$ rpki-client -vvf repo-rpki.idnic.net/repo/cabeebcc-a247-4fde-aa86-c6669eabcd82/0/323030313a6466333a3263303a3a2f34382d3438203d3e20313531353639.roa File: 323030313a6466333a3263303a3a2f34382d3438203d3e20313531353639.roa (raw, json) Hash identifier: zVkKXHp1IUSWn6/DI0KODZ2Sd/LhWyDMOtuowY983gU= Subject key identifier: 38:D5:5E:E9:19:7D:A8:C3:56:2A:5B:C7:3F:F4:BF:FD:B2:AB:39:59 Certificate issuer: /CN=8AF24BA6BB2F67CD548BD08B64D97B9A2468ED80 Certificate serial: 51ED254387C851C612725D4D18F896678D81D01F Authority key identifier: 8A:F2:4B:A6:BB:2F:67:CD:54:8B:D0:8B:64:D9:7B:9A:24:68:ED:80 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8AF24BA6BB2F67CD548BD08B64D97B9A2468ED80.cer Subject info access: rsync://repo-rpki.idnic.net/repo/cabeebcc-a247-4fde-aa86-c6669eabcd82/0/323030313a6466333a3263303a3a2f34382d3438203d3e20313531353639.roa Signing time: Wed 20 Aug 2025 08:02:27 +0000 ROA not before: Wed 20 Aug 2025 07:57:27 +0000 ROA not after: Wed 19 Aug 2026 08:02:27 +0000 asID: 151569 IP address blocks: 2001:df3:2c0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/cabeebcc-a247-4fde-aa86-c6669eabcd82/0/8AF24BA6BB2F67CD548BD08B64D97B9A2468ED80.crl rsync://repo-rpki.idnic.net/repo/cabeebcc-a247-4fde-aa86-c6669eabcd82/0/8AF24BA6BB2F67CD548BD08B64D97B9A2468ED80.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8AF24BA6BB2F67CD548BD08B64D97B9A2468ED80.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 16:13:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:ed:25:43:87:c8:51:c6:12:72:5d:4d:18:f8:96:67:8d:81:d0:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8AF24BA6BB2F67CD548BD08B64D97B9A2468ED80 Validity Not Before: Aug 20 07:57:27 2025 GMT Not After : Aug 19 08:02:27 2026 GMT Subject: CN=38D55EE9197DA8C3562A5BC73FF4BFFDB2AB3959 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:7f:40:9c:b2:27:bd:13:86:db:fc:c3:d0:21: ee:eb:5c:0b:c9:64:3d:ba:ac:d7:b4:9f:cd:ab:1e: 53:8e:76:fb:fc:9a:95:df:d8:20:6f:ab:28:0e:46: ef:b4:6a:9a:c0:6b:bd:ea:66:75:5b:a0:f7:a5:21: 93:13:3b:c3:49:25:7e:a9:72:31:ac:9b:16:97:b6: 32:11:d0:aa:e5:6c:ec:c1:93:8a:9c:a0:8a:b2:c3: 12:7c:1b:c9:1e:b2:fb:2b:bc:c2:e1:9b:93:c9:f9: 24:77:db:26:59:bc:0b:bf:42:a3:94:6b:fd:a5:55: 81:0d:fe:62:df:8a:26:10:88:2d:f6:5a:af:bd:e4: 42:f2:5c:58:51:3a:93:30:4d:59:16:5d:09:90:a7: a0:0d:4f:13:c0:77:c6:8c:1b:31:75:b1:4c:3d:8d: c6:e3:0f:7b:e0:4e:c1:14:35:2a:d4:e5:0e:54:62: 73:65:f4:38:c9:03:cd:33:6e:e2:27:4f:d5:c2:19: f7:7d:1f:90:91:b4:19:06:73:f4:2d:37:74:ae:0a: ba:9a:7e:c5:b1:59:97:69:8c:5c:84:f7:dc:9e:a2: ec:dc:55:3a:7e:73:0c:06:fe:6f:a4:2e:15:c6:85: 59:f0:6c:bc:6f:2e:08:f2:6d:3b:ae:3d:10:59:8c: 56:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:D5:5E:E9:19:7D:A8:C3:56:2A:5B:C7:3F:F4:BF:FD:B2:AB:39:59 X509v3 Authority Key Identifier: keyid:8A:F2:4B:A6:BB:2F:67:CD:54:8B:D0:8B:64:D9:7B:9A:24:68:ED:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/cabeebcc-a247-4fde-aa86-c6669eabcd82/0/8AF24BA6BB2F67CD548BD08B64D97B9A2468ED80.