$ rpki-client -vvf repo-rpki.idnic.net/repo/b0516a7a-4195-44b3-a24e-cf8ed578d791/0/323030313a6466303a663963303a3a2f34382d3438203d3e20313439393037.roa File: 323030313a6466303a663963303a3a2f34382d3438203d3e20313439393037.roa (raw, json) Hash identifier: dQqh/UiHoQw/70mJd+ZId7SvE382IQVHD0RnWmbxwtI= Subject key identifier: 01:06:18:47:45:23:56:98:8C:08:88:19:3F:5E:7D:86:EF:E0:F7:27 Certificate issuer: /CN=0CE1E11146E251D0CD52BD837A1A0ACDB7E0BA0C Certificate serial: 06962802F3CC790CD07C6591A4FA75FD60AEA534 Authority key identifier: 0C:E1:E1:11:46:E2:51:D0:CD:52:BD:83:7A:1A:0A:CD:B7:E0:BA:0C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0CE1E11146E251D0CD52BD837A1A0ACDB7E0BA0C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b0516a7a-4195-44b3-a24e-cf8ed578d791/0/323030313a6466303a663963303a3a2f34382d3438203d3e20313439393037.roa Signing time: Fri 15 Aug 2025 02:02:28 +0000 ROA not before: Fri 15 Aug 2025 01:57:28 +0000 ROA not after: Fri 14 Aug 2026 02:02:28 +0000 asID: 149907 IP address blocks: 2001:df0:f9c0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b0516a7a-4195-44b3-a24e-cf8ed578d791/0/0CE1E11146E251D0CD52BD837A1A0ACDB7E0BA0C.crl rsync://repo-rpki.idnic.net/repo/b0516a7a-4195-44b3-a24e-cf8ed578d791/0/0CE1E11146E251D0CD52BD837A1A0ACDB7E0BA0C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0CE1E11146E251D0CD52BD837A1A0ACDB7E0BA0C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 16:21:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:96:28:02:f3:cc:79:0c:d0:7c:65:91:a4:fa:75:fd:60:ae:a5:34 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0CE1E11146E251D0CD52BD837A1A0ACDB7E0BA0C Validity Not Before: Aug 15 01:57:28 2025 GMT Not After : Aug 14 02:02:28 2026 GMT Subject: CN=01061847452356988C0888193F5E7D86EFE0F727 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:95:47:0e:13:c1:e3:8b:c5:91:c2:cc:a8:67: 75:64:84:8e:53:49:11:78:a1:7a:51:37:b7:fc:8d: ca:f8:6e:2b:bb:21:38:33:4f:f8:33:97:72:64:8d: a6:af:f5:4c:87:43:50:73:70:f1:2e:61:70:f0:7b: 9c:54:98:21:08:25:b1:02:04:e1:45:87:32:ed:a2: 6f:5b:84:fa:28:a6:6c:69:a6:e6:fc:b3:ba:51:46: 25:8d:b7:69:be:2c:c7:6f:c7:8c:bf:07:92:34:14: 63:cf:ac:f5:c0:fb:bd:08:3e:58:fe:30:9e:e3:48: 12:88:94:b6:d6:24:02:04:64:1a:19:72:7c:5f:09: 67:8d:5f:c8:a2:9f:ba:80:d9:e7:3f:a7:c6:d8:ce: 66:82:10:0c:a3:c5:e8:c4:bc:fa:9b:24:ea:24:04: 17:f3:93:db:0c:9e:5a:ba:d4:cb:15:6d:af:0b:53: 25:ef:34:5e:6d:ec:b6:c6:ca:2e:43:5a:5f:5c:f0: 7c:6d:39:08:48:42:e1:05:cf:84:a0:ba:48:1e:9f: a1:9f:12:f6:74:77:8d:63:97:b7:ad:2a:92:a1:89: e9:09:b8:bd:99:dc:58:68:5e:09:b7:c3:8a:1c:6f: 36:8e:6d:16:c4:ea:15:d5:f3:78:9b:85:25:b4:d8: 4c:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:06:18:47:45:23:56:98:8C:08:88:19:3F:5E:7D:86:EF:E0:F7:27 X509v3 Authority Key Identifier: keyid:0C:E1:E1:11:46:E2:51:D0:CD:52:BD:83:7A:1A:0A:CD:B7:E0:BA:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b0516a7a-4195-44b3-a24e-cf8ed578d791/0/0CE1E11146E251D0CD52BD837A1A0ACDB7E0BA0C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0CE1E11146E251D0CD52BD837A1A0ACDB7E0BA0C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b0516a7a-4195-44b3-a24e-cf8ed578d791/0/323030313a6466303a663963303a3a2f34382d3438203d3e20313439393037.