$ rpki-client -vvf repo-rpki.idnic.net/repo/51f16c45-96fb-4c92-804e-64b0bf280302/0/323030313a6466313a316563303a3a2f34382d3438203d3e20313439393531.roa File: 323030313a6466313a316563303a3a2f34382d3438203d3e20313439393531.roa (raw, json) Hash identifier: O62FaU7sfJ7WBpQAG4VOlHgoxy59qAGq0CxPAvacDkY= Subject key identifier: 3D:CD:1A:40:60:D3:6E:45:68:AB:00:65:14:B6:01:0D:BD:6E:37:86 Certificate issuer: /CN=CA14F96C33329D8CA42315C2B500AB2D57B1E35B Certificate serial: 7516967BFBF459ECDE558540A0DF58280E7AA3FB Authority key identifier: CA:14:F9:6C:33:32:9D:8C:A4:23:15:C2:B5:00:AB:2D:57:B1:E3:5B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA14F96C33329D8CA42315C2B500AB2D57B1E35B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/51f16c45-96fb-4c92-804e-64b0bf280302/0/323030313a6466313a316563303a3a2f34382d3438203d3e20313439393531.roa Signing time: Fri 27 Jun 2025 06:00:01 +0000 ROA not before: Fri 27 Jun 2025 05:55:01 +0000 ROA not after: Fri 26 Jun 2026 06:00:01 +0000 asID: 149951 IP address blocks: 2001:df1:1ec0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/51f16c45-96fb-4c92-804e-64b0bf280302/0/CA14F96C33329D8CA42315C2B500AB2D57B1E35B.crl rsync://repo-rpki.idnic.net/repo/51f16c45-96fb-4c92-804e-64b0bf280302/0/CA14F96C33329D8CA42315C2B500AB2D57B1E35B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA14F96C33329D8CA42315C2B500AB2D57B1E35B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 02 Jul 2025 16:49:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:16:96:7b:fb:f4:59:ec:de:55:85:40:a0:df:58:28:0e:7a:a3:fb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CA14F96C33329D8CA42315C2B500AB2D57B1E35B Validity Not Before: Jun 27 05:55:01 2025 GMT Not After : Jun 26 06:00:01 2026 GMT Subject: CN=3DCD1A4060D36E4568AB006514B6010DBD6E3786 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:7d:33:bc:f2:d1:6c:fb:33:92:ad:26:eb:08: 22:9e:50:ff:e4:06:e0:a8:62:7c:c0:03:3a:f5:94: 22:d0:05:e0:7b:22:03:a1:b3:fb:c3:1c:03:4d:59: fa:56:fe:33:46:89:bc:2b:e0:86:b7:03:1d:6c:3a: 82:fe:25:97:da:fc:fa:78:7f:ee:c4:15:0f:84:bf: 1e:35:06:b8:2a:89:b2:44:e4:9e:79:07:41:7f:d6: b0:a2:4a:e3:a6:c9:60:f2:97:be:14:b6:76:c3:4b: 4a:7a:83:6d:3d:f7:f3:cd:bf:74:32:2d:7a:bf:87: 59:24:37:25:54:e1:40:26:8e:62:48:f0:aa:5a:82: e6:0d:af:42:23:e6:c0:78:9a:df:94:c2:d4:5b:a3: bf:0e:a6:65:4b:4b:ad:03:02:10:6a:2c:3c:38:ad: 34:2d:9f:72:72:08:69:36:8e:91:62:b5:f3:51:4a: b7:06:be:6d:0c:dc:e3:cf:d1:41:39:39:48:94:7f: ac:ac:a3:5b:0c:3d:ad:52:8c:dc:67:55:83:02:33: 03:66:1b:c7:d1:13:4a:26:75:c5:97:79:7a:87:ef: be:2d:51:27:cb:68:c2:3a:fe:e7:8e:2b:fb:34:fb: 6e:e4:78:0e:21:38:79:8f:02:e7:8c:a6:7f:83:09: 60:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:CD:1A:40:60:D3:6E:45:68:AB:00:65:14:B6:01:0D:BD:6E:37:86 X509v3 Authority Key Identifier: keyid:CA:14:F9:6C:33:32:9D:8C:A4:23:15:C2:B5:00:AB:2D:57:B1:E3:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/51f16c45-96fb-4c92-804e-64b0bf280302/0/CA14F96C33329D8CA42315C2B500AB2D57B1E35B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA14F96C33329D8CA42315C2B500AB2D57B1E35B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/51f16c45-96fb-4c92-804e-64b0bf280302/0/323030313a6466313a316563303a3a2f34382d3438203d3e20313439393531.