$ rpki-client -vvf repo-rpki.idnic.net/repo/82780f85-ef2f-4cf8-a4b8-5225c45b96a1/0/323030313a6466323a626530303a3a2f34382d3438203d3e20313335343537.roa File: 323030313a6466323a626530303a3a2f34382d3438203d3e20313335343537.roa (raw, json) Hash identifier: Y9NxdO2uUmExgp5HT4f9RxRPtt01n/EQdy4OmAOBACk= Subject key identifier: 32:30:FE:59:04:B2:01:46:81:FD:30:D4:BA:A8:CF:66:39:20:8E:42 Certificate issuer: /CN=4DD0C95B43B8B653601FED39AB010E1DD0DC17F2 Certificate serial: 5955EAD359B344256578335EAC2C81E8EF2D5D25 Authority key identifier: 4D:D0:C9:5B:43:B8:B6:53:60:1F:ED:39:AB:01:0E:1D:D0:DC:17:F2 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DD0C95B43B8B653601FED39AB010E1DD0DC17F2.cer Subject info access: rsync://repo-rpki.idnic.net/repo/82780f85-ef2f-4cf8-a4b8-5225c45b96a1/0/323030313a6466323a626530303a3a2f34382d3438203d3e20313335343537.roa Signing time: Wed 20 Aug 2025 06:02:26 +0000 ROA not before: Wed 20 Aug 2025 05:57:26 +0000 ROA not after: Wed 19 Aug 2026 06:02:26 +0000 asID: 135457 IP address blocks: 2001:df2:be00::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/82780f85-ef2f-4cf8-a4b8-5225c45b96a1/0/4DD0C95B43B8B653601FED39AB010E1DD0DC17F2.crl rsync://repo-rpki.idnic.net/repo/82780f85-ef2f-4cf8-a4b8-5225c45b96a1/0/4DD0C95B43B8B653601FED39AB010E1DD0DC17F2.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DD0C95B43B8B653601FED39AB010E1DD0DC17F2.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 22:28:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:55:ea:d3:59:b3:44:25:65:78:33:5e:ac:2c:81:e8:ef:2d:5d:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4DD0C95B43B8B653601FED39AB010E1DD0DC17F2 Validity Not Before: Aug 20 05:57:26 2025 GMT Not After : Aug 19 06:02:26 2026 GMT Subject: CN=3230FE5904B2014681FD30D4BAA8CF6639208E42 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:0a:fe:3a:af:4e:87:81:07:9f:95:db:a6:4f: ec:fd:f3:d0:3d:9c:8e:8b:d3:ca:b6:7f:39:f0:63: 74:b9:b6:7b:ba:de:64:6a:b8:49:57:fe:6a:72:7e: cf:94:ab:aa:8d:4a:96:d8:03:54:20:50:cb:46:e0: d8:27:d9:87:8b:5e:65:49:9f:09:33:b3:64:c4:b3: a5:f5:42:12:66:d1:ab:20:d3:1f:d6:98:01:d4:70: 65:78:ea:13:c7:1a:39:88:fd:b2:df:62:16:b6:75: cc:01:78:c2:aa:de:ec:7a:11:48:56:0a:d4:27:33: 1f:1b:da:fe:b8:00:f6:94:59:52:e9:db:d3:4b:b0: d8:a1:64:51:6c:0d:57:4a:46:b4:79:98:16:27:72: 79:64:ce:e5:ef:cb:01:99:7f:6e:3a:5d:47:20:19: ce:e7:0e:3f:57:11:9d:d0:b2:c6:32:5e:2c:ab:a3: 45:65:47:ef:3e:9b:c2:f2:e3:83:72:f9:29:43:81: 25:4c:a6:98:73:7d:5b:27:65:eb:d8:23:d2:e5:d1: 0b:8d:ea:eb:d3:f9:db:0b:32:0e:59:98:ea:d6:36: cc:51:ac:d5:ee:5d:51:1c:0c:86:a5:42:2e:9d:55: b9:fd:02:9b:a3:e3:4d:d1:f3:38:f2:84:81:62:5c: a8:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:30:FE:59:04:B2:01:46:81:FD:30:D4:BA:A8:CF:66:39:20:8E:42 X509v3 Authority Key Identifier: keyid:4D:D0:C9:5B:43:B8:B6:53:60:1F:ED:39:AB:01:0E:1D:D0:DC:17:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/82780f85-ef2f-4cf8-a4b8-5225c45b96a1/0/4DD0C95B43B8B653601FED39AB010E1DD0DC17F2.