JmA5AiWDHgOsL0DNGlfjLy7CMtbWHJAXgnKsU1/0kPKXHsbXqQHM5biM vFV1WHxR3+aTMJTFKyALaSuq8rQG583nC4p1amYAqGzbd62lKIUyGgEdQz27AgMB AAGjggI9MIICOTAdBgNVHQ4EFgQU0xIjFUcWlsgsaNNVoX80Dmy+CW4wHwYDVR0j BBgwFoAUD6+jmqOHWkz2O89+hzCHkntJnS8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MGUxMWZmYy1lNzVhLTRiZjQtODQ0OC1jNjhlMjAzMzVlZTgvMC8wRkFGQTM5QUEz ODc1QTRDRjYzQkNGN0U4NzMwODc5MjdCNDk5RDJGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMEZBRkEzOUFBMzg3NUE0Q0Y2M0JDRjdFODczMDg3OTI3QjQ5 OUQyRi5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YwZTExZmZjLWU3NWEtNGJmNC04 NDQ4LWM2OGUyMDMzNWVlOC8wLzMyMzAzMDMxM2E2NDY2MzEzYTMyNjQzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM2MzEzMTMyLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8S0AMA0GCSqGSIb3DQEBCwUAA4IBAQBWW7KA77tpgHo+OpDhtx/nfaDL9nuheavH nOQLhqD08+EHW/9dlHH7gBuUaQcprQiYcduehGO3AyClkmXYq1BavzxXVI8xEhNH F28eD+4h2LDxaSSL5egN3zl7GqJVw78J3vnZdjYzeM1dTIM7s4ukejBAZP0k7yuC mjQ8md3IZZr5fcYmhfaBOPlbnSFHgtM0qvtS8k8uKTQTApNmI8ugUTbV4sqzTTte 9iv3CGlBuRWKnmxwILTlkrcr8s8ULW3by6KDdEDS5YAsFkbcdYY1TYH/30k8j71O wDBbzoLhndQwr521Mb63OSunJ3DtwaHZ6IEuiRg/UQBMjtVbXxFc -----END CERTIFICATE-----Generated at Mon Apr 7 03:39:15 2025 by rpki-client