$ rpki-client -vvf repo-rpki.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/323030313a6436383a31323a3a2f34382d3438203d3e203338373539.roa File: 323030313a6436383a31323a3a2f34382d3438203d3e203338373539.roa (raw, json) Hash identifier: BqoEpAp2+UEuN6knkf0iHBFe+NlPdDdo1asiTk5cnH4= Subject key identifier: 1A:F4:24:62:27:39:7F:F2:01:9C:E3:46:86:2C:81:4A:ED:4F:80:1D Certificate issuer: /CN=42042E672B688C3072FD4743B3E7DD81EC7CA306 Certificate serial: 718BD16F26AF134A122CC2E45F3BB6FD01BA73BB Authority key identifier: 42:04:2E:67:2B:68:8C:30:72:FD:47:43:B3:E7:DD:81:EC:7C:A3:06 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/42042E672B688C3072FD4743B3E7DD81EC7CA306.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/323030313a6436383a31323a3a2f34382d3438203d3e203338373539.roa Signing time: Thu 19 Jun 2025 09:00:00 +0000 ROA not before: Thu 19 Jun 2025 08:55:00 +0000 ROA not after: Thu 18 Jun 2026 09:00:00 +0000 asID: 38759 IP address blocks: 2001:d68:12::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/42042E672B688C3072FD4743B3E7DD81EC7CA306.crl rsync://repo-rpki.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/42042E672B688C3072FD4743B3E7DD81EC7CA306.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/42042E672B688C3072FD4743B3E7DD81EC7CA306.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 03 Jul 2025 20:49:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:8b:d1:6f:26:af:13:4a:12:2c:c2:e4:5f:3b:b6:fd:01:ba:73:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=42042E672B688C3072FD4743B3E7DD81EC7CA306 Validity Not Before: Jun 19 08:55:00 2025 GMT Not After : Jun 18 09:00:00 2026 GMT Subject: CN=1AF4246227397FF2019CE346862C814AED4F801D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:d9:66:eb:7e:ef:64:70:42:47:db:fd:b0:c3: 40:6b:02:b3:ea:1a:c3:2d:1c:54:da:8e:40:a4:e1: d9:16:01:12:e1:70:a9:9d:f4:b5:62:0b:33:60:a4: 0f:a4:46:9b:8d:5c:8d:a3:3f:f3:be:7d:78:4c:49: e4:24:ef:da:3c:1d:49:c2:26:20:d2:76:d1:36:61: e2:be:6c:45:07:92:57:e7:c6:ce:ac:13:15:ac:45: 1e:e2:a7:37:20:0b:2a:f4:14:9d:50:02:f5:08:d1: 7c:fa:d6:dc:34:4a:6e:bd:72:b8:ff:54:e0:ba:86: 42:01:df:f7:48:78:db:94:5b:dd:33:98:7f:78:56: f5:be:71:3a:c1:dd:44:ef:28:9f:12:17:93:05:84: 96:cc:1c:d7:6c:e4:cd:d8:1c:84:24:27:01:23:6d: dc:8b:26:bc:47:80:d9:3f:8f:54:c6:9f:e3:29:03: 07:b3:dd:0b:54:80:77:25:66:54:3b:6e:44:8b:2b: de:af:d8:bd:31:49:67:9e:26:ac:9b:12:ac:b9:c6: 5e:71:14:54:67:39:f3:7d:6c:6d:33:86:6b:b7:d0: 6d:bb:af:47:4b:b0:81:7d:b5:e1:26:5f:37:cc:a7: 26:ae:37:75:d9:56:ff:82:23:fb:9a:c0:bb:fb:9d: ab:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:F4:24:62:27:39:7F:F2:01:9C:E3:46:86:2C:81:4A:ED:4F:80:1D X509v3 Authority Key Identifier: keyid:42:04:2E:67:2B:68:8C:30:72:FD:47:43:B3:E7:DD:81:EC:7C:A3:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/42042E672B688C3072FD4743B3E7DD81EC7CA306.