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8AF24BA6BB2F67CD548BD08B64D97B9A2468ED80.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/cabeebcc-a247-4fde-aa86-c6669eabcd82/0/323030313a6466333a3263303a3a2f34382d3438203d3e20313531353639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df3:2c0::/48 Signature Algorithm: sha256WithRSAEncryption 33:27:ff:9f:82:68:80:9f:a1:42:bd:d7:c5:f3:2c:af:da:17: fc:33:be:f0:14:b0:1d:81:27:d3:b4:13:a3:6b:5a:a4:7c:1f: 9d:c8:d5:8a:8d:37:96:87:a7:9c:1a:44:e5:d1:42:14:06:9d: 4f:b9:51:fa:ec:f0:bb:ac:41:39:c3:af:fc:5f:02:f1:3e:82: 5c:1a:8a:b5:35:cb:e3:30:d4:bf:30:86:31:15:f8:41:93:51: 84:a0:45:3b:6a:5f:84:74:32:8f:ec:b4:9a:92:a7:92:0e:25: c4:37:47:b6:27:9e:ce:9e:68:fd:35:a4:af:d5:32:27:e5:09: 08:d1:24:c5:8f:ab:6a:60:7d:40:b5:e6:58:87:15:4f:5e:27: 7d:33:23:6c:ed:eb:ab:6e:6f:ea:1b:5d:b5:01:58:78:2a:8b: 98:da:90:dc:ee:1c:8b:49:78:7a:d7:91:b3:3b:5f:af:8c:8d: 1b:71:2c:8a:22:0b:f0:41:aa:ea:3f:c1:cc:c1:f6:2f:f7:4f: 45:0c:18:ab:c1:d0:21:20:78:6e:d7:f6:f1:ac:9c:6f:14:74: d2:2e:46:c4:9b:8a:02:0f:2c:a8:3e:e9:1e:2c:a9:41:d1:4a: 00:56:ac:99:3c:5e:d4:46:66:cd:21:44:33:34:27:7e:0e:14: ac:4a:3a:e0 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUUe0lQ4fIUcYScl1NGPiWZ42B0B8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEFGMjRCQTZCQjJGNjdDRDU0OEJEMDhCNjREOTdCOUEy NDY4RUQ4MDAeFw0yNTA4MjAwNzU3MjdaFw0yNjA4MTkwODAyMjdaMDMxMTAvBgNV BAMTKDM4RDU1RUU5MTk3REE4QzM1NjJBNUJDNzNGRjRCRkZEQjJBQjM5NTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDf0Ccsie9E4bb/MPQIe7rXAvJ ZD26rNe0n82rHlOOdvv8mpXf2CBvqygORu+0aprAa73qZnVboPelIZMTO8NJJX6p cjGsmxaXtjIR0KrlbOzBk4qcoIqywxJ8G8kesvsrvMLhm5PJ+SR32yZZvAu/QqOU a/2lVYEN/mLfiiYQiC32Wq+95ELyXFhROpMwTVkWXQmQp6ANTxPAd8aMGzF1sUw9 jcbjD3vgTsEUNSrU5Q5UYnNl9DjJA80zbuInT9XCGfd9H5CRtBkGc/QtN3SuCrqa fsWxWZdpjFyE99yeouzcVTp+cwwG/m+kLhXGhVnwbLxvLgjybTuuPRBZjFaHAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUONVe6Rl9qMNWKlvHP/S//bKrOVkwHwYDVR0j BBgwFoAUivJLprsvZ81Ui9CLZNl7miRo7YAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j YWJlZWJjYy1hMjQ3LTRmZGUtYWE4Ni1jNjY2OWVhYmNkODIvMC84QUYyNEJBNkJC MkY2N0NENTQ4QkQwOEI2NEQ5N0I5QTI0NjhFRDgwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEFGMjRCQTZCQjJGNjdDRDU0OEJEMDhCNjREOTdCOUEyNDY4 RUQ4MC5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NhYmVlYmNjLWEyNDctNGZkZS1h YTg2LWM2NjY5ZWFiY2Q4Mi8wLzMyMzAzMDMxM2E2NDY2MzMzYTMyNjMzMDNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzUzMTM1MzYzOS5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACABDfMC wDANBgkqhkiG9w0BAQsFAAOCAQEAMyf/n4JogJ+hQr3XxfMsr9oX/DO+8BSwHYEn 07QTo2tapHwfncjVio03loennBpE5dFCFAadT7lR+uzwu6xBOcOv/F8C8T6CXBqK tTXL4zDUvzCGMRX4QZNRhKBFO2pfhHQyj+y0mpKnkg4lxDdHtieezp5o/TWkr9Uy J+UJCNEkxY+ramB9QLXmWIcVT14nfTMjbO3rq25v6htdtQFYeCqLmNqQ3O4ci0l4 eteRsztfr4yNG3EsiiIL8EGq6j/BzMH2L/dPRQwYq8HQISB4btf28aycbxR00i5G xJuKAg8sqD7pHiypQdFKAFasmTxe1EZmzSFEMzQnfg4UrEo64A== -----END CERTIFICATE-----Generated at Sat Aug 23 15:51:37 2025 by rpki-client