$ rpki-client -vvf repo-rpki.idnic.net/repo/1ddc1dd8-6d25-47c7-aaa4-bddf1b9d677e/0/323030313a6466313a363338303a3a2f34382d3438203d3e20313339333831.roa File: 323030313a6466313a363338303a3a2f34382d3438203d3e20313339333831.roa (raw, json) Hash identifier: vuTTJNURLP5vgJImsWTQOQLshtByIl8yIWAQC+TExAY= Subject key identifier: 9E:CA:1D:9D:D7:F5:31:C3:D1:2F:F8:27:29:81:D2:FC:2A:A8:B2:FB Certificate issuer: /CN=D68CA7C6F514D7168C00790717FB869AF68B125E Certificate serial: 6D160A922CDF0FFAF5A855633D173627D2AE6D Authority key identifier: D6:8C:A7:C6:F5:14:D7:16:8C:00:79:07:17:FB:86:9A:F6:8B:12:5E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D68CA7C6F514D7168C00790717FB869AF68B125E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1ddc1dd8-6d25-47c7-aaa4-bddf1b9d677e/0/323030313a6466313a363338303a3a2f34382d3438203d3e20313339333831.roa Signing time: Mon 11 Aug 2025 07:00:00 +0000 ROA not before: Mon 11 Aug 2025 06:55:00 +0000 ROA not after: Mon 10 Aug 2026 07:00:00 +0000 asID: 139381 IP address blocks: 2001:df1:6380::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1ddc1dd8-6d25-47c7-aaa4-bddf1b9d677e/0/D68CA7C6F514D7168C00790717FB869AF68B125E.crl rsync://repo-rpki.idnic.net/repo/1ddc1dd8-6d25-47c7-aaa4-bddf1b9d677e/0/D68CA7C6F514D7168C00790717FB869AF68B125E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D68CA7C6F514D7168C00790717FB869AF68B125E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 20:32:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:16:0a:92:2c:df:0f:fa:f5:a8:55:63:3d:17:36:27:d2:ae:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D68CA7C6F514D7168C00790717FB869AF68B125E Validity Not Before: Aug 11 06:55:00 2025 GMT Not After : Aug 10 07:00:00 2026 GMT Subject: CN=9ECA1D9DD7F531C3D12FF8272981D2FC2AA8B2FB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:a9:a7:66:1e:35:95:b4:bb:89:21:97:59:f5: bc:97:9d:e1:ab:59:1f:20:1d:5b:39:7a:20:9d:a7: d3:31:7b:4e:f3:bd:fa:64:b2:a2:53:32:3c:61:db: 71:48:e5:0f:5a:b0:da:b1:d5:96:84:ad:a6:36:bb: 21:55:16:eb:ac:99:3c:3e:b3:76:91:00:74:23:bf: 11:ac:04:a1:e7:2c:21:0e:bf:fd:5e:4c:4d:9c:8a: f1:1c:3a:eb:17:25:3d:81:fc:cd:eb:b3:28:35:4a: e2:46:3f:99:9c:24:07:b7:25:11:eb:df:48:e9:35: 43:65:8b:a1:2a:2a:da:81:e0:8a:41:04:ea:77:ff: 1f:71:37:b2:56:a6:a9:45:91:b9:e8:ee:fe:b9:7f: 4a:c5:74:e6:88:db:fd:72:f4:1a:87:3c:bc:a5:50: 15:a6:37:f6:a2:ed:6f:3e:8f:42:af:83:58:4e:81: 00:a6:4e:87:a0:e9:b9:b1:06:ab:98:62:06:90:38: 72:14:8f:2c:dc:1f:01:5a:c5:70:4f:b6:55:f5:15: 5a:56:73:5d:f5:b7:07:be:8d:ec:dd:65:d7:b6:5a: 1b:49:1d:a1:e7:7c:9c:f4:d4:7a:96:2e:11:30:02: 33:c7:eb:5c:24:8d:8c:26:2e:c0:f2:b0:f4:fc:e5: 03:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:CA:1D:9D:D7:F5:31:C3:D1:2F:F8:27:29:81:D2:FC:2A:A8:B2:FB X509v3 Authority Key Identifier: keyid:D6:8C:A7:C6:F5:14:D7:16:8C:00:79:07:17:FB:86:9A:F6:8B:12:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1ddc1dd8-6d25-47c7-aaa4-bddf1b9d677e/0/D68CA7C6F514D7168C00790717FB869AF68B125E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D68CA7C6F514D7168C00790717FB869AF68B125E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1ddc1dd8-6d25-47c7-aaa4-bddf1b9d677e/0/323030313a6466313a363338303a3a2f34382d3438203d3e20313339333831.