$ rpki-client -vvf repo-rpki.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/323030313a6436383a373a3a2f34382d3438203d3e203338373539.roa File: 323030313a6436383a373a3a2f34382d3438203d3e203338373539.roa (raw, json) Hash identifier: muxJdFe2pixOmgM0+n/vOhMDRG8grm2Btn/Nr9wnHdc= Subject key identifier: 86:FA:08:D7:8A:78:F0:EF:8F:92:97:4A:F2:DB:63:E4:87:C9:0D:EA Certificate issuer: /CN=42042E672B688C3072FD4743B3E7DD81EC7CA306 Certificate serial: 35A2BECA75B6D1007B25740A2CE748AD1FF5E129 Authority key identifier: 42:04:2E:67:2B:68:8C:30:72:FD:47:43:B3:E7:DD:81:EC:7C:A3:06 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/42042E672B688C3072FD4743B3E7DD81EC7CA306.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/323030313a6436383a373a3a2f34382d3438203d3e203338373539.roa Signing time: Thu 19 Jun 2025 09:00:00 +0000 ROA not before: Thu 19 Jun 2025 08:55:00 +0000 ROA not after: Thu 18 Jun 2026 09:00:00 +0000 asID: 38759 IP address blocks: 2001:d68:7::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/42042E672B688C3072FD4743B3E7DD81EC7CA306.crl rsync://repo-rpki.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/42042E672B688C3072FD4743B3E7DD81EC7CA306.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/42042E672B688C3072FD4743B3E7DD81EC7CA306.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 03 Jul 2025 20:49:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:a2:be:ca:75:b6:d1:00:7b:25:74:0a:2c:e7:48:ad:1f:f5:e1:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=42042E672B688C3072FD4743B3E7DD81EC7CA306 Validity Not Before: Jun 19 08:55:00 2025 GMT Not After : Jun 18 09:00:00 2026 GMT Subject: CN=86FA08D78A78F0EF8F92974AF2DB63E487C90DEA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:a0:a2:ba:fa:aa:c6:23:a6:71:a2:00:a1:f3: fb:36:01:c3:06:c9:97:30:61:17:64:58:81:c1:60: bd:df:6b:56:72:6f:95:c7:4a:65:b8:38:20:a1:8a: d5:2c:17:fe:37:b8:ec:25:30:a3:b2:6e:be:95:5b: e1:e6:84:c3:7d:67:67:60:56:d1:25:62:84:c7:36: 87:63:d4:94:2b:0b:a2:e4:d7:35:6d:f3:93:85:c4: 2d:53:d1:06:76:11:d4:50:ab:85:c3:33:4d:3d:3f: df:26:32:9d:5b:08:84:d3:60:e6:82:2d:b2:a7:ae: b3:39:e3:9d:3f:55:37:6e:6d:62:2b:1b:91:23:b6: 7f:2f:45:21:72:bf:cb:54:3e:7d:ae:08:3f:84:c7: fb:d1:68:78:48:fb:af:e5:10:19:53:08:a0:c0:1e: 18:5e:bd:d8:c9:55:f7:63:ba:93:15:8b:90:7f:45: 24:38:45:a2:95:34:bd:91:1f:8b:a5:9e:ba:d6:0a: 46:b6:25:ea:9b:db:98:31:ea:b2:73:f7:1c:da:4e: 01:f5:8f:ad:3d:80:73:86:31:ef:09:e1:c5:46:13: cf:60:48:d5:50:50:07:12:9f:bd:74:22:85:e5:7d: 02:bf:72:f2:e3:b5:31:e9:e4:dd:9d:34:53:94:d6: 69:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:FA:08:D7:8A:78:F0:EF:8F:92:97:4A:F2:DB:63:E4:87:C9:0D:EA X509v3 Authority Key Identifier: keyid:42:04:2E:67:2B:68:8C:30:72:FD:47:43:B3:E7:DD:81:EC:7C:A3:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/42042E672B688C3072FD4743B3E7DD81EC7CA306.