$ rpki-client -vvf repo-rpki.idnic.net/repo/ce7d738e-2cc7-4bd2-bb28-9142e1baa0ba/1/323030313a6466343a6363303a3a2f34382d3438203d3e20313532383431.roa File: 323030313a6466343a6363303a3a2f34382d3438203d3e20313532383431.roa (raw, json) Hash identifier: 67keM1hQfIucwuWQhvzKk8YthRoib+6jHGmIeaRFOqs= Subject key identifier: 14:E4:91:3B:D6:09:7A:1B:39:0C:88:4A:F2:7D:18:71:F6:BB:B6:DF Certificate issuer: /CN=C07F5AE2D9DC99D0AF28B6B154210C911EFB1D8A Certificate serial: 1CFFA173DD2C7EBD5DC52D827FA7FF59F954C98C Authority key identifier: C0:7F:5A:E2:D9:DC:99:D0:AF:28:B6:B1:54:21:0C:91:1E:FB:1D:8A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C07F5AE2D9DC99D0AF28B6B154210C911EFB1D8A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ce7d738e-2cc7-4bd2-bb28-9142e1baa0ba/1/323030313a6466343a6363303a3a2f34382d3438203d3e20313532383431.roa Signing time: Wed 25 Jun 2025 01:00:00 +0000 ROA not before: Wed 25 Jun 2025 00:55:00 +0000 ROA not after: Wed 24 Jun 2026 01:00:00 +0000 asID: 152841 IP address blocks: 2001:df4:cc0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ce7d738e-2cc7-4bd2-bb28-9142e1baa0ba/1/C07F5AE2D9DC99D0AF28B6B154210C911EFB1D8A.crl rsync://repo-rpki.idnic.net/repo/ce7d738e-2cc7-4bd2-bb28-9142e1baa0ba/1/C07F5AE2D9DC99D0AF28B6B154210C911EFB1D8A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C07F5AE2D9DC99D0AF28B6B154210C911EFB1D8A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 02 Jul 2025 15:07:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:ff:a1:73:dd:2c:7e:bd:5d:c5:2d:82:7f:a7:ff:59:f9:54:c9:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C07F5AE2D9DC99D0AF28B6B154210C911EFB1D8A Validity Not Before: Jun 25 00:55:00 2025 GMT Not After : Jun 24 01:00:00 2026 GMT Subject: CN=14E4913BD6097A1B390C884AF27D1871F6BBB6DF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:a6:ca:47:df:86:f3:ba:8d:aa:86:a2:30:e1: c2:e4:7c:15:34:ee:cb:11:c6:98:8a:ec:dc:81:98: a2:27:d3:43:04:bf:ad:a7:ac:3b:eb:a1:0a:9a:0b: 0b:91:8d:2a:d5:a5:8d:98:b8:82:cb:60:5e:86:1d: 54:90:6b:42:d6:48:74:52:37:59:39:15:26:37:75: 0f:5e:18:18:69:8b:f1:b0:7d:80:8f:f5:8c:55:d8: 20:e5:ff:b5:10:cb:06:23:81:94:02:cd:e1:c0:b4: 24:01:36:f5:89:63:70:b9:6d:ce:79:76:ee:cb:56: 5c:6b:fe:c3:c3:8f:84:b2:14:82:1b:8c:60:e7:61: 5d:ac:d5:ab:7e:0e:1a:60:71:f0:83:87:18:ff:86: 65:8f:95:a5:4b:1f:c0:82:80:6c:dd:f0:f3:12:06: f1:84:46:48:14:cd:b9:bc:dd:fe:b8:64:1c:c2:2d: fe:8a:a6:87:c7:02:f2:28:5c:13:76:6f:72:49:5c: 2d:a9:d4:a2:2d:8c:69:2c:2f:97:1f:e8:3c:e1:11: 66:06:ee:a6:da:d3:f3:6f:89:ea:50:00:0b:c1:0b: 8b:1f:45:25:18:98:b5:64:c3:10:4e:63:99:df:1a: 19:b3:6e:10:4b:f8:30:2c:a0:56:66:e7:8a:85:5b: f8:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:E4:91:3B:D6:09:7A:1B:39:0C:88:4A:F2:7D:18:71:F6:BB:B6:DF X509v3 Authority Key Identifier: