$ rpki-client -vvf repo-rpki.idnic.net/repo/552beae1-3480-4e92-a3a9-5a54fbbacd2d/0/323030313a6466323a376234303a3a2f34382d3438203d3e20313530323636.roa File: 323030313a6466323a376234303a3a2f34382d3438203d3e20313530323636.roa (raw, json) Hash identifier: yQ+O0JgELxkJNBYJ1Ujm9yhO9nL92pk3Pdtypqzo9H4= Subject key identifier: E8:79:A9:4B:2B:74:48:97:CE:2D:99:81:92:DC:42:22:71:03:62:2A Certificate issuer: /CN=DE39DBDBFB23D179870083C94A086E2890E8B7AD Certificate serial: 377A5CDF4917D5F3CFD0DAA1BD883F0A2F176C7E Authority key identifier: DE:39:DB:DB:FB:23:D1:79:87:00:83:C9:4A:08:6E:28:90:E8:B7:AD Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DE39DBDBFB23D179870083C94A086E2890E8B7AD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/552beae1-3480-4e92-a3a9-5a54fbbacd2d/0/323030313a6466323a376234303a3a2f34382d3438203d3e20313530323636.roa Signing time: Mon 05 May 2025 05:00:00 +0000 ROA not before: Mon 05 May 2025 04:55:00 +0000 ROA not after: Mon 04 May 2026 05:00:00 +0000 asID: 150266 IP address blocks: 2001:df2:7b40::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/552beae1-3480-4e92-a3a9-5a54fbbacd2d/0/DE39DBDBFB23D179870083C94A086E2890E8B7AD.crl rsync://repo-rpki.idnic.net/repo/552beae1-3480-4e92-a3a9-5a54fbbacd2d/0/DE39DBDBFB23D179870083C94A086E2890E8B7AD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DE39DBDBFB23D179870083C94A086E2890E8B7AD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 10 May 2025 11:52:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:7a:5c:df:49:17:d5:f3:cf:d0:da:a1:bd:88:3f:0a:2f:17:6c:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DE39DBDBFB23D179870083C94A086E2890E8B7AD Validity Not Before: May 5 04:55:00 2025 GMT Not After : May 4 05:00:00 2026 GMT Subject: CN=E879A94B2B744897CE2D998192DC42227103622A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:1b:1a:34:fc:4a:dd:5d:bd:c4:17:e6:44:55: 30:2e:8f:10:a7:1d:f8:20:f1:e0:a8:7e:5f:4f:0a: 13:6d:4c:ba:3c:5c:46:9e:64:26:dd:7a:1d:23:c2: e3:3f:47:54:22:82:b5:cf:7a:47:97:f6:ec:1a:0b: 8d:aa:60:93:39:8d:cf:32:8d:55:cb:c5:d9:e9:19: 15:9e:98:fd:bc:f0:3e:13:52:8d:ed:1e:53:03:0b: 9f:17:48:6e:09:54:80:c1:e9:96:24:22:63:f0:6e: c3:69:8b:83:7b:c7:a3:be:38:1e:f5:1f:99:e0:b9: 9a:b6:1e:52:49:53:5b:1f:d2:57:25:17:23:16:87: 88:76:b8:3c:b2:c5:74:e9:ab:15:3f:f3:74:24:ca: 74:bc:3d:4c:a2:00:f1:d2:8f:71:cc:14:9b:cc:5f: 87:e5:7c:fc:56:ac:18:d2:b7:9d:d9:6e:5c:97:a2: bf:ed:76:75:8c:c3:d2:f3:21:49:d0:ce:6d:da:2a: d6:67:24:42:24:a3:74:17:47:6a:ce:e7:6e:3f:88: b3:4a:f1:9d:c7:a6:0d:15:f9:0a:3c:2e:4e:56:84: 89:b8:db:60:88:3b:69:1c:42:d0:ee:6f:af:b8:d3: ed:ec:b5:bb:4b:a9:82:34:73:e5:9b:19:4c:63:18: 36:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:79:A9:4B:2B:74:48:97:CE:2D:99:81:92:DC:42:22:71:03:62:2A X509v3 Authority Key Identifier: keyid:DE:39:DB:DB:FB:23:D1:79:87:00:83:C9:4A:08:6E:28:90:E8:B7:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/552beae1-3480-4e92-a3a9-5a54fbbacd2d/0/DE39DBDBFB23D179870083C94A086E2890E8B7AD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DE39DBDBFB23D179870083C94A086E2890E8B7AD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/552beae1-3480-4e92-a3a9-5a54fbbacd2d/0/323030313a6466323a376234303a3a2f34382d3438203d3e20313530323636.