$ rpki-client -vvf repo-rpki.idnic.net/repo/9e5060b8-f570-42d6-86ff-33ea7fdf2515/0/323030313a6466363a313330303a3a2f34382d3438203d3e20313338313137.roa File: 323030313a6466363a313330303a3a2f34382d3438203d3e20313338313137.roa (raw, json) Hash identifier: hzs93FaYaNphdZDJOy2a+k5Vr7J1TFpilPTw5TB+vyQ= Subject key identifier: C8:79:32:D1:92:39:CA:B0:D2:28:B9:6E:AF:F0:E2:45:5C:48:97:A9 Certificate issuer: /CN=989B87D40F7C9F1BA54ABCAE9BC797A3E6B25748 Certificate serial: 292D51D2384523B55BA15841E73D62B995F323C9 Authority key identifier: 98:9B:87:D4:0F:7C:9F:1B:A5:4A:BC:AE:9B:C7:97:A3:E6:B2:57:48 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/989B87D40F7C9F1BA54ABCAE9BC797A3E6B25748.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9e5060b8-f570-42d6-86ff-33ea7fdf2515/0/323030313a6466363a313330303a3a2f34382d3438203d3e20313338313137.roa Signing time: Tue 17 Jun 2025 10:00:06 +0000 ROA not before: Tue 17 Jun 2025 09:55:06 +0000 ROA not after: Tue 16 Jun 2026 10:00:06 +0000 asID: 138117 IP address blocks: 2001:df6:1300::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9e5060b8-f570-42d6-86ff-33ea7fdf2515/0/989B87D40F7C9F1BA54ABCAE9BC797A3E6B25748.crl rsync://repo-rpki.idnic.net/repo/9e5060b8-f570-42d6-86ff-33ea7fdf2515/0/989B87D40F7C9F1BA54ABCAE9BC797A3E6B25748.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/989B87D40F7C9F1BA54ABCAE9BC797A3E6B25748.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 04 Jul 2025 10:23:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:2d:51:d2:38:45:23:b5:5b:a1:58:41:e7:3d:62:b9:95:f3:23:c9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=989B87D40F7C9F1BA54ABCAE9BC797A3E6B25748 Validity Not Before: Jun 17 09:55:06 2025 GMT Not After : Jun 16 10:00:06 2026 GMT Subject: CN=C87932D19239CAB0D228B96EAFF0E2455C4897A9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:47:7e:60:f4:fc:4e:92:cd:07:c0:d8:f6:03: 01:55:c3:74:ec:dd:6d:35:63:da:e0:94:44:98:66: 7d:27:be:69:e2:40:aa:7f:2a:a2:b2:ab:ea:dd:3f: 0d:2b:b5:ed:e2:dc:64:c1:97:c3:7d:23:64:ec:38: ae:d1:e4:ae:16:43:a8:33:43:e1:ae:27:b4:4f:33: 0a:47:60:11:2f:e0:d4:47:40:9e:f6:a4:80:11:9b: ed:7c:11:d4:f8:4b:25:0a:78:c6:9d:27:18:be:41: 62:84:82:ec:87:07:14:a4:0a:11:94:46:c0:d8:d2: e2:0d:64:49:e0:17:a9:79:54:88:31:84:ef:ef:60: f8:8f:90:34:7e:07:62:d0:5a:06:4e:a2:44:23:04: cf:d2:53:12:57:87:a8:8a:84:d1:45:e6:59:f0:6e: 8e:67:11:d3:d0:af:96:ca:96:97:26:75:7d:06:9b: 55:b9:ab:8f:3d:62:a3:d5:39:9c:a5:53:a2:ff:07: 13:7b:24:24:c8:8f:b0:92:c6:cc:17:56:1f:7f:99: 59:e5:04:b7:bf:2a:48:63:e2:fc:0e:48:89:d0:ad: 11:31:71:3c:ee:d5:66:6b:68:d4:44:1e:31:41:2f: ea:d1:30:5f:c3:32:e9:24:96:b4:c6:91:a0:5b:6a: f8:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:79:32:D1:92:39:CA:B0:D2:28:B9:6E:AF:F0:E2:45:5C:48:97:A9 X509v3 Authority Key Identifier: keyid:98:9B:87:D4:0F:7C:9F:1B:A5:4A:BC:AE:9B:C7:97:A3:E6:B2:57:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9e5060b8-f570-42d6-86ff-33ea7fdf2515/0/989B87D40F7C9F1BA54ABCAE9BC797A3E6B25748.