$ rpki-client -vvf repo-rpki.idnic.net/repo/f8fca42f-836a-40ec-a76f-b604711f3364/0/323030313a6466343a353430303a3a2f34382d3438203d3e20313333383335.roa File: 323030313a6466343a353430303a3a2f34382d3438203d3e20313333383335.roa (raw, json) Hash identifier: WVWkZoK2slUp5FXFBlvV70xmkvB8Xi8yr0ufb6QFcL0= Subject key identifier: 47:99:9B:B3:09:CD:1D:5D:24:A3:C0:C1:5F:54:E5:A1:34:5C:49:ED Certificate issuer: /CN=BEA8C6D5F4B424A9EABFC2F68F71B0505B7E3641 Certificate serial: 6C97C4D9FCFB398E9F766297A415973597190B2D Authority key identifier: BE:A8:C6:D5:F4:B4:24:A9:EA:BF:C2:F6:8F:71:B0:50:5B:7E:36:41 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BEA8C6D5F4B424A9EABFC2F68F71B0505B7E3641.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f8fca42f-836a-40ec-a76f-b604711f3364/0/323030313a6466343a353430303a3a2f34382d3438203d3e20313333383335.roa Signing time: Tue 20 May 2025 21:00:02 +0000 ROA not before: Tue 20 May 2025 20:55:02 +0000 ROA not after: Tue 19 May 2026 21:00:02 +0000 asID: 133835 IP address blocks: 2001:df4:5400::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f8fca42f-836a-40ec-a76f-b604711f3364/0/BEA8C6D5F4B424A9EABFC2F68F71B0505B7E3641.crl rsync://repo-rpki.idnic.net/repo/f8fca42f-836a-40ec-a76f-b604711f3364/0/BEA8C6D5F4B424A9EABFC2F68F71B0505B7E3641.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BEA8C6D5F4B424A9EABFC2F68F71B0505B7E3641.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 19:48:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:97:c4:d9:fc:fb:39:8e:9f:76:62:97:a4:15:97:35:97:19:0b:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BEA8C6D5F4B424A9EABFC2F68F71B0505B7E3641 Validity Not Before: May 20 20:55:02 2025 GMT Not After : May 19 21:00:02 2026 GMT Subject: CN=47999BB309CD1D5D24A3C0C15F54E5A1345C49ED Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:00:54:c7:5c:e5:11:bf:f0:03:35:c6:95:ca: 6b:a7:ff:4a:bc:f2:dc:46:f8:ea:24:c0:6c:6d:1f: 20:48:ec:56:53:72:30:f5:52:67:fb:fa:a5:e0:81: d7:c4:39:80:f8:21:e5:35:71:11:1a:d8:89:2c:b0: af:b7:8b:f9:48:89:71:0b:10:e5:1e:7a:6a:84:35: 91:f2:12:85:65:42:2f:13:12:90:0a:30:58:e1:81: bc:a6:c0:68:99:16:fe:a1:1b:4e:bc:fe:fe:9b:68: 1b:51:a1:c9:98:8a:c8:5b:ec:d8:56:2a:7d:dd:1c: 10:81:45:74:67:a9:e5:16:ce:b6:ab:15:ac:46:78: e2:f5:73:34:c1:6e:09:74:c0:21:6b:06:e2:c6:64: 3a:ee:80:ce:c4:dc:c3:c9:98:75:76:7b:3e:01:6a: f0:19:e2:79:1b:7b:45:de:5e:21:ed:92:96:07:8f: d0:b8:bb:77:57:0a:3a:65:33:7a:7f:e5:ae:39:eb: 36:f4:dc:fc:9d:ac:26:2d:e3:5f:6f:38:02:60:47: d6:51:4a:4d:d7:86:31:c1:d1:d4:19:f5:42:fe:79: 32:c1:02:bc:f8:18:31:fe:a7:db:2d:cf:7f:c7:86: 46:88:48:45:79:d8:66:c0:c9:ef:f9:8c:f3:60:ed: 9e:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:99:9B:B3:09:CD:1D:5D:24:A3:C0:C1:5F:54:E5:A1:34:5C:49:ED X509v3 Authority Key Identifier: keyid:BE:A8:C6:D5:F4:B4:24:A9:EA:BF:C2:F6:8F:71:B0:50:5B:7E:36:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f8fca42f-836a-40ec-a76f-b604711f3364/0/BEA8C6D5F4B424A9EABFC2F68F71B0505B7E3641.