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df1:1ec0::/48 Signature Algorithm: sha256WithRSAEncryption bc:32:0c:e2:24:96:03:32:f8:95:ab:cd:b0:0d:2b:b2:e2:5a: 76:e0:a2:bb:bd:7c:83:db:dd:ae:20:3c:e1:00:d5:f5:80:2c: 86:a4:5e:16:0f:dc:1f:d0:02:96:3f:6c:17:85:65:da:52:b4: 6e:e4:fd:da:f8:fe:00:d4:01:d1:47:42:87:d7:ce:d5:e3:0d: 4a:8c:90:a5:35:3f:6f:27:d5:59:2f:a8:5a:98:b6:e6:10:27: cc:18:af:7c:57:46:e3:78:17:60:de:25:ab:6c:ec:78:af:90: 6c:81:e4:ab:8f:d6:e4:eb:a9:99:fb:ef:dc:f9:81:d1:d8:09: de:c3:dd:4b:17:b5:b9:a2:ec:c5:19:04:d8:8f:76:b6:45:7b: a9:0e:49:e9:50:01:45:05:cf:75:34:18:0c:2f:f0:8f:22:f9: 02:81:f1:97:6d:5d:b9:4f:48:b1:52:7d:a4:ec:a6:e1:74:31: cd:4c:8b:e0:ac:2e:ef:ca:ee:43:e0:47:99:67:02:4d:b5:72: ed:61:59:7c:e1:08:19:67:ef:0f:fb:b4:e5:bf:b6:76:e4:84: c0:9d:1a:be:9f:30:41:7a:b2:ff:cd:c1:91:25:af:f1:85:ad: f8:17:63:cb:06:f3:cf:a8:9f:fc:3e:49:10:d4:60:23:2c:6d: ef:d0:c1:f9 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUdRaWe/v0WezeVYVAoN9YKA56o/swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0ExNEY5NkMzMzMyOUQ4Q0E0MjMxNUMyQjUwMEFCMkQ1 N0IxRTM1QjAeFw0yNTA2MjcwNTU1MDFaFw0yNjA2MjYwNjAwMDFaMDMxMTAvBgNV BAMTKDNEQ0QxQTQwNjBEMzZFNDU2OEFCMDA2NTE0QjYwMTBEQkQ2RTM3ODYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNfTO88tFs+zOSrSbrCCKeUP/k BuCoYnzAAzr1lCLQBeB7IgOhs/vDHANNWfpW/jNGibwr4Ia3Ax1sOoL+JZfa/Pp4 f+7EFQ+Evx41BrgqibJE5J55B0F/1rCiSuOmyWDyl74UtnbDS0p6g2099/PNv3Qy LXq/h1kkNyVU4UAmjmJI8KpaguYNr0Ij5sB4mt+UwtRbo78OpmVLS60DAhBqLDw4 rTQtn3JyCGk2jpFitfNRSrcGvm0M3OPP0UE5OUiUf6yso1sMPa1SjNxnVYMCMwNm G8fRE0omdcWXeXqH774tUSfLaMI6/ueOK/s0+27keA4hOHmPAueMpn+DCWALAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUPc0aQGDTbkVoqwBlFLYBDb1uN4YwHwYDVR0j BBgwFoAUyhT5bDMynYykIxXCtQCrLVex41swDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 MWYxNmM0NS05NmZiLTRjOTItODA0ZS02NGIwYmYyODAzMDIvMC9DQTE0Rjk2QzMz MzI5RDhDQTQyMzE1QzJCNTAwQUIyRDU3QjFFMzVCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0ExNEY5NkMzMzMyOUQ4Q0E0MjMxNUMyQjUwMEFCMkQ1N0Ix RTM1Qi5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzUxZjE2YzQ1LTk2ZmItNGM5Mi04 MDRlLTY0YjBiZjI4MDMwMi8wLzMyMzAzMDMxM2E2NDY2MzEzYTMxNjU2MzMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNDM5MzkzNTMxLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8R7AMA0GCSqGSIb3DQEBCwUAA4IBAQC8MgziJJYDMviVq82wDSuy4lp24KK7vXyD 292uIDzhANX1gCyGpF4WD9wf0AKWP2wXhWXaUrRu5P3a+P4A1AHRR0KH187V4w1K jJClNT9vJ9VZL6hamLbmECfMGK98V0bjeBdg3iWrbOx4r5BsgeSrj9bk66mZ++/c +YHR2Anew91LF7W5ouzFGQTYj3a2RXupDknpUAFFBc91NBgML/CPIvkCgfGXbV25 T0ixUn2k7KbhdDHNTIvgrC7vyu5D4EeZZwJNtXLtYVl84QgZZ+8P+7Tlv7Z25ITA nRq+nzBBerL/zcGRJa/xha34F2PLBvPPqJ/8PkkQ1GAjLG3v0MH5 -----END CERTIFICATE-----Generated at Mon Jun 30 08:47:06 2025 by rpki-client