$ rpki-client -vvf repo-rpki.idnic.net/repo/64cf632d-d61a-4826-b572-9f1948ae580c/0/323030313a6466373a353330303a3a2f34382d3438203d3e20313338313135.roa File: 323030313a6466373a353330303a3a2f34382d3438203d3e20313338313135.roa (raw, json) Hash identifier: Bf7BsiVAOIoOpjZrq1myZIFa+NHL4UH0RSw6g7HOTug= Subject key identifier: 03:C6:CC:62:58:7B:8E:7B:27:9F:A1:E7:C9:C4:06:CB:7F:A3:39:77 Certificate issuer: /CN=9DEEEB0CB9492DADDE47B31629ACDA7241728768 Certificate serial: 10DBA06E5FC4B523B6F5D7914584F98B36C4B7E0 Authority key identifier: 9D:EE:EB:0C:B9:49:2D:AD:DE:47:B3:16:29:AC:DA:72:41:72:87:68 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9DEEEB0CB9492DADDE47B31629ACDA7241728768.cer Subject info access: rsync://repo-rpki.idnic.net/repo/64cf632d-d61a-4826-b572-9f1948ae580c/0/323030313a6466373a353330303a3a2f34382d3438203d3e20313338313135.roa Signing time: Mon 02 Jun 2025 01:02:44 +0000 ROA not before: Mon 02 Jun 2025 00:57:44 +0000 ROA not after: Mon 01 Jun 2026 01:02:44 +0000 asID: 138115 IP address blocks: 2001:df7:5300::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/64cf632d-d61a-4826-b572-9f1948ae580c/0/9DEEEB0CB9492DADDE47B31629ACDA7241728768.crl rsync://repo-rpki.idnic.net/repo/64cf632d-d61a-4826-b572-9f1948ae580c/0/9DEEEB0CB9492DADDE47B31629ACDA7241728768.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9DEEEB0CB9492DADDE47B31629ACDA7241728768.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Jun 2025 07:12:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:db:a0:6e:5f:c4:b5:23:b6:f5:d7:91:45:84:f9:8b:36:c4:b7:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9DEEEB0CB9492DADDE47B31629ACDA7241728768 Validity Not Before: Jun 2 00:57:44 2025 GMT Not After : Jun 1 01:02:44 2026 GMT Subject: CN=03C6CC62587B8E7B279FA1E7C9C406CB7FA33977 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:0b:11:d7:ca:d1:17:70:a8:02:dd:24:78:92: 67:2c:4b:ab:c5:db:85:ba:d3:15:f5:16:29:3e:00: ea:57:ea:9d:68:be:64:12:54:43:9c:22:31:36:1f: 8a:44:19:b3:6e:70:26:d0:15:5b:fa:62:cd:5e:61: 61:eb:53:f6:86:c3:39:8f:32:ca:45:c1:2d:c2:c3: a3:a8:4c:4d:93:9e:22:f9:23:e6:7c:67:a2:f8:1f: e3:de:2f:4b:54:fc:ee:88:aa:ef:36:ff:3e:bc:59: ec:59:72:20:a1:67:58:4d:0e:85:47:34:03:e3:58: 35:3b:8a:ce:bb:ea:28:05:13:1c:b9:1a:84:f0:94: c9:76:85:d3:01:c1:7c:a9:8c:f9:5e:da:38:3a:2a: c0:6a:c6:12:d4:18:20:be:f1:2f:2e:e1:b5:8e:42: 11:3e:ac:b7:ea:ce:9d:13:4a:f2:0e:57:dd:13:e2: 35:bf:3f:75:f1:0c:e8:6a:80:68:65:a3:1f:4b:6e: 50:da:5a:05:e9:60:32:f2:ee:12:48:44:42:fe:d7: 35:33:3e:86:e8:10:c5:e8:ff:00:ea:c6:c7:f9:4b: 9c:c0:65:4c:c9:e2:6d:a4:3e:76:1e:de:0b:a0:42: e8:f2:a4:5f:8a:6f:6b:78:a6:ae:aa:cd:17:0e:07: 7a:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:C6:CC:62:58:7B:8E:7B:27:9F:A1:E7:C9:C4:06:CB:7F:A3:39:77 X509v3 Authority Key Identifier: keyid:9D:EE:EB:0C:B9:49:2D:AD:DE:47:B3:16:29:AC:DA:72:41:72:87:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/64cf632d-d61a-4826-b572-9f1948ae580c/0/9DEEEB0CB9492DADDE47B31629ACDA7241728768.