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DD0C95B43B8B653601FED39AB010E1DD0DC17F2.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/82780f85-ef2f-4cf8-a4b8-5225c45b96a1/0/323030313a6466323a626530303a3a2f34382d3438203d3e20313335343537.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df2:be00::/48 Signature Algorithm: sha256WithRSAEncryption 2d:52:a8:21:ef:ca:a6:10:1f:f8:fe:44:3b:60:16:2c:96:b8: f2:92:6d:aa:fc:d1:18:96:d3:f5:dc:6b:52:d3:8c:33:be:99: 93:1a:26:19:5a:50:a5:a3:96:8e:58:af:d7:c8:d2:83:26:b1: d6:e8:05:42:cd:d6:a7:26:f4:2b:79:6f:21:00:fd:ff:78:83: 73:19:07:d6:3b:34:af:8c:f1:cd:08:2a:91:79:3a:51:7c:87: 58:08:7e:ea:2b:a8:f9:8d:a5:d9:52:8b:d8:67:09:fe:ee:96: 25:f5:09:3c:19:3a:d7:3f:6b:06:b5:26:87:54:e1:17:95:2e: 4b:18:2a:82:70:09:43:74:42:6b:24:e0:96:cb:d4:65:0c:e8: 05:40:38:a1:af:fc:dd:bf:05:1c:9f:1f:05:ab:d0:d6:9b:f1: 2f:03:1e:79:06:20:80:27:d6:f1:69:a9:d3:48:f8:a6:fc:fc: 8d:37:94:2b:f9:7c:f6:d8:39:23:db:e7:7b:47:f1:43:dc:3b: 12:7c:11:bf:39:30:89:ed:d4:ff:1a:03:42:aa:ad:a0:85:f1: 11:b6:fa:99:87:64:d6:9a:c2:1b:48:94:51:07:d0:92:bc:ac: 98:1e:73:2d:be:49:e0:a7:3c:66:ac:1f:54:73:c7:7e:e0:9b: aa:97:5a:93 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUWVXq01mzRCVleDNerCyB6O8tXSUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEREMEM5NUI0M0I4QjY1MzYwMUZFRDM5QUIwMTBFMURE MERDMTdGMjAeFw0yNTA4MjAwNTU3MjZaFw0yNjA4MTkwNjAyMjZaMDMxMTAvBgNV BAMTKDMyMzBGRTU5MDRCMjAxNDY4MUZEMzBENEJBQThDRjY2MzkyMDhFNDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQCv46r06HgQefldumT+z989A9 nI6L08q2fznwY3S5tnu63mRquElX/mpyfs+Uq6qNSpbYA1QgUMtG4Ngn2YeLXmVJ nwkzs2TEs6X1QhJm0asg0x/WmAHUcGV46hPHGjmI/bLfYha2dcwBeMKq3ux6EUhW CtQnMx8b2v64APaUWVLp29NLsNihZFFsDVdKRrR5mBYncnlkzuXvywGZf246XUcg Gc7nDj9XEZ3QssYyXiyro0VlR+8+m8Ly44Ny+SlDgSVMpphzfVsnZevYI9Ll0QuN 6uvT+dsLMg5ZmOrWNsxRrNXuXVEcDIalQi6dVbn9Apuj403R8zjyhIFiXKibAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUMjD+WQSyAUaB/TDUuqjPZjkgjkIwHwYDVR0j BBgwFoAUTdDJW0O4tlNgH+05qwEOHdDcF/IwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 Mjc4MGY4NS1lZjJmLTRjZjgtYTRiOC01MjI1YzQ1Yjk2YTEvMC80REQwQzk1QjQz QjhCNjUzNjAxRkVEMzlBQjAxMEUxREQwREMxN0YyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEREMEM5NUI0M0I4QjY1MzYwMUZFRDM5QUIwMTBFMUREMERD MTdGMi5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzgyNzgwZjg1LWVmMmYtNGNmOC1h NGI4LTUyMjVjNDViOTZhMS8wLzMyMzAzMDMxM2E2NDY2MzIzYTYyNjUzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM1MzQzNTM3LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8r4AMA0GCSqGSIb3DQEBCwUAA4IBAQAtUqgh78qmEB/4/kQ7YBYslrjykm2q/NEY ltP13GtS04wzvpmTGiYZWlClo5aOWK/XyNKDJrHW6AVCzdanJvQreW8hAP3/eINz GQfWOzSvjPHNCCqReTpRfIdYCH7qK6j5jaXZUovYZwn+7pYl9Qk8GTrXP2sGtSaH VOEXlS5LGCqCcAlDdEJrJOCWy9RlDOgFQDihr/zdvwUcnx8Fq9DWm/EvAx55BiCA J9bxaanTSPim/PyNN5Qr+Xz22Dkj2+d7R/FD3DsSfBG/OTCJ7dT/GgNCqq2ghfER tvqZh2TWmsIbSJRRB9CSvKyYHnMtvkngpzxmrB9Uc8d+4Juql1qT -----END CERTIFICATE-----Generated at Sat Aug 23 18:13:22 2025 by rpki-client