$ rpki-client -vvf repo-rpki.idnic.net/repo/0ec677fd-d569-4cc5-a563-9b0f248b1af1/1/323030313a6466333a653563303a3a2f34382d3438203d3e20313532383231.roa File: 323030313a6466333a653563303a3a2f34382d3438203d3e20313532383231.roa (raw, json) Hash identifier: qxwzYie9RBuV/7W0nohtPX4U19ZjLN0Jy/HLrDrkfAc= Subject key identifier: A9:2E:05:A2:3F:0E:84:DD:79:55:68:F1:7B:AE:59:1A:79:90:CF:C9 Certificate issuer: /CN=E708C977B06ACFAE8BAFC6B219E5A4585136C002 Certificate serial: 01D8DA570969CF0F601D88C1FD74C4214D7FC363 Authority key identifier: E7:08:C9:77:B0:6A:CF:AE:8B:AF:C6:B2:19:E5:A4:58:51:36:C0:02 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E708C977B06ACFAE8BAFC6B219E5A4585136C002.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0ec677fd-d569-4cc5-a563-9b0f248b1af1/1/323030313a6466333a653563303a3a2f34382d3438203d3e20313532383231.roa Signing time: Mon 21 Jul 2025 21:00:00 +0000 ROA not before: Mon 21 Jul 2025 20:55:00 +0000 ROA not after: Mon 20 Jul 2026 21:00:00 +0000 asID: 152821 IP address blocks: 2001:df3:e5c0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0ec677fd-d569-4cc5-a563-9b0f248b1af1/1/E708C977B06ACFAE8BAFC6B219E5A4585136C002.crl rsync://repo-rpki.idnic.net/repo/0ec677fd-d569-4cc5-a563-9b0f248b1af1/1/E708C977B06ACFAE8BAFC6B219E5A4585136C002.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E708C977B06ACFAE8BAFC6B219E5A4585136C002.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 09 Aug 2025 17:01:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:d8:da:57:09:69:cf:0f:60:1d:88:c1:fd:74:c4:21:4d:7f:c3:63 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E708C977B06ACFAE8BAFC6B219E5A4585136C002 Validity Not Before: Jul 21 20:55:00 2025 GMT Not After : Jul 20 21:00:00 2026 GMT Subject: CN=A92E05A23F0E84DD795568F17BAE591A7990CFC9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:62:bd:fe:d9:7e:1a:b6:80:44:a3:ee:a5:f0: 9f:b6:62:02:91:a1:2c:b1:62:98:32:0f:f4:51:b3: d9:a1:15:02:38:3a:23:ac:07:7e:5c:5e:61:8e:04: b4:14:f1:bf:73:08:91:74:61:b1:9e:11:9c:af:1c: 9a:5f:68:7c:cc:1e:12:57:d9:4b:36:d8:b6:18:14: 1e:c5:cc:73:c4:43:21:91:4d:37:d8:fb:74:e1:47: b2:da:ed:a7:e4:4e:39:a8:9a:aa:a6:3f:f9:13:7e: fe:f8:ab:10:97:b9:79:dc:e3:16:5a:b6:63:16:f5: 58:c2:cf:a4:7d:64:cb:aa:71:69:05:a4:7e:23:46: c3:3c:6f:18:85:e1:63:02:8f:25:1b:21:4b:d4:25: 5f:51:07:17:78:47:5f:85:d5:f3:f6:57:cf:27:18: 4f:d7:17:3e:ba:44:4e:15:76:5d:32:92:e9:65:03: 7e:18:2a:6e:2e:fb:45:fd:11:44:a1:c0:d6:39:1f: 7c:3e:96:72:95:bd:af:44:15:1a:60:0e:9b:d5:ec: 17:38:49:9b:07:ca:4d:19:a0:01:99:fd:3b:ce:3e: 92:da:45:24:3c:48:27:b2:77:49:fe:d0:9a:bc:c2: 11:7b:e8:40:5f:1c:eb:a1:67:a9:3b:a9:ae:4a:db: c2:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:2E:05:A2:3F:0E:84:DD:79:55:68:F1:7B:AE:59:1A:79:90:CF:C9 X509v3 Authority Key Identifier: keyid:E7:08:C9:77:B0:6A:CF:AE:8B:AF:C6:B2:19:E5:A4:58:51:36:C0:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0ec677fd-d569-4cc5-a563-9b0f248b1af1/1/E708C977B06ACFAE8BAFC6B219E5A4585136C002.