$ rpki-client -vvf repo-rpki.idnic.net/repo/570c1bab-13f4-4ce6-85f7-c388737f6d19/0/323030313a6466323a663334303a3a2f34382d3438203d3e20313432333333.roa File: 323030313a6466323a663334303a3a2f34382d3438203d3e20313432333333.roa (raw, json) Hash identifier: TsqNIUGKVArIBEGfFPOQj0RJMusrdrLAysbKak+tetA= Subject key identifier: BB:01:A2:10:10:8E:D2:C5:CF:DF:AF:9D:B4:BE:CB:A4:BF:D0:24:97 Certificate issuer: /CN=00B4ECFCCAE90A9463FD71822A3CEE4C8C145AD4 Certificate serial: 3F70CEA854B10B7D81194F809BAD36ADA330E88F Authority key identifier: 00:B4:EC:FC:CA:E9:0A:94:63:FD:71:82:2A:3C:EE:4C:8C:14:5A:D4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/00B4ECFCCAE90A9463FD71822A3CEE4C8C145AD4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/570c1bab-13f4-4ce6-85f7-c388737f6d19/0/323030313a6466323a663334303a3a2f34382d3438203d3e20313432333333.roa Signing time: Thu 19 Jun 2025 04:00:01 +0000 ROA not before: Thu 19 Jun 2025 03:55:01 +0000 ROA not after: Thu 18 Jun 2026 04:00:01 +0000 asID: 142333 IP address blocks: 2001:df2:f340::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/570c1bab-13f4-4ce6-85f7-c388737f6d19/0/00B4ECFCCAE90A9463FD71822A3CEE4C8C145AD4.crl rsync://repo-rpki.idnic.net/repo/570c1bab-13f4-4ce6-85f7-c388737f6d19/0/00B4ECFCCAE90A9463FD71822A3CEE4C8C145AD4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/00B4ECFCCAE90A9463FD71822A3CEE4C8C145AD4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 01 Jul 2025 12:46:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:70:ce:a8:54:b1:0b:7d:81:19:4f:80:9b:ad:36:ad:a3:30:e8:8f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=00B4ECFCCAE90A9463FD71822A3CEE4C8C145AD4 Validity Not Before: Jun 19 03:55:01 2025 GMT Not After : Jun 18 04:00:01 2026 GMT Subject: CN=BB01A210108ED2C5CFDFAF9DB4BECBA4BFD02497 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:25:a4:8a:a5:f0:da:bc:85:2a:9e:81:55:09: 72:20:37:7e:bb:96:5f:d3:b3:1e:c1:82:a7:a9:aa: 49:5b:68:cc:9c:94:a1:8d:39:da:f8:1d:c8:b1:7c: 04:ad:01:25:c6:56:63:6d:95:a4:0e:54:b7:ac:65: ab:ba:1e:c5:77:35:fe:d6:18:36:9c:c2:e8:3f:09: 12:48:fc:c8:94:17:1e:5e:15:47:d4:68:4e:33:a5: 9e:39:06:02:da:b5:7d:df:c9:c9:3d:fe:41:47:af: 90:12:9c:31:de:23:a5:75:e4:e8:d4:47:10:54:26: 48:43:41:0e:bd:6b:2b:fc:82:b6:e4:62:54:dc:81: b1:44:14:3a:3b:b7:8c:75:69:1c:d1:c2:5f:16:28: eb:f4:7a:ca:eb:25:cf:58:ab:43:7a:0a:63:6e:d7: c5:0a:b1:fa:76:f9:00:a3:6a:52:be:24:35:a4:f6: 63:53:51:21:11:e6:a4:c9:88:d3:ca:d0:19:1e:be: 3b:22:67:94:88:9f:50:1b:2b:72:68:97:88:41:24: 4f:5f:ca:fb:62:44:fd:b7:4b:94:3a:ba:6d:5f:51: dd:5c:7b:f8:b4:97:f9:d9:46:55:f0:27:0c:fc:bc: 4d:71:6f:94:7b:1d:c2:d1:84:88:ba:79:f2:b2:17: bb:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:01:A2:10:10:8E:D2:C5:CF:DF:AF:9D:B4:BE:CB:A4:BF:D0:24:97 X509v3 Authority Key Identifier: keyid:00:B4:EC:FC:CA:E9:0A:94:63:FD:71:82:2A:3C:EE:4C:8C:14:5A:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/570c1bab-13f4-4ce6-85f7-c388737f6d19/0/00B4ECFCCAE90A9463FD71822A3CEE4C8C145AD4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/00B4ECFCCAE90A9463FD71822A3CEE4C8C145AD4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/570c1bab-13f4-4ce6-85f7-c388737f6d19/0/323030313a6466323a663334303a3a2f34382d3438203d3e20313432333333.