$ rpki-client -vvf repo-rpki.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/323030313a6436383a31313a3a2f34382d3438203d3e203338373539.roa File: 323030313a6436383a31313a3a2f34382d3438203d3e203338373539.roa (raw, json) Hash identifier: CpXbrXmGX4ITchWOi7/vrQ9BAy1FQYBh+LSYePLlGN8= Subject key identifier: 4C:AA:83:92:B9:13:97:DC:5D:3D:77:4D:1D:31:9F:91:2F:37:93:FF Certificate issuer: /CN=42042E672B688C3072FD4743B3E7DD81EC7CA306 Certificate serial: 05C76E10DE3E599E26E08D56A32F0606BEC1E4B1 Authority key identifier: 42:04:2E:67:2B:68:8C:30:72:FD:47:43:B3:E7:DD:81:EC:7C:A3:06 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/42042E672B688C3072FD4743B3E7DD81EC7CA306.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/323030313a6436383a31313a3a2f34382d3438203d3e203338373539.roa Signing time: Thu 19 Jun 2025 09:00:00 +0000 ROA not before: Thu 19 Jun 2025 08:55:00 +0000 ROA not after: Thu 18 Jun 2026 09:00:00 +0000 asID: 38759 IP address blocks: 2001:d68:11::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/42042E672B688C3072FD4743B3E7DD81EC7CA306.crl rsync://repo-rpki.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/42042E672B688C3072FD4743B3E7DD81EC7CA306.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/42042E672B688C3072FD4743B3E7DD81EC7CA306.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 03 Jul 2025 20:49:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:c7:6e:10:de:3e:59:9e:26:e0:8d:56:a3:2f:06:06:be:c1:e4:b1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=42042E672B688C3072FD4743B3E7DD81EC7CA306 Validity Not Before: Jun 19 08:55:00 2025 GMT Not After : Jun 18 09:00:00 2026 GMT Subject: CN=4CAA8392B91397DC5D3D774D1D319F912F3793FF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:df:fa:d3:b4:ed:91:09:b7:40:e8:64:a1:c8: 9e:8a:76:8b:31:0a:b4:00:f3:c4:a5:45:08:1e:80: 99:2a:ef:fc:21:3c:ab:9f:9f:5c:15:9e:22:71:84: 47:1f:7e:d5:a4:28:d9:67:9d:c7:9f:97:b5:12:8e: 24:da:72:a1:38:e3:5c:a1:b1:16:5a:e0:06:27:0b: a9:ce:da:b2:48:cd:05:60:34:07:b3:bc:ff:99:0c: 31:64:13:1b:6c:85:d4:09:05:89:9b:92:7f:11:f1: 1a:38:92:28:c9:6b:67:50:d5:0d:a1:cb:88:c2:c2: 35:2d:f7:9a:1a:d8:14:d6:f2:4c:9c:53:11:4a:df: 46:f4:00:6c:9e:64:88:53:0c:0d:17:34:5b:a7:d8: fc:1d:a8:81:d8:d6:b5:e1:99:4e:cc:6e:0e:a1:24: a8:c7:31:3d:47:09:11:5c:25:79:9c:73:29:c4:d7: 07:6e:99:d2:e2:e3:db:7f:7b:c4:d8:81:e4:72:74: f0:1f:98:c8:ba:68:8c:b4:a7:9c:37:be:0b:23:7c: 39:f3:24:0a:2a:15:b3:5d:9a:67:31:4f:37:18:a5: 7c:55:ca:5d:0f:67:9d:7c:10:1d:53:bc:4b:12:8b: e9:e3:12:a8:d5:f0:8f:22:35:3a:38:0b:33:db:83: 25:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:AA:83:92:B9:13:97:DC:5D:3D:77:4D:1D:31:9F:91:2F:37:93:FF X509v3 Authority Key Identifier: keyid:42:04:2E:67:2B:68:8C:30:72:FD:47:43:B3:E7:DD:81:EC:7C:A3:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/42042E672B688C3072FD4743B3E7DD81EC7CA306.