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df2:7b40::/48 Signature Algorithm: sha256WithRSAEncryption 52:c7:0a:ef:c8:b5:2c:c8:1c:33:2d:1c:61:a8:d2:94:58:08: fc:dc:78:23:5e:d4:9c:af:8d:b2:33:31:10:05:5c:91:6c:b2: 6c:b1:d4:9b:fc:97:0a:c8:08:aa:bb:63:29:cc:80:af:cd:c6: 58:bd:c5:c4:77:98:ad:54:30:aa:14:59:6e:16:2c:2f:43:4d: e9:5a:df:9b:2c:66:66:35:db:46:f6:f9:8c:01:c8:09:2d:aa: aa:06:47:ec:ff:fc:77:10:b0:86:4e:72:88:42:89:31:58:3b: cf:f4:e0:0e:16:10:d6:c9:06:bd:92:57:81:c4:29:47:b6:32: 31:60:8f:9b:e3:93:c5:65:e0:c2:a9:47:a8:5e:70:4b:45:b0: 4e:16:10:20:60:55:a9:3b:8a:3a:b4:dd:22:f8:90:75:82:0a: 00:3f:43:5f:4e:6c:44:7d:97:16:bb:d9:d4:c2:d9:31:23:55: 18:61:da:33:62:77:d3:50:ed:47:41:a0:4e:d5:00:af:38:fa: e4:b1:8c:43:14:53:54:fd:95:a1:24:55:97:62:7a:cb:76:94: b5:0c:45:bb:d2:9b:80:5f:65:0e:74:e7:3e:cb:72:0b:91:10: 83:13:a0:5e:a3:46:2a:23:8f:d0:4d:2f:68:f4:8f:87:d9:be: c2:ce:7a:65 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUN3pc30kX1fPP0NqhvYg/Ci8XbH4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREUzOURCREJGQjIzRDE3OTg3MDA4M0M5NEEwODZFMjg5 MEU4QjdBRDAeFw0yNTA1MDUwNDU1MDBaFw0yNjA1MDQwNTAwMDBaMDMxMTAvBgNV BAMTKEU4NzlBOTRCMkI3NDQ4OTdDRTJEOTk4MTkyREM0MjIyNzEwMzYyMkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSGxo0/ErdXb3EF+ZEVTAujxCn Hfgg8eCofl9PChNtTLo8XEaeZCbdeh0jwuM/R1QigrXPekeX9uwaC42qYJM5jc8y jVXLxdnpGRWemP288D4TUo3tHlMDC58XSG4JVIDB6ZYkImPwbsNpi4N7x6O+OB71 H5nguZq2HlJJU1sf0lclFyMWh4h2uDyyxXTpqxU/83QkynS8PUyiAPHSj3HMFJvM X4flfPxWrBjSt53ZblyXor/tdnWMw9LzIUnQzm3aKtZnJEIko3QXR2rO524/iLNK 8Z3Hpg0V+Qo8Lk5WhIm422CIO2kcQtDub6+40+3stbtLqYI0c+WbGUxjGDbhAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQU6HmpSyt0SJfOLZmBktxCInEDYiowHwYDVR0j BBgwFoAU3jnb2/sj0XmHAIPJSghuKJDot60wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 NTJiZWFlMS0zNDgwLTRlOTItYTNhOS01YTU0ZmJiYWNkMmQvMC9ERTM5REJEQkZC MjNEMTc5ODcwMDgzQzk0QTA4NkUyODkwRThCN0FELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREUzOURCREJGQjIzRDE3OTg3MDA4M0M5NEEwODZFMjg5MEU4 QjdBRC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU1MmJlYWUxLTM0ODAtNGU5Mi1h M2E5LTVhNTRmYmJhY2QyZC8wLzMyMzAzMDMxM2E2NDY2MzIzYTM3NjIzNDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNTMwMzIzNjM2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8ntAMA0GCSqGSIb3DQEBCwUAA4IBAQBSxwrvyLUsyBwzLRxhqNKUWAj83HgjXtSc r42yMzEQBVyRbLJssdSb/JcKyAiqu2MpzICvzcZYvcXEd5itVDCqFFluFiwvQ03p Wt+bLGZmNdtG9vmMAcgJLaqqBkfs//x3ELCGTnKIQokxWDvP9OAOFhDWyQa9kleB xClHtjIxYI+b45PFZeDCqUeoXnBLRbBOFhAgYFWpO4o6tN0i+JB1ggoAP0NfTmxE fZcWu9nUwtkxI1UYYdozYnfTUO1HQaBO1QCvOPrksYxDFFNU/ZWhJFWXYnrLdpS1 DEW70puAX2UOdOc+y3ILkRCDE6Beo0YqI4/QTS9o9I+H2b7Cznpl -----END CERTIFICATE-----Generated at Thu May 8 09:53:41 2025 by rpki-client