$ rpki-client -vvf repo-rpki.idnic.net/repo/2049c210-f365-432f-a7ca-0b5eb86b01c6/0/323030313a6466303a62333a3a2f34382d3438203d3e203435373138.roa File: 323030313a6466303a62333a3a2f34382d3438203d3e203435373138.roa (raw, json) Hash identifier: goKqtOANx7qYkuYC16JMyOMD7wMXtPJ41zk+xa8C7PI= Subject key identifier: 41:B3:B5:FB:21:4A:C6:56:39:11:3B:87:62:C7:BE:DC:97:D8:23:33 Certificate issuer: /CN=E475A8B018BAE58448DDE55D9487442B3BD31D1D Certificate serial: 4E3B66A5E4F03472697F5231E49C29B634408C32 Authority key identifier: E4:75:A8:B0:18:BA:E5:84:48:DD:E5:5D:94:87:44:2B:3B:D3:1D:1D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E475A8B018BAE58448DDE55D9487442B3BD31D1D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2049c210-f365-432f-a7ca-0b5eb86b01c6/0/323030313a6466303a62333a3a2f34382d3438203d3e203435373138.roa Signing time: Fri 27 Jun 2025 06:00:04 +0000 ROA not before: Fri 27 Jun 2025 05:55:04 +0000 ROA not after: Fri 26 Jun 2026 06:00:04 +0000 asID: 45718 IP address blocks: 2001:df0:b3::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2049c210-f365-432f-a7ca-0b5eb86b01c6/0/E475A8B018BAE58448DDE55D9487442B3BD31D1D.crl rsync://repo-rpki.idnic.net/repo/2049c210-f365-432f-a7ca-0b5eb86b01c6/0/E475A8B018BAE58448DDE55D9487442B3BD31D1D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E475A8B018BAE58448DDE55D9487442B3BD31D1D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 02 Jul 2025 07:23:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:3b:66:a5:e4:f0:34:72:69:7f:52:31:e4:9c:29:b6:34:40:8c:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E475A8B018BAE58448DDE55D9487442B3BD31D1D Validity Not Before: Jun 27 05:55:04 2025 GMT Not After : Jun 26 06:00:04 2026 GMT Subject: CN=41B3B5FB214AC65639113B8762C7BEDC97D82333 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fc:27:cc:37:ed:7b:71:0d:e4:4f:a1:92:d5:e3: 36:b0:e7:4b:be:2e:8b:d1:21:86:45:29:86:2c:00: 40:f3:9e:69:52:1f:08:72:11:36:ea:da:62:7e:6b: a1:aa:f0:7c:93:42:30:73:7d:d6:9b:73:75:8e:75: 17:d9:1f:34:44:72:26:d4:9e:6c:62:93:40:fa:e5: 3b:ab:af:dc:98:5b:1f:7a:bf:0a:eb:8b:53:cc:84: 5e:5a:3a:c1:42:c9:26:e0:0e:9a:fe:ed:12:6b:f9: c4:d0:fc:7a:82:03:1b:14:b3:53:45:6d:5c:32:d2: 48:3a:19:53:d0:31:f7:b2:a4:20:9c:ba:eb:b7:13: 7e:2c:ed:26:10:7b:cf:d2:9b:00:37:e3:7d:f2:c0: 3a:fe:f2:fd:ca:d6:65:49:30:29:cd:a4:73:b5:d4: 55:f2:82:81:73:cc:a9:15:1b:3a:36:24:d1:48:cf: 80:87:29:3a:fe:7f:36:82:15:ae:8a:15:37:9a:74: 67:e1:89:76:3d:cc:b0:f8:85:38:a4:09:60:b2:d3: d7:77:6c:0b:45:eb:ae:d3:ce:ef:92:4b:93:a1:e4: 4f:b5:fa:e6:1d:0c:36:24:d4:91:ec:9f:e9:a4:05: 00:5a:a1:15:bc:bc:62:3b:b3:19:62:3e:ce:cb:9f: 12:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:B3:B5:FB:21:4A:C6:56:39:11:3B:87:62:C7:BE:DC:97:D8:23:33 X509v3 Authority Key Identifier: keyid:E4:75:A8:B0:18:BA:E5:84:48:DD:E5:5D:94:87:44:2B:3B:D3:1D:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2049c210-f365-432f-a7ca-0b5eb86b01c6/0/E475A8B018BAE58448DDE55D9487442B3BD31D1D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E475A8B018BAE58448DDE55D9487442B3BD31D1D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2049c210-f365-432f-a7ca-0b5eb86b01c6/0/323030313a6466303a62333a3a2f34382d3438203d3e203435373138.