$ rpki-client -vvf repo-rpki.idnic.net/repo/60b590e8-4f89-4785-ae79-2bfffa2c52c9/0/323030313a6466323a653538303a3a2f34382d3438203d3e20313339393935.roa File: 323030313a6466323a653538303a3a2f34382d3438203d3e20313339393935.roa (raw, json) Hash identifier: co+KBnnYJEQwi8iEhHouifTA/OpTo3Sr/IbcmkaoPho= Subject key identifier: 01:08:A9:42:5C:E7:1C:B7:E4:C1:B1:91:80:98:3C:32:8F:95:1D:20 Certificate issuer: /CN=7C7A73B67FFC6664BCCD30B2013C54FCCE0B6254 Certificate serial: 60BE9FB3A9605E82693898DD80BD30CB67AA63F3 Authority key identifier: 7C:7A:73:B6:7F:FC:66:64:BC:CD:30:B2:01:3C:54:FC:CE:0B:62:54 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7C7A73B67FFC6664BCCD30B2013C54FCCE0B6254.cer Subject info access: rsync://repo-rpki.idnic.net/repo/60b590e8-4f89-4785-ae79-2bfffa2c52c9/0/323030313a6466323a653538303a3a2f34382d3438203d3e20313339393935.roa Signing time: Tue 12 Aug 2025 08:02:56 +0000 ROA not before: Tue 12 Aug 2025 07:57:56 +0000 ROA not after: Tue 11 Aug 2026 08:02:56 +0000 asID: 139995 IP address blocks: 2001:df2:e580::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/60b590e8-4f89-4785-ae79-2bfffa2c52c9/0/7C7A73B67FFC6664BCCD30B2013C54FCCE0B6254.crl rsync://repo-rpki.idnic.net/repo/60b590e8-4f89-4785-ae79-2bfffa2c52c9/0/7C7A73B67FFC6664BCCD30B2013C54FCCE0B6254.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7C7A73B67FFC6664BCCD30B2013C54FCCE0B6254.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Aug 2025 16:21:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:be:9f:b3:a9:60:5e:82:69:38:98:dd:80:bd:30:cb:67:aa:63:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7C7A73B67FFC6664BCCD30B2013C54FCCE0B6254 Validity Not Before: Aug 12 07:57:56 2025 GMT Not After : Aug 11 08:02:56 2026 GMT Subject: CN=0108A9425CE71CB7E4C1B19180983C328F951D20 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:e9:ba:9b:4c:c1:a4:61:51:c8:da:a1:de:08: 1d:ca:b8:df:87:65:02:20:e9:e7:21:1d:5a:01:70: b8:74:0c:9e:fa:16:b8:1c:34:b4:21:34:09:21:3a: 7b:d4:20:37:cb:79:8a:4d:9d:79:83:2c:1e:df:d3: 15:6c:c5:6f:10:56:79:9b:05:8a:e8:8c:72:14:07: 69:a1:74:98:85:9b:8a:bc:da:5e:10:a3:2b:31:b5: e4:ea:2b:86:68:9f:5a:47:a1:fe:11:96:d2:f2:3e: 14:d7:6e:d9:06:53:6a:47:73:09:95:5d:7f:6d:08: a3:f5:43:a8:66:02:7b:82:ea:67:b8:87:4b:a1:89: b9:77:47:e7:55:96:e2:1d:26:6b:83:2c:c9:c4:cf: ca:24:cb:e3:31:9b:72:69:a2:a7:f1:dc:51:f4:af: 2d:3b:f1:df:a8:06:7c:65:7b:db:df:51:16:5d:ee: 00:ca:b7:e1:8d:ce:9b:21:96:90:53:86:e4:2c:f0: 11:d0:27:2a:4a:9f:5a:a6:91:f7:19:e0:c7:59:e3: 9d:f6:84:8a:78:a3:66:4e:1b:45:2f:fd:39:3a:4e: 74:51:b8:e9:91:b2:8c:fb:d9:d6:ff:3a:00:cf:bf: 61:b1:45:16:c3:ec:31:62:e8:cb:fb:da:88:73:c1: e8:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:08:A9:42:5C:E7:1C:B7:E4:C1:B1:91:80:98:3C:32:8F:95:1D:20 X509v3 Authority Key Identifier: keyid:7C:7A:73:B6:7F:FC:66:64:BC:CD:30:B2:01:3C:54:FC:CE:0B:62:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/60b590e8-4f89-4785-ae79-2bfffa2c52c9/0/7C7A73B67FFC6664BCCD30B2013C54FCCE0B6254.