$ rpki-client -vvf repo-rpki.idnic.net/repo/d2d6d0df-c21e-491c-b116-4a1d9a2c74be/0/323030313a6466343a626430303a3a2f34382d3438203d3e20313337333338.roa File: 323030313a6466343a626430303a3a2f34382d3438203d3e20313337333338.roa (raw, json) Hash identifier: X0XuQCteFt44X9z4G5hv/Tll9L9Acd6wBAIKaiqJSfU= Subject key identifier: 01:48:79:05:60:F9:5C:BF:7B:CC:EC:7A:B8:01:1D:27:C4:94:C3:E2 Certificate issuer: /CN=C509602E8492E1EF2F7A2B99A4C6BF4FF306945D Certificate serial: 38EBC28D1A0D09613DEFE2BCB2DC67D4F2E96CE3 Authority key identifier: C5:09:60:2E:84:92:E1:EF:2F:7A:2B:99:A4:C6:BF:4F:F3:06:94:5D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C509602E8492E1EF2F7A2B99A4C6BF4FF306945D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d2d6d0df-c21e-491c-b116-4a1d9a2c74be/0/323030313a6466343a626430303a3a2f34382d3438203d3e20313337333338.roa Signing time: Sat 07 Jun 2025 07:02:23 +0000 ROA not before: Sat 07 Jun 2025 06:57:23 +0000 ROA not after: Sat 06 Jun 2026 07:02:23 +0000 asID: 137338 IP address blocks: 2001:df4:bd00::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d2d6d0df-c21e-491c-b116-4a1d9a2c74be/0/C509602E8492E1EF2F7A2B99A4C6BF4FF306945D.crl rsync://repo-rpki.idnic.net/repo/d2d6d0df-c21e-491c-b116-4a1d9a2c74be/0/C509602E8492E1EF2F7A2B99A4C6BF4FF306945D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C509602E8492E1EF2F7A2B99A4C6BF4FF306945D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 03 Jul 2025 11:17:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:eb:c2:8d:1a:0d:09:61:3d:ef:e2:bc:b2:dc:67:d4:f2:e9:6c:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C509602E8492E1EF2F7A2B99A4C6BF4FF306945D Validity Not Before: Jun 7 06:57:23 2025 GMT Not After : Jun 6 07:02:23 2026 GMT Subject: CN=0148790560F95CBF7BCCEC7AB8011D27C494C3E2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:79:6b:c7:82:d7:9c:0a:0e:c2:57:10:4a:6a: 7d:1a:40:f7:36:ba:38:dd:95:2d:12:38:3a:a9:39: ec:e4:89:db:2e:93:89:b7:4b:1a:a4:62:d4:05:fa: 12:3d:7c:72:23:dd:ce:ae:69:df:af:b3:40:3f:f5: e4:f4:41:48:cb:5d:30:61:c8:79:59:61:75:e7:af: 25:bf:e4:e6:29:1f:4d:6a:4b:07:94:22:9b:33:fc: f0:b5:45:c0:b4:73:f3:e7:b8:36:7f:5c:bc:d2:ea: 17:3a:60:19:5f:ac:6b:a0:18:d1:20:85:88:d3:fd: 62:8f:bf:2d:69:1c:84:d6:c7:2d:43:74:71:e0:3a: 91:a6:68:0c:16:4b:ca:7c:7f:05:34:4c:64:d4:b6: ff:0b:00:fd:4b:6d:69:c4:92:14:8f:5e:ab:ef:c4: 26:55:fe:7e:33:68:b9:c7:1f:82:eb:27:78:06:f7: 6a:40:c3:0f:6c:36:9e:9d:7d:5d:6d:86:7a:88:af: 75:90:34:aa:3c:60:b1:bc:e6:2c:07:26:d9:aa:12: 88:3a:0f:9c:37:28:77:4b:b1:e4:b3:b4:14:de:01: 63:f2:f2:d4:7f:19:1b:07:a3:4c:d5:57:12:d0:52: 5f:3a:de:4b:61:ec:4b:44:86:14:58:46:16:0e:33: fa:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:48:79:05:60:F9:5C:BF:7B:CC:EC:7A:B8:01:1D:27:C4:94:C3:E2 X509v3 Authority Key Identifier: keyid:C5:09:60:2E:84:92:E1:EF:2F:7A:2B:99:A4:C6:BF:4F:F3:06:94:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d2d6d0df-c21e-491c-b116-4a1d9a2c74be/0/C509602E8492E1EF2F7A2B99A4C6BF4FF306945D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C509602E8492E1EF2F7A2B99A4C6BF4FF306945D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d2d6d0df-c21e-491c-b116-4a1d9a2c74be/0/323030313a6466343a626430303a3a2f34382d3438203d3e20313337333338.