$ rpki-client -vvf repo-rpki.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/323030313a6436383a31333a3a2f34382d3438203d3e203338373539.roa File: 323030313a6436383a31333a3a2f34382d3438203d3e203338373539.roa (raw, json) Hash identifier: fFkVLevboYrZm0ldmwFZBHRDjcsbCO8x/cTP2HxOjwo= Subject key identifier: 93:EC:C4:BD:5E:4A:FC:2C:25:EC:64:18:BE:C5:5C:81:50:B4:87:36 Certificate issuer: /CN=42042E672B688C3072FD4743B3E7DD81EC7CA306 Certificate serial: 1D6B012BCCE1CBBD5BF48BAEEF1B683D307AB83B Authority key identifier: 42:04:2E:67:2B:68:8C:30:72:FD:47:43:B3:E7:DD:81:EC:7C:A3:06 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/42042E672B688C3072FD4743B3E7DD81EC7CA306.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/323030313a6436383a31333a3a2f34382d3438203d3e203338373539.roa Signing time: Thu 19 Jun 2025 09:00:00 +0000 ROA not before: Thu 19 Jun 2025 08:55:00 +0000 ROA not after: Thu 18 Jun 2026 09:00:00 +0000 asID: 38759 IP address blocks: 2001:d68:13::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/42042E672B688C3072FD4743B3E7DD81EC7CA306.crl rsync://repo-rpki.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/42042E672B688C3072FD4743B3E7DD81EC7CA306.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/42042E672B688C3072FD4743B3E7DD81EC7CA306.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 03 Jul 2025 20:49:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:6b:01:2b:cc:e1:cb:bd:5b:f4:8b:ae:ef:1b:68:3d:30:7a:b8:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=42042E672B688C3072FD4743B3E7DD81EC7CA306 Validity Not Before: Jun 19 08:55:00 2025 GMT Not After : Jun 18 09:00:00 2026 GMT Subject: CN=93ECC4BD5E4AFC2C25EC6418BEC55C8150B48736 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:13:f0:f0:96:2d:f9:05:78:68:03:e8:34:73: 74:bd:e4:21:c8:4e:e6:7f:12:5d:59:d6:23:7f:a9: c6:ef:b3:65:96:d9:38:28:bb:53:23:fd:ee:11:83: 65:15:cc:6f:cd:19:d5:6f:72:30:4e:39:9c:d3:e3: 0b:c8:a3:47:e0:b4:e9:0a:37:ee:cf:2c:de:04:69: 87:51:ac:0b:05:03:0c:99:32:b8:a6:e7:70:fd:4e: 37:ed:48:eb:36:43:14:89:d9:d6:cb:8d:0b:04:36: 4a:86:82:89:58:af:21:15:da:8d:4f:d3:8d:44:2d: 8c:ed:f1:e2:13:07:c8:82:1a:39:97:b3:83:41:64: 6e:24:1f:6b:e2:81:81:da:67:9d:97:8d:e2:6e:c0: c0:ed:e4:df:56:7e:9c:4c:85:fb:60:48:cd:e3:1f: ce:30:2d:a1:71:67:8a:80:7f:a8:68:29:3c:2b:46: c3:b6:ca:1e:a2:bd:80:8f:77:3f:b6:5b:dc:1d:b5: 64:7d:ac:7a:7e:2a:a9:ad:a4:a9:27:6f:dc:4e:05: 48:6c:fd:6e:ad:fb:bd:1d:95:77:14:be:d1:5c:0a: 56:2f:f9:cd:47:ff:69:78:16:92:11:36:24:5b:f0: 7b:b5:8f:15:68:91:ae:bf:5f:59:23:35:51:e4:0e: 4e:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:EC:C4:BD:5E:4A:FC:2C:25:EC:64:18:BE:C5:5C:81:50:B4:87:36 X509v3 Authority Key Identifier: keyid:42:04:2E:67:2B:68:8C:30:72:FD:47:43:B3:E7:DD:81:EC:7C:A3:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/42042E672B688C3072FD4743B3E7DD81EC7CA306.