$ rpki-client -vvf repo-rpki.idnic.net/repo/f190c37e-2655-42b1-baf7-42ec1cf192aa/0/323030313a6466343a316630303a3a2f34382d3438203d3e20313337333132.roa File: 323030313a6466343a316630303a3a2f34382d3438203d3e20313337333132.roa (raw, json) Hash identifier: JRR7XEn+B9iX1MKG6S3DWTWk+XJaRXgwa3RueWQgr7k= Subject key identifier: 85:7E:95:BA:7F:AD:58:41:24:1A:E9:2A:39:C5:33:BC:4E:15:3D:09 Certificate issuer: /CN=DEF44331E724964F28697DEABAF2313CDCEEFACE Certificate serial: 25CA4D39A7BC44C37E2065C394391547ACD6FC56 Authority key identifier: DE:F4:43:31:E7:24:96:4F:28:69:7D:EA:BA:F2:31:3C:DC:EE:FA:CE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DEF44331E724964F28697DEABAF2313CDCEEFACE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f190c37e-2655-42b1-baf7-42ec1cf192aa/0/323030313a6466343a316630303a3a2f34382d3438203d3e20313337333132.roa Signing time: Mon 02 Jun 2025 02:04:27 +0000 ROA not before: Mon 02 Jun 2025 01:59:27 +0000 ROA not after: Mon 01 Jun 2026 02:04:27 +0000 asID: 137312 IP address blocks: 2001:df4:1f00::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f190c37e-2655-42b1-baf7-42ec1cf192aa/0/DEF44331E724964F28697DEABAF2313CDCEEFACE.crl rsync://repo-rpki.idnic.net/repo/f190c37e-2655-42b1-baf7-42ec1cf192aa/0/DEF44331E724964F28697DEABAF2313CDCEEFACE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DEF44331E724964F28697DEABAF2313CDCEEFACE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 02:42:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:ca:4d:39:a7:bc:44:c3:7e:20:65:c3:94:39:15:47:ac:d6:fc:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DEF44331E724964F28697DEABAF2313CDCEEFACE Validity Not Before: Jun 2 01:59:27 2025 GMT Not After : Jun 1 02:04:27 2026 GMT Subject: CN=857E95BA7FAD5841241AE92A39C533BC4E153D09 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:20:0d:21:fb:cf:3f:f3:b9:80:60:6f:2a:75: bf:06:78:ef:49:9e:de:60:0b:07:a3:e1:6d:87:87: fe:8b:ff:b5:ca:48:70:65:64:0b:1b:e5:ad:42:12: a7:a2:6e:d7:85:e6:08:92:92:aa:ea:69:b7:8b:77: e8:56:1e:5e:d4:64:4b:e8:58:5f:a3:1f:cf:98:61: 8b:1b:a2:86:c2:88:57:9c:61:b1:4d:80:0f:d5:cc: 47:ad:04:cc:80:3e:e4:88:2f:20:2a:83:dd:54:6a: d9:63:4b:da:1e:f4:40:2d:fd:67:9c:74:3a:4b:48: dc:57:4b:fd:19:2e:ed:37:05:15:c9:cb:84:56:fd: 07:8f:13:69:14:e2:57:2f:5d:9c:49:5e:26:1a:76: 5d:29:d7:bc:86:2a:80:c7:8c:00:bf:0a:e3:51:d3: 97:05:dd:ff:93:19:e7:5a:36:74:81:46:9f:95:76: ba:a6:ce:08:83:c5:f3:fc:c2:e3:17:9b:66:a9:f5: bb:2c:a3:93:3f:95:a1:01:33:69:8f:2f:d4:b5:3c: 38:23:4f:6d:03:46:33:30:71:c5:8c:1d:ae:53:46: ec:2d:68:67:af:f8:77:b1:22:72:66:2d:b5:09:c3: 00:1a:b5:be:48:8b:91:83:24:ab:af:94:6e:8e:08: 89:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:7E:95:BA:7F:AD:58:41:24:1A:E9:2A:39:C5:33:BC:4E:15:3D:09 X509v3 Authority Key Identifier: keyid:DE:F4:43:31:E7:24:96:4F:28:69:7D:EA:BA:F2:31:3C:DC:EE:FA:CE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f190c37e-2655-42b1-baf7-42ec1cf192aa/0/DEF44331E724964F28697DEABAF2313CDCEEFACE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DEF44331E724964F28697DEABAF2313CDCEEFACE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f190c37e-2655-42b1-baf7-42ec1cf192aa/0/323030313a6466343a316630303a3a2f34382d3438203d3e20313337333132.