$ rpki-client -vvf repo-rpki.idnic.net/repo/7a0210b3-cca2-43c5-89f9-5a9086a60703/1/323030313a6466333a663834303a3a2f34382d3438203d3e20313532383330.roa File: 323030313a6466333a663834303a3a2f34382d3438203d3e20313532383330.roa (raw, json) Hash identifier: 3aMUQeSx+u1/318Y8ScOuCTO+xUE/7Y4RTX6xf+E9CE= Subject key identifier: 61:69:AA:E8:C2:CE:E4:49:DB:30:10:9A:C5:76:3A:49:3F:AE:2E:D0 Certificate issuer: /CN=DF77061CAEF30A8DAF6B52D8A3D9FD80F3720F11 Certificate serial: 47C17F0EFB41B0747E4684AA3C18417BE01DE700 Authority key identifier: DF:77:06:1C:AE:F3:0A:8D:AF:6B:52:D8:A3:D9:FD:80:F3:72:0F:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DF77061CAEF30A8DAF6B52D8A3D9FD80F3720F11.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7a0210b3-cca2-43c5-89f9-5a9086a60703/1/323030313a6466333a663834303a3a2f34382d3438203d3e20313532383330.roa Signing time: Mon 28 Jul 2025 12:00:01 +0000 ROA not before: Mon 28 Jul 2025 11:55:01 +0000 ROA not after: Mon 27 Jul 2026 12:00:01 +0000 asID: 152830 IP address blocks: 2001:df3:f840::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7a0210b3-cca2-43c5-89f9-5a9086a60703/1/DF77061CAEF30A8DAF6B52D8A3D9FD80F3720F11.crl rsync://repo-rpki.idnic.net/repo/7a0210b3-cca2-43c5-89f9-5a9086a60703/1/DF77061CAEF30A8DAF6B52D8A3D9FD80F3720F11.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DF77061CAEF30A8DAF6B52D8A3D9FD80F3720F11.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 11 Aug 2025 12:09:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:c1:7f:0e:fb:41:b0:74:7e:46:84:aa:3c:18:41:7b:e0:1d:e7:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DF77061CAEF30A8DAF6B52D8A3D9FD80F3720F11 Validity Not Before: Jul 28 11:55:01 2025 GMT Not After : Jul 27 12:00:01 2026 GMT Subject: CN=6169AAE8C2CEE449DB30109AC5763A493FAE2ED0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:bd:61:0e:2d:5e:87:8c:ee:3c:65:40:eb:a8: e3:d4:fd:38:c4:63:e2:9c:40:79:49:66:59:4f:9b: ca:49:73:3b:96:e7:a8:95:46:62:76:b8:04:61:0f: 9e:cd:20:1e:10:f7:eb:4a:2d:60:e4:07:87:7e:8a: 76:de:96:66:93:a3:5f:f7:d4:51:56:2a:79:17:ff: 79:11:83:db:af:13:2e:27:85:0e:ea:3e:47:ec:6f: 6a:9a:c8:cb:23:40:8d:a9:03:e6:f4:f1:f1:0e:c3: f0:23:a6:86:d5:7a:0c:41:81:7c:c5:c0:a3:6e:da: de:f9:20:0a:85:48:02:54:a1:d4:18:8a:c5:24:71: 9b:20:cc:05:50:16:07:8c:dd:8e:9c:e6:a0:23:1b: d7:a1:0a:d7:47:53:18:67:99:a0:e5:72:1b:7e:11: 88:7e:e0:02:44:38:c8:30:d6:ca:cd:e1:ad:56:40: 9e:bc:7b:f7:65:42:b2:f6:89:a3:c2:65:c2:a2:a5: 68:3c:86:1e:c1:b1:4d:33:03:f4:d9:48:63:8a:af: ed:2c:57:fe:68:76:e8:af:81:39:c4:2c:c5:9c:44: 4c:41:82:ab:f8:80:5c:64:c1:78:a3:77:5d:d8:ba: 6c:94:92:8d:05:d6:4f:dd:b7:04:4f:7c:33:5b:d2: 62:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:69:AA:E8:C2:CE:E4:49:DB:30:10:9A:C5:76:3A:49:3F:AE:2E:D0 X509v3 Authority Key Identifier: keyid:DF:77:06:1C:AE:F3:0A:8D:AF:6B:52:D8:A3:D9:FD:80:F3:72:0F:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7a0210b3-cca2-43c5-89f9-5a9086a60703/1/DF77061CAEF30A8DAF6B52D8A3D9FD80F3720F11.