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/42042E672B688C3072FD4743B3E7DD81EC7CA306.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/323030313a6436383a31333a3a2f34382d3438203d3e203338373539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:d68:13::/48 Signature Algorithm: sha256WithRSAEncryption 17:5a:d9:6e:23:06:cf:78:58:df:58:13:c3:07:e4:a9:ae:7d: 65:7a:38:be:e0:ef:9a:87:7e:29:c6:7e:f7:b8:02:ec:2e:0b: 1e:05:90:f7:6d:00:6d:bf:47:c5:dc:5f:98:6a:95:94:a0:bc: 3c:9e:68:c9:7b:61:ef:37:04:8a:7b:52:44:e9:a7:10:de:50: 1a:2c:8c:a2:07:9f:f6:9d:5e:f2:5b:32:71:c0:d4:e6:44:ec: 97:43:df:b2:4b:d4:b4:f6:a7:c1:46:a1:b2:36:9e:3e:a2:f2: d7:e1:90:51:5e:60:63:b2:8b:0f:f9:d3:77:50:b6:e7:7e:09: 47:84:95:5e:7b:e0:8c:e7:2c:16:a6:46:6c:66:3f:61:47:61: 5b:55:ac:58:e8:64:f4:42:15:66:55:05:ed:70:54:e2:b5:4e: ff:db:52:1b:50:b8:95:9c:af:0b:1c:74:44:db:34:ac:bb:75: 7f:ef:38:d5:cb:26:7d:a9:84:13:89:e8:35:e1:3c:52:56:21: f8:de:22:3e:00:8a:63:59:90:cc:44:bd:21:8b:54:1c:df:f4: c7:95:50:6b:92:d0:5c:f4:f8:30:17:64:59:c5:3c:96:c7:a0: c1:7a:39:de:71:4f:ad:fb:27:8d:4d:4c:fa:31:b4:b2:57:2a: a3:fb:8a:02 -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUHWsBK8zhy71b9Iuu7xtoPTB6uDswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDIwNDJFNjcyQjY4OEMzMDcyRkQ0NzQzQjNFN0REODFF QzdDQTMwNjAeFw0yNTA2MTkwODU1MDBaFw0yNjA2MTgwOTAwMDBaMDMxMTAvBgNV BAMTKDkzRUNDNEJENUU0QUZDMkMyNUVDNjQxOEJFQzU1QzgxNTBCNDg3MzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLE/Dwli35BXhoA+g0c3S95CHI TuZ/El1Z1iN/qcbvs2WW2Tgou1Mj/e4Rg2UVzG/NGdVvcjBOOZzT4wvIo0fgtOkK N+7PLN4EaYdRrAsFAwyZMrim53D9TjftSOs2QxSJ2dbLjQsENkqGgolYryEV2o1P 041ELYzt8eITB8iCGjmXs4NBZG4kH2vigYHaZ52XjeJuwMDt5N9WfpxMhftgSM3j H84wLaFxZ4qAf6hoKTwrRsO2yh6ivYCPdz+2W9wdtWR9rHp+KqmtpKknb9xOBUhs /W6t+70dlXcUvtFcClYv+c1H/2l4FpIRNiRb8Hu1jxVoka6/X1kjNVHkDk4HAgMB AAGjggI3MIICMzAdBgNVHQ4EFgQUk+zEvV5K/Cwl7GQYvsVcgVC0hzYwHwYDVR0j BBgwFoAUQgQuZytojDBy/UdDs+fdgex8owYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MTJmMjI4Yy1kZjIwLTQ3MjgtOWY5Ni04ZmFhMTM0MDAxN2EvMC80MjA0MkU2NzJC Njg4QzMwNzJGRDQ3NDNCM0U3REQ4MUVDN0NBMzA2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDIwNDJFNjcyQjY4OEMzMDcyRkQ0NzQzQjNFN0REODFFQzdD QTMwNi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ExMmYyMjhjLWRmMjAtNDcyOC05 Zjk2LThmYWExMzQwMDE3YS8wLzMyMzAzMDMxM2E2NDM2MzgzYTMxMzMzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMzM4MzczNTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAENaAATMA0G CSqGSIb3DQEBCwUAA4IBAQAXWtluIwbPeFjfWBPDB+Sprn1leji+4O+ah34pxn73 uALsLgseBZD3bQBtv0fF3F+YapWUoLw8nmjJe2HvNwSKe1JE6acQ3lAaLIyiB5/2 nV7yWzJxwNTmROyXQ9+yS9S09qfBRqGyNp4+ovLX4ZBRXmBjsosP+dN3ULbnfglH hJVee+CM5ywWpkZsZj9hR2FbVaxY6GT0QhVmVQXtcFTitU7/21IbULiVnK8LHHRE 2zSsu3V/7zjVyyZ9qYQTieg14TxSViH43iI+AIpjWZDMRL0hi1Qc3/THlVBrktBc 9PgwF2RZxTyWx6DBejnecU+t+yeNTUz6MbSyVyqj+4oC -----END CERTIFICATE-----Generated at Mon Jun 30 13:06:06 2025 by rpki-client