$ rpki-client -vvf repo-rpki.idnic.net/repo/3c93c25c-ce55-4870-8169-5eae8d9dfbc1/0/323030313a6466333a3738303a3a2f34382d3438203d3e20313430303235.roa File: 323030313a6466333a3738303a3a2f34382d3438203d3e20313430303235.roa (raw, json) Hash identifier: peJ67ixLv6wOxbNwTzpazMnzEKzYxMtdAI8w89zlkC0= Subject key identifier: 67:AF:6F:75:95:1A:64:3C:D2:AC:9B:5F:DF:6A:A5:73:8C:C1:59:72 Certificate issuer: /CN=82BBF3364DDD646942F4CAE0579F132D84194FE2 Certificate serial: 24F0E7E32EFC726B0E497A24FA2DB0866FE76D48 Authority key identifier: 82:BB:F3:36:4D:DD:64:69:42:F4:CA:E0:57:9F:13:2D:84:19:4F:E2 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82BBF3364DDD646942F4CAE0579F132D84194FE2.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3c93c25c-ce55-4870-8169-5eae8d9dfbc1/0/323030313a6466333a3738303a3a2f34382d3438203d3e20313430303235.roa Signing time: Fri 01 Aug 2025 08:00:00 +0000 ROA not before: Fri 01 Aug 2025 07:55:00 +0000 ROA not after: Fri 31 Jul 2026 08:00:00 +0000 asID: 140025 IP address blocks: 2001:df3:780::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3c93c25c-ce55-4870-8169-5eae8d9dfbc1/0/82BBF3364DDD646942F4CAE0579F132D84194FE2.crl rsync://repo-rpki.idnic.net/repo/3c93c25c-ce55-4870-8169-5eae8d9dfbc1/0/82BBF3364DDD646942F4CAE0579F132D84194FE2.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82BBF3364DDD646942F4CAE0579F132D84194FE2.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 Aug 2025 04:09:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:f0:e7:e3:2e:fc:72:6b:0e:49:7a:24:fa:2d:b0:86:6f:e7:6d:48 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=82BBF3364DDD646942F4CAE0579F132D84194FE2 Validity Not Before: Aug 1 07:55:00 2025 GMT Not After : Jul 31 08:00:00 2026 GMT Subject: CN=67AF6F75951A643CD2AC9B5FDF6AA5738CC15972 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:82:77:25:f5:81:16:c4:fe:c9:08:95:80:b1: 69:35:b7:a7:b8:b5:69:fd:b5:40:d4:09:3a:02:23: 0b:e9:46:26:11:f8:0e:06:5d:c3:04:d8:24:6b:3c: b1:0c:69:10:e4:45:ae:ff:77:ee:c0:a5:e8:de:d8: c8:5f:f2:26:7a:2e:26:3e:2e:8f:df:9c:9f:1b:3e: 73:eb:58:2e:d2:d9:73:f2:85:e1:f8:44:82:e6:95: 6d:77:f0:ca:98:1e:1d:b2:cc:a5:e6:2c:c4:2c:8d: 0a:ee:6f:24:b1:55:6b:d6:04:4d:89:13:cb:0f:40: 9e:4f:74:7a:ad:26:28:78:80:1f:06:d2:92:96:00: 95:fb:dd:80:4d:f9:c3:9e:8e:d0:e7:a6:31:26:c9: 25:9e:d0:3b:d0:32:c6:d6:89:48:91:e9:ac:86:3c: 62:ef:f8:43:78:b3:27:92:40:68:96:17:79:b4:8f: 97:13:41:e5:f5:21:5b:bf:2f:e5:c3:40:df:57:9b: 13:7d:28:e3:2d:d9:59:cb:f4:6f:ea:b5:ba:2a:14: a2:f5:86:36:60:c9:32:7c:51:8a:87:e5:af:ba:0b: 6a:3d:59:e5:f3:c2:f4:10:0b:8f:74:a6:df:40:38: 50:08:29:6d:3c:c6:39:49:61:3c:50:8d:06:60:fb: 9d:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:AF:6F:75:95:1A:64:3C:D2:AC:9B:5F:DF:6A:A5:73:8C:C1:59:72 X509v3 Authority Key Identifier: keyid:82:BB:F3:36:4D:DD:64:69:42:F4:CA:E0:57:9F:13:2D:84:19:4F:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3c93c25c-ce55-4870-8169-5eae8d9dfbc1/0/82BBF3364DDD646942F4CAE0579F132D84194FE2.