$ rpki-client -vvf repo-rpki.idnic.net/repo/f373bc61-c5f9-4159-98bc-a0530b4dd8b4/0/323030313a6466303a666230303a3a2f34382d3438203d3e20313336313035.roa File: 323030313a6466303a666230303a3a2f34382d3438203d3e20313336313035.roa (raw, json) Hash identifier: 7s0HS9eh5N/x2V7R3ZdxFFKiADQU8Rn/3Sm7bshae0c= Subject key identifier: 2E:10:8F:62:0D:D2:BD:D0:C9:E5:A4:74:98:12:FB:9D:8F:32:4A:23 Certificate issuer: /CN=CE0CD1353A42A0A99EE768F3FAF235E38F6C1189 Certificate serial: 7CE1345E987FC423AC223EDBC6673F43C7BE0C63 Authority key identifier: CE:0C:D1:35:3A:42:A0:A9:9E:E7:68:F3:FA:F2:35:E3:8F:6C:11:89 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CE0CD1353A42A0A99EE768F3FAF235E38F6C1189.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f373bc61-c5f9-4159-98bc-a0530b4dd8b4/0/323030313a6466303a666230303a3a2f34382d3438203d3e20313336313035.roa Signing time: Mon 02 Jun 2025 02:03:19 +0000 ROA not before: Mon 02 Jun 2025 01:58:19 +0000 ROA not after: Mon 01 Jun 2026 02:03:19 +0000 asID: 136105 IP address blocks: 2001:df0:fb00::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f373bc61-c5f9-4159-98bc-a0530b4dd8b4/0/CE0CD1353A42A0A99EE768F3FAF235E38F6C1189.crl rsync://repo-rpki.idnic.net/repo/f373bc61-c5f9-4159-98bc-a0530b4dd8b4/0/CE0CD1353A42A0A99EE768F3FAF235E38F6C1189.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CE0CD1353A42A0A99EE768F3FAF235E38F6C1189.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 16:35:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:e1:34:5e:98:7f:c4:23:ac:22:3e:db:c6:67:3f:43:c7:be:0c:63 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CE0CD1353A42A0A99EE768F3FAF235E38F6C1189 Validity Not Before: Jun 2 01:58:19 2025 GMT Not After : Jun 1 02:03:19 2026 GMT Subject: CN=2E108F620DD2BDD0C9E5A4749812FB9D8F324A23 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:d7:58:47:a8:2d:3d:8f:82:5c:48:1f:6b:a8: 79:17:f1:f7:a1:96:2b:4a:b4:14:18:79:bc:53:e7: 28:6f:b3:08:95:20:2f:65:4a:03:db:9f:d8:38:47: 8e:df:4a:30:6a:5b:0d:68:56:70:f6:a6:de:52:75: 46:28:3d:01:49:f6:60:f6:e7:13:63:cd:da:5d:e1: 86:e8:f2:43:cb:75:79:e2:8c:fe:44:85:ca:6a:79: 77:43:0e:c8:0c:42:ea:36:0f:58:0d:30:a3:99:e9: df:01:a1:cb:4b:a9:88:97:c9:45:e7:59:67:ae:ee: 6c:85:15:96:ee:0d:e1:e9:7a:60:9a:82:2b:b6:dd: 0c:dd:f1:13:25:ff:79:e0:01:dc:82:d9:94:bc:c5: 78:a2:18:fa:63:d1:78:86:e9:f0:67:76:1f:d9:e4: f3:ba:21:ce:e1:7a:9e:53:48:36:39:3e:a8:d0:c9: 91:53:f2:a7:79:f0:bf:b2:2e:c0:03:76:fa:6c:31: a0:31:e9:87:aa:a9:fa:f3:3b:70:94:37:e9:8d:8a: 65:98:11:08:20:36:be:0f:b9:5c:9f:4f:76:99:0e: 08:13:09:72:05:f4:57:69:4a:0b:94:f9:44:2f:34: 2f:4a:86:9c:b3:ce:0b:e4:98:32:e0:db:81:f0:8d: 94:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:10:8F:62:0D:D2:BD:D0:C9:E5:A4:74:98:12:FB:9D:8F:32:4A:23 X509v3 Authority Key Identifier: keyid:CE:0C:D1:35:3A:42:A0:A9:9E:E7:68:F3:FA:F2:35:E3:8F:6C:11:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f373bc61-c5f9-4159-98bc-a0530b4dd8b4/0/CE0CD1353A42A0A99EE768F3FAF235E38F6C1189.