$ rpki-client -vvf repo-rpki.idnic.net/repo/544cb8d8-1505-4682-9ddb-fcd86200b966/0/323030313a6466373a616130303a3a2f34382d3438203d3e20313333383030.roa File: 323030313a6466373a616130303a3a2f34382d3438203d3e20313333383030.roa (raw, json) Hash identifier: 2ZsS2VEgZnEWCXg+GRqI2uFHC4HL54ZPfTFqcd0guLc= Subject key identifier: A1:44:98:37:D5:06:53:07:61:56:BA:98:16:17:65:10:4B:FF:AE:00 Certificate issuer: /CN=ACCECE368F04142505940FF29F4DD361EEF4DFBA Certificate serial: 6160F2D8A290E62625EFAD5A95FB4CCC566A1BBE Authority key identifier: AC:CE:CE:36:8F:04:14:25:05:94:0F:F2:9F:4D:D3:61:EE:F4:DF:BA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ACCECE368F04142505940FF29F4DD361EEF4DFBA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/544cb8d8-1505-4682-9ddb-fcd86200b966/0/323030313a6466373a616130303a3a2f34382d3438203d3e20313333383030.roa Signing time: Thu 12 Jun 2025 09:02:22 +0000 ROA not before: Thu 12 Jun 2025 08:57:22 +0000 ROA not after: Thu 11 Jun 2026 09:02:22 +0000 asID: 133800 IP address blocks: 2001:df7:aa00::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/544cb8d8-1505-4682-9ddb-fcd86200b966/0/ACCECE368F04142505940FF29F4DD361EEF4DFBA.crl rsync://repo-rpki.idnic.net/repo/544cb8d8-1505-4682-9ddb-fcd86200b966/0/ACCECE368F04142505940FF29F4DD361EEF4DFBA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ACCECE368F04142505940FF29F4DD361EEF4DFBA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 13:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:60:f2:d8:a2:90:e6:26:25:ef:ad:5a:95:fb:4c:cc:56:6a:1b:be Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ACCECE368F04142505940FF29F4DD361EEF4DFBA Validity Not Before: Jun 12 08:57:22 2025 GMT Not After : Jun 11 09:02:22 2026 GMT Subject: CN=A1449837D50653076156BA98161765104BFFAE00 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:2f:d6:65:b3:9d:27:f3:bc:18:95:eb:e7:14: b0:f9:aa:07:1d:c7:3f:0e:90:79:00:61:f8:d8:41: dc:b1:a6:98:49:32:3c:a6:ec:9f:47:5d:32:61:5e: b9:42:11:84:a2:6a:40:f6:8d:a3:7c:c0:6a:b8:6b: 0c:a1:b8:95:0a:93:e4:03:aa:9e:1b:69:50:fc:bf: d8:3d:c4:e2:53:89:29:1f:9a:25:31:7d:f3:ec:10: b2:32:f8:a7:d2:b6:a4:43:93:97:d2:02:a1:26:29: 78:25:6b:4e:5b:b1:d7:be:79:ac:03:5f:4c:fc:92: 8e:27:49:81:0d:2e:56:19:8a:c6:19:31:e8:6a:af: 7e:27:43:3f:7f:58:86:2e:b5:79:2e:f0:a8:0b:9c: 98:00:42:ec:0e:65:c3:ab:1f:30:df:2c:8a:46:de: 59:3d:ea:eb:84:0a:37:1b:fe:84:b7:51:0b:ab:16: f6:95:a7:9c:25:44:3e:89:58:7b:32:b6:2d:69:26: 97:ed:a1:7c:16:67:6d:85:c9:fc:6d:bd:c9:da:d6: 6e:9c:91:e5:9a:94:23:5e:84:73:02:da:79:01:ab: 5d:a0:a5:76:83:57:b9:5c:42:05:d1:56:72:09:3d: dc:39:38:5e:af:d4:c7:03:57:aa:7d:8f:e7:3b:64: bc:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:44:98:37:D5:06:53:07:61:56:BA:98:16:17:65:10:4B:FF:AE:00 X509v3 Authority Key Identifier: