$ rpki-client -vvf repo-rpki.idnic.net/repo/2c280af3-aa1d-4271-8c06-a3fa28898426/0/323030313a6466343a3763303a3a2f34382d3438203d3e20313531353735.roa File: 323030313a6466343a3763303a3a2f34382d3438203d3e20313531353735.roa (raw, json) Hash identifier: khEVLFQtH+a45cc9yGf67pi2XkwhJ0LBpc+mc2azWiQ= Subject key identifier: 11:40:71:C1:26:7D:BA:D4:5A:86:CD:D5:95:19:9E:DD:28:C0:9C:4D Certificate issuer: /CN=4AA76DED689FD4420809D0962087A03BCF018FEA Certificate serial: 5AC336FDBFD70326F3B7CEE261D28A06FC70E378 Authority key identifier: 4A:A7:6D:ED:68:9F:D4:42:08:09:D0:96:20:87:A0:3B:CF:01:8F:EA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4AA76DED689FD4420809D0962087A03BCF018FEA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2c280af3-aa1d-4271-8c06-a3fa28898426/0/323030313a6466343a3763303a3a2f34382d3438203d3e20313531353735.roa Signing time: Thu 12 Jun 2025 08:00:00 +0000 ROA not before: Thu 12 Jun 2025 07:55:00 +0000 ROA not after: Thu 11 Jun 2026 08:00:00 +0000 asID: 151575 IP address blocks: 2001:df4:7c0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2c280af3-aa1d-4271-8c06-a3fa28898426/0/4AA76DED689FD4420809D0962087A03BCF018FEA.crl rsync://repo-rpki.idnic.net/repo/2c280af3-aa1d-4271-8c06-a3fa28898426/0/4AA76DED689FD4420809D0962087A03BCF018FEA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4AA76DED689FD4420809D0962087A03BCF018FEA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Jun 2025 04:05:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:c3:36:fd:bf:d7:03:26:f3:b7:ce:e2:61:d2:8a:06:fc:70:e3:78 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4AA76DED689FD4420809D0962087A03BCF018FEA Validity Not Before: Jun 12 07:55:00 2025 GMT Not After : Jun 11 08:00:00 2026 GMT Subject: CN=114071C1267DBAD45A86CDD595199EDD28C09C4D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:c0:c0:12:55:28:f2:38:3f:98:3f:a7:cb:3c: d9:32:a8:80:01:1f:a6:dc:ed:bd:c7:10:77:87:66: 34:47:6d:1b:31:bf:6e:a1:49:3f:49:58:7a:57:c7: 8f:b7:4e:65:40:d1:80:d3:8a:dd:70:9c:8e:27:57: 13:a0:f3:7a:80:40:eb:b1:e7:66:c3:53:48:04:01: ef:72:2e:d0:01:f8:6f:94:32:7d:ba:7b:57:96:3c: 95:69:48:a5:78:8f:a4:f2:55:82:fc:6c:bb:0c:74: 18:fe:8a:a2:fb:3e:d2:1e:31:d2:4d:bd:17:2a:b4: 3b:65:5a:24:b5:33:7e:c0:87:c7:3c:b7:4c:09:40: dd:11:a7:de:d1:41:39:ee:b0:0e:08:0f:7c:37:3a: 08:03:43:75:bb:6a:d5:27:d8:03:3b:4a:37:f5:17: 7e:39:36:34:d6:27:2e:dd:2e:41:d5:fa:7a:47:c7: 38:f8:08:5f:e1:fe:25:39:af:d3:9c:fb:ff:21:8a: f2:6b:60:11:9b:82:0a:ed:af:c1:5a:3c:90:ae:24: 2e:38:fc:3a:d7:a9:29:0e:f9:a9:7e:a0:79:9e:b5: f4:9e:f2:32:5b:bb:d6:35:74:75:ff:bb:d9:83:94: 2b:f2:fa:8f:51:1e:84:23:e2:47:bf:38:d4:86:1b: b8:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:40:71:C1:26:7D:BA:D4:5A:86:CD:D5:95:19:9E:DD:28:C0:9C:4D X509v3 Authority Key Identifier: keyid:4A:A7:6D:ED:68:9F:D4:42:08:09:D0:96:20:87:A0:3B:CF:01:8F:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2c280af3-aa1d-4271-8c06-a3fa28898426/0/4AA76DED689FD4420809D0962087A03BCF018FEA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4AA76DED689FD4420809D0962087A03BCF018FEA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2c280af3-aa1d-4271-8c06-a3fa28898426/0/323030313a6466343a3763303a3a2f34382d3438203d3e20313531353735.