$ rpki-client -vvf repo-rpki.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/323030313a6436383a3a2f34382d3438203d3e2037353837.roa File: 323030313a6436383a3a2f34382d3438203d3e2037353837.roa (raw, json) Hash identifier: VNcs+Fmh0oNgiWo/oCDkDKUsnCnybqve/EpfB0M2J0s= Subject key identifier: 05:C0:D4:C9:A8:C5:38:28:D9:9D:9C:6B:16:8F:FC:8D:6F:01:43:BA Certificate issuer: /CN=42042E672B688C3072FD4743B3E7DD81EC7CA306 Certificate serial: 460322EA95425E6BF2A1E89AA4DA92DCC029EFB3 Authority key identifier: 42:04:2E:67:2B:68:8C:30:72:FD:47:43:B3:E7:DD:81:EC:7C:A3:06 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/42042E672B688C3072FD4743B3E7DD81EC7CA306.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/323030313a6436383a3a2f34382d3438203d3e2037353837.roa Signing time: Thu 19 Jun 2025 10:02:21 +0000 ROA not before: Thu 19 Jun 2025 09:57:21 +0000 ROA not after: Thu 18 Jun 2026 10:02:21 +0000 asID: 7587 IP address blocks: 2001:d68::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/42042E672B688C3072FD4743B3E7DD81EC7CA306.crl rsync://repo-rpki.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/42042E672B688C3072FD4743B3E7DD81EC7CA306.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/42042E672B688C3072FD4743B3E7DD81EC7CA306.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 03 Jul 2025 20:49:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:03:22:ea:95:42:5e:6b:f2:a1:e8:9a:a4:da:92:dc:c0:29:ef:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=42042E672B688C3072FD4743B3E7DD81EC7CA306 Validity Not Before: Jun 19 09:57:21 2025 GMT Not After : Jun 18 10:02:21 2026 GMT Subject: CN=05C0D4C9A8C53828D99D9C6B168FFC8D6F0143BA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:ee:2d:d9:aa:18:71:61:4e:ff:85:3c:35:d5: af:41:01:4c:0f:ef:a2:77:5f:68:65:c8:2c:02:67: 56:d1:54:30:ae:ce:5e:1c:cc:a6:59:f3:91:54:09: 86:71:15:00:47:83:ae:bb:e7:02:c7:fb:29:19:f5: be:1b:f5:a5:ea:c5:f8:c3:77:30:48:ee:e1:57:12: d3:9a:4e:0b:6b:c9:ae:e5:19:03:ed:6d:0d:70:e7: cd:73:83:08:a0:a9:0d:bc:c2:3f:a3:e0:58:73:43: f3:53:15:b3:17:31:d7:59:b3:e3:b3:8b:14:ed:a3: 82:2c:8c:dd:a9:ff:fc:e8:0a:c8:b4:d1:9f:5e:89: ab:78:71:1e:74:1b:23:98:7f:3f:c7:4e:8a:af:18: 11:78:99:cb:9e:a7:48:f9:92:6f:b5:7d:be:93:09: 48:b0:41:c8:57:34:f0:ab:c7:21:ae:5b:6b:57:07: f7:a7:9d:56:52:86:02:fb:b3:02:65:72:4d:c7:43: 68:7b:e5:de:20:c5:a6:c6:ca:2b:48:94:3b:5e:a1: d2:c2:fa:80:5d:45:dc:fb:71:4e:0d:15:63:13:67: 01:3a:68:37:e4:79:25:8c:74:39:c4:42:a4:87:9a: e9:80:d7:bd:4a:45:d3:9b:1b:0d:74:98:71:75:5b: cf:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:C0:D4:C9:A8:C5:38:28:D9:9D:9C:6B:16:8F:FC:8D:6F:01:43:BA X509v3 Authority Key Identifier: keyid:42:04:2E:67:2B:68:8C:30:72:FD:47:43:B3:E7:DD:81:EC:7C:A3:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/42042E672B688C3072FD4743B3E7DD81EC7CA306.