$ rpki-client -vvf repo-rpki.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/323030313a6466343a333638303a3a2f34382d3438203d3e20313430343536.roa File: 323030313a6466343a333638303a3a2f34382d3438203d3e20313430343536.roa (raw, json) Hash identifier: Hl8MdE/LfLP9veWjqyALsJsbBZo/BnkTdZYuAxUUNAQ= Subject key identifier: 4C:C2:5D:CE:A1:14:F6:FC:8D:68:BE:90:67:7A:62:16:67:3B:EA:2E Certificate issuer: /CN=523EE387D3C00A87B7E355ABF1EE524AADF74148 Certificate serial: 2D273A409C7BA85AF9364B0BC062697C16484B12 Authority key identifier: 52:3E:E3:87:D3:C0:0A:87:B7:E3:55:AB:F1:EE:52:4A:AD:F7:41:48 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/523EE387D3C00A87B7E355ABF1EE524AADF74148.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/323030313a6466343a333638303a3a2f34382d3438203d3e20313430343536.roa Signing time: Mon 02 Jun 2025 01:02:38 +0000 ROA not before: Mon 02 Jun 2025 00:57:38 +0000 ROA not after: Mon 01 Jun 2026 01:02:38 +0000 asID: 140456 IP address blocks: 2001:df4:3680::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/523EE387D3C00A87B7E355ABF1EE524AADF74148.crl rsync://repo-rpki.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/523EE387D3C00A87B7E355ABF1EE524AADF74148.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/523EE387D3C00A87B7E355ABF1EE524AADF74148.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 06 Nov 2025 03:48:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:27:3a:40:9c:7b:a8:5a:f9:36:4b:0b:c0:62:69:7c:16:48:4b:12 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=523EE387D3C00A87B7E355ABF1EE524AADF74148 Validity Not Before: Jun 2 00:57:38 2025 GMT Not After : Jun 1 01:02:38 2026 GMT Subject: CN=4CC25DCEA114F6FC8D68BE90677A6216673BEA2E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:03:45:e6:24:e2:3f:88:e1:22:08:3f:86:10: c5:14:31:c6:d1:e3:43:3b:f3:32:e3:f9:74:b3:21: 65:21:64:ce:ac:a2:d5:dd:b3:d9:de:06:b6:dc:c1: 46:30:a3:24:a9:e6:10:5d:94:13:6f:5c:1a:ba:08: cc:d1:94:da:5c:80:6a:59:ff:49:49:20:ce:d1:b4: 32:1f:e9:f9:7d:e2:92:81:2e:d2:b2:d4:22:42:10: 6d:e7:b4:f6:48:30:91:b9:5c:20:37:9a:18:0f:c0: 60:b4:54:98:d0:95:e7:c1:d3:09:0e:54:71:d2:23: 78:62:d7:1c:05:12:9a:d2:ab:18:b2:d3:32:f6:db: 3c:58:e7:a5:3e:5f:1f:5a:c7:c8:c3:0b:fd:83:d2: 49:16:3a:48:a7:59:a4:9a:0d:e4:de:b6:07:a0:6a: 2d:32:d2:a2:7d:88:d3:12:b5:4c:ad:ca:9c:c6:cc: c0:da:e3:50:a3:31:67:ba:0c:22:13:05:9c:db:eb: b4:51:2f:83:aa:ae:2a:ea:0a:46:96:c6:e1:68:57: 31:e7:07:df:89:7a:02:64:b3:e4:2b:03:eb:cc:12: 16:95:4c:bc:ad:a5:da:ae:09:16:10:42:89:77:ab: 9d:59:6d:4a:d6:74:da:01:df:15:9a:79:e9:f7:59: 86:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:C2:5D:CE:A1:14:F6:FC:8D:68:BE:90:67:7A:62:16:67:3B:EA:2E X509v3 Authority Key Identifier: keyid:52:3E:E3:87:D3:C0:0A:87:B7:E3:55:AB:F1:EE:52:4A:AD:F7:41:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/523EE387D3C00A87B7E355ABF1EE524AADF74148.