$ rpki-client -vvf repo-rpki.idnic.net/repo/8a66f350-e642-402f-8ac3-6aef7e11aac3/0/323030313a6466343a366430303a3a2f34382d3438203d3e20313337333734.roa File: 323030313a6466343a366430303a3a2f34382d3438203d3e20313337333734.roa (raw, json) Hash identifier: 415EQue+5BmAk6tXc9Eh3zzXOH8qdWNQfAsbBNLYlC0= Subject key identifier: 17:54:E5:A1:AD:47:8E:70:58:E4:C5:37:9F:DF:CB:34:F8:11:F4:4B Certificate issuer: /CN=9852ABB8508DE551F1723BC9AC5EC39B35056AE2 Certificate serial: 7024E502F0A88C59F5042CE7ED0DBBCB16927CF2 Authority key identifier: 98:52:AB:B8:50:8D:E5:51:F1:72:3B:C9:AC:5E:C3:9B:35:05:6A:E2 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9852ABB8508DE551F1723BC9AC5EC39B35056AE2.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8a66f350-e642-402f-8ac3-6aef7e11aac3/0/323030313a6466343a366430303a3a2f34382d3438203d3e20313337333734.roa Signing time: Tue 24 Jun 2025 05:00:01 +0000 ROA not before: Tue 24 Jun 2025 04:55:01 +0000 ROA not after: Tue 23 Jun 2026 05:00:01 +0000 asID: 137374 IP address blocks: 2001:df4:6d00::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8a66f350-e642-402f-8ac3-6aef7e11aac3/0/9852ABB8508DE551F1723BC9AC5EC39B35056AE2.crl rsync://repo-rpki.idnic.net/repo/8a66f350-e642-402f-8ac3-6aef7e11aac3/0/9852ABB8508DE551F1723BC9AC5EC39B35056AE2.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9852ABB8508DE551F1723BC9AC5EC39B35056AE2.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 03 Jul 2025 22:18:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:24:e5:02:f0:a8:8c:59:f5:04:2c:e7:ed:0d:bb:cb:16:92:7c:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9852ABB8508DE551F1723BC9AC5EC39B35056AE2 Validity Not Before: Jun 24 04:55:01 2025 GMT Not After : Jun 23 05:00:01 2026 GMT Subject: CN=1754E5A1AD478E7058E4C5379FDFCB34F811F44B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:33:e4:b8:23:d8:d3:5b:7d:2e:b1:ba:06:9f: 1e:db:3d:54:c7:3d:05:99:cf:47:c9:f0:0a:2f:16: 3a:0b:46:bc:84:61:39:78:1e:c3:e7:d0:4b:6e:c4: d0:2e:e5:10:51:d6:14:3f:72:a5:84:ee:c3:f2:c9: 0b:7b:94:10:b6:b1:2f:b0:52:e7:26:54:b3:f0:d1: 85:16:e6:57:1b:f6:13:83:05:b5:48:f6:7c:d3:4d: 7c:da:f9:ad:5f:88:6a:cf:9e:76:8c:5d:e4:60:fa: 92:0f:89:55:fe:4f:62:ec:39:aa:17:d7:43:5e:b6: ad:eb:bc:95:56:2a:10:68:e0:ee:d1:df:29:59:34: 7b:85:af:a0:86:ce:ce:9d:80:01:94:09:76:4e:d9: 1b:42:18:31:ad:3e:9b:02:72:a5:c2:0c:cb:7e:a3: f6:33:45:38:1b:08:72:2c:2f:67:55:c4:e0:ce:57: 33:4e:1c:a0:28:61:8c:79:7c:55:d1:96:8e:01:82: 66:93:9a:d6:91:50:f3:46:c6:36:50:3c:38:ba:8d: bf:55:14:01:2d:6b:af:15:11:53:59:57:3d:54:a3: 51:29:b1:af:5f:fe:45:6e:c7:5c:a2:57:7b:1c:eb: 5f:72:f6:1c:30:4b:53:4e:63:47:89:00:2d:6e:60: 1b:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:54:E5:A1:AD:47:8E:70:58:E4:C5:37:9F:DF:CB:34:F8:11:F4:4B X509v3 Authority Key Identifier: keyid:98:52:AB:B8:50:8D:E5:51:F1:72:3B:C9:AC:5E:C3:9B:35:05:6A:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8a66f350-e642-402f-8ac3-6aef7e11aac3/0/9852ABB8508DE551F1723BC9AC5EC39B35056AE2.