$ rpki-client -vvf repo-rpki.idnic.net/repo/03500767-9227-43ec-a525-2e97d5a03f09/0/323030313a6466303a39613a3a2f34382d3438203d3e203435363937.roa File: 323030313a6466303a39613a3a2f34382d3438203d3e203435363937.roa (raw, json) Hash identifier: ZceMWlNxLHIqsif36KN1ms0kpQpQ1f71pr5K0XWa9aY= Subject key identifier: 62:36:7C:A9:58:93:68:EA:33:76:10:FE:05:33:9C:BB:C9:9A:BF:35 Certificate issuer: /CN=6BA087A8C1BF46BBD4748D23F9E34B92774FCC66 Certificate serial: 56334815A162F0A6D2C8208B2B4FE8F302C261CF Authority key identifier: 6B:A0:87:A8:C1:BF:46:BB:D4:74:8D:23:F9:E3:4B:92:77:4F:CC:66 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6BA087A8C1BF46BBD4748D23F9E34B92774FCC66.cer Subject info access: rsync://repo-rpki.idnic.net/repo/03500767-9227-43ec-a525-2e97d5a03f09/0/323030313a6466303a39613a3a2f34382d3438203d3e203435363937.roa Signing time: Fri 27 Jun 2025 04:00:00 +0000 ROA not before: Fri 27 Jun 2025 03:55:00 +0000 ROA not after: Fri 26 Jun 2026 04:00:00 +0000 asID: 45697 IP address blocks: 2001:df0:9a::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/03500767-9227-43ec-a525-2e97d5a03f09/0/6BA087A8C1BF46BBD4748D23F9E34B92774FCC66.crl rsync://repo-rpki.idnic.net/repo/03500767-9227-43ec-a525-2e97d5a03f09/0/6BA087A8C1BF46BBD4748D23F9E34B92774FCC66.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6BA087A8C1BF46BBD4748D23F9E34B92774FCC66.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 02 Jul 2025 16:25:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:33:48:15:a1:62:f0:a6:d2:c8:20:8b:2b:4f:e8:f3:02:c2:61:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6BA087A8C1BF46BBD4748D23F9E34B92774FCC66 Validity Not Before: Jun 27 03:55:00 2025 GMT Not After : Jun 26 04:00:00 2026 GMT Subject: CN=62367CA9589368EA337610FE05339CBBC99ABF35 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:23:24:d5:fd:dd:a7:e0:35:a6:69:69:5c:f8: 96:2e:37:27:d5:2f:f6:01:f9:8b:67:c4:81:40:af: b6:ea:53:72:68:f0:f1:d0:27:54:79:58:49:ed:29: 61:d5:cf:88:de:8b:ce:4d:fd:bc:18:56:78:32:dd: a6:b1:7d:ab:0d:94:f6:76:08:84:4f:87:d8:6b:9b: 6f:c2:58:3e:28:a0:e5:30:26:5e:a0:4d:f9:12:87: b2:26:6d:9f:15:2a:ee:64:c2:6c:cc:75:ee:ac:25: 0c:ea:10:54:08:79:86:40:a9:99:57:28:0b:0d:5e: e9:c8:89:76:bb:70:7e:33:32:d6:ca:ea:e4:6b:00: 00:2d:6e:09:52:ef:3f:83:8e:77:9d:42:45:87:ad: c3:8c:45:38:6e:f5:41:d0:3e:43:e3:a8:b3:40:e0: 8b:da:1e:e9:fb:a3:e3:a1:ab:9d:de:6d:cd:f3:6d: 73:86:33:0f:a0:16:9b:f1:b3:f6:29:b9:61:fa:2a: 4c:47:49:d9:ce:80:84:d5:77:21:70:75:d1:54:70: 11:99:24:6c:55:aa:48:98:5a:91:82:6d:04:58:81: e3:57:1c:84:d7:c6:92:56:f6:f5:a6:81:00:25:83: 41:07:72:f7:e1:a6:eb:a7:b6:56:ad:ec:31:a6:79: 41:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:36:7C:A9:58:93:68:EA:33:76:10:FE:05:33:9C:BB:C9:9A:BF:35 X509v3 Authority Key Identifier: keyid:6B:A0:87:A8:C1:BF:46:BB:D4:74:8D:23:F9:E3:4B:92:77:4F:CC:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/03500767-9227-43ec-a525-2e97d5a03f09/0/6BA087A8C1BF46BBD4748D23F9E34B92774FCC66.