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/523EE387D3C00A87B7E355ABF1EE524AADF74148.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/323030313a6466343a333638303a3a2f34382d3438203d3e20313430343536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df4:3680::/48 Signature Algorithm: sha256WithRSAEncryption 9a:d1:41:49:15:8b:64:37:9c:e1:fe:7c:49:6c:02:15:f0:c5: ad:35:f7:f2:be:5c:17:ef:98:7f:3a:70:3f:5c:e5:10:33:a4: f5:7c:1f:90:b7:d0:ae:07:2f:45:e3:e6:90:c9:23:38:9c:68: 17:df:70:38:5f:59:32:d1:48:56:1a:d7:74:20:51:8c:43:5b: 4f:b7:c6:fd:f1:eb:9c:36:a9:fa:92:bc:fd:d8:07:00:bb:d2: 77:e1:72:83:d9:eb:ed:49:e3:f9:ee:07:42:f9:b8:df:ba:54: 48:2f:73:8d:dd:33:64:d0:b9:9e:ce:ab:7c:10:76:ec:3e:a5: 90:4f:61:75:52:de:42:f2:bd:5f:c4:d2:c4:c5:b7:9b:23:44: 67:65:56:6b:f8:d3:21:88:77:13:99:62:17:da:39:5a:7b:fc: be:8c:fa:c6:e7:13:8e:25:4f:a6:55:9d:63:76:b6:9a:1a:59: 0a:26:9f:3d:72:de:84:7c:d8:0b:ba:59:58:a3:ea:a6:b7:55: ba:3b:ed:a6:8e:14:a1:a5:82:3f:3b:52:53:ac:7d:be:16:3b: 94:d0:72:8d:a7:95:6b:f8:84:5f:6d:27:4c:48:4c:b5:97:78: 4a:b1:33:d3:43:49:c7:21:21:1a:89:a5:c1:2f:bf:ed:fd:77: 07:c9:48:6d -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIULSc6QJx7qFr5NksLwGJpfBZISxIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTIzRUUzODdEM0MwMEE4N0I3RTM1NUFCRjFFRTUyNEFB REY3NDE0ODAeFw0yNTA2MDIwMDU3MzhaFw0yNjA2MDEwMTAyMzhaMDMxMTAvBgNV BAMTKDRDQzI1RENFQTExNEY2RkM4RDY4QkU5MDY3N0E2MjE2NjczQkVBMkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8A0XmJOI/iOEiCD+GEMUUMcbR 40M78zLj+XSzIWUhZM6sotXds9neBrbcwUYwoySp5hBdlBNvXBq6CMzRlNpcgGpZ /0lJIM7RtDIf6fl94pKBLtKy1CJCEG3ntPZIMJG5XCA3mhgPwGC0VJjQlefB0wkO VHHSI3hi1xwFEprSqxiy0zL22zxY56U+Xx9ax8jDC/2D0kkWOkinWaSaDeTetgeg ai0y0qJ9iNMStUytypzGzMDa41CjMWe6DCITBZzb67RRL4OqrirqCkaWxuFoVzHn B9+JegJks+QrA+vMEhaVTLytpdquCRYQQol3q51ZbUrWdNoB3xWaeen3WYYxAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUTMJdzqEU9vyNaL6QZ3piFmc76i4wHwYDVR0j BBgwFoAUUj7jh9PACoe341Wr8e5SSq33QUgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x YTk1MjBmZC04ZGU1LTRhNjktODVmMS1jNDQ4OTdhZTYxMjEvMC81MjNFRTM4N0Qz QzAwQTg3QjdFMzU1QUJGMUVFNTI0QUFERjc0MTQ4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTIzRUUzODdEM0MwMEE4N0I3RTM1NUFCRjFFRTUyNEFBREY3 NDE0OC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFhOTUyMGZkLThkZTUtNGE2OS04 NWYxLWM0NDg5N2FlNjEyMS8wLzMyMzAzMDMxM2E2NDY2MzQzYTMzMzYzODMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNDMwMzQzNTM2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 9DaAMA0GCSqGSIb3DQEBCwUAA4IBAQCa0UFJFYtkN5zh/nxJbAIV8MWtNffyvlwX 75h/OnA/XOUQM6T1fB+Qt9CuBy9F4+aQySM4nGgX33A4X1ky0UhWGtd0IFGMQ1tP t8b98eucNqn6krz92AcAu9J34XKD2evtSeP57gdC+bjfulRIL3ON3TNk0Lmezqt8 EHbsPqWQT2F1Ut5C8r1fxNLExbebI0RnZVZr+NMhiHcTmWIX2jlae/y+jPrG5xOO JU+mVZ1jdraaGlkKJp89ct6EfNgLullYo+qmt1W6O+2mjhShpYI/O1JTrH2+FjuU 0HKNp5Vr+IRfbSdMSEy1l3hKsTPTQ0nHISEaiaXBL7/t/XcHyUht -----END CERTIFICATE-----Generated at Tue Nov 4 16:51:51 2025 by rpki-client