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df4:1f00::/48 Signature Algorithm: sha256WithRSAEncryption 0f:fb:14:60:f8:20:4a:f0:94:ce:19:7d:71:04:e3:7e:40:2b: 97:29:8c:f1:b8:b8:06:5d:01:2f:54:fe:79:ff:7c:cb:6c:15: 51:4a:a7:f1:9c:06:c7:b6:94:2d:c1:3d:91:ac:93:81:a9:a7: 8e:94:65:72:8a:44:5c:4b:37:f9:a8:f9:97:72:71:b0:48:39: 4e:a1:f5:b0:94:12:3e:d3:39:05:74:e6:ef:3e:6d:bf:1e:12: 2e:7f:8f:e7:37:06:03:39:de:ec:3b:26:b5:18:09:68:a3:aa: 9a:2f:95:45:22:09:2c:ab:6f:12:28:26:e7:5b:f7:61:09:ba: 73:e6:c0:86:62:64:04:8e:38:bd:95:e8:d6:2b:9b:9f:6e:8d: 53:73:bf:7a:90:a1:95:9d:a7:79:6e:87:9a:c1:ce:26:ad:2c: 75:dc:1a:cb:29:fb:37:79:b0:9b:71:ba:8c:fa:79:e8:a3:ec: 57:46:f6:83:d2:56:9b:e6:1a:de:10:cb:f3:4d:9d:74:c6:e8: fc:4e:44:68:86:06:fb:a7:34:96:74:a3:f5:50:0a:12:02:2f: 06:d5:0f:e8:92:35:70:22:06:e8:30:80:7d:41:4f:f4:4c:4f: c2:8b:53:48:16:10:32:0f:72:c9:ff:3c:39:d7:f6:ed:2b:f3: d0:bc:25:7e -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUJcpNOae8RMN+IGXDlDkVR6zW/FYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREVGNDQzMzFFNzI0OTY0RjI4Njk3REVBQkFGMjMxM0NE Q0VFRkFDRTAeFw0yNTA2MDIwMTU5MjdaFw0yNjA2MDEwMjA0MjdaMDMxMTAvBgNV BAMTKDg1N0U5NUJBN0ZBRDU4NDEyNDFBRTkyQTM5QzUzM0JDNEUxNTNEMDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCcIA0h+88/87mAYG8qdb8GeO9J nt5gCwej4W2Hh/6L/7XKSHBlZAsb5a1CEqeibteF5giSkqrqabeLd+hWHl7UZEvo WF+jH8+YYYsboobCiFecYbFNgA/VzEetBMyAPuSILyAqg91UatljS9oe9EAt/Wec dDpLSNxXS/0ZLu03BRXJy4RW/QePE2kU4lcvXZxJXiYadl0p17yGKoDHjAC/CuNR 05cF3f+TGedaNnSBRp+VdrqmzgiDxfP8wuMXm2ap9bsso5M/laEBM2mPL9S1PDgj T20DRjMwccWMHa5TRuwtaGev+HexInJmLbUJwwAatb5Ii5GDJKuvlG6OCImlAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUhX6Vun+tWEEkGukqOcUzvE4VPQkwHwYDVR0j BBgwFoAU3vRDMecklk8oaX3quvIxPNzu+s4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MTkwYzM3ZS0yNjU1LTQyYjEtYmFmNy00MmVjMWNmMTkyYWEvMC9ERUY0NDMzMUU3 MjQ5NjRGMjg2OTdERUFCQUYyMzEzQ0RDRUVGQUNFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREVGNDQzMzFFNzI0OTY0RjI4Njk3REVBQkFGMjMxM0NEQ0VF RkFDRS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YxOTBjMzdlLTI2NTUtNDJiMS1i YWY3LTQyZWMxY2YxOTJhYS8wLzMyMzAzMDMxM2E2NDY2MzQzYTMxNjYzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM3MzMzMTMyLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 9B8AMA0GCSqGSIb3DQEBCwUAA4IBAQAP+xRg+CBK8JTOGX1xBON+QCuXKYzxuLgG XQEvVP55/3zLbBVRSqfxnAbHtpQtwT2RrJOBqaeOlGVyikRcSzf5qPmXcnGwSDlO ofWwlBI+0zkFdObvPm2/HhIuf4/nNwYDOd7sOya1GAloo6qaL5VFIgksq28SKCbn W/dhCbpz5sCGYmQEjji9lejWK5ufbo1Tc796kKGVnad5boeawc4mrSx13BrLKfs3 ebCbcbqM+nnoo+xXRvaD0lab5hreEMvzTZ10xuj8TkRohgb7pzSWdKP1UAoSAi8G 1Q/okjVwIgboMIB9QU/0TE/Ci1NIFhAyD3LJ/zw51/btK/PQvCV+ -----END CERTIFICATE-----Generated at Sat Jun 7 14:13:03 2025 by rpki-client