$ rpki-client -vvf repo-rpki.idnic.net/repo/f87dd597-40cd-409b-b3c5-2852ce014889/1/323030313a6466333a623034303a3a2f34382d3438203d3e20313532343432.roa File: 323030313a6466333a623034303a3a2f34382d3438203d3e20313532343432.roa (raw, json) Hash identifier: mKIqmd/EOitm2VkjJ4/rdItHB7wxpB5sjP3tcWKMCX8= Subject key identifier: DF:3E:70:5B:D1:D9:F3:D1:1A:9D:CA:C3:33:9D:8A:9A:61:D2:F8:6B Certificate issuer: /CN=6B35526165718CDFDDCB202D241332F565BEE7B0 Certificate serial: 5664F149ED94105629D932F4FB45844F10E9B407 Authority key identifier: 6B:35:52:61:65:71:8C:DF:DD:CB:20:2D:24:13:32:F5:65:BE:E7:B0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B35526165718CDFDDCB202D241332F565BEE7B0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f87dd597-40cd-409b-b3c5-2852ce014889/1/323030313a6466333a623034303a3a2f34382d3438203d3e20313532343432.roa Signing time: Fri 16 May 2025 05:02:05 +0000 ROA not before: Fri 16 May 2025 04:57:05 +0000 ROA not after: Fri 15 May 2026 05:02:05 +0000 asID: 152442 IP address blocks: 2001:df3:b040::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f87dd597-40cd-409b-b3c5-2852ce014889/1/6B35526165718CDFDDCB202D241332F565BEE7B0.crl rsync://repo-rpki.idnic.net/repo/f87dd597-40cd-409b-b3c5-2852ce014889/1/6B35526165718CDFDDCB202D241332F565BEE7B0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B35526165718CDFDDCB202D241332F565BEE7B0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 13:36:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:64:f1:49:ed:94:10:56:29:d9:32:f4:fb:45:84:4f:10:e9:b4:07 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6B35526165718CDFDDCB202D241332F565BEE7B0 Validity Not Before: May 16 04:57:05 2025 GMT Not After : May 15 05:02:05 2026 GMT Subject: CN=DF3E705BD1D9F3D11A9DCAC3339D8A9A61D2F86B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:ac:36:2d:33:c9:81:1d:56:3f:63:7d:7f:fa: dd:bf:29:c2:03:cc:f2:8a:4f:5d:63:a4:41:4a:f9: 2d:b1:3f:cb:b8:39:7b:f4:e0:b4:f2:6d:e2:90:31: 11:89:96:cd:cc:06:e4:e5:98:6f:24:19:6f:c8:e3: 71:06:15:90:d1:d0:80:cd:3e:8e:f0:7b:e7:ae:5c: 28:1a:ed:79:83:fa:e5:da:5b:e7:8e:8e:03:5b:0d: 90:e8:93:8d:46:9f:f1:d0:69:dc:cf:26:b4:17:23: 51:58:59:b8:cf:7c:27:28:88:5d:29:44:11:a5:2a: 73:df:6f:10:6d:8b:41:f0:af:bc:79:4e:0b:83:c1: b6:a3:47:01:ce:db:9a:ef:33:95:18:d0:f9:b6:7b: c7:aa:ed:36:93:5b:f1:53:75:ec:0f:c6:e8:ec:74: 3f:fd:ec:08:e1:39:98:db:50:44:ee:da:2c:3c:ae: 0c:60:a7:c5:5d:d0:e3:b5:a8:7d:c8:ef:6a:52:7d: 4b:3f:17:01:fd:97:0a:a3:f1:d6:68:4c:a5:82:4c: b8:65:66:a6:45:04:a2:93:71:20:53:ed:44:c2:98: cd:b9:aa:35:5b:28:fa:ae:6b:58:ef:4f:26:f4:71: 58:e9:d5:e8:e7:dc:83:1b:16:a3:72:30:e5:73:c9: c2:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:3E:70:5B:D1:D9:F3:D1:1A:9D:CA:C3:33:9D:8A:9A:61:D2:F8:6B X509v3 Authority Key Identifier: keyid:6B:35:52:61:65:71:8C:DF:DD:CB:20:2D:24:13:32:F5:65:BE:E7:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f87dd597-40cd-409b-b3c5-2852ce014889/1/6B35526165718CDFDDCB202D241332F565BEE7B0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B35526165718CDFDDCB202D241332F565BEE7B0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f87dd597-40cd-409b-b3c5-2852ce014889/1/323030313a6466333a623034303a3a2f34382d3438203d3e20313532343432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df3:b040::/48 Signature Algorithm: sha256WithRSAEncryption b6:2b:98:6a:2d:84:c6:60:55:55:c5:55:04:45:77:ac:4b:04: c2:47:d2:16:8c:bf:57:22:0d:cf:b7:ce:b1:7d:cd:57:09:c9: e8:43:ce:50:3d:e9:8d:38:c1:15:8e:12:a9:e4:13:5e:e4:07: 02:cb:13:7d:37:44:ea:2b:16:7b:c6:2c:00:8c:bb:33:29:d9: f3:49:9f:fc:64:55:96:0c:de:e2:cd:08:c3:df:9b:30:c9:13: ae:5b:f7:0a:21:a7:26:4b:76:a7:7c:a2:f3:27:81:f7:55:1e: 28:62:29:0a:e1:9f:de:b8:fb:a7:fe:68:64:06:97:15:16:f7: cf:63:28:c3:f3:cb:75:b3:cd:ae:65:1f:59:75:2b:f9:c9:df: aa:0c:cf:c9:f4:30:2e:b5:74:6f:50:e4:72:97:9b:cb:05:98: 7f:04:cd:3c:13:53:85:13:a9:66:8f:26:7b:5e:f7:35:73:be: 9f:cc:18:54:76:a8:62:04:0e:e0:60:0a:85:73:f7:f6:36:db: f9:02:54:5b:e9:de:ce:64:09:fd:0c:ae:3e:6f:22:b0:ff:07: fa:c5:5f:fe:b6:aa:d7:dd:3a:94:da:d8:33:48:56:38:81:c8: e4:1c:ab:c1:39:2f:39:db:0f:a1:ae:77:bb:20:84:02:00:5a: 70:10:54:72 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUVmTxSe2UEFYp2TL0+0WETxDptAcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkIzNTUyNjE2NTcxOENERkREQ0IyMDJEMjQxMzMyRjU2 NUJFRTdCMDAeFw0yNTA1MTYwNDU3MDVaFw0yNjA1MTUwNTAyMDVaMDMxMTAvBgNV BAMTKERGM0U3MDVCRDFEOUYzRDExQTlEQ0FDMzMzOUQ4QTlBNjFEMkY4NkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5rDYtM8mBHVY/Y31/+t2/KcID zPKKT11jpEFK+S2xP8u4OXv04LTybeKQMRGJls3MBuTlmG8kGW/I43EGFZDR0IDN Po7we+euXCga7XmD+uXaW+eOjgNbDZDok41Gn/HQadzPJrQXI1FYWbjPfCcoiF0p RBGlKnPfbxBti0Hwr7x5TguDwbajRwHO25rvM5UY0Pm2e8eq7TaTW/FTdewPxujs dD/97AjhOZjbUETu2iw8rgxgp8Vd0OO1qH3I72pSfUs/FwH9lwqj8dZoTKWCTLhl ZqZFBKKTcSBT7UTCmM25qjVbKPqua1jvTyb0cVjp1ejn3IMbFqNyMOVzycINAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQU3z5wW9HZ89EancrDM52KmmHS+GswHwYDVR0j BBgwFoAUazVSYWVxjN/dyyAtJBMy9WW+57AwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m ODdkZDU5Ny00MGNkLTQwOWItYjNjNS0yODUyY2UwMTQ4ODkvMS82QjM1NTI2MTY1 NzE4Q0RGRERDQjIwMkQyNDEzMzJGNTY1QkVFN0IwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkIzNTUyNjE2NTcxOENERkREQ0IyMDJEMjQxMzMyRjU2NUJF RTdCMC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Y4N2RkNTk3LTQwY2QtNDA5Yi1i M2M1LTI4NTJjZTAxNDg4OS8xLzMyMzAzMDMxM2E2NDY2MzMzYTYyMzAzNDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNTMyMzQzNDMyLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 87BAMA0GCSqGSIb3DQEBCwUAA4IBAQC2K5hqLYTGYFVVxVUERXesSwTCR9IWjL9X Ig3Pt86xfc1XCcnoQ85QPemNOMEVjhKp5BNe5AcCyxN9N0TqKxZ7xiwAjLszKdnz SZ/8ZFWWDN7izQjD35swyROuW/cKIacmS3anfKLzJ4H3VR4oYikK4Z/euPun/mhk BpcVFvfPYyjD88t1s82uZR9ZdSv5yd+qDM/J9DAutXRvUORyl5vLBZh/BM08E1OF E6lmjyZ7Xvc1c76fzBhUdqhiBA7gYAqFc/f2Ntv5AlRb6d7OZAn9DK4+byKw/wf6 xV/+tqrX3TqU2tgzSFY4gcjkHKvBOS852w+hrne7IIQCAFpwEFRy -----END CERTIFICATE-----Generated at Sun Jun 8 11:03:56 2025 by rpki-client