$ rpki-client -vvf repo-rpki.idnic.net/repo/14ed8d6c-f0fa-47cc-aeaa-b4e3ee116882/1/323030313a6466333a643234303a3a2f34382d3438203d3e20313336303839.roa File: 323030313a6466333a643234303a3a2f34382d3438203d3e20313336303839.roa (raw, json) Hash identifier: M+NRbpCUskaX1vYH/4jaIAMXTEk8snO9JlvCQ9TdRYk= Subject key identifier: 96:AB:0D:53:90:65:D2:F5:52:AB:35:6E:0B:65:7B:9E:12:DC:C3:70 Certificate issuer: /CN=780A63837871EA9CE6D017414F6F1C5ABA3EF7D9 Certificate serial: 0A0A3D03C62CDB7E58C34CF45413D72EEB0B796B Authority key identifier: 78:0A:63:83:78:71:EA:9C:E6:D0:17:41:4F:6F:1C:5A:BA:3E:F7:D9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/780A63837871EA9CE6D017414F6F1C5ABA3EF7D9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/14ed8d6c-f0fa-47cc-aeaa-b4e3ee116882/1/323030313a6466333a643234303a3a2f34382d3438203d3e20313336303839.roa Signing time: Thu 24 Apr 2025 13:00:32 +0000 ROA not before: Thu 24 Apr 2025 12:55:32 +0000 ROA not after: Thu 23 Apr 2026 13:00:32 +0000 asID: 136089 IP address blocks: 2001:df3:d240::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/14ed8d6c-f0fa-47cc-aeaa-b4e3ee116882/1/780A63837871EA9CE6D017414F6F1C5ABA3EF7D9.crl rsync://repo-rpki.idnic.net/repo/14ed8d6c-f0fa-47cc-aeaa-b4e3ee116882/1/780A63837871EA9CE6D017414F6F1C5ABA3EF7D9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/780A63837871EA9CE6D017414F6F1C5ABA3EF7D9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 07:10:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:0a:3d:03:c6:2c:db:7e:58:c3:4c:f4:54:13:d7:2e:eb:0b:79:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=780A63837871EA9CE6D017414F6F1C5ABA3EF7D9 Validity Not Before: Apr 24 12:55:32 2025 GMT Not After : Apr 23 13:00:32 2026 GMT Subject: CN=96AB0D539065D2F552AB356E0B657B9E12DCC370 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:be:4f:6a:28:83:8d:47:24:02:db:3f:0a:05: e2:50:cb:87:bf:e6:01:3c:48:f0:f8:77:97:63:6f: 84:46:78:77:13:fc:ac:dc:f7:d6:20:db:98:c6:ca: 18:20:a3:e4:e0:71:51:d4:4f:05:7c:71:75:8d:0d: f8:23:fc:cf:e2:34:c2:81:17:68:e5:60:f9:7f:85: d2:47:18:b2:29:30:cd:3b:f8:51:89:82:8f:1d:a3: 88:86:aa:92:c3:28:63:b1:e2:1f:33:17:e8:15:17: d1:e5:11:3a:90:0b:41:b4:28:28:9f:32:bb:44:a1: f6:0d:25:10:67:67:e5:d1:b8:2b:17:ca:08:58:76: 2d:70:f5:4a:12:3b:a9:d8:1c:f5:39:7b:6e:a6:24: 0d:1e:80:8f:30:77:45:35:29:15:1c:d6:f2:fe:25: b9:94:d0:d9:5b:e4:93:05:50:c4:90:8e:7b:92:b2: 25:95:20:87:22:73:1d:39:e7:d3:e6:97:f5:02:1d: 62:5e:e0:68:2b:aa:c9:e5:dd:43:42:db:ff:61:13: 58:61:ea:70:1e:65:bd:1e:ee:79:dc:a2:f3:67:14: 33:85:5b:08:50:fa:98:07:51:ff:78:40:24:a2:33: c9:72:03:6d:dc:46:7d:38:a7:b1:a8:02:30:56:52: 56:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:AB:0D:53:90:65:D2:F5:52:AB:35:6E:0B:65:7B:9E:12:DC:C3:70 X509v3 Authority Key Identifier: keyid:78:0A:63:83:78:71:EA:9C:E6:D0:17:41:4F:6F:1C:5A:BA:3E:F7:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/14ed8d6c-f0fa-47cc-aeaa-b4e3ee116882/1/780A63837871EA9CE6D017414F6F1C5ABA3EF7D9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/780A63837871EA9CE6D017414F6F1C5ABA3EF7D9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/14ed8d6c-f0fa-47cc-aeaa-b4e3ee116882/1/323030313a6466333a643234303a3a2f34382d3438203d3e20313336303839.