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df2:f340::/48 Signature Algorithm: sha256WithRSAEncryption cd:41:d5:95:a4:63:15:50:b2:75:34:f4:ec:e6:86:c4:b6:74: ac:f0:e2:7b:89:82:00:5c:65:3a:f8:b0:b2:39:09:75:6f:0a: 16:86:d9:62:1d:ff:0b:98:8f:55:53:8c:4e:b4:bd:1d:5f:7a: 1c:b8:ac:58:bc:c9:72:1b:6f:db:39:dc:1b:d4:f1:4b:48:90: e5:89:88:90:3e:18:d6:20:b0:00:e4:2d:5b:2c:ca:9b:4b:6e: ac:d3:23:14:1f:4f:68:f4:91:24:7b:e5:09:bf:86:0e:5e:e4: 0e:e9:9b:6c:95:29:6f:ed:b4:3b:c2:67:6c:bb:0e:78:72:95: 90:17:e7:50:fa:54:49:8f:da:c4:cb:d4:ca:c2:c9:1f:7c:71: 68:8e:12:40:5c:9e:f4:b5:31:1f:80:4e:c1:16:97:c8:56:3a: 88:7b:b1:5e:76:40:a1:bf:82:4f:64:49:9a:1a:db:6a:5e:fc: fe:6a:63:d0:a3:23:80:10:6c:da:e4:d3:02:28:13:d4:76:3c: f8:26:c0:b6:1c:4c:37:3a:46:31:54:f4:74:eb:af:36:68:5b: c9:e8:d3:46:44:1e:f9:47:ae:04:a2:cc:a5:f9:3e:2b:68:e2: 73:e8:4d:60:cd:10:3a:d4:85:6b:d9:a1:9f:b7:33:09:0b:19: 21:99:c7:1c -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUP3DOqFSxC32BGU+Am602raMw6I8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDBCNEVDRkNDQUU5MEE5NDYzRkQ3MTgyMkEzQ0VFNEM4 QzE0NUFENDAeFw0yNTA2MTkwMzU1MDFaFw0yNjA2MTgwNDAwMDFaMDMxMTAvBgNV BAMTKEJCMDFBMjEwMTA4RUQyQzVDRkRGQUY5REI0QkVDQkE0QkZEMDI0OTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/JaSKpfDavIUqnoFVCXIgN367 ll/Tsx7BgqepqklbaMyclKGNOdr4HcixfAStASXGVmNtlaQOVLesZau6HsV3Nf7W GDacwug/CRJI/MiUFx5eFUfUaE4zpZ45BgLatX3fyck9/kFHr5ASnDHeI6V15OjU RxBUJkhDQQ69ayv8grbkYlTcgbFEFDo7t4x1aRzRwl8WKOv0esrrJc9Yq0N6CmNu 18UKsfp2+QCjalK+JDWk9mNTUSER5qTJiNPK0BkevjsiZ5SIn1AbK3Jol4hBJE9f yvtiRP23S5Q6um1fUd1ce/i0l/nZRlXwJwz8vE1xb5R7HcLRhIi6efKyF7sHAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUuwGiEBCO0sXP36+dtL7LpL/QJJcwHwYDVR0j BBgwFoAUALTs/MrpCpRj/XGCKjzuTIwUWtQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 NzBjMWJhYi0xM2Y0LTRjZTYtODVmNy1jMzg4NzM3ZjZkMTkvMC8wMEI0RUNGQ0NB RTkwQTk0NjNGRDcxODIyQTNDRUU0QzhDMTQ1QUQ0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDBCNEVDRkNDQUU5MEE5NDYzRkQ3MTgyMkEzQ0VFNEM4QzE0 NUFENC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU3MGMxYmFiLTEzZjQtNGNlNi04 NWY3LWMzODg3MzdmNmQxOS8wLzMyMzAzMDMxM2E2NDY2MzIzYTY2MzMzNDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNDMyMzMzMzMzLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8vNAMA0GCSqGSIb3DQEBCwUAA4IBAQDNQdWVpGMVULJ1NPTs5obEtnSs8OJ7iYIA XGU6+LCyOQl1bwoWhtliHf8LmI9VU4xOtL0dX3ocuKxYvMlyG2/bOdwb1PFLSJDl iYiQPhjWILAA5C1bLMqbS26s0yMUH09o9JEke+UJv4YOXuQO6ZtslSlv7bQ7wmds uw54cpWQF+dQ+lRJj9rEy9TKwskffHFojhJAXJ70tTEfgE7BFpfIVjqIe7FedkCh v4JPZEmaGttqXvz+amPQoyOAEGza5NMCKBPUdjz4JsC2HEw3OkYxVPR06682aFvJ 6NNGRB75R64Eosyl+T4raOJz6E1gzRA61IVr2aGftzMJCxkhmccc -----END CERTIFICATE-----Generated at Mon Jun 30 10:36:08 2025 by rpki-client