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9852ABB8508DE551F1723BC9AC5EC39B35056AE2.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8a66f350-e642-402f-8ac3-6aef7e11aac3/0/323030313a6466343a366430303a3a2f34382d3438203d3e20313337333734.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df4:6d00::/48 Signature Algorithm: sha256WithRSAEncryption 7d:7c:3d:e8:fd:bc:fa:43:5a:14:cc:7d:2b:17:25:fc:32:a6: 63:31:de:76:3c:4a:64:91:47:c2:11:6b:96:07:d0:2b:af:41: 64:a8:38:c3:b3:d5:97:9b:b2:f3:60:bd:c1:00:c5:2d:13:c2: 49:4c:41:16:2a:5a:08:83:5c:8b:ab:60:a5:77:93:4a:48:d4: 08:97:d8:b5:a6:df:7e:37:18:d9:07:e8:1a:3f:16:bd:12:f6: 36:f7:16:77:f3:87:6f:83:8c:49:f6:ec:b9:7e:fc:7a:c8:ef: f0:c5:04:2e:53:7d:92:9a:91:06:bc:ba:b3:df:56:47:67:7b: 5f:e9:00:f7:df:3b:7b:b7:4b:84:0c:b2:e9:ce:1e:4e:a7:17: b5:9c:d4:84:9f:a6:ec:26:4b:ef:c7:9c:02:5f:44:a0:4b:27: 75:9c:99:50:34:b7:12:05:50:62:c8:99:45:d2:f9:77:73:4f: 59:6d:4a:9c:44:44:92:9f:be:94:e9:87:44:71:1e:d4:03:bf: c2:44:f8:a0:0d:a7:a5:cf:ac:59:f6:6c:26:30:09:5c:9b:13: 50:c3:0b:71:27:7b:40:62:11:da:86:4f:58:2c:4a:53:b8:e7: 5e:b2:66:97:bc:74:98:6b:bf:c1:19:11:a9:3f:ff:bc:b9:df: cc:2d:d2:bf -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUcCTlAvCojFn1BCzn7Q27yxaSfPIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTg1MkFCQjg1MDhERTU1MUYxNzIzQkM5QUM1RUMzOUIz NTA1NkFFMjAeFw0yNTA2MjQwNDU1MDFaFw0yNjA2MjMwNTAwMDFaMDMxMTAvBgNV BAMTKDE3NTRFNUExQUQ0NzhFNzA1OEU0QzUzNzlGREZDQjM0RjgxMUY0NEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCfM+S4I9jTW30usboGnx7bPVTH PQWZz0fJ8AovFjoLRryEYTl4HsPn0EtuxNAu5RBR1hQ/cqWE7sPyyQt7lBC2sS+w UucmVLPw0YUW5lcb9hODBbVI9nzTTXza+a1fiGrPnnaMXeRg+pIPiVX+T2LsOaoX 10Netq3rvJVWKhBo4O7R3ylZNHuFr6CGzs6dgAGUCXZO2RtCGDGtPpsCcqXCDMt+ o/YzRTgbCHIsL2dVxODOVzNOHKAoYYx5fFXRlo4BgmaTmtaRUPNGxjZQPDi6jb9V FAEta68VEVNZVz1Uo1Epsa9f/kVux1yiV3sc619y9hwwS1NOY0eJAC1uYBuPAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUF1Tloa1HjnBY5MU3n9/LNPgR9EswHwYDVR0j BBgwFoAUmFKruFCN5VHxcjvJrF7DmzUFauIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 YTY2ZjM1MC1lNjQyLTQwMmYtOGFjMy02YWVmN2UxMWFhYzMvMC85ODUyQUJCODUw OERFNTUxRjE3MjNCQzlBQzVFQzM5QjM1MDU2QUUyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTg1MkFCQjg1MDhERTU1MUYxNzIzQkM5QUM1RUMzOUIzNTA1 NkFFMi5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhhNjZmMzUwLWU2NDItNDAyZi04 YWMzLTZhZWY3ZTExYWFjMy8wLzMyMzAzMDMxM2E2NDY2MzQzYTM2NjQzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM3MzMzNzM0LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 9G0AMA0GCSqGSIb3DQEBCwUAA4IBAQB9fD3o/bz6Q1oUzH0rFyX8MqZjMd52PEpk kUfCEWuWB9Arr0FkqDjDs9WXm7LzYL3BAMUtE8JJTEEWKloIg1yLq2Cld5NKSNQI l9i1pt9+NxjZB+gaPxa9EvY29xZ384dvg4xJ9uy5fvx6yO/wxQQuU32SmpEGvLqz 31ZHZ3tf6QD33zt7t0uEDLLpzh5Opxe1nNSEn6bsJkvvx5wCX0SgSyd1nJlQNLcS BVBiyJlF0vl3c09ZbUqcRESSn76U6YdEcR7UA7/CRPigDaelz6xZ9mwmMAlcmxNQ wwtxJ3tAYhHahk9YLEpTuOdesmaXvHSYa7/BGRGpP/+8ud/MLdK/ -----END CERTIFICATE-----Generated at Wed Jul 2 14:37:10 2025 by rpki-client