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df1:6380::/48 Signature Algorithm: sha256WithRSAEncryption 07:5c:23:00:ae:4c:1f:da:62:87:7e:37:31:36:c8:8a:2b:10: eb:a5:35:02:2d:78:26:ec:7d:7b:32:dc:c5:a6:17:46:96:a5: 71:bd:ba:ea:6f:6d:8c:28:ce:f2:9c:15:74:45:13:b8:65:f3: 96:4e:2f:37:e5:af:75:5a:b9:dc:56:42:e5:fc:ed:f2:7a:b7: 6a:d6:9e:5e:be:9c:e0:8c:82:aa:6b:8e:72:87:66:e5:43:72: 2e:04:41:36:fd:cb:bd:dd:68:d6:57:e9:af:d2:1c:b4:d8:11: e3:d6:7a:d6:f4:0f:eb:44:53:8e:51:0b:54:5b:4b:12:ef:81: 55:b4:04:75:95:c7:a8:82:28:30:cd:eb:96:d5:30:9e:27:10: 68:23:02:e9:03:b4:f1:9b:72:03:1b:69:53:3b:7c:37:a5:c1: d4:a8:fd:18:86:df:ae:5b:04:c5:91:cb:10:1b:36:bc:39:10: 3a:ef:46:58:4a:ad:df:20:f4:65:21:c4:0a:fd:5f:7b:0d:2d: 87:c9:1c:92:ea:0f:08:df:6f:e9:83:6f:59:31:45:56:58:e8: 0e:77:c9:70:e4:e8:dd:05:c6:9f:61:e1:30:c2:3e:b1:85:9a: 6d:00:22:8b:20:62:7d:65:9d:4f:dc:6d:42:8e:40:c1:a4:e7: 3f:63:97:9a -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgITbRYKkizfD/r1qFVjPRc2J9KubTANBgkqhkiG9w0BAQsF ADAzMTEwLwYDVQQDEyhENjhDQTdDNkY1MTRENzE2OEMwMDc5MDcxN0ZCODY5QUY2 OEIxMjVFMB4XDTI1MDgxMTA2NTUwMFoXDTI2MDgxMDA3MDAwMFowMzExMC8GA1UE AxMoOUVDQTFEOUREN0Y1MzFDM0QxMkZGODI3Mjk4MUQyRkMyQUE4QjJGQjCCASIw DQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBALSpp2YeNZW0u4khl1n1vJed4atZ HyAdWzl6IJ2n0zF7TvO9+mSyolMyPGHbcUjlD1qw2rHVloStpja7IVUW66yZPD6z dpEAdCO/EawEoecsIQ6//V5MTZyK8Rw66xclPYH8zeuzKDVK4kY/mZwkB7clEevf SOk1Q2WLoSoq2oHgikEE6nf/H3E3slamqUWRueju/rl/SsV05ojb/XL0Goc8vKVQ FaY39qLtbz6PQq+DWE6BAKZOh6DpubEGq5hiBpA4chSPLNwfAVrFcE+2VfUVWlZz XfW3B76N7N1l17ZaG0kdoed8nPTUepYuETACM8frXCSNjCYuwPKw9PzlA88CAwEA AaOCAj0wggI5MB0GA1UdDgQWBBSeyh2d1/Uxw9Ev+CcpgdL8Kqiy+zAfBgNVHSME GDAWgBTWjKfG9RTXFowAeQcX+4aa9osSXjAOBgNVHQ8BAf8EBAMCB4AwgYUGA1Ud HwR+MHwweqB4oHaGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFk ZGMxZGQ4LTZkMjUtNDdjNy1hYWE0LWJkZGYxYjlkNjc3ZS8wL0Q2OENBN0M2RjUx NEQ3MTY4QzAwNzkwNzE3RkI4NjlBRjY4QjEyNUUuY3JsMHQGCCsGAQUFBwEBBGgw ZjBkBggrBgEFBQcwAoZYcnN5bmM6Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8v SUROSUMtSUQvMi9ENjhDQTdDNkY1MTRENzE2OEMwMDc5MDcxN0ZCODY5QUY2OEIx MjVFLmNlcjCBqgYIKwYBBQUHAQsEgZ0wgZowgZcGCCsGAQUFBzALhoGKcnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMWRkYzFkZDgtNmQyNS00N2M3LWFh YTQtYmRkZjFiOWQ2NzdlLzAvMzIzMDMwMzEzYTY0NjYzMTNhMzYzMzM4MzAzYTNh MmYzNDM4MmQzNDM4MjAzZDNlMjAzMTMzMzkzMzM4MzEucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAgAQ3x Y4AwDQYJKoZIhvcNAQELBQADggEBAAdcIwCuTB/aYod+NzE2yIorEOulNQIteCbs fXsy3MWmF0aWpXG9uupvbYwozvKcFXRFE7hl85ZOLzflr3VaudxWQuX87fJ6t2rW nl6+nOCMgqprjnKHZuVDci4EQTb9y73daNZX6a/SHLTYEePWetb0D+tEU45RC1Rb SxLvgVW0BHWVx6iCKDDN65bVMJ4nEGgjAukDtPGbcgMbaVM7fDelwdSo/RiG365b BMWRyxAbNrw5EDrvRlhKrd8g9GUhxAr9X3sNLYfJHJLqDwjfb+mDb1kxRVZY6A53 yXDk6N0Fxp9h4TDCPrGFmm0AIosgYn1lnU/cbUKOQMGk5z9jl5o= -----END CERTIFICATE-----Generated at Sat Aug 23 18:41:35 2025 by rpki-client