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7C7A73B67FFC6664BCCD30B2013C54FCCE0B6254.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/60b590e8-4f89-4785-ae79-2bfffa2c52c9/0/323030313a6466323a653538303a3a2f34382d3438203d3e20313339393935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df2:e580::/48 Signature Algorithm: sha256WithRSAEncryption a9:cb:cb:f9:e1:80:b2:4a:6f:0f:74:7d:b9:fc:4d:da:56:32: 06:79:2e:c8:36:2d:56:28:ff:a0:81:1f:6c:93:dd:60:cf:dc: 11:6d:d9:33:15:cd:10:31:95:65:94:37:9e:4f:d6:f6:7c:c7: c1:13:6f:16:8d:b9:ab:46:ab:32:89:f7:d4:81:82:1f:73:7a: f1:bf:10:5a:d3:14:0a:6c:e8:5c:4b:0b:99:1a:5c:b1:1f:76: 41:45:e0:67:a9:c6:76:1d:b9:d4:34:8c:b7:e1:2e:9f:a8:97: 52:41:27:ac:2b:12:d7:f4:64:a6:fc:f9:d2:28:2b:48:03:a3: 09:c3:04:83:98:59:bf:7d:76:97:c4:c6:41:8b:39:e2:15:90: 38:bb:a1:7d:08:29:1d:7e:68:ba:68:3c:c3:26:21:07:86:8c: 30:60:2b:b7:44:d6:53:cf:87:d5:d5:98:10:38:4d:b1:e2:9a: 47:ae:31:48:34:ba:75:4e:3a:db:71:af:65:10:de:dc:a8:55: da:a0:88:c2:25:47:d2:87:71:95:5e:68:e5:f9:5c:46:c6:ee: 2d:aa:f0:58:96:a6:35:02:2c:ca:91:6e:6b:46:5f:df:42:06: e6:65:cd:c4:89:e4:6f:44:47:f8:ea:a0:03:d6:65:33:b7:45: d4:2d:00:99 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUYL6fs6lgXoJpOJjdgL0wy2eqY/MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0M3QTczQjY3RkZDNjY2NEJDQ0QzMEIyMDEzQzU0RkND RTBCNjI1NDAeFw0yNTA4MTIwNzU3NTZaFw0yNjA4MTEwODAyNTZaMDMxMTAvBgNV BAMTKDAxMDhBOTQyNUNFNzFDQjdFNEMxQjE5MTgwOTgzQzMyOEY5NTFEMjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCv6bqbTMGkYVHI2qHeCB3KuN+H ZQIg6echHVoBcLh0DJ76FrgcNLQhNAkhOnvUIDfLeYpNnXmDLB7f0xVsxW8QVnmb BYrojHIUB2mhdJiFm4q82l4QoysxteTqK4Zon1pHof4RltLyPhTXbtkGU2pHcwmV XX9tCKP1Q6hmAnuC6me4h0uhibl3R+dVluIdJmuDLMnEz8oky+Mxm3Jpoqfx3FH0 ry078d+oBnxle9vfURZd7gDKt+GNzpshlpBThuQs8BHQJypKn1qmkfcZ4MdZ4532 hIp4o2ZOG0Uv/Tk6TnRRuOmRsoz72db/OgDPv2GxRRbD7DFi6Mv72ohzweilAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUAQipQlznHLfkwbGRgJg8Mo+VHSAwHwYDVR0j BBgwFoAUfHpztn/8ZmS8zTCyATxU/M4LYlQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MGI1OTBlOC00Zjg5LTQ3ODUtYWU3OS0yYmZmZmEyYzUyYzkvMC83QzdBNzNCNjdG RkM2NjY0QkNDRDMwQjIwMTNDNTRGQ0NFMEI2MjU0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0M3QTczQjY3RkZDNjY2NEJDQ0QzMEIyMDEzQzU0RkNDRTBC NjI1NC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYwYjU5MGU4LTRmODktNDc4NS1h ZTc5LTJiZmZmYTJjNTJjOS8wLzMyMzAzMDMxM2E2NDY2MzIzYTY1MzUzODMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM5MzkzOTM1LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8uWAMA0GCSqGSIb3DQEBCwUAA4IBAQCpy8v54YCySm8PdH25/E3aVjIGeS7INi1W KP+ggR9sk91gz9wRbdkzFc0QMZVllDeeT9b2fMfBE28WjbmrRqsyiffUgYIfc3rx vxBa0xQKbOhcSwuZGlyxH3ZBReBnqcZ2HbnUNIy34S6fqJdSQSesKxLX9GSm/PnS KCtIA6MJwwSDmFm/fXaXxMZBizniFZA4u6F9CCkdfmi6aDzDJiEHhowwYCu3RNZT z4fV1ZgQOE2x4ppHrjFINLp1Tjrbca9lEN7cqFXaoIjCJUfSh3GVXmjl+VxGxu4t qvBYlqY1AizKkW5rRl/fQgbmZc3EieRvREf46qAD1mUzt0XULQCZ -----END CERTIFICATE-----Generated at Sat Aug 23 16:36:41 2025 by rpki-client