$ rpki-client -vvf repo-rpki.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/323030313a6436383a31303a3a2f34382d3438203d3e203338373539.roa File: 323030313a6436383a31303a3a2f34382d3438203d3e203338373539.roa (raw, json) Hash identifier: ghIreGGw1MSr8fVsMwycbTOs/dBctFRQZd0vQbqY1I0= Subject key identifier: 68:43:79:99:08:06:20:B0:66:6D:2D:FD:59:81:C0:DF:7F:2A:F2:68 Certificate issuer: /CN=42042E672B688C3072FD4743B3E7DD81EC7CA306 Certificate serial: 1EFAD3AE368760C7FB26E9A93019F05DB00C7E17 Authority key identifier: 42:04:2E:67:2B:68:8C:30:72:FD:47:43:B3:E7:DD:81:EC:7C:A3:06 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/42042E672B688C3072FD4743B3E7DD81EC7CA306.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/323030313a6436383a31303a3a2f34382d3438203d3e203338373539.roa Signing time: Thu 19 Jun 2025 10:02:21 +0000 ROA not before: Thu 19 Jun 2025 09:57:21 +0000 ROA not after: Thu 18 Jun 2026 10:02:21 +0000 asID: 38759 IP address blocks: 2001:d68:10::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/42042E672B688C3072FD4743B3E7DD81EC7CA306.crl rsync://repo-rpki.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/42042E672B688C3072FD4743B3E7DD81EC7CA306.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/42042E672B688C3072FD4743B3E7DD81EC7CA306.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 03 Jul 2025 20:49:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:fa:d3:ae:36:87:60:c7:fb:26:e9:a9:30:19:f0:5d:b0:0c:7e:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=42042E672B688C3072FD4743B3E7DD81EC7CA306 Validity Not Before: Jun 19 09:57:21 2025 GMT Not After : Jun 18 10:02:21 2026 GMT Subject: CN=68437999080620B0666D2DFD5981C0DF7F2AF268 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:6a:f6:28:66:7f:6a:6b:7d:cc:8a:a0:5c:99: 44:21:5b:bc:aa:68:b0:bb:cc:11:62:d3:78:96:65: d5:f8:16:f2:51:f8:6f:e5:af:80:54:40:c3:78:17: 85:0f:ba:fa:89:6b:16:3c:73:95:f6:0f:68:4b:15: 37:40:24:9d:c2:89:f5:2e:ff:e1:fe:7c:66:1a:fc: 32:f4:c2:7a:1b:ce:9a:c5:9e:8e:2e:1d:d0:ef:bd: f1:16:fd:06:05:94:b9:b8:63:11:86:17:9c:65:0a: e6:0a:1a:35:76:43:80:86:52:e4:cf:82:37:85:28: 46:43:08:d1:7f:62:9c:fa:45:5b:d3:e8:1e:ea:bd: 64:e8:9c:ec:11:50:f2:e6:ba:4b:19:f3:ea:ec:4a: ff:56:58:a4:77:e8:f1:45:cf:f3:59:7e:94:88:b3: 06:72:28:01:07:58:61:81:06:b6:64:cb:e6:f9:67: 1b:0e:38:2a:00:5d:38:08:7c:1f:4d:59:65:ee:ff: 91:97:77:a5:c6:37:fe:e5:83:58:12:23:51:29:3d: 67:86:b6:79:16:42:63:34:52:64:c9:03:2a:28:c2: 44:21:e7:01:ad:7c:5d:05:7a:61:20:5f:78:0f:28: 67:97:97:5e:c2:42:5b:f9:dd:53:8b:f7:d1:9d:77: ee:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:43:79:99:08:06:20:B0:66:6D:2D:FD:59:81:C0:DF:7F:2A:F2:68 X509v3 Authority Key Identifier: keyid:42:04:2E:67:2B:68:8C:30:72:FD:47:43:B3:E7:DD:81:EC:7C:A3:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/42042E672B688C3072FD4743B3E7DD81EC7CA306.