$ rpki-client -vvf repo-rpki.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/323030313a6436383a383a3a2f34382d3438203d3e203338373539.roa File: 323030313a6436383a383a3a2f34382d3438203d3e203338373539.roa (raw, json) Hash identifier: BnGtn4VWnuPol8Hcuxr+9+BtpB9xmH5yyn9/+BeKN6Y= Subject key identifier: BE:19:C8:BC:D3:17:AC:60:09:53:DE:76:3F:DF:79:CB:B3:1A:DC:DE Certificate issuer: /CN=42042E672B688C3072FD4743B3E7DD81EC7CA306 Certificate serial: 5ACDBD44CFD1FF60AC90D74EC7AE886CB66D27CD Authority key identifier: 42:04:2E:67:2B:68:8C:30:72:FD:47:43:B3:E7:DD:81:EC:7C:A3:06 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/42042E672B688C3072FD4743B3E7DD81EC7CA306.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/323030313a6436383a383a3a2f34382d3438203d3e203338373539.roa Signing time: Thu 19 Jun 2025 08:00:00 +0000 ROA not before: Thu 19 Jun 2025 07:55:00 +0000 ROA not after: Thu 18 Jun 2026 08:00:00 +0000 asID: 38759 IP address blocks: 2001:d68:8::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/42042E672B688C3072FD4743B3E7DD81EC7CA306.crl rsync://repo-rpki.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/42042E672B688C3072FD4743B3E7DD81EC7CA306.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/42042E672B688C3072FD4743B3E7DD81EC7CA306.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 03 Jul 2025 20:49:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:cd:bd:44:cf:d1:ff:60:ac:90:d7:4e:c7:ae:88:6c:b6:6d:27:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=42042E672B688C3072FD4743B3E7DD81EC7CA306 Validity Not Before: Jun 19 07:55:00 2025 GMT Not After : Jun 18 08:00:00 2026 GMT Subject: CN=BE19C8BCD317AC600953DE763FDF79CBB31ADCDE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:39:38:a9:58:4e:33:ed:7b:a9:0f:31:15:91: c9:5e:54:59:5e:56:1e:c1:07:8b:d3:82:7f:82:a1: 79:f9:0b:69:97:cf:1a:ca:3d:29:c0:db:b9:53:37: 67:01:15:88:bb:0c:90:47:d7:89:7f:bc:0a:1e:1f: 84:7c:a2:f6:56:6e:88:07:06:17:0f:17:9b:f4:86: e4:be:03:2d:41:e5:b4:81:33:43:c1:f8:53:8d:b4: 03:9f:f1:4f:8d:36:41:53:7a:40:d3:0b:a6:f2:7e: b9:be:ac:bd:ca:a6:0a:96:ee:02:c8:0b:71:1d:0f: 4c:14:c3:8b:b6:4b:72:8e:7b:57:4a:c6:ed:de:b4: 33:b8:a9:40:ae:9a:63:d5:56:63:ca:ce:c8:64:21: ad:b8:98:ef:a6:a9:ec:e9:86:88:d4:b4:62:a2:43: 37:6f:12:8c:ba:29:4b:07:c5:47:6c:75:63:d6:78: 92:48:79:04:24:2d:f8:ba:1e:90:ec:a5:c6:90:e9: 2f:01:56:a3:c5:b1:f1:a4:da:1a:32:41:17:64:a5: 98:e3:e4:b6:4c:a3:55:86:03:1b:fc:99:1b:f8:e8: 61:11:5f:e5:b6:aa:12:58:e5:46:4f:cf:bf:85:34: d6:c5:0e:c2:0e:eb:c7:93:04:9c:d1:58:0e:fd:50: 5f:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:19:C8:BC:D3:17:AC:60:09:53:DE:76:3F:DF:79:CB:B3:1A:DC:DE X509v3 Authority Key Identifier: keyid:42:04:2E:67:2B:68:8C:30:72:FD:47:43:B3:E7:DD:81:EC:7C:A3:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/42042E672B688C3072FD4743B3E7DD81EC7CA306.