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df4:7c0::/48 Signature Algorithm: sha256WithRSAEncryption 72:7b:bc:0c:f0:f2:9c:74:30:46:d3:75:7b:31:33:63:4f:c3: 60:eb:95:42:4a:e3:a8:53:d0:3b:ee:d1:e0:c4:e6:2c:e4:6a: 65:8b:52:88:1e:f2:58:13:3a:48:ac:32:46:1b:9d:95:0f:da: cd:02:bc:7e:01:0b:52:38:b6:80:54:60:78:84:4c:15:75:db: 65:b3:35:6a:bb:20:d6:22:99:57:1e:d8:b5:11:24:a4:81:73: bb:3f:6a:12:ab:e8:38:1a:54:36:91:7d:d4:44:5e:00:3d:a6: f9:d3:99:f6:c3:1f:cb:df:fe:4b:c6:b8:06:bf:a4:9b:74:c9: 6a:b0:65:71:af:aa:94:ae:15:90:69:d2:c7:13:15:0b:7e:49: 53:1c:a3:f4:a1:c8:06:f6:3b:4b:cf:44:fa:13:7d:26:d4:7d: 98:81:6d:b7:bb:05:1c:26:dd:7c:ca:cb:fe:f2:fd:ba:d8:41: f0:3b:59:ee:ef:1a:07:35:76:e6:60:ef:9d:0b:da:16:b0:36: 8a:e2:46:8b:8d:7d:a1:3e:9e:7d:6f:f0:3b:ff:35:11:54:36: b4:56:84:32:ca:aa:f7:2d:cd:ee:59:eb:a0:f3:f5:ee:3d:ce: 50:63:21:d4:86:81:00:12:fc:b4:30:07:bd:1d:ad:ee:f1:9d: 44:c2:4c:6f -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUWsM2/b/XAybzt87iYdKKBvxw43gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEFBNzZERUQ2ODlGRDQ0MjA4MDlEMDk2MjA4N0EwM0JD RjAxOEZFQTAeFw0yNTA2MTIwNzU1MDBaFw0yNjA2MTEwODAwMDBaMDMxMTAvBgNV BAMTKDExNDA3MUMxMjY3REJBRDQ1QTg2Q0RENTk1MTk5RUREMjhDMDlDNEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEwMASVSjyOD+YP6fLPNkyqIAB H6bc7b3HEHeHZjRHbRsxv26hST9JWHpXx4+3TmVA0YDTit1wnI4nVxOg83qAQOux 52bDU0gEAe9yLtAB+G+UMn26e1eWPJVpSKV4j6TyVYL8bLsMdBj+iqL7PtIeMdJN vRcqtDtlWiS1M37Ah8c8t0wJQN0Rp97RQTnusA4ID3w3OggDQ3W7atUn2AM7Sjf1 F345NjTWJy7dLkHV+npHxzj4CF/h/iU5r9Oc+/8hivJrYBGbggrtr8FaPJCuJC44 /DrXqSkO+al+oHmetfSe8jJbu9Y1dHX/u9mDlCvy+o9RHoQj4ke/ONSGG7hjAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUEUBxwSZ9utRahs3VlRme3SjAnE0wHwYDVR0j BBgwFoAUSqdt7Wif1EIICdCWIIegO88Bj+owDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y YzI4MGFmMy1hYTFkLTQyNzEtOGMwNi1hM2ZhMjg4OTg0MjYvMC80QUE3NkRFRDY4 OUZENDQyMDgwOUQwOTYyMDg3QTAzQkNGMDE4RkVBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEFBNzZERUQ2ODlGRDQ0MjA4MDlEMDk2MjA4N0EwM0JDRjAx OEZFQS5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJjMjgwYWYzLWFhMWQtNDI3MS04 YzA2LWEzZmEyODg5ODQyNi8wLzMyMzAzMDMxM2E2NDY2MzQzYTM3NjMzMDNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzUzMTM1MzczNS5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACABDfQH wDANBgkqhkiG9w0BAQsFAAOCAQEAcnu8DPDynHQwRtN1ezEzY0/DYOuVQkrjqFPQ O+7R4MTmLORqZYtSiB7yWBM6SKwyRhudlQ/azQK8fgELUji2gFRgeIRMFXXbZbM1 arsg1iKZVx7YtREkpIFzuz9qEqvoOBpUNpF91EReAD2m+dOZ9sMfy9/+S8a4Br+k m3TJarBlca+qlK4VkGnSxxMVC35JUxyj9KHIBvY7S89E+hN9JtR9mIFtt7sFHCbd fMrL/vL9uthB8DtZ7u8aBzV25mDvnQvaFrA2iuJGi419oT6efW/wO/81EVQ2tFaE Msqq9y3N7lnroPP17j3OUGMh1IaBABL8tDAHvR2t7vGdRMJMbw== -----END CERTIFICATE-----Generated at Tue Jun 17 02:11:07 2025 by rpki-client