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df0:f9c0::/48 Signature Algorithm: sha256WithRSAEncryption 34:6c:ff:77:d0:fb:67:3a:8a:f1:29:71:d4:58:36:ff:de:6f: 44:1f:ad:69:2f:9a:b8:6b:ca:57:6d:f9:70:6b:08:a5:34:4d: e6:c9:63:5a:27:a1:9a:15:cd:2a:71:55:45:bc:34:0f:1b:d7: 5a:1a:dd:26:bc:c8:0f:1f:13:e4:52:3c:bd:59:0e:43:eb:77: d9:a5:16:72:1b:9d:c1:3d:14:f9:0b:4a:ac:be:c8:b7:9a:a7: 52:c6:df:a7:b7:82:3e:5b:cd:11:60:b9:85:70:c3:1c:57:fb: b0:7b:6a:36:3d:4c:f1:b1:82:1a:03:a4:0e:cd:47:7d:4a:9a: 62:09:bd:e5:d2:ea:11:13:65:aa:72:ec:b1:54:72:61:23:39: 72:aa:7c:ff:3b:0c:ed:44:65:1c:00:c2:f0:35:79:58:2a:df: 8f:70:58:17:4d:cd:6b:bd:c2:5f:11:38:a0:4f:e3:62:31:84: f7:f6:30:27:8b:af:05:53:ac:3d:9d:2b:46:27:73:3d:80:e2: c0:12:65:f9:4e:9d:de:b8:d6:b5:c9:65:db:13:63:18:6f:d1: 5e:32:b7:41:15:df:41:89:de:14:ea:fc:34:6a:cf:82:4a:dd: 1f:11:d4:c4:17:fc:65:78:da:1d:d3:86:23:22:51:95:54:5c: 27:5e:fb:75 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUBpYoAvPMeQzQfGWRpPp1/WCupTQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMENFMUUxMTE0NkUyNTFEMENENTJCRDgzN0ExQTBBQ0RC N0UwQkEwQzAeFw0yNTA4MTUwMTU3MjhaFw0yNjA4MTQwMjAyMjhaMDMxMTAvBgNV BAMTKDAxMDYxODQ3NDUyMzU2OTg4QzA4ODgxOTNGNUU3RDg2RUZFMEY3MjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwlUcOE8Hji8WRwsyoZ3VkhI5T SRF4oXpRN7f8jcr4biu7ITgzT/gzl3Jkjaav9UyHQ1BzcPEuYXDwe5xUmCEIJbEC BOFFhzLtom9bhPoopmxppub8s7pRRiWNt2m+LMdvx4y/B5I0FGPPrPXA+70IPlj+ MJ7jSBKIlLbWJAIEZBoZcnxfCWeNX8iin7qA2ec/p8bYzmaCEAyjxejEvPqbJOok BBfzk9sMnlq61MsVba8LUyXvNF5t7LbGyi5DWl9c8HxtOQhIQuEFz4Sgukgen6Gf EvZ0d41jl7etKpKhiekJuL2Z3FhoXgm3w4ocbzaObRbE6hXV83ibhSW02ExtAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUAQYYR0UjVpiMCIgZP159hu/g9ycwHwYDVR0j BBgwFoAUDOHhEUbiUdDNUr2DehoKzbfgugwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MDUxNmE3YS00MTk1LTQ0YjMtYTI0ZS1jZjhlZDU3OGQ3OTEvMC8wQ0UxRTExMTQ2 RTI1MUQwQ0Q1MkJEODM3QTFBMEFDREI3RTBCQTBDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMENFMUUxMTE0NkUyNTFEMENENTJCRDgzN0ExQTBBQ0RCN0Uw QkEwQy5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IwNTE2YTdhLTQxOTUtNDRiMy1h MjRlLWNmOGVkNTc4ZDc5MS8wLzMyMzAzMDMxM2E2NDY2MzAzYTY2Mzk2MzMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNDM5MzkzMDM3LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8PnAMA0GCSqGSIb3DQEBCwUAA4IBAQA0bP930PtnOorxKXHUWDb/3m9EH61pL5q4 a8pXbflwawilNE3myWNaJ6GaFc0qcVVFvDQPG9daGt0mvMgPHxPkUjy9WQ5D63fZ pRZyG53BPRT5C0qsvsi3mqdSxt+nt4I+W80RYLmFcMMcV/uwe2o2PUzxsYIaA6QO zUd9SppiCb3l0uoRE2WqcuyxVHJhIzlyqnz/OwztRGUcAMLwNXlYKt+PcFgXTc1r vcJfETigT+NiMYT39jAni68FU6w9nStGJ3M9gOLAEmX5Tp3euNa1yWXbE2MYb9Fe MrdBFd9Bid4U6vw0as+CSt0fEdTEF/xleNod04YjIlGVVFwnXvt1 -----END CERTIFICATE-----Generated at Sat Aug 23 15:30:20 2025 by rpki-client