$ rpki-client -vvf repo-rpki.idnic.net/repo/57edcb7e-c38d-4e67-82bd-4e8150b88561/0/323030313a6466313a363930303a3a2f34382d3438203d3e20313336313238.roa File: 323030313a6466313a363930303a3a2f34382d3438203d3e20313336313238.roa (raw, json) Hash identifier: 1gzxa88JIBim0N0R/uC1nAl7S+pBY42/XBrZ+VIbBR0= Subject key identifier: 38:7D:8A:71:D2:E1:2C:EC:98:F3:2E:56:2C:61:4F:12:74:FF:F7:38 Certificate issuer: /CN=F39284EDA8B81E5F498D167C4DB09075943DA23C Certificate serial: 7B8DF6C20B337E16B66B37A869D3CED4F57EEFA3 Authority key identifier: F3:92:84:ED:A8:B8:1E:5F:49:8D:16:7C:4D:B0:90:75:94:3D:A2:3C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F39284EDA8B81E5F498D167C4DB09075943DA23C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/57edcb7e-c38d-4e67-82bd-4e8150b88561/0/323030313a6466313a363930303a3a2f34382d3438203d3e20313336313238.roa Signing time: Wed 20 Aug 2025 06:00:01 +0000 ROA not before: Wed 20 Aug 2025 05:55:01 +0000 ROA not after: Wed 19 Aug 2026 06:00:01 +0000 asID: 136128 IP address blocks: 2001:df1:6900::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/57edcb7e-c38d-4e67-82bd-4e8150b88561/0/F39284EDA8B81E5F498D167C4DB09075943DA23C.crl rsync://repo-rpki.idnic.net/repo/57edcb7e-c38d-4e67-82bd-4e8150b88561/0/F39284EDA8B81E5F498D167C4DB09075943DA23C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F39284EDA8B81E5F498D167C4DB09075943DA23C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 18:03:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:8d:f6:c2:0b:33:7e:16:b6:6b:37:a8:69:d3:ce:d4:f5:7e:ef:a3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F39284EDA8B81E5F498D167C4DB09075943DA23C Validity Not Before: Aug 20 05:55:01 2025 GMT Not After : Aug 19 06:00:01 2026 GMT Subject: CN=387D8A71D2E12CEC98F32E562C614F1274FFF738 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:ec:41:ac:c9:31:bc:3e:22:e8:eb:e4:cc:37: 80:21:78:7e:67:11:61:3c:98:82:92:be:9e:75:d7: ac:9f:10:ca:00:01:a2:52:13:da:23:0e:a8:ed:7b: 8c:4a:a4:4c:2d:b6:a9:2e:d0:e4:73:a5:58:49:e4: 02:04:6d:6b:ff:78:1c:83:43:d4:48:0c:78:f2:49: a1:a4:22:5f:a1:66:e1:65:9a:1b:f2:2a:bc:a8:44: c7:fd:02:c6:d5:a3:86:e4:23:28:df:9b:e3:c5:b1: a9:9a:25:eb:fb:83:25:ca:b3:79:1d:9b:52:66:09: 45:4d:7e:2c:71:e2:9f:16:81:1c:71:89:50:d7:ae: 8b:54:07:09:cb:0e:5d:db:88:66:39:2c:e4:50:5a: b4:c9:a4:02:31:48:31:db:66:9e:0d:1a:36:79:f1: d0:e5:06:bb:88:99:8a:7f:89:50:1f:83:be:6a:9f: 92:78:2d:ce:73:91:bc:e6:9f:64:a5:96:cf:8b:02: 44:c6:d6:2c:f5:10:61:58:e1:d1:09:c2:7b:0a:c0: 30:aa:bf:c7:e9:67:ee:8f:50:e0:32:45:19:03:69: de:c2:d4:ba:9e:e5:8a:7d:12:de:84:77:ae:14:71: 87:d5:61:1f:83:c7:d1:ce:3f:02:e5:ed:03:82:45: 70:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:7D:8A:71:D2:E1:2C:EC:98:F3:2E:56:2C:61:4F:12:74:FF:F7:38 X509v3 Authority Key Identifier: keyid:F3:92:84:ED:A8:B8:1E:5F:49:8D:16:7C:4D:B0:90:75:94:3D:A2:3C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/57edcb7e-c38d-4e67-82bd-4e8150b88561/0/F39284EDA8B81E5F498D167C4DB09075943DA23C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F39284EDA8B81E5F498D167C4DB09075943DA23C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/57edcb7e-c38d-4e67-82bd-4e8150b88561/0/323030313a6466313a363930303a3a2f34382d3438203d3e20313336313238.