$ rpki-client -vvf repo-rpki.idnic.net/repo/f73ab79d-00d5-49cb-ac10-3bd4f2386bc6/0/323030313a6466303a623238303a3a2f34382d3438203d3e20313338383733.roa File: 323030313a6466303a623238303a3a2f34382d3438203d3e20313338383733.roa (raw, json) Hash identifier: Hrvwt79CsllNFcgj1XkX080ZEGTR3oJEJ5/uQyuwag4= Subject key identifier: EF:18:2B:2E:00:72:CB:F5:A3:ED:81:B4:56:9D:8E:D4:F0:7C:5B:82 Certificate issuer: /CN=45795CE411027C6961B89E9C0FBDB9B73BD61C39 Certificate serial: 0587D1F3ECDEA176C9E58CC7BA9B3EA4867F4A3E Authority key identifier: 45:79:5C:E4:11:02:7C:69:61:B8:9E:9C:0F:BD:B9:B7:3B:D6:1C:39 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/45795CE411027C6961B89E9C0FBDB9B73BD61C39.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f73ab79d-00d5-49cb-ac10-3bd4f2386bc6/0/323030313a6466303a623238303a3a2f34382d3438203d3e20313338383733.roa Signing time: Mon 02 Jun 2025 02:03:17 +0000 ROA not before: Mon 02 Jun 2025 01:58:17 +0000 ROA not after: Mon 01 Jun 2026 02:03:17 +0000 asID: 138873 IP address blocks: 2001:df0:b280::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f73ab79d-00d5-49cb-ac10-3bd4f2386bc6/0/45795CE411027C6961B89E9C0FBDB9B73BD61C39.crl rsync://repo-rpki.idnic.net/repo/f73ab79d-00d5-49cb-ac10-3bd4f2386bc6/0/45795CE411027C6961B89E9C0FBDB9B73BD61C39.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/45795CE411027C6961B89E9C0FBDB9B73BD61C39.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 00:19:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:87:d1:f3:ec:de:a1:76:c9:e5:8c:c7:ba:9b:3e:a4:86:7f:4a:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=45795CE411027C6961B89E9C0FBDB9B73BD61C39 Validity Not Before: Jun 2 01:58:17 2025 GMT Not After : Jun 1 02:03:17 2026 GMT Subject: CN=EF182B2E0072CBF5A3ED81B4569D8ED4F07C5B82 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:b7:06:3f:6c:13:ff:12:38:58:e3:8d:f9:ef: fb:8d:e4:f2:4a:1e:a9:46:70:d7:72:54:81:25:4b: 55:0b:61:2a:7f:5b:72:4a:5c:13:12:56:9c:71:55: cf:24:57:5f:7d:7a:09:e6:f2:60:39:ad:e4:77:1a: b8:2f:3d:fb:f4:89:f8:0b:7c:cd:0a:16:6c:7e:7f: 1c:9d:b0:93:d9:fc:76:f4:ad:ed:59:ea:8f:18:10: b3:54:15:a1:ce:af:e3:74:45:2e:94:c0:3e:68:65: d6:13:89:a7:2a:9e:93:9c:b6:7e:02:68:a0:c0:5b: b6:67:23:1e:50:6f:be:be:a1:e1:40:f2:ab:fa:69: 04:c2:12:2d:c3:22:43:67:ec:d0:33:07:00:de:7a: 14:ae:8d:88:66:86:a1:9d:39:46:72:1c:49:bc:f7: 65:be:96:73:20:e3:c9:9f:e2:6f:87:3e:03:f3:51: f2:8f:78:b6:34:88:5b:d4:c9:34:12:11:63:3c:d4: 31:ad:f4:ac:4b:75:52:6f:10:dc:0a:35:12:5e:79: 92:3d:fb:61:6a:2c:35:20:d1:9d:d8:8f:a0:93:a3: 5d:ea:bb:ab:63:a0:c3:9a:fd:37:71:3d:0b:44:c1: d1:0d:87:bb:5c:79:65:8c:29:8f:13:56:1b:9f:cb: 11:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:18:2B:2E:00:72:CB:F5:A3:ED:81:B4:56:9D:8E:D4:F0:7C:5B:82 X509v3 Authority Key Identifier: keyid:45:79:5C:E4:11:02:7C:69:61:B8:9E:9C:0F:BD:B9:B7:3B:D6:1C:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f73ab79d-00d5-49cb-ac10-3bd4f2386bc6/0/45795CE411027C6961B89E9C0FBDB9B73BD61C39.