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9DEEEB0CB9492DADDE47B31629ACDA7241728768.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/64cf632d-d61a-4826-b572-9f1948ae580c/0/323030313a6466373a353330303a3a2f34382d3438203d3e20313338313135.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df7:5300::/48 Signature Algorithm: sha256WithRSAEncryption 91:e0:0e:73:4e:69:d6:09:ef:9f:a3:44:5d:b4:43:1c:55:93: 28:64:03:35:fd:05:9b:d0:a3:1a:b6:be:35:2e:a0:f5:ec:5e: c0:ec:3e:3c:88:07:ff:c9:81:95:cf:28:24:31:3e:67:3c:1f: fa:b2:e8:e8:8e:16:f5:8d:5b:04:6a:ca:fc:8d:59:13:1f:50: 1e:4d:d8:6c:a6:6e:ea:5d:4f:8b:70:81:a7:f6:63:ec:ce:18: 21:90:ae:51:cf:5c:34:07:73:d9:cb:87:bc:ab:95:53:f6:4e: fa:6c:bb:73:59:3a:39:54:f8:11:04:8c:86:6d:82:de:c8:2d: 3c:8e:d9:43:da:52:b6:66:3c:98:28:79:65:24:08:c9:7d:23: 66:fa:9e:57:2c:f9:83:b9:d8:0a:f2:c2:3e:23:9d:17:a9:70: a0:2c:a2:d8:bb:63:4e:46:fd:43:98:09:e7:49:31:a7:70:a7: 28:26:1f:a9:4c:9b:d4:ea:ba:9d:11:11:a1:91:62:49:77:04: f8:3d:e2:4e:4e:61:37:88:5a:eb:58:e9:43:12:b6:40:87:3b: 56:34:ef:22:b0:9b:43:fc:56:58:d2:72:b1:f2:67:94:de:62: 17:36:71:d0:ca:97:6b:50:c2:fe:14:b5:7f:68:bc:72:8b:8d: a5:fa:31:c5 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUENugbl/EtSO29deRRYT5izbEt+AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOURFRUVCMENCOTQ5MkRBRERFNDdCMzE2MjlBQ0RBNzI0 MTcyODc2ODAeFw0yNTA2MDIwMDU3NDRaFw0yNjA2MDEwMTAyNDRaMDMxMTAvBgNV BAMTKDAzQzZDQzYyNTg3QjhFN0IyNzlGQTFFN0M5QzQwNkNCN0ZBMzM5NzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCkCxHXytEXcKgC3SR4kmcsS6vF 24W60xX1Fik+AOpX6p1ovmQSVEOcIjE2H4pEGbNucCbQFVv6Ys1eYWHrU/aGwzmP MspFwS3Cw6OoTE2TniL5I+Z8Z6L4H+PeL0tU/O6Iqu82/z68WexZciChZ1hNDoVH NAPjWDU7is676igFExy5GoTwlMl2hdMBwXypjPle2jg6KsBqxhLUGCC+8S8u4bWO QhE+rLfqzp0TSvIOV90T4jW/P3XxDOhqgGhlox9LblDaWgXpYDLy7hJIREL+1zUz PoboEMXo/wDqxsf5S5zAZUzJ4m2kPnYe3gugQujypF+Kb2t4pq6qzRcOB3pBAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUA8bMYlh7jnsnn6HnycQGy3+jOXcwHwYDVR0j BBgwFoAUne7rDLlJLa3eR7MWKazackFyh2gwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 NGNmNjMyZC1kNjFhLTQ4MjYtYjU3Mi05ZjE5NDhhZTU4MGMvMC85REVFRUIwQ0I5 NDkyREFEREU0N0IzMTYyOUFDREE3MjQxNzI4NzY4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOURFRUVCMENCOTQ5MkRBRERFNDdCMzE2MjlBQ0RBNzI0MTcy ODc2OC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY0Y2Y2MzJkLWQ2MWEtNDgyNi1i NTcyLTlmMTk0OGFlNTgwYy8wLzMyMzAzMDMxM2E2NDY2MzczYTM1MzMzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM4MzEzMTM1LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 91MAMA0GCSqGSIb3DQEBCwUAA4IBAQCR4A5zTmnWCe+fo0RdtEMcVZMoZAM1/QWb 0KMatr41LqD17F7A7D48iAf/yYGVzygkMT5nPB/6sujojhb1jVsEasr8jVkTH1Ae Tdhspm7qXU+LcIGn9mPszhghkK5Rz1w0B3PZy4e8q5VT9k76bLtzWTo5VPgRBIyG bYLeyC08jtlD2lK2ZjyYKHllJAjJfSNm+p5XLPmDudgK8sI+I50XqXCgLKLYu2NO Rv1DmAnnSTGncKcoJh+pTJvU6rqdERGhkWJJdwT4PeJOTmE3iFrrWOlDErZAhztW NO8isJtD/FZY0nKx8meU3mIXNnHQypdrUML+FLV/aLxyi42l+jHF -----END CERTIFICATE-----Generated at Mon Jun 16 14:21:44 2025 by rpki-client