keyid:C0:7F:5A:E2:D9:DC:99:D0:AF:28:B6:B1:54:21:0C:91:1E:FB:1D:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ce7d738e-2cc7-4bd2-bb28-9142e1baa0ba/1/C07F5AE2D9DC99D0AF28B6B154210C911EFB1D8A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C07F5AE2D9DC99D0AF28B6B154210C911EFB1D8A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ce7d738e-2cc7-4bd2-bb28-9142e1baa0ba/1/323030313a6466343a6363303a3a2f34382d3438203d3e20313532383431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df4:cc0::/48 Signature Algorithm: sha256WithRSAEncryption 33:8d:28:46:65:c0:b4:ff:e9:85:d3:54:1f:92:39:12:77:a3: 02:9b:89:7d:f3:9c:3f:64:4f:a9:d4:81:bc:d5:62:41:cd:3e: f3:ba:a1:2b:c7:f8:6c:7a:62:eb:7e:3c:cf:a7:3c:4a:e2:68: 89:11:f0:97:69:c0:9b:49:dd:13:11:f9:38:85:66:48:ec:cd: 02:8c:4d:ff:65:29:9a:9c:22:e0:2b:22:f8:40:2f:28:aa:91: d5:b0:42:0f:b3:35:7a:69:76:3d:cf:12:40:bd:b8:2f:22:1f: 66:82:04:89:b2:ed:69:db:1a:de:09:8b:67:1b:3d:2b:b6:4f: 48:dc:a3:e5:c9:d9:91:89:77:01:6b:53:26:60:89:59:c0:b5: 3f:39:79:31:52:14:27:bb:c8:37:c4:3c:9c:71:fc:77:85:49: db:a0:ea:6a:87:62:28:a5:e6:9f:b9:a0:56:b1:5b:7c:a9:71: 93:0d:e1:29:22:bb:63:e7:94:50:48:94:78:17:18:2b:fc:b9: 4c:fd:79:d1:66:1e:e8:1e:31:ff:a0:89:c7:93:82:2c:d4:38: bc:e5:9a:33:29:3b:6f:b7:8e:85:55:f7:b0:f5:f8:b4:1c:6d: 06:db:98:10:74:37:62:16:08:12:82:92:82:88:fa:74:94:98: 42:20:cd:c6 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUHP+hc90sfr1dxS2Cf6f/WflUyYwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzA3RjVBRTJEOURDOTlEMEFGMjhCNkIxNTQyMTBDOTEx RUZCMUQ4QTAeFw0yNTA2MjUwMDU1MDBaFw0yNjA2MjQwMTAwMDBaMDMxMTAvBgNV BAMTKDE0RTQ5MTNCRDYwOTdBMUIzOTBDODg0QUYyN0QxODcxRjZCQkI2REYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDopspH34bzuo2qhqIw4cLkfBU0 7ssRxpiK7NyBmKIn00MEv62nrDvroQqaCwuRjSrVpY2YuILLYF6GHVSQa0LWSHRS N1k5FSY3dQ9eGBhpi/GwfYCP9YxV2CDl/7UQywYjgZQCzeHAtCQBNvWJY3C5bc55 du7LVlxr/sPDj4SyFIIbjGDnYV2s1at+DhpgcfCDhxj/hmWPlaVLH8CCgGzd8PMS BvGERkgUzbm83f64ZBzCLf6KpofHAvIoXBN2b3JJXC2p1KItjGksL5cf6DzhEWYG 7qba0/NviepQAAvBC4sfRSUYmLVkwxBOY5nfGhmzbhBL+DAsoFZm54qFW/iVAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUFOSRO9YJehs5DIhK8n0Ycfa7tt8wHwYDVR0j BBgwFoAUwH9a4tncmdCvKLaxVCEMkR77HYowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j ZTdkNzM4ZS0yY2M3LTRiZDItYmIyOC05MTQyZTFiYWEwYmEvMS9DMDdGNUFFMkQ5 REM5OUQwQUYyOEI2QjE1NDIxMEM5MTFFRkIxRDhBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzA3RjVBRTJEOURDOTlEMEFGMjhCNkIxNTQyMTBDOTExRUZC MUQ4QS5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NlN2Q3MzhlLTJjYzctNGJkMi1i YjI4LTkxNDJlMWJhYTBiYS8xLzMyMzAzMDMxM2E2NDY2MzQzYTYzNjMzMDNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzUzMjM4MzQzMS5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACABDfQM wDANBgkqhkiG9w0BAQsFAAOCAQEAM40oRmXAtP/phdNUH5I5EnejApuJffOcP2RP qdSBvNViQc0+87qhK8f4bHpi6348z6c8SuJoiRHwl2nAm0ndExH5OIVmSOzNAoxN /2Upmpwi4Csi+EAvKKqR1bBCD7M1eml2Pc8SQL24LyIfZoIEibLtadsa3gmLZxs9 K7ZPSNyj5cnZkYl3AWtTJmCJWcC1Pzl5MVIUJ7vIN8Q8nHH8d4VJ26DqaodiKKXm n7mgVrFbfKlxkw3hKSK7Y+eUUEiUeBcYK/y5TP150WYe6B4x/6CJx5OCLNQ4vOWa Myk7b7eOhVX3sPX4tBxtBtuYEHQ3YhYIEoKSgoj6dJSYQiDNxg== -----END CERTIFICATE-----Generated at Mon Jun 30 09:05:39 2025 by rpki-client