$ rpki-client -vvf repo-rpki.idnic.net/repo/4031746e-b0f6-4827-8c4e-b8192decc39a/0/323030313a6466323a633238303a3a2f34382d3438203d3e20313339393839.roa File: 323030313a6466323a633238303a3a2f34382d3438203d3e20313339393839.roa (raw, json) Hash identifier: NAP8Ecg7mcF+3+EYuEqADPL2zQZENpYX/wZwvz8zK2k= Subject key identifier: CC:FC:2F:3D:69:DC:5A:F6:60:EF:C5:F7:54:C4:7F:82:4E:AD:91:8A Certificate issuer: /CN=5A0CBE2DBCF9883569F8C24BFB9E595442D835D0 Certificate serial: 0D40187518C5F9B25D7E104DB4D448DAB262F097 Authority key identifier: 5A:0C:BE:2D:BC:F9:88:35:69:F8:C2:4B:FB:9E:59:54:42:D8:35:D0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5A0CBE2DBCF9883569F8C24BFB9E595442D835D0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4031746e-b0f6-4827-8c4e-b8192decc39a/0/323030313a6466323a633238303a3a2f34382d3438203d3e20313339393839.roa Signing time: Fri 27 Jun 2025 11:00:01 +0000 ROA not before: Fri 27 Jun 2025 10:55:01 +0000 ROA not after: Fri 26 Jun 2026 11:00:01 +0000 asID: 139989 IP address blocks: 2001:df2:c280::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4031746e-b0f6-4827-8c4e-b8192decc39a/0/5A0CBE2DBCF9883569F8C24BFB9E595442D835D0.crl rsync://repo-rpki.idnic.net/repo/4031746e-b0f6-4827-8c4e-b8192decc39a/0/5A0CBE2DBCF9883569F8C24BFB9E595442D835D0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5A0CBE2DBCF9883569F8C24BFB9E595442D835D0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 03 Jul 2025 10:32:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:40:18:75:18:c5:f9:b2:5d:7e:10:4d:b4:d4:48:da:b2:62:f0:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5A0CBE2DBCF9883569F8C24BFB9E595442D835D0 Validity Not Before: Jun 27 10:55:01 2025 GMT Not After : Jun 26 11:00:01 2026 GMT Subject: CN=CCFC2F3D69DC5AF660EFC5F754C47F824EAD918A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:b8:62:90:46:39:40:55:b7:85:95:b7:ec:21: dc:3d:1f:14:7b:37:21:77:3a:86:6e:fb:f2:1c:4e: cd:7c:89:5b:8a:9f:01:11:66:2c:da:b2:99:b1:28: 90:bf:24:4f:a2:e1:c2:a7:a2:06:ac:35:da:fa:e1: 88:60:89:2b:6e:26:9f:0e:a4:19:ca:0e:60:e6:86: 29:d8:6a:d0:6b:e3:2a:5f:f0:ab:84:7b:3b:7d:26: bf:54:70:1e:d0:0c:ef:a3:79:b6:ef:5d:7c:12:90: 0d:0e:77:9b:57:67:bf:76:8e:68:5c:10:92:61:c0: 00:82:bd:4f:c1:f6:fd:45:67:f2:5c:76:44:c5:70: 49:84:3c:a8:fd:a3:d4:6e:d3:34:b9:34:6a:a3:bf: fc:c3:bb:ff:91:51:d9:ad:93:0f:ff:f6:43:c0:1c: 1f:fe:63:35:b7:53:75:f7:f9:8e:68:b3:83:cf:86: f2:b7:b0:12:89:44:84:d0:47:dd:17:fa:e7:29:16: 28:f8:8a:24:8a:e4:b5:ea:50:04:e2:bb:26:f9:2a: d1:76:aa:ca:c7:46:e5:4e:ed:48:c1:1b:57:bf:b0: 65:d1:45:89:46:4c:70:08:4e:09:0a:c8:54:b2:56: 95:dc:0d:81:47:53:af:5a:fa:bf:76:01:e0:ab:75: 22:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:FC:2F:3D:69:DC:5A:F6:60:EF:C5:F7:54:C4:7F:82:4E:AD:91:8A X509v3 Authority Key Identifier: keyid:5A:0C:BE:2D:BC:F9:88:35:69:F8:C2:4B:FB:9E:59:54:42:D8:35:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4031746e-b0f6-4827-8c4e-b8192decc39a/0/5A0CBE2DBCF9883569F8C24BFB9E595442D835D0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5A0CBE2DBCF9883569F8C24BFB9E595442D835D0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4031746e-b0f6-4827-8c4e-b8192decc39a/0/323030313a6466323a633238303a3a2f34382d3438203d3e20313339393839.