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CE0CD1353A42A0A99EE768F3FAF235E38F6C1189.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f373bc61-c5f9-4159-98bc-a0530b4dd8b4/0/323030313a6466303a666230303a3a2f34382d3438203d3e20313336313035.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df0:fb00::/48 Signature Algorithm: sha256WithRSAEncryption 9c:83:90:09:63:2c:48:cc:63:a8:82:b5:5e:8d:57:f3:28:1d: 5a:9a:8b:ff:1f:12:58:64:a8:b3:79:88:5e:d0:96:d5:c1:c1: 81:0f:71:9c:db:54:11:ba:2b:2c:05:a7:fb:74:08:23:43:26: b1:69:d1:54:bc:f0:87:ef:3e:8a:2b:57:34:9c:87:4f:22:3f: bc:e2:d1:32:d7:ee:53:75:81:85:bb:0d:21:7d:fd:56:b8:74: 46:64:c0:3b:9e:b0:6f:e3:27:73:94:17:bc:91:b4:37:2b:53: 2a:20:f8:02:d2:55:4e:e0:45:75:43:3a:ba:fb:d8:42:84:e2: 37:1a:d8:5b:0a:bb:91:b5:62:5b:0c:b3:c9:c0:d8:30:d7:e8: 64:98:61:99:12:00:01:23:33:05:92:56:65:90:fd:51:b7:f2: dd:de:52:72:8b:87:08:26:50:09:f0:fa:73:1f:d3:5a:23:92: 68:1b:a6:1f:ad:cc:3c:d8:0a:e7:cc:f6:c5:d2:e7:33:e4:c8: 95:3f:e4:bd:fd:05:07:1f:fe:22:f8:b7:ca:d9:ce:8e:09:60: e7:24:83:51:29:83:83:e8:92:26:c1:05:7a:78:d1:18:e0:1c: d3:6d:72:81:7d:72:3e:a2:40:db:53:27:8a:2b:04:45:19:96: 38:c5:70:a7 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUfOE0Xph/xCOsIj7bxmc/Q8e+DGMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0UwQ0QxMzUzQTQyQTBBOTlFRTc2OEYzRkFGMjM1RTM4 RjZDMTE4OTAeFw0yNTA2MDIwMTU4MTlaFw0yNjA2MDEwMjAzMTlaMDMxMTAvBgNV BAMTKDJFMTA4RjYyMEREMkJERDBDOUU1QTQ3NDk4MTJGQjlEOEYzMjRBMjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDi11hHqC09j4JcSB9rqHkX8feh litKtBQYebxT5yhvswiVIC9lSgPbn9g4R47fSjBqWw1oVnD2pt5SdUYoPQFJ9mD2 5xNjzdpd4Ybo8kPLdXnijP5EhcpqeXdDDsgMQuo2D1gNMKOZ6d8BoctLqYiXyUXn WWeu7myFFZbuDeHpemCagiu23Qzd8RMl/3ngAdyC2ZS8xXiiGPpj0XiG6fBndh/Z 5PO6Ic7hep5TSDY5PqjQyZFT8qd58L+yLsADdvpsMaAx6YeqqfrzO3CUN+mNimWY EQggNr4PuVyfT3aZDggTCXIF9FdpSguU+UQvNC9KhpyzzgvkmDLg24HwjZQtAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQULhCPYg3SvdDJ5aR0mBL7nY8ySiMwHwYDVR0j BBgwFoAUzgzRNTpCoKme52jz+vI1449sEYkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MzczYmM2MS1jNWY5LTQxNTktOThiYy1hMDUzMGI0ZGQ4YjQvMC9DRTBDRDEzNTNB NDJBMEE5OUVFNzY4RjNGQUYyMzVFMzhGNkMxMTg5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0UwQ0QxMzUzQTQyQTBBOTlFRTc2OEYzRkFGMjM1RTM4RjZD MTE4OS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzNzNiYzYxLWM1ZjktNDE1OS05 OGJjLWEwNTMwYjRkZDhiNC8wLzMyMzAzMDMxM2E2NDY2MzAzYTY2NjIzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM2MzEzMDM1LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8PsAMA0GCSqGSIb3DQEBCwUAA4IBAQCcg5AJYyxIzGOogrVejVfzKB1amov/HxJY ZKizeYhe0JbVwcGBD3Gc21QRuissBaf7dAgjQyaxadFUvPCH7z6KK1c0nIdPIj+8 4tEy1+5TdYGFuw0hff1WuHRGZMA7nrBv4ydzlBe8kbQ3K1MqIPgC0lVO4EV1Qzq6 +9hChOI3GthbCruRtWJbDLPJwNgw1+hkmGGZEgABIzMFklZlkP1Rt/Ld3lJyi4cI JlAJ8PpzH9NaI5JoG6Yfrcw82ArnzPbF0ucz5MiVP+S9/QUHH/4i+LfK2c6OCWDn JINRKYOD6JImwQV6eNEY4BzTbXKBfXI+okDbUyeKKwRFGZY4xXCn -----END CERTIFICATE-----Generated at Sat Jun 7 12:32:51 2025 by rpki-client