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/42042E672B688C3072FD4743B3E7DD81EC7CA306.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/323030313a6436383a3a2f34382d3438203d3e2037353837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:d68::/48 Signature Algorithm: sha256WithRSAEncryption 87:a4:a0:6d:6d:12:68:e3:68:13:7a:0e:d8:d5:bb:86:28:0f: b4:c5:3b:76:f2:bc:00:fe:6f:f5:1f:13:06:ae:c4:80:ca:f6: a2:44:25:f5:42:76:b9:1e:4c:51:8d:df:2f:66:dc:0a:93:6c: 9b:30:fd:b4:ee:06:c5:99:0a:86:e7:31:0e:e7:c5:35:79:a9: fe:63:fc:4a:0f:6a:d8:1b:97:eb:42:5e:39:c5:4c:e1:f6:ac: 9b:43:b7:b8:34:2d:50:2d:e3:9d:1b:59:7c:40:35:97:e3:34: c1:8d:7e:80:fa:e4:2b:3a:9a:13:0b:20:d7:d7:d3:d3:0e:fe: b7:44:2c:1a:05:79:62:45:2d:a5:14:2b:2f:4a:22:0f:3c:81: fb:c3:5f:32:51:5e:2d:38:9c:40:14:e1:4e:c4:1a:38:ed:14: dc:1c:88:06:37:60:8c:17:04:1a:06:89:87:7d:89:92:6b:3e: 60:f2:12:74:6f:ba:8f:5e:80:32:21:e6:59:d1:ab:6d:d8:27: a0:20:00:61:7e:7d:7c:ba:69:8e:1b:5f:11:b4:69:74:32:5c: a6:6d:09:57:61:91:ab:16:8f:3f:7d:75:d4:c7:f9:02:c9:ab: 0c:ae:4f:d9:fa:16:2f:58:80:c4:34:91:19:22:3f:de:9e:78: 71:c3:5a:dd -----BEGIN CERTIFICATE----- MIIFJDCCBAygAwIBAgIURgMi6pVCXmvyoeiapNqS3MAp77MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDIwNDJFNjcyQjY4OEMzMDcyRkQ0NzQzQjNFN0REODFF QzdDQTMwNjAeFw0yNTA2MTkwOTU3MjFaFw0yNjA2MTgxMDAyMjFaMDMxMTAvBgNV BAMTKDA1QzBENEM5QThDNTM4MjhEOTlEOUM2QjE2OEZGQzhENkYwMTQzQkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDd7i3ZqhhxYU7/hTw11a9BAUwP 76J3X2hlyCwCZ1bRVDCuzl4czKZZ85FUCYZxFQBHg6675wLH+ykZ9b4b9aXqxfjD dzBI7uFXEtOaTgtrya7lGQPtbQ1w581zgwigqQ28wj+j4FhzQ/NTFbMXMddZs+Oz ixTto4IsjN2p//zoCsi00Z9eiat4cR50GyOYfz/HToqvGBF4mcuep0j5km+1fb6T CUiwQchXNPCrxyGuW2tXB/ennVZShgL7swJlck3HQ2h75d4gxabGyitIlDteodLC +oBdRdz7cU4NFWMTZwE6aDfkeSWMdDnEQqSHmumA171KRdObGw10mHF1W88jAgMB AAGjggIuMIICKjAdBgNVHQ4EFgQUBcDUyajFOCjZnZxrFo/8jW8BQ7owHwYDVR0j BBgwFoAUQgQuZytojDBy/UdDs+fdgex8owYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MTJmMjI4Yy1kZjIwLTQ3MjgtOWY5Ni04ZmFhMTM0MDAxN2EvMC80MjA0MkU2NzJC Njg4QzMwNzJGRDQ3NDNCM0U3REQ4MUVDN0NBMzA2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDIwNDJFNjcyQjY4OEMzMDcyRkQ0NzQzQjNFN0REODFFQzdD QTMwNi5jZXIwgZsGCCsGAQUFBwELBIGOMIGLMIGIBggrBgEFBQcwC4Z8cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYTEyZjIyOGMtZGYyMC00NzI4LTlm OTYtOGZhYTEzNDAwMTdhLzAvMzIzMDMwMzEzYTY0MzYzODNhM2EyZjM0MzgyZDM0 MzgyMDNkM2UyMDM3MzUzODM3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAENaAAAMA0GCSqGSIb3DQEB CwUAA4IBAQCHpKBtbRJo42gTeg7Y1buGKA+0xTt28rwA/m/1HxMGrsSAyvaiRCX1 Qna5HkxRjd8vZtwKk2ybMP207gbFmQqG5zEO58U1ean+Y/xKD2rYG5frQl45xUzh 9qybQ7e4NC1QLeOdG1l8QDWX4zTBjX6A+uQrOpoTCyDX19PTDv63RCwaBXliRS2l FCsvSiIPPIH7w18yUV4tOJxAFOFOxBo47RTcHIgGN2CMFwQaBomHfYmSaz5g8hJ0 b7qPXoAyIeZZ0att2CegIABhfn18ummOG18RtGl0MlymbQlXYZGrFo8/fXXUx/kC yasMrk/Z+hYvWIDENJEZIj/ennhxw1rd -----END CERTIFICATE-----Generated at Mon Jun 30 13:07:09 2025 by rpki-client