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DF77061CAEF30A8DAF6B52D8A3D9FD80F3720F11.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7a0210b3-cca2-43c5-89f9-5a9086a60703/1/323030313a6466333a663834303a3a2f34382d3438203d3e20313532383330.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df3:f840::/48 Signature Algorithm: sha256WithRSAEncryption 75:ff:5e:9c:3a:60:b6:ae:b3:8d:13:de:88:dd:7d:cb:08:f1: 82:d3:5b:ae:32:34:3d:ec:2f:ce:07:bb:ff:61:28:cd:be:ff: d7:b1:b8:3c:49:ce:c1:5c:41:10:24:d6:2a:fb:a4:09:90:33: 64:e5:27:69:1d:da:e7:56:1a:d7:96:04:8d:a9:5e:bc:ce:27: db:e9:88:0b:6b:53:5d:8b:4b:28:a9:4b:67:3b:8d:8d:86:8c: 11:cd:c5:c1:ac:49:31:75:c9:68:a2:e8:17:62:5c:08:a2:81: 33:9b:b1:55:f2:78:a7:8c:9b:1a:1f:ae:19:a7:fa:ba:51:95: eb:58:48:e1:e5:a5:10:ef:41:4e:5d:7f:fb:58:73:43:7c:71: 23:4f:60:d1:bd:d7:d4:d5:a8:10:9f:54:21:2d:45:3e:ab:88: 54:7a:32:3b:c6:ed:7b:75:0c:b4:be:fa:6a:af:f1:a8:0d:e4: c2:e7:b3:20:f1:6a:fe:c6:5a:c3:57:5a:d4:14:35:98:10:73: 04:97:46:00:28:55:8e:95:37:22:e3:0d:44:af:a7:93:b8:bf: 7b:8d:a5:4b:ea:0c:4a:24:f3:df:10:63:b9:50:f1:6b:12:f7: c5:74:89:ef:eb:42:55:2a:4b:71:84:0d:17:b9:f5:59:55:76: fd:a8:8f:f5 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUR8F/DvtBsHR+RoSqPBhBe+Ad5wAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREY3NzA2MUNBRUYzMEE4REFGNkI1MkQ4QTNEOUZEODBG MzcyMEYxMTAeFw0yNTA3MjgxMTU1MDFaFw0yNjA3MjcxMjAwMDFaMDMxMTAvBgNV BAMTKDYxNjlBQUU4QzJDRUU0NDlEQjMwMTA5QUM1NzYzQTQ5M0ZBRTJFRDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHvWEOLV6HjO48ZUDrqOPU/TjE Y+KcQHlJZllPm8pJczuW56iVRmJ2uARhD57NIB4Q9+tKLWDkB4d+inbelmaTo1/3 1FFWKnkX/3kRg9uvEy4nhQ7qPkfsb2qayMsjQI2pA+b08fEOw/AjpobVegxBgXzF wKNu2t75IAqFSAJUodQYisUkcZsgzAVQFgeM3Y6c5qAjG9ehCtdHUxhnmaDlcht+ EYh+4AJEOMgw1srN4a1WQJ68e/dlQrL2iaPCZcKipWg8hh7BsU0zA/TZSGOKr+0s V/5oduivgTnELMWcRExBgqv4gFxkwXijd13YumyUko0F1k/dtwRPfDNb0mI/AgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUYWmq6MLO5EnbMBCaxXY6ST+uLtAwHwYDVR0j BBgwFoAU33cGHK7zCo2va1LYo9n9gPNyDxEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 YTAyMTBiMy1jY2EyLTQzYzUtODlmOS01YTkwODZhNjA3MDMvMS9ERjc3MDYxQ0FF RjMwQThEQUY2QjUyRDhBM0Q5RkQ4MEYzNzIwRjExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREY3NzA2MUNBRUYzMEE4REFGNkI1MkQ4QTNEOUZEODBGMzcy MEYxMS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdhMDIxMGIzLWNjYTItNDNjNS04 OWY5LTVhOTA4NmE2MDcwMy8xLzMyMzAzMDMxM2E2NDY2MzMzYTY2MzgzNDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNTMyMzgzMzMwLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8/hAMA0GCSqGSIb3DQEBCwUAA4IBAQB1/16cOmC2rrONE96I3X3LCPGC01uuMjQ9 7C/OB7v/YSjNvv/Xsbg8Sc7BXEEQJNYq+6QJkDNk5SdpHdrnVhrXlgSNqV68zifb 6YgLa1Ndi0soqUtnO42NhowRzcXBrEkxdcloougXYlwIooEzm7FV8ninjJsaH64Z p/q6UZXrWEjh5aUQ70FOXX/7WHNDfHEjT2DRvdfU1agQn1QhLUU+q4hUejI7xu17 dQy0vvpqr/GoDeTC57Mg8Wr+xlrDV1rUFDWYEHMEl0YAKFWOlTci4w1Er6eTuL97 jaVL6gxKJPPfEGO5UPFrEvfFdInv60JVKktxhA0XufVZVXb9qI/1 -----END CERTIFICATE-----Generated at Sat Aug 9 22:35:25 2025 by rpki-client