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/42042E672B688C3072FD4743B3E7DD81EC7CA306.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/323030313a6436383a373a3a2f34382d3438203d3e203338373539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:d68:7::/48 Signature Algorithm: sha256WithRSAEncryption 10:55:3c:88:3f:93:86:93:40:71:0b:a7:b3:92:88:55:cb:5a: 42:25:36:72:29:68:24:10:c8:04:d6:6c:00:83:16:fd:55:15: d1:55:ea:cc:48:3d:b4:5a:05:12:14:e1:4f:b3:5e:c6:f7:60: 3b:da:ca:d2:f3:c0:97:c4:50:e7:b9:46:03:f7:1c:d3:df:9a: 14:62:c1:a5:cc:0f:f0:5c:ec:59:57:b4:cf:72:ad:80:06:07: 4f:77:bb:b7:4a:d9:a4:8d:ec:4e:96:9a:b9:f9:5b:45:8f:a7: cf:78:dd:ec:9f:67:ae:f8:ee:72:f6:d5:be:e9:5b:4d:7e:3b: 0b:76:5e:f3:68:c8:89:44:62:7b:39:30:29:0a:2b:13:4b:e8: 3f:63:4e:64:06:03:6d:d7:fe:1b:e6:69:7b:50:ed:5e:8c:92: 97:c5:76:f9:46:55:c7:9c:ac:50:4d:0c:03:e2:53:af:32:6e: 4e:85:b1:82:45:fe:59:07:10:05:4c:b8:ea:e5:3f:64:71:d2: a8:57:60:ac:b0:5f:51:81:a9:37:60:99:b1:f9:88:92:34:88: 75:0c:25:ce:3b:a5:39:ce:f8:6d:0a:18:bc:53:79:ba:fd:cc: 79:eb:72:db:7d:c8:99:dc:d5:45:37:7f:df:a5:e0:42:48:ec: 4c:f6:c8:2d -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgIUNaK+ynW20QB7JXQKLOdIrR/14SkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDIwNDJFNjcyQjY4OEMzMDcyRkQ0NzQzQjNFN0REODFF QzdDQTMwNjAeFw0yNTA2MTkwODU1MDBaFw0yNjA2MTgwOTAwMDBaMDMxMTAvBgNV BAMTKDg2RkEwOEQ3OEE3OEYwRUY4RjkyOTc0QUYyREI2M0U0ODdDOTBERUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD2oKK6+qrGI6ZxogCh8/s2AcMG yZcwYRdkWIHBYL3fa1Zyb5XHSmW4OCChitUsF/43uOwlMKOybr6VW+HmhMN9Z2dg VtElYoTHNodj1JQrC6Lk1zVt85OFxC1T0QZ2EdRQq4XDM009P98mMp1bCITTYOaC LbKnrrM5450/VTdubWIrG5Ejtn8vRSFyv8tUPn2uCD+Ex/vRaHhI+6/lEBlTCKDA HhhevdjJVfdjupMVi5B/RSQ4RaKVNL2RH4ulnrrWCka2Jeqb25gx6rJz9xzaTgH1 j609gHOGMe8J4cVGE89gSNVQUAcSn710IoXlfQK/cvLjtTHp5N2dNFOU1mmZAgMB AAGjggI1MIICMTAdBgNVHQ4EFgQUhvoI14p48O+PkpdK8ttj5IfJDeowHwYDVR0j BBgwFoAUQgQuZytojDBy/UdDs+fdgex8owYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MTJmMjI4Yy1kZjIwLTQ3MjgtOWY5Ni04ZmFhMTM0MDAxN2EvMC80MjA0MkU2NzJC Njg4QzMwNzJGRDQ3NDNCM0U3REQ4MUVDN0NBMzA2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDIwNDJFNjcyQjY4OEMzMDcyRkQ0NzQzQjNFN0REODFFQzdD QTMwNi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ExMmYyMjhjLWRmMjAtNDcyOC05 Zjk2LThmYWExMzQwMDE3YS8wLzMyMzAzMDMxM2E2NDM2MzgzYTM3M2EzYTJmMzQz ODJkMzQzODIwM2QzZTIwMzMzODM3MzUzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACABDWgABzANBgkq hkiG9w0BAQsFAAOCAQEAEFU8iD+ThpNAcQuns5KIVctaQiU2ciloJBDIBNZsAIMW /VUV0VXqzEg9tFoFEhThT7NexvdgO9rK0vPAl8RQ57lGA/cc09+aFGLBpcwP8Fzs WVe0z3KtgAYHT3e7t0rZpI3sTpaauflbRY+nz3jd7J9nrvjucvbVvulbTX47C3Ze 82jIiURiezkwKQorE0voP2NOZAYDbdf+G+Zpe1DtXoySl8V2+UZVx5ysUE0MA+JT rzJuToWxgkX+WQcQBUy46uU/ZHHSqFdgrLBfUYGpN2CZsfmIkjSIdQwlzjulOc74 bQoYvFN5uv3Meety233ImdzVRTd/36XgQkjsTPbILQ== -----END CERTIFICATE-----Generated at Mon Jun 30 13:16:38 2025 by rpki-client