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/42042E672B688C3072FD4743B3E7DD81EC7CA306.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/323030313a6436383a31303a3a2f34382d3438203d3e203338373539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:d68:10::/48 Signature Algorithm: sha256WithRSAEncryption 02:2a:95:c7:6d:e2:f3:df:db:11:92:2c:4a:ba:7a:19:a8:b1: 47:1c:b0:05:48:07:fa:7b:ec:18:de:0b:5f:7e:67:4e:9f:b7: a6:82:a7:96:e1:89:f1:67:4e:61:58:c5:52:e6:13:86:3e:9f: 75:b0:5a:07:ae:b1:95:3f:d5:d1:0e:0f:03:86:9b:23:0d:ff: 7d:e1:51:6b:4a:f3:b9:f0:87:01:9a:b2:1e:b4:cc:07:3e:18: 46:33:f9:f3:b0:c6:cb:4c:27:ab:8b:e7:d1:0f:93:c1:98:f4: 75:97:65:e7:80:91:7b:cd:f7:ae:f1:63:a1:b5:c6:7e:27:23: 7d:8d:46:5f:7c:e5:3b:81:d3:79:ba:58:55:91:9f:5c:02:7d: a3:2d:c8:53:c0:e4:7b:31:74:f0:5d:ee:3c:fc:c0:97:60:af: 35:ff:ac:73:80:72:2b:fa:08:bc:9d:11:ee:da:af:f3:9b:a5: 50:b1:f1:3d:b6:3d:a0:32:86:00:27:73:21:df:ec:a0:d4:c3: 3d:38:2b:45:c4:21:de:ad:47:22:d4:7b:5b:04:29:79:2e:9e: 62:14:8d:62:85:8c:7a:86:ff:fd:97:79:0f:44:72:73:50:fd: 70:3f:c6:11:a2:33:c2:5a:8b:84:db:43:b1:a2:60:26:ce:86: ac:5d:ed:5c -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUHvrTrjaHYMf7JumpMBnwXbAMfhcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDIwNDJFNjcyQjY4OEMzMDcyRkQ0NzQzQjNFN0REODFF QzdDQTMwNjAeFw0yNTA2MTkwOTU3MjFaFw0yNjA2MTgxMDAyMjFaMDMxMTAvBgNV BAMTKDY4NDM3OTk5MDgwNjIwQjA2NjZEMkRGRDU5ODFDMERGN0YyQUYyNjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCoavYoZn9qa33MiqBcmUQhW7yq aLC7zBFi03iWZdX4FvJR+G/lr4BUQMN4F4UPuvqJaxY8c5X2D2hLFTdAJJ3CifUu /+H+fGYa/DL0wnobzprFno4uHdDvvfEW/QYFlLm4YxGGF5xlCuYKGjV2Q4CGUuTP gjeFKEZDCNF/Ypz6RVvT6B7qvWTonOwRUPLmuksZ8+rsSv9WWKR36PFFz/NZfpSI swZyKAEHWGGBBrZky+b5ZxsOOCoAXTgIfB9NWWXu/5GXd6XGN/7lg1gSI1EpPWeG tnkWQmM0UmTJAyoowkQh5wGtfF0FemEgX3gPKGeXl17CQlv53VOL99Gdd+4BAgMB AAGjggI3MIICMzAdBgNVHQ4EFgQUaEN5mQgGILBmbS39WYHA338q8mgwHwYDVR0j BBgwFoAUQgQuZytojDBy/UdDs+fdgex8owYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MTJmMjI4Yy1kZjIwLTQ3MjgtOWY5Ni04ZmFhMTM0MDAxN2EvMC80MjA0MkU2NzJC Njg4QzMwNzJGRDQ3NDNCM0U3REQ4MUVDN0NBMzA2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDIwNDJFNjcyQjY4OEMzMDcyRkQ0NzQzQjNFN0REODFFQzdD QTMwNi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ExMmYyMjhjLWRmMjAtNDcyOC05 Zjk2LThmYWExMzQwMDE3YS8wLzMyMzAzMDMxM2E2NDM2MzgzYTMxMzAzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMzM4MzczNTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAENaAAQMA0G CSqGSIb3DQEBCwUAA4IBAQACKpXHbeLz39sRkixKunoZqLFHHLAFSAf6e+wY3gtf fmdOn7emgqeW4YnxZ05hWMVS5hOGPp91sFoHrrGVP9XRDg8DhpsjDf994VFrSvO5 8IcBmrIetMwHPhhGM/nzsMbLTCeri+fRD5PBmPR1l2XngJF7zfeu8WOhtcZ+JyN9 jUZffOU7gdN5ulhVkZ9cAn2jLchTwOR7MXTwXe48/MCXYK81/6xzgHIr+gi8nRHu 2q/zm6VQsfE9tj2gMoYAJ3Mh3+yg1MM9OCtFxCHerUci1HtbBCl5Lp5iFI1ihYx6 hv/9l3kPRHJzUP1wP8YRojPCWouE20OxomAmzoasXe1c -----END CERTIFICATE-----Generated at Mon Jun 30 13:18:06 2025 by rpki-client