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/42042E672B688C3072FD4743B3E7DD81EC7CA306.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/323030313a6436383a383a3a2f34382d3438203d3e203338373539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:d68:8::/48 Signature Algorithm: sha256WithRSAEncryption 2b:5f:6f:c7:98:a0:a5:79:7e:d7:59:74:9f:d3:ee:46:ad:d9: 44:a9:bf:6b:4f:e9:b3:88:a5:04:41:c0:70:11:41:49:92:e7: b5:ef:4d:7e:47:ce:91:39:d6:6c:74:fd:23:8d:e5:2d:f2:52: 8d:37:0d:b5:45:57:c1:fe:46:3a:c8:70:9d:c7:50:99:81:0b: cd:25:c5:7b:94:0b:97:76:1a:e3:ad:d5:53:6a:1d:6c:2f:8d: f7:df:01:f0:31:77:fb:3c:23:1b:40:a0:54:26:ca:b4:c4:34: f7:40:85:73:bd:39:9f:1d:6e:1b:25:79:b1:d6:f5:8b:72:58: 18:df:14:0b:0b:e5:66:db:27:f0:3f:2d:45:b9:34:f1:b2:c0: 58:24:5c:f5:1a:7b:8b:82:af:77:cf:e3:c5:8a:e0:5f:2f:4c: c7:78:4d:0a:5c:1f:37:ca:e3:0a:2f:13:05:b8:3d:d6:b7:b0: 5e:a8:73:94:20:3e:09:e8:88:a3:ec:bf:18:e2:99:4b:20:6a: c7:a4:06:6c:67:90:58:6f:0a:82:8d:9a:1c:68:63:bc:a8:7c: 8c:88:a9:86:4d:a0:a1:ce:82:b1:a0:59:af:b1:ec:10:b6:56: d4:0c:b2:e7:d8:3c:c2:d9:37:31:99:4f:fb:73:eb:38:54:bf: 13:22:b5:55 -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgIUWs29RM/R/2CskNdOx66IbLZtJ80wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDIwNDJFNjcyQjY4OEMzMDcyRkQ0NzQzQjNFN0REODFF QzdDQTMwNjAeFw0yNTA2MTkwNzU1MDBaFw0yNjA2MTgwODAwMDBaMDMxMTAvBgNV BAMTKEJFMTlDOEJDRDMxN0FDNjAwOTUzREU3NjNGREY3OUNCQjMxQURDREUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCUOTipWE4z7XupDzEVkcleVFle Vh7BB4vTgn+CoXn5C2mXzxrKPSnA27lTN2cBFYi7DJBH14l/vAoeH4R8ovZWbogH BhcPF5v0huS+Ay1B5bSBM0PB+FONtAOf8U+NNkFTekDTC6byfrm+rL3KpgqW7gLI C3EdD0wUw4u2S3KOe1dKxu3etDO4qUCummPVVmPKzshkIa24mO+mqezphojUtGKi QzdvEoy6KUsHxUdsdWPWeJJIeQQkLfi6HpDspcaQ6S8BVqPFsfGk2hoyQRdkpZjj 5LZMo1WGAxv8mRv46GERX+W2qhJY5UZPz7+FNNbFDsIO68eTBJzRWA79UF9lAgMB AAGjggI1MIICMTAdBgNVHQ4EFgQUvhnIvNMXrGAJU952P995y7Ma3N4wHwYDVR0j BBgwFoAUQgQuZytojDBy/UdDs+fdgex8owYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MTJmMjI4Yy1kZjIwLTQ3MjgtOWY5Ni04ZmFhMTM0MDAxN2EvMC80MjA0MkU2NzJC Njg4QzMwNzJGRDQ3NDNCM0U3REQ4MUVDN0NBMzA2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDIwNDJFNjcyQjY4OEMzMDcyRkQ0NzQzQjNFN0REODFFQzdD QTMwNi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ExMmYyMjhjLWRmMjAtNDcyOC05 Zjk2LThmYWExMzQwMDE3YS8wLzMyMzAzMDMxM2E2NDM2MzgzYTM4M2EzYTJmMzQz ODJkMzQzODIwM2QzZTIwMzMzODM3MzUzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACABDWgACDANBgkq hkiG9w0BAQsFAAOCAQEAK19vx5igpXl+11l0n9PuRq3ZRKm/a0/ps4ilBEHAcBFB SZLnte9NfkfOkTnWbHT9I43lLfJSjTcNtUVXwf5GOshwncdQmYELzSXFe5QLl3Ya 463VU2odbC+N998B8DF3+zwjG0CgVCbKtMQ090CFc705nx1uGyV5sdb1i3JYGN8U CwvlZtsn8D8tRbk08bLAWCRc9Rp7i4Kvd8/jxYrgXy9Mx3hNClwfN8rjCi8TBbg9 1rewXqhzlCA+CeiIo+y/GOKZSyBqx6QGbGeQWG8Kgo2aHGhjvKh8jIiphk2goc6C saBZr7HsELZW1Ayy59g8wtk3MZlP+3PrOFS/EyK1VQ== -----END CERTIFICATE-----Generated at Mon Jun 30 13:14:08 2025 by rpki-client