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df2:c280::/48 Signature Algorithm: sha256WithRSAEncryption 3d:46:1d:14:23:2d:cb:af:e3:42:0e:13:9c:ab:9f:fc:03:51: 5f:1a:56:e5:77:55:35:aa:36:41:d1:58:e9:33:b4:45:ca:85: 60:07:f3:96:76:41:0b:ed:65:6d:72:8a:9b:cf:22:cc:9e:e3: b2:bb:bb:03:36:6a:6a:9b:8a:62:27:06:4c:de:b6:6b:a5:9b: e2:8d:66:e2:50:cf:f0:ca:cd:c7:7d:73:5c:aa:05:00:99:e7: 07:f3:3e:2b:62:e8:5c:74:b4:29:85:37:e3:b6:db:34:42:50: c5:a7:30:0b:8a:55:98:9b:bb:e9:35:a8:bc:f2:24:18:51:22: df:a5:62:6b:f6:30:0d:f6:30:2f:e1:8f:36:47:ef:bf:b0:3e: 7e:82:d0:00:52:44:48:de:19:a4:eb:f1:9a:60:55:41:60:3c: 2b:37:8a:75:b7:77:ce:98:d5:8f:b4:c2:21:38:36:4f:a2:19: 30:f3:10:04:3c:27:07:18:12:44:d6:e2:21:85:bd:97:b3:32: 3d:5e:51:d0:63:64:0c:ba:8a:a7:dc:d2:f9:61:52:4a:61:f8: 38:0a:b7:8c:82:7f:d8:79:ce:c3:76:fd:26:e0:c5:b2:98:46: d1:ec:d1:b6:a8:e7:0a:f5:54:1f:4d:26:bf:76:71:a7:56:30: d2:1b:ab:99 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUDUAYdRjF+bJdfhBNtNRI2rJi8JcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUEwQ0JFMkRCQ0Y5ODgzNTY5RjhDMjRCRkI5RTU5NTQ0 MkQ4MzVEMDAeFw0yNTA2MjcxMDU1MDFaFw0yNjA2MjYxMTAwMDFaMDMxMTAvBgNV BAMTKENDRkMyRjNENjlEQzVBRjY2MEVGQzVGNzU0QzQ3RjgyNEVBRDkxOEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDnuGKQRjlAVbeFlbfsIdw9HxR7 NyF3OoZu+/IcTs18iVuKnwERZizaspmxKJC/JE+i4cKnogasNdr64YhgiStuJp8O pBnKDmDmhinYatBr4ypf8KuEezt9Jr9UcB7QDO+jebbvXXwSkA0Od5tXZ792jmhc EJJhwACCvU/B9v1FZ/JcdkTFcEmEPKj9o9Ru0zS5NGqjv/zDu/+RUdmtkw//9kPA HB/+YzW3U3X3+Y5os4PPhvK3sBKJRITQR90X+ucpFij4iiSK5LXqUATiuyb5KtF2 qsrHRuVO7UjBG1e/sGXRRYlGTHAITgkKyFSyVpXcDYFHU69a+r92AeCrdSJnAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUzPwvPWncWvZg78X3VMR/gk6tkYowHwYDVR0j BBgwFoAUWgy+Lbz5iDVp+MJL+55ZVELYNdAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 MDMxNzQ2ZS1iMGY2LTQ4MjctOGM0ZS1iODE5MmRlY2MzOWEvMC81QTBDQkUyREJD Rjk4ODM1NjlGOEMyNEJGQjlFNTk1NDQyRDgzNUQwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUEwQ0JFMkRCQ0Y5ODgzNTY5RjhDMjRCRkI5RTU5NTQ0MkQ4 MzVEMC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQwMzE3NDZlLWIwZjYtNDgyNy04 YzRlLWI4MTkyZGVjYzM5YS8wLzMyMzAzMDMxM2E2NDY2MzIzYTYzMzIzODMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM5MzkzODM5LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8sKAMA0GCSqGSIb3DQEBCwUAA4IBAQA9Rh0UIy3Lr+NCDhOcq5/8A1FfGlbld1U1 qjZB0VjpM7RFyoVgB/OWdkEL7WVtcoqbzyLMnuOyu7sDNmpqm4piJwZM3rZrpZvi jWbiUM/wys3HfXNcqgUAmecH8z4rYuhcdLQphTfjtts0QlDFpzALilWYm7vpNai8 8iQYUSLfpWJr9jAN9jAv4Y82R++/sD5+gtAAUkRI3hmk6/GaYFVBYDwrN4p1t3fO mNWPtMIhODZPohkw8xAEPCcHGBJE1uIhhb2XszI9XlHQY2QMuoqn3NL5YVJKYfg4 CreMgn/Yec7Ddv0m4MWymEbR7NG2qOcK9VQfTSa/dnGnVjDSG6uZ -----END CERTIFICATE-----Generated at Tue Jul 1 18:59:38 2025 by rpki-client