$ rpki-client -vvf repo-rpki.idnic.net/repo/28f5ba5e-1f5c-4284-9a16-0135a9fd4e28/0/323030313a6466323a633963303a3a2f34382d3438203d3e20313531353338.roa File: 323030313a6466323a633963303a3a2f34382d3438203d3e20313531353338.roa (raw, json) Hash identifier: IoIyP//hrQlYB+aIBKE8acsqetTnMXLdLd08/ax7yKA= Subject key identifier: 97:64:5F:AC:7B:0B:9A:5D:CD:35:C5:3C:D8:88:65:2C:62:62:99:81 Certificate issuer: /CN=C7840142ADE3E1876CB50EA3A410454EB3889153 Certificate serial: 2F0BB9B7903D89C7CB9150108437AA0EE866B49F Authority key identifier: C7:84:01:42:AD:E3:E1:87:6C:B5:0E:A3:A4:10:45:4E:B3:88:91:53 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C7840142ADE3E1876CB50EA3A410454EB3889153.cer Subject info access: rsync://repo-rpki.idnic.net/repo/28f5ba5e-1f5c-4284-9a16-0135a9fd4e28/0/323030313a6466323a633963303a3a2f34382d3438203d3e20313531353338.roa Signing time: Wed 18 Jun 2025 02:00:00 +0000 ROA not before: Wed 18 Jun 2025 01:55:00 +0000 ROA not after: Wed 17 Jun 2026 02:00:00 +0000 asID: 151538 IP address blocks: 2001:df2:c9c0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/28f5ba5e-1f5c-4284-9a16-0135a9fd4e28/0/C7840142ADE3E1876CB50EA3A410454EB3889153.crl rsync://repo-rpki.idnic.net/repo/28f5ba5e-1f5c-4284-9a16-0135a9fd4e28/0/C7840142ADE3E1876CB50EA3A410454EB3889153.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C7840142ADE3E1876CB50EA3A410454EB3889153.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 02 Jul 2025 07:23:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:0b:b9:b7:90:3d:89:c7:cb:91:50:10:84:37:aa:0e:e8:66:b4:9f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C7840142ADE3E1876CB50EA3A410454EB3889153 Validity Not Before: Jun 18 01:55:00 2025 GMT Not After : Jun 17 02:00:00 2026 GMT Subject: CN=97645FAC7B0B9A5DCD35C53CD888652C62629981 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:32:38:b5:35:5a:67:ae:7d:04:7d:fc:2e:dc: 7e:f4:35:b5:b8:62:28:f7:04:bd:fa:ca:d3:b9:2c: a1:ef:22:6d:d7:b0:6f:92:3d:59:c8:58:4d:03:6d: 96:6a:b4:c0:49:da:17:0f:25:7c:20:bb:f0:4c:17: 8a:dd:83:88:de:ad:5f:37:97:65:67:87:3a:73:e2: 43:15:df:84:d4:05:02:77:e3:52:38:a7:f7:34:24: fd:5d:08:31:1f:17:70:3a:86:42:02:15:75:fb:69: 54:40:70:20:af:f1:80:fc:ca:c5:4b:d5:43:a8:c2: 0b:11:95:a8:0b:9a:c5:0b:94:4d:3e:1d:16:7f:76: c1:e3:47:8b:0d:b6:40:4d:2d:03:32:91:07:29:c7: 13:d7:71:1e:90:a9:12:42:93:5d:9d:16:31:39:0f: 45:7b:9b:1b:c3:fd:57:6b:2f:d1:db:47:52:9b:21: 3a:37:a2:05:71:f0:68:d0:69:04:2e:d4:ed:97:cc: d5:40:e0:b5:73:c4:00:16:fb:ab:9f:ac:21:2c:a5: 4d:9a:f0:cf:64:f4:0f:33:2c:f6:73:09:c6:95:82: 1d:57:51:11:86:9d:d8:4e:a9:c9:31:23:6e:41:24: 45:de:81:ae:81:b8:73:3c:b6:18:f3:e4:3b:94:8f: 42:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:64:5F:AC:7B:0B:9A:5D:CD:35:C5:3C:D8:88:65:2C:62:62:99:81 X509v3 Authority Key Identifier: keyid:C7:84:01:42:AD:E3:E1:87:6C:B5:0E:A3:A4:10:45:4E:B3:88:91:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/28f5ba5e-1f5c-4284-9a16-0135a9fd4e28/0/C7840142ADE3E1876CB50EA3A410454EB3889153.