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df4:bd00::/48 Signature Algorithm: sha256WithRSAEncryption 57:38:bf:e9:e7:24:8a:d8:20:ed:41:67:f9:95:d5:15:32:9f: 78:a2:0e:c4:c9:59:29:47:e8:f4:52:b0:6c:57:49:c8:3b:9d: a6:f9:8a:80:4e:43:c1:1b:b3:4f:4b:d1:7b:04:07:2f:d5:2f: a9:b7:24:b5:46:90:0d:a7:32:c0:3d:93:33:b6:77:34:fb:a6: f5:d5:b2:2e:c1:4f:4f:68:9b:48:cc:0d:55:3b:68:19:33:9b: d0:33:b1:c3:52:37:99:b5:81:d9:dd:d2:3f:d8:73:f1:2d:2e: fc:e2:4d:fc:6a:79:57:33:e2:cb:9d:f3:3a:4a:f5:1d:ba:ac: 4f:c1:1f:a7:2a:07:f7:74:fd:23:21:d3:5c:ba:23:98:9b:78: 58:62:cc:d3:d8:e8:c1:34:cc:82:da:1e:54:7c:14:33:80:c0: 3f:00:1a:76:7b:bd:b4:07:f0:f6:af:81:7e:3c:d0:50:b3:17: 8a:7b:c7:fa:4c:74:fc:64:a8:37:e4:25:61:82:1e:2a:47:8d: 7d:97:d8:7c:e6:38:2f:17:e6:c0:a3:87:ea:28:dd:16:3b:69: 81:c2:c7:5a:26:1e:a1:5b:03:02:31:5f:d2:7b:a4:96:f0:21: 03:eb:c5:d4:c1:a6:63:bb:4e:99:f6:ab:d7:d1:34:47:f7:af: 77:f1:cd:7e -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUOOvCjRoNCWE97+K8stxn1PLpbOMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzUwOTYwMkU4NDkyRTFFRjJGN0EyQjk5QTRDNkJGNEZG MzA2OTQ1RDAeFw0yNTA2MDcwNjU3MjNaFw0yNjA2MDYwNzAyMjNaMDMxMTAvBgNV BAMTKDAxNDg3OTA1NjBGOTVDQkY3QkNDRUM3QUI4MDExRDI3QzQ5NEMzRTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDweWvHgtecCg7CVxBKan0aQPc2 ujjdlS0SODqpOezkidsuk4m3SxqkYtQF+hI9fHIj3c6uad+vs0A/9eT0QUjLXTBh yHlZYXXnryW/5OYpH01qSweUIpsz/PC1RcC0c/PnuDZ/XLzS6hc6YBlfrGugGNEg hYjT/WKPvy1pHITWxy1DdHHgOpGmaAwWS8p8fwU0TGTUtv8LAP1LbWnEkhSPXqvv xCZV/n4zaLnHH4LrJ3gG92pAww9sNp6dfV1thnqIr3WQNKo8YLG85iwHJtmqEog6 D5w3KHdLseSztBTeAWPy8tR/GRsHo0zVVxLQUl863kth7EtEhhRYRhYOM/qJAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUAUh5BWD5XL97zOx6uAEdJ8SUw+IwHwYDVR0j BBgwFoAUxQlgLoSS4e8veiuZpMa/T/MGlF0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MmQ2ZDBkZi1jMjFlLTQ5MWMtYjExNi00YTFkOWEyYzc0YmUvMC9DNTA5NjAyRTg0 OTJFMUVGMkY3QTJCOTlBNEM2QkY0RkYzMDY5NDVELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzUwOTYwMkU4NDkyRTFFRjJGN0EyQjk5QTRDNkJGNEZGMzA2 OTQ1RC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QyZDZkMGRmLWMyMWUtNDkxYy1i MTE2LTRhMWQ5YTJjNzRiZS8wLzMyMzAzMDMxM2E2NDY2MzQzYTYyNjQzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM3MzMzMzM4LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 9L0AMA0GCSqGSIb3DQEBCwUAA4IBAQBXOL/p5ySK2CDtQWf5ldUVMp94og7EyVkp R+j0UrBsV0nIO52m+YqATkPBG7NPS9F7BAcv1S+ptyS1RpANpzLAPZMztnc0+6b1 1bIuwU9PaJtIzA1VO2gZM5vQM7HDUjeZtYHZ3dI/2HPxLS784k38anlXM+LLnfM6 SvUduqxPwR+nKgf3dP0jIdNcuiOYm3hYYszT2OjBNMyC2h5UfBQzgMA/ABp2e720 B/D2r4F+PNBQsxeKe8f6THT8ZKg35CVhgh4qR419l9h85jgvF+bAo4fqKN0WO2mB wsdaJh6hWwMCMV/Se6SW8CED68XUwaZju06Z9qvX0TRH96938c1+ -----END CERTIFICATE-----Generated at Tue Jul 1 01:45:54 2025 by rpki-client