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df1:6900::/48 Signature Algorithm: sha256WithRSAEncryption 30:2f:1f:20:bd:40:78:23:11:68:48:c7:1f:1f:54:ef:93:c0: 36:6e:aa:da:68:bf:82:87:08:51:be:e7:04:ef:0e:fc:7e:de: d7:2c:40:f2:83:ac:2b:6d:3d:08:38:8e:64:23:f5:e2:b2:ea: e2:f4:df:fe:ce:1c:7e:bd:13:47:3b:35:55:f2:54:98:45:09: 1a:08:0a:7b:02:7f:28:5c:e3:f9:aa:ac:44:a9:61:4e:f3:5e: 58:70:8f:91:7e:36:83:0f:dc:6d:f2:c3:72:8a:21:0c:83:79: 89:e3:30:4b:37:0b:ea:b1:f9:da:0b:db:cf:60:16:62:3d:c0: 3c:26:77:24:ee:c1:d1:7f:0b:f6:72:18:29:59:7b:61:36:7c: 66:20:56:6b:6c:bf:fa:f0:44:18:ab:13:df:0c:71:7c:bd:91: 8b:0d:f7:c4:20:95:0d:0c:55:54:4c:95:66:af:52:32:58:38: 56:a1:87:b2:0c:79:9f:28:78:42:76:55:08:52:48:ff:e9:3d: 89:3f:2e:a6:b8:35:64:a2:86:73:2f:cd:ea:6c:f2:20:79:39: 0c:f8:d5:f9:dc:74:c1:71:a3:a7:18:d1:f0:76:bc:87:40:23: d7:86:a4:9c:03:bf:a5:87:9f:0a:25:91:c2:56:ba:e6:f7:b0: 52:91:5e:17 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUe432wgszfha2azeoadPO1PV+76MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM5Mjg0RURBOEI4MUU1RjQ5OEQxNjdDNERCMDkwNzU5 NDNEQTIzQzAeFw0yNTA4MjAwNTU1MDFaFw0yNjA4MTkwNjAwMDFaMDMxMTAvBgNV BAMTKDM4N0Q4QTcxRDJFMTJDRUM5OEYzMkU1NjJDNjE0RjEyNzRGRkY3MzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC57EGsyTG8PiLo6+TMN4AheH5n EWE8mIKSvp5116yfEMoAAaJSE9ojDqjte4xKpEwttqku0ORzpVhJ5AIEbWv/eByD Q9RIDHjySaGkIl+hZuFlmhvyKryoRMf9AsbVo4bkIyjfm+PFsamaJev7gyXKs3kd m1JmCUVNfixx4p8WgRxxiVDXrotUBwnLDl3biGY5LORQWrTJpAIxSDHbZp4NGjZ5 8dDlBruImYp/iVAfg75qn5J4Lc5zkbzmn2Slls+LAkTG1iz1EGFY4dEJwnsKwDCq v8fpZ+6PUOAyRRkDad7C1Lqe5Yp9Et6Ed64UcYfVYR+Dx9HOPwLl7QOCRXDNAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUOH2KcdLhLOyY8y5WLGFPEnT/9zgwHwYDVR0j BBgwFoAU85KE7ai4Hl9JjRZ8TbCQdZQ9ojwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 N2VkY2I3ZS1jMzhkLTRlNjctODJiZC00ZTgxNTBiODg1NjEvMC9GMzkyODRFREE4 QjgxRTVGNDk4RDE2N0M0REIwOTA3NTk0M0RBMjNDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjM5Mjg0RURBOEI4MUU1RjQ5OEQxNjdDNERCMDkwNzU5NDNE QTIzQy5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU3ZWRjYjdlLWMzOGQtNGU2Ny04 MmJkLTRlODE1MGI4ODU2MS8wLzMyMzAzMDMxM2E2NDY2MzEzYTM2MzkzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM2MzEzMjM4LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8WkAMA0GCSqGSIb3DQEBCwUAA4IBAQAwLx8gvUB4IxFoSMcfH1Tvk8A2bqraaL+C hwhRvucE7w78ft7XLEDyg6wrbT0IOI5kI/Xisuri9N/+zhx+vRNHOzVV8lSYRQka CAp7An8oXOP5qqxEqWFO815YcI+RfjaDD9xt8sNyiiEMg3mJ4zBLNwvqsfnaC9vP YBZiPcA8Jnck7sHRfwv2chgpWXthNnxmIFZrbL/68EQYqxPfDHF8vZGLDffEIJUN DFVUTJVmr1IyWDhWoYeyDHmfKHhCdlUIUkj/6T2JPy6muDVkooZzL83qbPIgeTkM +NX53HTBcaOnGNHwdryHQCPXhqScA7+lh58KJZHCVrrm97BSkV4X -----END CERTIFICATE-----Generated at Sat Aug 23 21:14:59 2025 by rpki-client