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BEA8C6D5F4B424A9EABFC2F68F71B0505B7E3641.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f8fca42f-836a-40ec-a76f-b604711f3364/0/323030313a6466343a353430303a3a2f34382d3438203d3e20313333383335.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df4:5400::/48 Signature Algorithm: sha256WithRSAEncryption aa:9b:25:1e:0f:34:10:95:05:32:e6:d8:40:ec:62:7e:83:6f: 30:4b:5e:46:8b:05:a3:a0:ea:b6:0b:32:f3:03:7f:fb:57:da: 2e:9a:26:d3:31:1c:a7:cf:ed:99:d3:8a:72:ea:38:ee:7d:eb: 0c:19:2a:ac:82:9e:67:53:68:24:ee:7d:83:19:92:f7:25:f7: 46:4b:c1:e1:b8:54:91:46:d7:ce:c8:71:a3:d6:6b:be:e9:7a: 9b:c0:b2:77:58:62:50:eb:a0:17:e0:73:f1:ec:5f:75:99:75: 63:c4:d3:44:fc:9a:be:46:20:05:db:31:c5:45:23:f4:d3:a2: 33:9b:e7:50:0a:a6:cf:92:4e:d4:78:fa:99:56:9e:6a:e3:ec: 4b:6f:63:95:75:a2:42:0c:c0:e2:5d:e7:d9:c3:21:6a:24:9f: e9:09:65:b6:3f:48:29:20:8a:98:28:ea:5e:da:36:f6:67:32: ea:e9:52:94:b7:20:68:a7:4d:27:dd:25:08:41:55:2e:57:98: 69:bc:74:ed:b8:fa:93:6c:ab:8a:fb:ed:33:0a:c0:29:c8:20: 6c:74:bb:e5:06:8c:26:26:c7:90:a1:ee:33:f3:96:5a:c7:08: fb:cb:a5:85:ca:40:6e:9b:6f:db:34:6e:cc:7e:ca:7c:78:8b: d7:aa:6d:1f -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUbJfE2fz7OY6fdmKXpBWXNZcZCy0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkVBOEM2RDVGNEI0MjRBOUVBQkZDMkY2OEY3MUIwNTA1 QjdFMzY0MTAeFw0yNTA1MjAyMDU1MDJaFw0yNjA1MTkyMTAwMDJaMDMxMTAvBgNV BAMTKDQ3OTk5QkIzMDlDRDFENUQyNEEzQzBDMTVGNTRFNUExMzQ1QzQ5RUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCcAFTHXOURv/ADNcaVymun/0q8 8txG+OokwGxtHyBI7FZTcjD1Umf7+qXggdfEOYD4IeU1cREa2IkssK+3i/lIiXEL EOUeemqENZHyEoVlQi8TEpAKMFjhgbymwGiZFv6hG068/v6baBtRocmYishb7NhW Kn3dHBCBRXRnqeUWzrarFaxGeOL1czTBbgl0wCFrBuLGZDrugM7E3MPJmHV2ez4B avAZ4nkbe0XeXiHtkpYHj9C4u3dXCjplM3p/5a456zb03PydrCYt419vOAJgR9ZR Sk3XhjHB0dQZ9UL+eTLBArz4GDH+p9stz3/HhkaISEV52GbAye/5jPNg7Z7bAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUR5mbswnNHV0ko8DBX1TloTRcSe0wHwYDVR0j BBgwFoAUvqjG1fS0JKnqv8L2j3GwUFt+NkEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m OGZjYTQyZi04MzZhLTQwZWMtYTc2Zi1iNjA0NzExZjMzNjQvMC9CRUE4QzZENUY0 QjQyNEE5RUFCRkMyRjY4RjcxQjA1MDVCN0UzNjQxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkVBOEM2RDVGNEI0MjRBOUVBQkZDMkY2OEY3MUIwNTA1QjdF MzY0MS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Y4ZmNhNDJmLTgzNmEtNDBlYy1h NzZmLWI2MDQ3MTFmMzM2NC8wLzMyMzAzMDMxM2E2NDY2MzQzYTM1MzQzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzMzMzgzMzM1LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 9FQAMA0GCSqGSIb3DQEBCwUAA4IBAQCqmyUeDzQQlQUy5thA7GJ+g28wS15GiwWj oOq2CzLzA3/7V9oumibTMRynz+2Z04py6jjufesMGSqsgp5nU2gk7n2DGZL3JfdG S8HhuFSRRtfOyHGj1mu+6XqbwLJ3WGJQ66AX4HPx7F91mXVjxNNE/Jq+RiAF2zHF RSP006Izm+dQCqbPkk7UePqZVp5q4+xLb2OVdaJCDMDiXefZwyFqJJ/pCWW2P0gp IIqYKOpe2jb2ZzLq6VKUtyBop00n3SUIQVUuV5hpvHTtuPqTbKuK++0zCsApyCBs dLvlBowmJseQoe4z85Zaxwj7y6WFykBum2/bNG7Mfsp8eIvXqm0f -----END CERTIFICATE-----Generated at Thu Jun 5 18:29:39 2025 by rpki-client