$ rpki-client -vvf repo-rpki.idnic.net/repo/f51d6c9c-ead7-45fe-a19a-42235fc53780/0/323030313a6466303a363063303a3a2f34382d3438203d3e20313439333639.roa File: 323030313a6466303a363063303a3a2f34382d3438203d3e20313439333639.roa (raw, json) Hash identifier: efHKgumm4W/iDiNoEk+pEOF7/XIOUKbYG+7UFPzA9VU= Subject key identifier: A0:FA:87:C8:00:EB:3A:E7:43:1B:9A:47:86:98:A2:08:07:FD:77:B0 Certificate issuer: /CN=19ED797ADBB8D0A3184D2B02D7D1C2362A6FF87E Certificate serial: 6E49FAEE9CB36D3425454627C1C03D3CB6FCF8E7 Authority key identifier: 19:ED:79:7A:DB:B8:D0:A3:18:4D:2B:02:D7:D1:C2:36:2A:6F:F8:7E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/19ED797ADBB8D0A3184D2B02D7D1C2362A6FF87E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f51d6c9c-ead7-45fe-a19a-42235fc53780/0/323030313a6466303a363063303a3a2f34382d3438203d3e20313439333639.roa Signing time: Fri 02 May 2025 07:02:27 +0000 ROA not before: Fri 02 May 2025 06:57:27 +0000 ROA not after: Fri 01 May 2026 07:02:27 +0000 asID: 149369 IP address blocks: 2001:df0:60c0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f51d6c9c-ead7-45fe-a19a-42235fc53780/0/19ED797ADBB8D0A3184D2B02D7D1C2362A6FF87E.crl rsync://repo-rpki.idnic.net/repo/f51d6c9c-ead7-45fe-a19a-42235fc53780/0/19ED797ADBB8D0A3184D2B02D7D1C2362A6FF87E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/19ED797ADBB8D0A3184D2B02D7D1C2362A6FF87E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 12 May 2025 01:17:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:49:fa:ee:9c:b3:6d:34:25:45:46:27:c1:c0:3d:3c:b6:fc:f8:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=19ED797ADBB8D0A3184D2B02D7D1C2362A6FF87E Validity Not Before: May 2 06:57:27 2025 GMT Not After : May 1 07:02:27 2026 GMT Subject: CN=A0FA87C800EB3AE7431B9A478698A20807FD77B0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:11:67:a3:2c:4b:bf:f0:1c:7c:3e:27:42:58: 02:bf:16:20:9a:48:fb:aa:9b:3d:33:81:16:9d:5a: 1a:59:49:83:4f:06:29:ee:5e:6f:b0:61:c4:89:d1: 9d:4f:b6:57:cb:a8:96:27:65:de:6c:54:42:12:a1: cc:2f:67:28:df:3a:36:72:42:2b:ca:64:47:3d:4b: 82:88:d0:25:94:be:74:54:59:31:f8:d3:ef:7e:77: e7:05:48:bd:5b:24:bf:70:a2:cb:1c:6e:e2:4d:82: 9f:bb:9a:aa:e1:3d:17:f1:65:2e:79:ef:0d:60:cf: 04:a4:46:ca:9d:0b:72:22:5f:63:12:27:74:6e:d9: 67:d5:29:37:64:f8:25:af:a7:a7:45:34:a5:d3:31: 35:8b:06:16:89:68:76:17:aa:f3:04:e1:f7:c2:ef: 66:f7:49:9c:4b:5b:73:d5:e8:b8:7d:5e:1b:38:ab: 91:8e:79:10:ad:d3:2d:90:a1:56:5e:4f:d9:96:01: 3c:84:bb:66:c0:e6:e5:e5:65:03:fe:2e:ca:7b:eb: 19:67:5a:ad:01:6b:9e:55:15:1a:b2:a8:ec:ce:b8: c4:04:a7:94:e5:91:a4:b1:9b:b7:be:b5:a3:8f:5f: 44:af:b3:7f:67:e5:53:5a:10:9d:e2:eb:a9:f3:61: a4:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:FA:87:C8:00:EB:3A:E7:43:1B:9A:47:86:98:A2:08:07:FD:77:B0 X509v3 Authority Key Identifier: keyid:19:ED:79:7A:DB:B8:D0:A3:18:4D:2B:02:D7:D1:C2:36:2A:6F:F8:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f51d6c9c-ead7-45fe-a19a-42235fc53780/0/19ED797ADBB8D0A3184D2B02D7D1C2362A6FF87E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/19ED797ADBB8D0A3184D2B02D7D1C2362A6FF87E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f51d6c9c-ead7-45fe-a19a-42235fc53780/0/323030313a6466303a363063303a3a2f34382d3438203d3e20313439333639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df0:60c0::/48 Signature Algorithm: sha256WithRSAEncryption 7c:0d:83:09:0a:fe:eb:04:76:e3:6d:17:38:8c:75:6f:79:1a: c3:f7:ab:8a:d0:4d:8d:88:0d:f5:e2:a6:49:ef:24:78:79:35: c2:b1:5d:07:06:fd:2b:9e:d1:75:ce:9d:80:7d:55:a7:ce:a2: 5b:d4:3e:91:84:4a:16:da:15:c5:01:b4:a1:6a:af:65:11:6b: e5:1e:87:d6:cd:db:ea:79:04:97:9d:cf:ec:93:e8:a3:b0:b2: b6:16:20:bf:16:b1:ef:65:57:f3:bb:5b:f2:a7:3f:21:94:12: f0:33:24:24:2b:8c:0d:aa:40:a7:17:42:43:78:c3:21:4f:8c: 6b:fa:6e:61:67:1b:34:f8:6c:b5:c1:2f:a3:4b:84:cd:80:e4: 3d:55:05:06:39:b9:0d:af:25:e5:cf:c3:46:d4:2b:f3:1d:cb: 9e:18:34:34:5d:ac:70:9a:c5:61:c4:6c:b8:e1:4b:d6:51:2e: 48:9d:31:6b:37:db:cb:00:b4:9d:de:cc:7f:9e:5b:09:a1:de: db:e4:01:b7:f9:8b:a6:45:a3:48:56:25:cb:55:07:9b:b0:f7: ea:ed:66:31:d9:25:9c:4b:7e:6a:64:0a:ca:d0:0b:8c:58:42: c8:34:52:61:74:75:35:96:95:7f:69:70:17:2f:fa:39:09:65: 37:ff:4c:1f -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUbkn67pyzbTQlRUYnwcA9PLb8+OcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTlFRDc5N0FEQkI4RDBBMzE4NEQyQjAyRDdEMUMyMzYy QTZGRjg3RTAeFw0yNTA1MDIwNjU3MjdaFw0yNjA1MDEwNzAyMjdaMDMxMTAvBgNV BAMTKEEwRkE4N0M4MDBFQjNBRTc0MzFCOUE0Nzg2OThBMjA4MDdGRDc3QjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCYEWejLEu/8Bx8PidCWAK/FiCa SPuqmz0zgRadWhpZSYNPBinuXm+wYcSJ0Z1PtlfLqJYnZd5sVEISocwvZyjfOjZy QivKZEc9S4KI0CWUvnRUWTH40+9+d+cFSL1bJL9wosscbuJNgp+7mqrhPRfxZS55 7w1gzwSkRsqdC3IiX2MSJ3Ru2WfVKTdk+CWvp6dFNKXTMTWLBhaJaHYXqvME4ffC 72b3SZxLW3PV6Lh9Xhs4q5GOeRCt0y2QoVZeT9mWATyEu2bA5uXlZQP+Lsp76xln Wq0Ba55VFRqyqOzOuMQEp5TlkaSxm7e+taOPX0Svs39n5VNaEJ3i66nzYaQbAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUoPqHyADrOudDG5pHhpiiCAf9d7AwHwYDVR0j BBgwFoAUGe15etu40KMYTSsC19HCNipv+H4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m NTFkNmM5Yy1lYWQ3LTQ1ZmUtYTE5YS00MjIzNWZjNTM3ODAvMC8xOUVENzk3QURC QjhEMEEzMTg0RDJCMDJEN0QxQzIzNjJBNkZGODdFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTlFRDc5N0FEQkI4RDBBMzE4NEQyQjAyRDdEMUMyMzYyQTZG Rjg3RS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Y1MWQ2YzljLWVhZDctNDVmZS1h MTlhLTQyMjM1ZmM1Mzc4MC8wLzMyMzAzMDMxM2E2NDY2MzAzYTM2MzA2MzMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNDM5MzMzNjM5LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8GDAMA0GCSqGSIb3DQEBCwUAA4IBAQB8DYMJCv7rBHbjbRc4jHVveRrD96uK0E2N iA314qZJ7yR4eTXCsV0HBv0rntF1zp2AfVWnzqJb1D6RhEoW2hXFAbShaq9lEWvl HofWzdvqeQSXnc/sk+ijsLK2FiC/FrHvZVfzu1vypz8hlBLwMyQkK4wNqkCnF0JD eMMhT4xr+m5hZxs0+Gy1wS+jS4TNgOQ9VQUGObkNryXlz8NG1CvzHcueGDQ0Xaxw msVhxGy44UvWUS5InTFrN9vLALSd3sx/nlsJod7b5AG3+YumRaNIViXLVQebsPfq 7WYx2SWcS35qZArK0AuMWELINFJhdHU1lpV/aXAXL/o5CWU3/0wf -----END CERTIFICATE-----Generated at Fri May 9 05:57:09 2025 by rpki-client