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/42042E672B688C3072FD4743B3E7DD81EC7CA306.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/323030313a6436383a31313a3a2f34382d3438203d3e203338373539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:d68:11::/48 Signature Algorithm: sha256WithRSAEncryption 8d:88:03:63:b8:e9:43:19:33:88:a5:a4:26:f1:8b:d2:07:ad: a8:26:8a:ab:90:2b:b2:f7:c3:d2:6a:7c:e3:3b:09:46:f3:ae: d1:c8:75:38:2b:42:90:80:6c:1b:71:20:d5:b2:b9:ef:32:03: c5:b8:a7:16:c3:db:77:17:2e:5f:34:0f:a9:e9:46:4d:75:9c: 5d:67:39:2b:d6:d3:0f:12:bd:4c:dd:57:92:51:4e:41:1c:0b: ef:aa:77:96:e8:c7:64:36:77:18:70:6d:24:4e:54:64:9f:4f: 63:ab:3d:a9:86:4c:98:c7:1a:e0:e3:b9:25:bf:9a:06:84:c3: cd:54:76:f6:2d:87:c4:7f:1c:d4:9b:a7:9a:60:60:27:d4:85: 12:93:84:77:70:fb:2a:3a:f8:a7:4c:08:63:a8:64:bf:80:24: bd:1b:8c:0c:b0:68:ef:c4:fa:e7:2d:79:ea:b7:26:f7:1f:09: 91:f2:f3:75:f9:83:d4:13:a2:0a:07:74:4b:0f:94:24:68:b1: 25:a7:bd:d0:89:00:4e:d7:46:01:86:17:48:49:f2:12:66:4f: 62:64:17:0a:a1:a5:fb:80:81:6a:70:e3:bc:34:5e:15:93:59: ad:c3:de:a9:a4:7d:00:f4:78:1e:7e:de:67:73:55:a3:06:c7: ee:09:dc:a3 -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUBcduEN4+WZ4m4I1Woy8GBr7B5LEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDIwNDJFNjcyQjY4OEMzMDcyRkQ0NzQzQjNFN0REODFF QzdDQTMwNjAeFw0yNTA2MTkwODU1MDBaFw0yNjA2MTgwOTAwMDBaMDMxMTAvBgNV BAMTKDRDQUE4MzkyQjkxMzk3REM1RDNENzc0RDFEMzE5RjkxMkYzNzkzRkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC43/rTtO2RCbdA6GShyJ6Kdosx CrQA88SlRQgegJkq7/whPKufn1wVniJxhEcfftWkKNlnncefl7USjiTacqE441yh sRZa4AYnC6nO2rJIzQVgNAezvP+ZDDFkExtshdQJBYmbkn8R8Ro4kijJa2dQ1Q2h y4jCwjUt95oa2BTW8kycUxFK30b0AGyeZIhTDA0XNFun2PwdqIHY1rXhmU7Mbg6h JKjHMT1HCRFcJXmccynE1wdumdLi49t/e8TYgeRydPAfmMi6aIy0p5w3vgsjfDnz JAoqFbNdmmcxTzcYpXxVyl0PZ518EB1TvEsSi+njEqjV8I8iNTo4CzPbgyV3AgMB AAGjggI3MIICMzAdBgNVHQ4EFgQUTKqDkrkTl9xdPXdNHTGfkS83k/8wHwYDVR0j BBgwFoAUQgQuZytojDBy/UdDs+fdgex8owYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MTJmMjI4Yy1kZjIwLTQ3MjgtOWY5Ni04ZmFhMTM0MDAxN2EvMC80MjA0MkU2NzJC Njg4QzMwNzJGRDQ3NDNCM0U3REQ4MUVDN0NBMzA2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDIwNDJFNjcyQjY4OEMzMDcyRkQ0NzQzQjNFN0REODFFQzdD QTMwNi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ExMmYyMjhjLWRmMjAtNDcyOC05 Zjk2LThmYWExMzQwMDE3YS8wLzMyMzAzMDMxM2E2NDM2MzgzYTMxMzEzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMzM4MzczNTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAENaAARMA0G CSqGSIb3DQEBCwUAA4IBAQCNiANjuOlDGTOIpaQm8YvSB62oJoqrkCuy98PSanzj OwlG867RyHU4K0KQgGwbcSDVsrnvMgPFuKcWw9t3Fy5fNA+p6UZNdZxdZzkr1tMP Er1M3VeSUU5BHAvvqneW6MdkNncYcG0kTlRkn09jqz2phkyYxxrg47klv5oGhMPN VHb2LYfEfxzUm6eaYGAn1IUSk4R3cPsqOvinTAhjqGS/gCS9G4wMsGjvxPrnLXnq tyb3HwmR8vN1+YPUE6IKB3RLD5QkaLElp73QiQBO10YBhhdISfISZk9iZBcKoaX7 gIFqcOO8NF4Vk1mtw96ppH0A9Hgeft5nc1WjBsfuCdyj -----END CERTIFICATE-----Generated at Mon Jun 30 13:06:01 2025 by rpki-client