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/45795CE411027C6961B89E9C0FBDB9B73BD61C39.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f73ab79d-00d5-49cb-ac10-3bd4f2386bc6/0/323030313a6466303a623238303a3a2f34382d3438203d3e20313338383733.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df0:b280::/48 Signature Algorithm: sha256WithRSAEncryption 27:e7:35:f8:c6:eb:52:21:bb:29:87:cc:3c:f0:31:69:a0:03: 3f:21:06:04:b2:81:0a:8d:52:cd:5e:0a:b8:43:09:95:04:e4: 80:35:86:13:1f:ae:75:3a:11:6b:c9:1d:29:a5:5b:b2:45:19: c8:67:22:c6:f3:04:90:c0:7d:2d:1f:d6:c3:26:ce:b1:7a:51: 9c:b1:94:97:e2:97:cb:5e:25:02:79:a7:1d:48:b0:0c:d7:16: 27:d7:4f:58:14:a0:12:cb:1c:e6:67:18:77:97:e5:49:6c:95: 7b:75:08:7c:fe:9a:27:bb:c0:04:e2:db:c9:d6:fe:0a:96:fa: f4:bf:d3:79:99:53:ae:34:fb:4d:e5:99:f1:8d:6f:c1:5f:01: 65:7d:c3:b2:1e:28:60:c5:42:37:a6:07:af:3d:a0:c8:64:46: cc:2c:7e:f6:5a:16:5b:6d:9d:49:f3:07:7f:e8:d8:fe:d2:d4: 1e:fc:61:32:65:77:a3:26:c7:4d:da:59:2a:89:09:a2:54:20: 36:3a:2f:34:82:36:74:63:d7:c7:8e:53:b7:1f:22:5a:8b:c9: 11:f1:34:d5:c9:0d:74:81:1e:56:6e:65:32:ff:8e:e5:c3:d4: 67:f1:7c:7d:76:4b:76:80:58:e1:43:7c:5f:38:71:84:80:95: 48:0e:c1:df -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUBYfR8+zeoXbJ5YzHups+pIZ/Sj4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDU3OTVDRTQxMTAyN0M2OTYxQjg5RTlDMEZCREI5Qjcz QkQ2MUMzOTAeFw0yNTA2MDIwMTU4MTdaFw0yNjA2MDEwMjAzMTdaMDMxMTAvBgNV BAMTKEVGMTgyQjJFMDA3MkNCRjVBM0VEODFCNDU2OUQ4RUQ0RjA3QzVCODIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6twY/bBP/EjhY44357/uN5PJK HqlGcNdyVIElS1ULYSp/W3JKXBMSVpxxVc8kV199egnm8mA5reR3GrgvPfv0ifgL fM0KFmx+fxydsJPZ/Hb0re1Z6o8YELNUFaHOr+N0RS6UwD5oZdYTiacqnpOctn4C aKDAW7ZnIx5Qb76+oeFA8qv6aQTCEi3DIkNn7NAzBwDeehSujYhmhqGdOUZyHEm8 92W+lnMg48mf4m+HPgPzUfKPeLY0iFvUyTQSEWM81DGt9KxLdVJvENwKNRJeeZI9 +2FqLDUg0Z3Yj6CTo13qu6tjoMOa/TdxPQtEwdENh7tceWWMKY8TVhufyxHlAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQU7xgrLgByy/Wj7YG0Vp2O1PB8W4IwHwYDVR0j BBgwFoAURXlc5BECfGlhuJ6cD725tzvWHDkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m NzNhYjc5ZC0wMGQ1LTQ5Y2ItYWMxMC0zYmQ0ZjIzODZiYzYvMC80NTc5NUNFNDEx MDI3QzY5NjFCODlFOUMwRkJEQjlCNzNCRDYxQzM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDU3OTVDRTQxMTAyN0M2OTYxQjg5RTlDMEZCREI5QjczQkQ2 MUMzOS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Y3M2FiNzlkLTAwZDUtNDljYi1h YzEwLTNiZDRmMjM4NmJjNi8wLzMyMzAzMDMxM2E2NDY2MzAzYTYyMzIzODMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM4MzgzNzMzLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8LKAMA0GCSqGSIb3DQEBCwUAA4IBAQAn5zX4xutSIbsph8w88DFpoAM/IQYEsoEK jVLNXgq4QwmVBOSANYYTH651OhFryR0ppVuyRRnIZyLG8wSQwH0tH9bDJs6xelGc sZSX4pfLXiUCeacdSLAM1xYn109YFKASyxzmZxh3l+VJbJV7dQh8/ponu8AE4tvJ 1v4Klvr0v9N5mVOuNPtN5ZnxjW/BXwFlfcOyHihgxUI3pgevPaDIZEbMLH72WhZb bZ1J8wd/6Nj+0tQe/GEyZXejJsdN2lkqiQmiVCA2Oi80gjZ0Y9fHjlO3HyJai8kR 8TTVyQ10gR5WbmUy/47lw9Rn8Xx9dkt2gFjhQ3xfOHGEgJVIDsHf -----END CERTIFICATE-----Generated at Sat Jun 7 23:15:34 2025 by rpki-client