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82BBF3364DDD646942F4CAE0579F132D84194FE2.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3c93c25c-ce55-4870-8169-5eae8d9dfbc1/0/323030313a6466333a3738303a3a2f34382d3438203d3e20313430303235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df3:780::/48 Signature Algorithm: sha256WithRSAEncryption 24:ec:99:ee:2a:fd:c9:fd:2a:b0:cd:93:a8:68:eb:2d:70:83: 3f:3a:9b:61:36:29:35:84:c0:13:cc:29:46:62:14:13:f1:4d: 67:45:07:bd:5f:98:e0:7d:12:8e:04:76:31:8a:f6:ff:c1:d3: e2:5f:71:e9:fd:85:29:75:09:c7:27:b6:b5:49:17:c7:b0:ce: f6:7c:d0:cc:99:35:95:8d:a9:ba:7e:74:ec:8d:87:5e:e5:16: 47:72:82:18:99:45:76:b9:40:f4:1f:8c:ef:46:8a:26:11:75: 29:e2:d0:b2:f4:3a:81:d8:a0:62:4f:c0:db:d1:6f:24:cb:91: bf:61:ce:d1:93:67:b7:13:e1:48:d4:55:c1:91:70:48:51:fb: 92:7c:74:95:3e:4d:df:91:d0:6c:52:72:2b:0d:18:4e:8d:5e: eb:5f:d4:4c:70:7f:70:83:9f:52:e0:5d:83:bd:fc:62:16:e5: 72:19:64:0f:0f:1d:8a:ae:fb:86:6d:80:a3:cb:f5:f5:14:54: cf:54:4b:91:85:a7:aa:57:fa:7d:d2:1a:4a:4a:c2:5a:fa:d8: 3c:40:99:4e:99:d5:f1:eb:a7:5f:3f:86:16:be:3a:4c:04:1b: f5:2d:ce:7d:6b:9c:c1:e2:65:25:d6:e5:cb:6c:2f:34:7b:4a: 47:b0:15:63 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUJPDn4y78cmsOSXok+i2whm/nbUgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODJCQkYzMzY0RERENjQ2OTQyRjRDQUUwNTc5RjEzMkQ4 NDE5NEZFMjAeFw0yNTA4MDEwNzU1MDBaFw0yNjA3MzEwODAwMDBaMDMxMTAvBgNV BAMTKDY3QUY2Rjc1OTUxQTY0M0NEMkFDOUI1RkRGNkFBNTczOENDMTU5NzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+gncl9YEWxP7JCJWAsWk1t6e4 tWn9tUDUCToCIwvpRiYR+A4GXcME2CRrPLEMaRDkRa7/d+7Apeje2Mhf8iZ6LiY+ Lo/fnJ8bPnPrWC7S2XPyheH4RILmlW138MqYHh2yzKXmLMQsjQrubySxVWvWBE2J E8sPQJ5PdHqtJih4gB8G0pKWAJX73YBN+cOejtDnpjEmySWe0DvQMsbWiUiR6ayG PGLv+EN4syeSQGiWF3m0j5cTQeX1IVu/L+XDQN9XmxN9KOMt2VnL9G/qtboqFKL1 hjZgyTJ8UYqH5a+6C2o9WeXzwvQQC490pt9AOFAIKW08xjlJYTxQjQZg+52LAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUZ69vdZUaZDzSrJtf32qlc4zBWXIwHwYDVR0j BBgwFoAUgrvzNk3dZGlC9MrgV58TLYQZT+IwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YzkzYzI1Yy1jZTU1LTQ4NzAtODE2OS01ZWFlOGQ5ZGZiYzEvMC84MkJCRjMzNjRE REQ2NDY5NDJGNENBRTA1NzlGMTMyRDg0MTk0RkUyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODJCQkYzMzY0RERENjQ2OTQyRjRDQUUwNTc5RjEzMkQ4NDE5 NEZFMi5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNjOTNjMjVjLWNlNTUtNDg3MC04 MTY5LTVlYWU4ZDlkZmJjMS8wLzMyMzAzMDMxM2E2NDY2MzMzYTM3MzgzMDNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzQzMDMwMzIzNS5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACABDfMH gDANBgkqhkiG9w0BAQsFAAOCAQEAJOyZ7ir9yf0qsM2TqGjrLXCDPzqbYTYpNYTA E8wpRmIUE/FNZ0UHvV+Y4H0SjgR2MYr2/8HT4l9x6f2FKXUJxye2tUkXx7DO9nzQ zJk1lY2pun507I2HXuUWR3KCGJlFdrlA9B+M70aKJhF1KeLQsvQ6gdigYk/A29Fv JMuRv2HO0ZNntxPhSNRVwZFwSFH7knx0lT5N35HQbFJyKw0YTo1e61/UTHB/cIOf UuBdg738YhblchlkDw8diq77hm2Ao8v19RRUz1RLkYWnqlf6fdIaSkrCWvrYPECZ TpnV8eunXz+GFr46TAQb9S3OfWucweJlJdbly2wvNHtKR7AVYw== -----END CERTIFICATE-----Generated at Mon Aug 11 01:45:23 2025 by rpki-client