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C7840142ADE3E1876CB50EA3A410454EB3889153.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/28f5ba5e-1f5c-4284-9a16-0135a9fd4e28/0/323030313a6466323a633963303a3a2f34382d3438203d3e20313531353338.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df2:c9c0::/48 Signature Algorithm: sha256WithRSAEncryption 31:af:61:af:67:d5:68:74:19:5b:e2:15:7c:b0:cd:20:52:53: 24:80:89:82:ce:f2:cf:5f:bd:e8:dc:67:26:b9:e0:33:7f:57: 40:15:d1:94:a9:70:73:43:fe:83:7e:da:30:b2:87:3a:df:5d: 8d:02:57:8b:02:0a:b8:46:76:79:c1:de:a6:55:99:0e:c4:47: 70:00:35:17:c0:71:ff:fc:e1:38:a2:a3:89:68:ae:6d:0a:4e: e6:87:fa:bc:50:01:e2:2a:38:d0:29:77:7a:cc:6d:74:0a:35: 03:64:71:e7:32:6b:fd:24:72:68:2c:85:0d:dd:3e:a2:8d:55: 11:d5:b0:f0:e5:39:d1:31:95:3f:89:9a:9f:c0:eb:3e:7b:ae: 45:58:b8:fc:b9:af:a6:77:42:64:7e:4a:28:24:bf:06:41:62: 46:06:98:3b:8f:f5:1a:cc:c0:c6:2d:20:fb:2f:70:74:cc:61: 0f:da:7c:24:34:7c:03:62:26:58:1f:12:6d:f3:3c:91:d7:34: fc:77:4e:f0:ca:72:3f:3e:46:fb:85:91:5f:35:4d:a9:67:98: 33:6e:4c:aa:30:ba:80:e2:cc:35:fc:05:76:09:c2:de:10:c3: 67:a9:ed:a3:43:db:6a:48:61:4d:0b:c1:57:18:5d:72:46:13: e5:a8:8e:ee -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIULwu5t5A9icfLkVAQhDeqDuhmtJ8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzc4NDAxNDJBREUzRTE4NzZDQjUwRUEzQTQxMDQ1NEVC Mzg4OTE1MzAeFw0yNTA2MTgwMTU1MDBaFw0yNjA2MTcwMjAwMDBaMDMxMTAvBgNV BAMTKDk3NjQ1RkFDN0IwQjlBNURDRDM1QzUzQ0Q4ODg2NTJDNjI2Mjk5ODEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDUMji1NVpnrn0Effwu3H70NbW4 Yij3BL36ytO5LKHvIm3XsG+SPVnIWE0DbZZqtMBJ2hcPJXwgu/BMF4rdg4jerV83 l2Vnhzpz4kMV34TUBQJ341I4p/c0JP1dCDEfF3A6hkICFXX7aVRAcCCv8YD8ysVL 1UOowgsRlagLmsULlE0+HRZ/dsHjR4sNtkBNLQMykQcpxxPXcR6QqRJCk12dFjE5 D0V7mxvD/VdrL9HbR1KbITo3ogVx8GjQaQQu1O2XzNVA4LVzxAAW+6ufrCEspU2a 8M9k9A8zLPZzCcaVgh1XURGGndhOqckxI25BJEXega6BuHM8thjz5DuUj0JZAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUl2RfrHsLml3NNcU82IhlLGJimYEwHwYDVR0j BBgwFoAUx4QBQq3j4YdstQ6jpBBFTrOIkVMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y OGY1YmE1ZS0xZjVjLTQyODQtOWExNi0wMTM1YTlmZDRlMjgvMC9DNzg0MDE0MkFE RTNFMTg3NkNCNTBFQTNBNDEwNDU0RUIzODg5MTUzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzc4NDAxNDJBREUzRTE4NzZDQjUwRUEzQTQxMDQ1NEVCMzg4 OTE1My5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI4ZjViYTVlLTFmNWMtNDI4NC05 YTE2LTAxMzVhOWZkNGUyOC8wLzMyMzAzMDMxM2E2NDY2MzIzYTYzMzk2MzMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNTMxMzUzMzM4LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8snAMA0GCSqGSIb3DQEBCwUAA4IBAQAxr2GvZ9VodBlb4hV8sM0gUlMkgImCzvLP X73o3GcmueAzf1dAFdGUqXBzQ/6Dftowsoc6312NAleLAgq4RnZ5wd6mVZkOxEdw ADUXwHH//OE4oqOJaK5tCk7mh/q8UAHiKjjQKXd6zG10CjUDZHHnMmv9JHJoLIUN 3T6ijVUR1bDw5TnRMZU/iZqfwOs+e65FWLj8ua+md0JkfkooJL8GQWJGBpg7j/Ua zMDGLSD7L3B0zGEP2nwkNHwDYiZYHxJt8zyR1zT8d07wynI/Pkb7hZFfNU2pZ5gz bkyqMLqA4sw1/AV2CcLeEMNnqe2jQ9tqSGFNC8FXGF1yRhPlqI7u -----END CERTIFICATE-----Generated at Mon Jun 30 01:11:57 2025 by rpki-client