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df3:d240::/48 Signature Algorithm: sha256WithRSAEncryption 06:95:54:7b:68:34:1b:49:67:ed:1d:f6:38:f4:63:85:ff:79: 9e:cc:81:8d:16:4d:4c:61:7a:b9:dd:81:82:b4:86:1c:49:0b: 7f:9d:20:4a:34:7d:20:b2:c9:16:29:ed:dd:40:2f:ac:cb:fd: 81:97:c6:e2:cc:a3:95:4e:c1:b9:e7:6e:c7:11:a7:eb:a6:61: b6:54:e0:10:d6:0b:c2:06:56:a8:e7:4f:db:5b:57:66:fb:a7: f2:b1:ea:81:96:22:4a:29:3b:f3:5a:3a:90:9f:b9:7c:6e:07: 68:c6:bc:b0:e0:1c:92:75:dd:5c:2f:9a:ee:cc:2e:90:74:6a: e7:da:b6:97:08:87:d9:1e:a6:5f:52:12:0e:e2:b8:89:3b:2b: fe:35:de:45:9d:76:1b:f2:dd:1e:f3:5b:1c:2b:b5:d4:3c:95: 65:de:c1:07:49:b7:de:d5:ee:36:ef:ee:d5:c4:30:41:ea:cc: 2c:4e:2b:5e:44:e1:82:37:89:18:e4:f9:3d:a1:1c:ed:e9:68: f4:06:e1:5d:3b:97:8f:11:27:c8:31:a7:4e:ea:57:20:e8:7d: ac:9c:b1:d1:04:68:8c:01:48:53:a8:00:b4:a2:2d:14:11:63: 2b:d3:02:da:62:72:fe:01:93:98:45:f5:7f:ac:c3:0a:2a:04: dd:ed:82:5e -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUCgo9A8Ys235Yw0z0VBPXLusLeWswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzgwQTYzODM3ODcxRUE5Q0U2RDAxNzQxNEY2RjFDNUFC QTNFRjdEOTAeFw0yNTA0MjQxMjU1MzJaFw0yNjA0MjMxMzAwMzJaMDMxMTAvBgNV BAMTKDk2QUIwRDUzOTA2NUQyRjU1MkFCMzU2RTBCNjU3QjlFMTJEQ0MzNzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZvk9qKIONRyQC2z8KBeJQy4e/ 5gE8SPD4d5djb4RGeHcT/Kzc99Yg25jGyhggo+TgcVHUTwV8cXWNDfgj/M/iNMKB F2jlYPl/hdJHGLIpMM07+FGJgo8do4iGqpLDKGOx4h8zF+gVF9HlETqQC0G0KCif MrtEofYNJRBnZ+XRuCsXyghYdi1w9UoSO6nYHPU5e26mJA0egI8wd0U1KRUc1vL+ JbmU0Nlb5JMFUMSQjnuSsiWVIIcicx0559Pml/UCHWJe4Ggrqsnl3UNC2/9hE1hh 6nAeZb0e7nncovNnFDOFWwhQ+pgHUf94QCSiM8lyA23cRn04p7GoAjBWUlarAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUlqsNU5Bl0vVSqzVuC2V7nhLcw3AwHwYDVR0j BBgwFoAUeApjg3hx6pzm0BdBT28cWro+99kwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x NGVkOGQ2Yy1mMGZhLTQ3Y2MtYWVhYS1iNGUzZWUxMTY4ODIvMS83ODBBNjM4Mzc4 NzFFQTlDRTZEMDE3NDE0RjZGMUM1QUJBM0VGN0Q5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzgwQTYzODM3ODcxRUE5Q0U2RDAxNzQxNEY2RjFDNUFCQTNF RjdEOS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE0ZWQ4ZDZjLWYwZmEtNDdjYy1h ZWFhLWI0ZTNlZTExNjg4Mi8xLzMyMzAzMDMxM2E2NDY2MzMzYTY0MzIzNDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM2MzAzODM5LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 89JAMA0GCSqGSIb3DQEBCwUAA4IBAQAGlVR7aDQbSWftHfY49GOF/3mezIGNFk1M YXq53YGCtIYcSQt/nSBKNH0gsskWKe3dQC+sy/2Bl8bizKOVTsG5527HEafrpmG2 VOAQ1gvCBlao50/bW1dm+6fyseqBliJKKTvzWjqQn7l8bgdoxryw4BySdd1cL5ru zC6QdGrn2raXCIfZHqZfUhIO4riJOyv+Nd5FnXYb8t0e81scK7XUPJVl3sEHSbfe 1e427+7VxDBB6swsTiteROGCN4kY5Pk9oRzt6Wj0BuFdO5ePESfIMadO6lcg6H2s nLHRBGiMAUhTqAC0oi0UEWMr0wLaYnL+AZOYRfV/rMMKKgTd7YJe -----END CERTIFICATE-----Generated at Tue Apr 29 13:19:31 2025 by rpki-client