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/989B87D40F7C9F1BA54ABCAE9BC797A3E6B25748.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9e5060b8-f570-42d6-86ff-33ea7fdf2515/0/323030313a6466363a313330303a3a2f34382d3438203d3e20313338313137.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df6:1300::/48 Signature Algorithm: sha256WithRSAEncryption 39:67:d2:0d:fc:70:8c:f3:e7:00:1a:ef:28:4f:ea:9c:42:e2: 97:68:d1:c9:93:ce:03:24:f1:96:c1:e5:ba:58:54:1a:0c:45: d8:f6:6c:fe:dc:3e:94:3b:d9:f7:35:f5:6c:75:2e:50:fd:00: bb:f7:bf:b8:5c:bd:b2:91:c5:08:7e:5e:67:3e:2b:49:b2:94: 44:90:9b:7d:eb:43:21:a5:6e:7a:6d:b9:26:2b:20:18:34:2f: 8b:70:60:89:02:2f:67:4a:b0:fc:1d:0a:98:7d:81:9c:23:29: 01:f8:11:67:b8:32:42:87:5a:a0:a8:c3:61:0e:79:d9:aa:a4: ee:fe:04:b0:dc:ea:5b:57:4e:60:05:53:eb:26:ea:0c:ae:1f: ab:f2:8b:bb:63:7f:c8:49:9d:e0:48:68:3c:fd:f3:8a:9e:fe: 27:52:ed:c5:87:f9:9c:cd:c9:e9:34:dc:fd:f9:ae:ac:7d:2b: b2:9f:e1:b5:da:13:18:ef:d9:f1:20:05:2c:7f:6d:cb:31:48: 36:12:1b:d2:cc:fd:1d:d1:e1:e3:4c:3d:4b:44:c8:2f:3f:28: cb:a9:80:0d:0f:16:0c:e7:78:6a:66:ee:e9:9b:1d:5b:88:ff: 8e:46:51:9b:85:a7:5a:b3:96:e6:18:90:a0:7e:6c:68:97:00: 54:06:4e:3a -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUKS1R0jhFI7VboVhB5z1iuZXzI8kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTg5Qjg3RDQwRjdDOUYxQkE1NEFCQ0FFOUJDNzk3QTNF NkIyNTc0ODAeFw0yNTA2MTcwOTU1MDZaFw0yNjA2MTYxMDAwMDZaMDMxMTAvBgNV BAMTKEM4NzkzMkQxOTIzOUNBQjBEMjI4Qjk2RUFGRjBFMjQ1NUM0ODk3QTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8R35g9PxOks0HwNj2AwFVw3Ts 3W01Y9rglESYZn0nvmniQKp/KqKyq+rdPw0rte3i3GTBl8N9I2TsOK7R5K4WQ6gz Q+GuJ7RPMwpHYBEv4NRHQJ72pIARm+18EdT4SyUKeMadJxi+QWKEguyHBxSkChGU RsDY0uINZEngF6l5VIgxhO/vYPiPkDR+B2LQWgZOokQjBM/SUxJXh6iKhNFF5lnw bo5nEdPQr5bKlpcmdX0Gm1W5q489YqPVOZylU6L/BxN7JCTIj7CSxswXVh9/mVnl BLe/Kkhj4vwOSInQrRExcTzu1WZraNREHjFBL+rRMF/DMukklrTGkaBbavgtAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUyHky0ZI5yrDSKLlur/DiRVxIl6kwHwYDVR0j BBgwFoAUmJuH1A98nxulSryum8eXo+ayV0gwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 ZTUwNjBiOC1mNTcwLTQyZDYtODZmZi0zM2VhN2ZkZjI1MTUvMC85ODlCODdENDBG N0M5RjFCQTU0QUJDQUU5QkM3OTdBM0U2QjI1NzQ4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTg5Qjg3RDQwRjdDOUYxQkE1NEFCQ0FFOUJDNzk3QTNFNkIy NTc0OC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzllNTA2MGI4LWY1NzAtNDJkNi04 NmZmLTMzZWE3ZmRmMjUxNS8wLzMyMzAzMDMxM2E2NDY2MzYzYTMxMzMzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM4MzEzMTM3LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 9hMAMA0GCSqGSIb3DQEBCwUAA4IBAQA5Z9IN/HCM8+cAGu8oT+qcQuKXaNHJk84D JPGWweW6WFQaDEXY9mz+3D6UO9n3NfVsdS5Q/QC797+4XL2ykcUIfl5nPitJspRE kJt960MhpW56bbkmKyAYNC+LcGCJAi9nSrD8HQqYfYGcIykB+BFnuDJCh1qgqMNh DnnZqqTu/gSw3OpbV05gBVPrJuoMrh+r8ou7Y3/ISZ3gSGg8/fOKnv4nUu3Fh/mc zcnpNNz9+a6sfSuyn+G12hMY79nxIAUsf23LMUg2EhvSzP0d0eHjTD1LRMgvPyjL qYANDxYM53hqZu7pmx1biP+ORlGbhadas5bmGJCgfmxolwBUBk46 -----END CERTIFICATE-----Generated at Tue Jul 1 21:08:09 2025 by rpki-client