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E708C977B06ACFAE8BAFC6B219E5A4585136C002.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0ec677fd-d569-4cc5-a563-9b0f248b1af1/1/323030313a6466333a653563303a3a2f34382d3438203d3e20313532383231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df3:e5c0::/48 Signature Algorithm: sha256WithRSAEncryption 82:1d:36:e8:d4:16:1e:1f:5e:10:24:8c:b0:3e:de:5b:e7:aa: e6:c7:6f:bb:3f:b4:ea:6d:8b:4e:bf:72:17:a9:d8:94:4b:ca: 00:55:c6:77:52:28:a7:51:91:7a:11:bd:d9:ea:4e:32:55:91: e4:8c:50:54:f1:f2:b6:5e:ce:05:bf:4e:27:35:e7:48:3d:74: 75:39:e8:e8:19:64:e1:4f:6c:2b:bc:eb:7e:c1:6e:97:3d:d1: ad:ec:97:5f:fa:7e:34:fa:5b:62:da:f1:73:ea:d0:39:99:e0: 48:dd:fd:24:6d:e1:32:71:46:1d:36:11:63:1b:ec:bf:35:e6: 0d:fb:5b:73:1e:15:a9:3a:5c:e1:f3:fe:a5:4e:e0:7c:f4:a0: 2d:32:0b:ed:2e:24:07:fb:dc:75:56:11:6a:5c:05:f1:2f:77: 2e:03:5e:b6:cc:51:15:67:5b:8b:00:2a:3b:f6:14:d3:b4:c2: cd:6e:20:5e:9d:29:4e:ea:1b:3f:bd:5e:1c:9b:7c:18:95:7b: b9:65:14:75:3a:fb:bc:d4:63:d3:01:bd:0c:e4:59:4a:03:d1: 6a:d4:51:b1:02:22:4d:5d:9a:83:7a:f9:7a:b9:46:7c:74:5f: 41:73:d5:e1:e1:aa:ce:69:7a:96:32:fd:ac:0a:04:60:6b:7b: db:d6:28:13 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUAdjaVwlpzw9gHYjB/XTEIU1/w2MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTcwOEM5NzdCMDZBQ0ZBRThCQUZDNkIyMTlFNUE0NTg1 MTM2QzAwMjAeFw0yNTA3MjEyMDU1MDBaFw0yNjA3MjAyMTAwMDBaMDMxMTAvBgNV BAMTKEE5MkUwNUEyM0YwRTg0REQ3OTU1NjhGMTdCQUU1OTFBNzk5MENGQzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDkYr3+2X4atoBEo+6l8J+2YgKR oSyxYpgyD/RRs9mhFQI4OiOsB35cXmGOBLQU8b9zCJF0YbGeEZyvHJpfaHzMHhJX 2Us22LYYFB7FzHPEQyGRTTfY+3ThR7La7afkTjmomqqmP/kTfv74qxCXuXnc4xZa tmMW9VjCz6R9ZMuqcWkFpH4jRsM8bxiF4WMCjyUbIUvUJV9RBxd4R1+F1fP2V88n GE/XFz66RE4Vdl0ykullA34YKm4u+0X9EUShwNY5H3w+lnKVva9EFRpgDpvV7Bc4 SZsHyk0ZoAGZ/TvOPpLaRSQ8SCeyd0n+0Jq8whF76EBfHOuhZ6k7qa5K28JrAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUqS4Foj8OhN15VWjxe65ZGnmQz8kwHwYDVR0j BBgwFoAU5wjJd7Bqz66Lr8ayGeWkWFE2wAIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w ZWM2NzdmZC1kNTY5LTRjYzUtYTU2My05YjBmMjQ4YjFhZjEvMS9FNzA4Qzk3N0Iw NkFDRkFFOEJBRkM2QjIxOUU1QTQ1ODUxMzZDMDAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRTcwOEM5NzdCMDZBQ0ZBRThCQUZDNkIyMTlFNUE0NTg1MTM2 QzAwMi5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBlYzY3N2ZkLWQ1NjktNGNjNS1h NTYzLTliMGYyNDhiMWFmMS8xLzMyMzAzMDMxM2E2NDY2MzMzYTY1MzU2MzMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNTMyMzgzMjMxLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8+XAMA0GCSqGSIb3DQEBCwUAA4IBAQCCHTbo1BYeH14QJIywPt5b56rmx2+7P7Tq bYtOv3IXqdiUS8oAVcZ3UiinUZF6Eb3Z6k4yVZHkjFBU8fK2Xs4Fv04nNedIPXR1 OejoGWThT2wrvOt+wW6XPdGt7Jdf+n40+lti2vFz6tA5meBI3f0kbeEycUYdNhFj G+y/NeYN+1tzHhWpOlzh8/6lTuB89KAtMgvtLiQH+9x1VhFqXAXxL3cuA162zFEV Z1uLACo79hTTtMLNbiBenSlO6hs/vV4cm3wYlXu5ZRR1Ovu81GPTAb0M5FlKA9Fq 1FGxAiJNXZqDevl6uUZ8dF9Bc9Xh4arOaXqWMv2sCgRga3vb1igT -----END CERTIFICATE-----Generated at Thu Aug 7 23:55:55 2025 by rpki-client