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/42042E672B688C3072FD4743B3E7DD81EC7CA306.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/323030313a6436383a31323a3a2f34382d3438203d3e203338373539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:d68:12::/48 Signature Algorithm: sha256WithRSAEncryption 4f:87:92:20:5e:1c:42:d1:40:00:f0:4e:34:a4:67:93:5b:80: 56:5d:ea:a3:da:cc:c2:6d:50:46:a0:d4:42:06:16:98:f8:18: 94:e9:7f:94:42:05:1c:90:5d:3c:ec:10:03:8a:a4:15:f9:d1: 45:cf:93:26:50:35:5f:2b:5f:54:6f:bc:11:be:06:8c:6f:19: 7e:be:f7:72:24:96:28:0c:95:55:ec:87:d2:91:dd:76:de:7a: 55:2d:50:13:7d:23:b0:99:5d:00:04:5f:5e:76:1a:6d:93:2e: a6:89:88:5a:85:ab:66:8a:54:20:c1:cf:a7:2e:03:ec:ce:1f: 86:3c:e1:3f:82:67:3b:19:f4:be:d5:74:77:9d:e0:17:8e:0a: 66:a2:0f:85:22:73:fa:79:c7:2d:3b:da:df:cf:d3:07:c8:c5: 39:d3:1f:24:d5:6e:45:85:d1:a0:f1:bf:ff:d4:e2:95:6e:ea: 0e:9d:ff:0a:31:bc:b4:4b:e7:9f:8e:5b:12:f2:9e:89:1a:d8: 11:1a:70:88:b9:57:a0:a7:a2:bf:97:25:78:20:0a:0d:9b:0a: bf:00:db:12:7d:3c:de:aa:59:f6:ab:c9:af:07:4b:8b:eb:cd: a0:28:d6:9f:20:1b:4a:d5:a2:1b:42:c5:60:fd:25:71:bc:93: dc:1d:3e:76 -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUcYvRbyavE0oSLMLkXzu2/QG6c7swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDIwNDJFNjcyQjY4OEMzMDcyRkQ0NzQzQjNFN0REODFF QzdDQTMwNjAeFw0yNTA2MTkwODU1MDBaFw0yNjA2MTgwOTAwMDBaMDMxMTAvBgNV BAMTKDFBRjQyNDYyMjczOTdGRjIwMTlDRTM0Njg2MkM4MTRBRUQ0RjgwMUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQ2Wbrfu9kcEJH2/2ww0BrArPq GsMtHFTajkCk4dkWARLhcKmd9LViCzNgpA+kRpuNXI2jP/O+fXhMSeQk79o8HUnC JiDSdtE2YeK+bEUHklfnxs6sExWsRR7ipzcgCyr0FJ1QAvUI0Xz61tw0Sm69crj/ VOC6hkIB3/dIeNuUW90zmH94VvW+cTrB3UTvKJ8SF5MFhJbMHNds5M3YHIQkJwEj bdyLJrxHgNk/j1TGn+MpAwez3QtUgHclZlQ7bkSLK96v2L0xSWeeJqybEqy5xl5x FFRnOfN9bG0zhmu30G27r0dLsIF9teEmXzfMpyauN3XZVv+CI/uawLv7nauFAgMB AAGjggI3MIICMzAdBgNVHQ4EFgQUGvQkYic5f/IBnONGhiyBSu1PgB0wHwYDVR0j BBgwFoAUQgQuZytojDBy/UdDs+fdgex8owYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MTJmMjI4Yy1kZjIwLTQ3MjgtOWY5Ni04ZmFhMTM0MDAxN2EvMC80MjA0MkU2NzJC Njg4QzMwNzJGRDQ3NDNCM0U3REQ4MUVDN0NBMzA2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDIwNDJFNjcyQjY4OEMzMDcyRkQ0NzQzQjNFN0REODFFQzdD QTMwNi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ExMmYyMjhjLWRmMjAtNDcyOC05 Zjk2LThmYWExMzQwMDE3YS8wLzMyMzAzMDMxM2E2NDM2MzgzYTMxMzIzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMzM4MzczNTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAENaAASMA0G CSqGSIb3DQEBCwUAA4IBAQBPh5IgXhxC0UAA8E40pGeTW4BWXeqj2szCbVBGoNRC BhaY+BiU6X+UQgUckF087BADiqQV+dFFz5MmUDVfK19Ub7wRvgaMbxl+vvdyJJYo DJVV7IfSkd123npVLVATfSOwmV0ABF9edhptky6miYhahatmilQgwc+nLgPszh+G POE/gmc7GfS+1XR3neAXjgpmog+FInP6ecctO9rfz9MHyMU50x8k1W5FhdGg8b// 1OKVbuoOnf8KMby0S+efjlsS8p6JGtgRGnCIuVegp6K/lyV4IAoNmwq/ANsSfTze qln2q8mvB0uL682gKNafIBtK1aIbQsVg/SVxvJPcHT52 -----END CERTIFICATE-----Generated at Mon Jun 30 13:05:00 2025 by rpki-client