keyid:AC:CE:CE:36:8F:04:14:25:05:94:0F:F2:9F:4D:D3:61:EE:F4:DF:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/544cb8d8-1505-4682-9ddb-fcd86200b966/0/ACCECE368F04142505940FF29F4DD361EEF4DFBA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ACCECE368F04142505940FF29F4DD361EEF4DFBA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/544cb8d8-1505-4682-9ddb-fcd86200b966/0/323030313a6466373a616130303a3a2f34382d3438203d3e20313333383030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df7:aa00::/48 Signature Algorithm: sha256WithRSAEncryption 1b:8d:10:d3:d3:9e:a9:ea:67:8f:40:1b:04:61:1e:60:0b:12: ac:9a:a2:44:77:6b:ea:f1:df:53:f9:ec:19:d7:d5:93:71:00: ce:c3:0c:40:f4:d5:1f:ab:2f:53:4a:68:60:90:f4:fd:4a:8d: 0c:00:53:c7:95:8c:db:30:99:e9:65:5b:44:d0:4b:a3:f2:81: d0:b3:0f:0b:85:2d:f0:64:77:3c:d8:29:e8:af:0d:99:bd:2b: 4f:a5:08:86:1b:8c:b0:28:e6:e8:ce:53:44:28:c0:e0:fa:60: a7:a8:69:9e:63:f0:44:6a:64:3f:15:0c:7a:cd:11:98:5c:7e: d2:fd:87:bf:38:fa:4f:c8:8e:68:d5:9f:31:67:a5:70:29:3e: cd:98:a9:1f:21:23:27:47:4c:90:5a:52:78:d1:e8:64:aa:35: d3:ea:c8:22:7d:ba:c9:a5:47:36:89:0e:42:ff:d4:91:d6:ef: 65:bb:eb:17:be:e3:01:cb:b4:95:da:04:fd:f3:1d:41:8f:ed: 3f:f9:6b:ec:11:3c:33:38:29:90:6c:fc:7c:eb:b6:1b:cd:f4: 51:34:9e:5b:06:d0:f0:05:2a:fe:a3:b2:fd:69:85:fe:cb:70: 24:64:12:20:4a:1e:fd:10:85:ef:bf:8d:3e:9a:72:c4:46:7f: 4d:d0:3d:f7 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUYWDy2KKQ5iYl761alftMzFZqG74wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUNDRUNFMzY4RjA0MTQyNTA1OTQwRkYyOUY0REQzNjFF RUY0REZCQTAeFw0yNTA2MTIwODU3MjJaFw0yNjA2MTEwOTAyMjJaMDMxMTAvBgNV BAMTKEExNDQ5ODM3RDUwNjUzMDc2MTU2QkE5ODE2MTc2NTEwNEJGRkFFMDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4L9Zls50n87wYlevnFLD5qgcd xz8OkHkAYfjYQdyxpphJMjym7J9HXTJhXrlCEYSiakD2jaN8wGq4awyhuJUKk+QD qp4baVD8v9g9xOJTiSkfmiUxffPsELIy+KfStqRDk5fSAqEmKXgla05bsde+eawD X0z8ko4nSYENLlYZisYZMehqr34nQz9/WIYutXku8KgLnJgAQuwOZcOrHzDfLIpG 3lk96uuECjcb/oS3UQurFvaVp5wlRD6JWHsyti1pJpftoXwWZ22Fyfxtvcna1m6c keWalCNehHMC2nkBq12gpXaDV7lcQgXRVnIJPdw5OF6v1McDV6p9j+c7ZLwpAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUoUSYN9UGUwdhVrqYFhdlEEv/rgAwHwYDVR0j BBgwFoAUrM7ONo8EFCUFlA/yn03TYe7037owDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 NDRjYjhkOC0xNTA1LTQ2ODItOWRkYi1mY2Q4NjIwMGI5NjYvMC9BQ0NFQ0UzNjhG MDQxNDI1MDU5NDBGRjI5RjRERDM2MUVFRjRERkJBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUNDRUNFMzY4RjA0MTQyNTA1OTQwRkYyOUY0REQzNjFFRUY0 REZCQS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU0NGNiOGQ4LTE1MDUtNDY4Mi05 ZGRiLWZjZDg2MjAwYjk2Ni8wLzMyMzAzMDMxM2E2NDY2MzczYTYxNjEzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzMzMzgzMDMwLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 96oAMA0GCSqGSIb3DQEBCwUAA4IBAQAbjRDT056p6mePQBsEYR5gCxKsmqJEd2vq 8d9T+ewZ19WTcQDOwwxA9NUfqy9TSmhgkPT9So0MAFPHlYzbMJnpZVtE0Euj8oHQ sw8LhS3wZHc82Cnorw2ZvStPpQiGG4ywKObozlNEKMDg+mCnqGmeY/BEamQ/FQx6 zRGYXH7S/Ye/OPpPyI5o1Z8xZ6VwKT7NmKkfISMnR0yQWlJ40ehkqjXT6sgifbrJ pUc2iQ5C/9SR1u9lu+sXvuMBy7SV2gT98x1Bj+0/+WvsETwzOCmQbPx867YbzfRR NJ5bBtDwBSr+o7L9aYX+y3AkZBIgSh79EIXvv40+mnLERn9N0D33 -----END CERTIFICATE-----Generated at Wed Jun 18 08:00:10 2025 by rpki-client