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6BA087A8C1BF46BBD4748D23F9E34B92774FCC66.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/03500767-9227-43ec-a525-2e97d5a03f09/0/323030313a6466303a39613a3a2f34382d3438203d3e203435363937.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df0:9a::/48 Signature Algorithm: sha256WithRSAEncryption b1:bc:63:f3:62:0f:94:66:bb:87:48:f9:e5:ef:2e:29:7a:1b: f7:a0:79:07:58:0c:90:72:16:7f:df:8a:a8:c2:5f:48:3b:5a: c3:40:87:2e:6e:66:d6:a8:6c:02:28:92:7a:ef:68:d7:1a:8a: 80:a5:6f:aa:04:4f:e4:7b:f8:54:8f:76:13:54:35:f1:46:1b: 02:3c:12:99:75:d3:2d:8a:af:2e:49:3a:23:98:b0:14:df:d7: f9:83:f7:d5:1a:7a:f0:56:92:c0:24:7d:c2:44:da:5b:7f:b1: e0:0a:8b:73:4e:ac:61:8d:8b:48:50:c4:8e:67:bd:e7:c7:32: 01:26:e5:ec:4d:8d:60:41:8c:2d:d1:bd:a7:2a:4e:cd:10:03: 6c:cb:be:16:b8:9c:40:62:8b:fb:c8:20:82:66:c3:72:ab:c5: 4e:5b:ce:03:f6:01:50:82:04:e0:d7:be:42:45:33:55:2e:79: ac:2d:ac:65:a0:e2:f7:17:cc:99:1b:22:e4:b6:49:36:57:fc: a8:a6:55:47:0a:d4:dc:4a:84:a9:8f:ce:7d:f3:c0:79:b5:56: e4:ce:74:aa:6c:56:f4:ed:c5:7e:b9:5a:26:e1:0f:98:44:33: a2:d4:e0:26:f2:b9:ec:1d:7d:db:21:81:6d:98:9e:e5:b8:31: 7b:59:d0:95 -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUVjNIFaFi8KbSyCCLK0/o8wLCYc8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkJBMDg3QThDMUJGNDZCQkQ0NzQ4RDIzRjlFMzRCOTI3 NzRGQ0M2NjAeFw0yNTA2MjcwMzU1MDBaFw0yNjA2MjYwNDAwMDBaMDMxMTAvBgNV BAMTKDYyMzY3Q0E5NTg5MzY4RUEzMzc2MTBGRTA1MzM5Q0JCQzk5QUJGMzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFIyTV/d2n4DWmaWlc+JYuNyfV L/YB+YtnxIFAr7bqU3Jo8PHQJ1R5WEntKWHVz4jei85N/bwYVngy3aaxfasNlPZ2 CIRPh9hrm2/CWD4ooOUwJl6gTfkSh7ImbZ8VKu5kwmzMde6sJQzqEFQIeYZAqZlX KAsNXunIiXa7cH4zMtbK6uRrAAAtbglS7z+DjnedQkWHrcOMRThu9UHQPkPjqLNA 4IvaHun7o+Ohq53ebc3zbXOGMw+gFpvxs/YpuWH6KkxHSdnOgITVdyFwddFUcBGZ JGxVqkiYWpGCbQRYgeNXHITXxpJW9vWmgQAlg0EHcvfhpuuntlat7DGmeUE9AgMB AAGjggI3MIICMzAdBgNVHQ4EFgQUYjZ8qViTaOozdhD+BTOcu8mavzUwHwYDVR0j BBgwFoAUa6CHqMG/RrvUdI0j+eNLkndPzGYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w MzUwMDc2Ny05MjI3LTQzZWMtYTUyNS0yZTk3ZDVhMDNmMDkvMC82QkEwODdBOEMx QkY0NkJCRDQ3NDhEMjNGOUUzNEI5Mjc3NEZDQzY2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkJBMDg3QThDMUJGNDZCQkQ0NzQ4RDIzRjlFMzRCOTI3NzRG Q0M2Ni5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzAzNTAwNzY3LTkyMjctNDNlYy1h NTI1LTJlOTdkNWEwM2YwOS8wLzMyMzAzMDMxM2E2NDY2MzAzYTM5NjEzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzNDM1MzYzOTM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN8ACaMA0G CSqGSIb3DQEBCwUAA4IBAQCxvGPzYg+UZruHSPnl7y4pehv3oHkHWAyQchZ/34qo wl9IO1rDQIcubmbWqGwCKJJ672jXGoqApW+qBE/ke/hUj3YTVDXxRhsCPBKZddMt iq8uSTojmLAU39f5g/fVGnrwVpLAJH3CRNpbf7HgCotzTqxhjYtIUMSOZ73nxzIB JuXsTY1gQYwt0b2nKk7NEANsy74WuJxAYov7yCCCZsNyq8VOW84D9gFQggTg175C RTNVLnmsLaxloOL3F8yZGyLktkk2V/yoplVHCtTcSoSpj85988B5tVbkznSqbFb0 7cV+uVom4Q+YRDOi1OAm8rnsHX3bIYFtmJ7luDF7WdCV -----END CERTIFICATE-----Generated at Mon Jun 30 18:54:16 2025 by rpki-client