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df0:b3::/48 Signature Algorithm: sha256WithRSAEncryption 08:2b:4d:a8:70:0e:7c:d9:d1:95:6e:76:0d:82:6c:e9:62:71: 54:cb:bd:1d:68:46:2e:b7:30:3f:b1:d8:f0:bd:4b:35:63:a7: 75:9a:b9:d3:db:3d:81:b2:a4:70:4c:c5:58:f2:91:c7:12:ec: 7a:ff:ba:d7:d4:a5:00:0b:38:47:aa:b9:ce:36:21:32:0c:bf: 48:c1:4d:92:4d:00:74:64:34:b2:0c:52:17:2d:51:b3:8b:59: ce:3c:26:2a:dc:32:8f:ce:ae:e8:33:f9:f7:4e:af:7c:8c:54: 54:e6:0f:e0:ec:80:71:e8:c5:03:db:a1:87:61:12:37:cb:8e: cb:4b:a8:ee:48:1c:5d:8c:05:dd:f5:a3:d6:65:b7:61:0b:0c: 26:8a:63:53:77:6a:26:7d:54:b2:b3:6e:53:af:7d:16:c0:ba: 43:9a:f2:00:48:e3:b5:5a:b3:5c:e0:8a:a0:4d:9d:d4:31:94: 81:7c:6f:29:19:6e:12:7d:80:dd:f8:b5:31:10:a0:5e:f4:c8: e9:a1:59:2c:1a:33:fa:9d:20:04:b5:f4:cd:37:09:2f:36:b4: 20:de:4f:51:54:84:c5:b8:af:6e:6a:65:5a:12:f5:36:8e:20: 6a:32:3d:70:1f:87:73:47:60:6d:e0:2d:64:3d:64:4e:1b:ff: bb:09:45:47 -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUTjtmpeTwNHJpf1Ix5JwptjRAjDIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTQ3NUE4QjAxOEJBRTU4NDQ4RERFNTVEOTQ4NzQ0MkIz QkQzMUQxRDAeFw0yNTA2MjcwNTU1MDRaFw0yNjA2MjYwNjAwMDRaMDMxMTAvBgNV BAMTKDQxQjNCNUZCMjE0QUM2NTYzOTExM0I4NzYyQzdCRURDOTdEODIzMzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD8J8w37XtxDeRPoZLV4zaw50u+ LovRIYZFKYYsAEDznmlSHwhyETbq2mJ+a6Gq8HyTQjBzfdabc3WOdRfZHzREcibU nmxik0D65Turr9yYWx96vwrri1PMhF5aOsFCySbgDpr+7RJr+cTQ/HqCAxsUs1NF bVwy0kg6GVPQMfeypCCcuuu3E34s7SYQe8/SmwA3433ywDr+8v3K1mVJMCnNpHO1 1FXygoFzzKkVGzo2JNFIz4CHKTr+fzaCFa6KFTeadGfhiXY9zLD4hTikCWCy09d3 bAtF667Tzu+SS5Oh5E+1+uYdDDYk1JHsn+mkBQBaoRW8vGI7sxliPs7LnxLpAgMB AAGjggI3MIICMzAdBgNVHQ4EFgQUQbO1+yFKxlY5ETuHYse+3JfYIzMwHwYDVR0j BBgwFoAU5HWosBi65YRI3eVdlIdEKzvTHR0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MDQ5YzIxMC1mMzY1LTQzMmYtYTdjYS0wYjVlYjg2YjAxYzYvMC9FNDc1QThCMDE4 QkFFNTg0NDhEREU1NUQ5NDg3NDQyQjNCRDMxRDFELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRTQ3NUE4QjAxOEJBRTU4NDQ4RERFNTVEOTQ4NzQ0MkIzQkQz MUQxRC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzIwNDljMjEwLWYzNjUtNDMyZi1h N2NhLTBiNWViODZiMDFjNi8wLzMyMzAzMDMxM2E2NDY2MzAzYTYyMzMzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzNDM1MzczMTM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN8ACzMA0G CSqGSIb3DQEBCwUAA4IBAQAIK02ocA582dGVbnYNgmzpYnFUy70daEYutzA/sdjw vUs1Y6d1mrnT2z2BsqRwTMVY8pHHEux6/7rX1KUACzhHqrnONiEyDL9IwU2STQB0 ZDSyDFIXLVGzi1nOPCYq3DKPzq7oM/n3Tq98jFRU5g/g7IBx6MUD26GHYRI3y47L S6juSBxdjAXd9aPWZbdhCwwmimNTd2omfVSys25Tr30WwLpDmvIASOO1WrNc4Iqg TZ3UMZSBfG8pGW4SfYDd+LUxEKBe9MjpoVksGjP6nSAEtfTNNwkvNrQg3k9RVITF uK9uamVaEvU2jiBqMj1wH4dzR2Bt4C1kPWROG/+7CUVH -----END CERTIFICATE-----Generated at Mon Jun 30 01:15:19 2025 by rpki-client