$ rpki-client -vvf repo-rpki.idnic.net/repo/9c370e6f-f0c7-4f40-8ba4-a01e5d0c74e4/0/323030313a6466353a393630303a3a2f34382d3438203d3e20313335343830.roa File: 323030313a6466353a393630303a3a2f34382d3438203d3e20313335343830.roa (raw, json) Hash identifier: ZCfIqpH3uC9vaXsU0X4IOAqNNWCL/kt97zzI3ZypMPI= Subject key identifier: D6:C1:B2:C2:E3:88:C1:58:43:C1:5E:D4:12:88:05:FA:89:A6:B9:21 Certificate issuer: /CN=0FEDA288F7275DEA469AEF4C238DCA9A61A1615C Certificate serial: 6220C9D1B35DA8C543A8CF1F10A35A8D29C1B148 Authority key identifier: 0F:ED:A2:88:F7:27:5D:EA:46:9A:EF:4C:23:8D:CA:9A:61:A1:61:5C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0FEDA288F7275DEA469AEF4C238DCA9A61A1615C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9c370e6f-f0c7-4f40-8ba4-a01e5d0c74e4/0/323030313a6466353a393630303a3a2f34382d3438203d3e20313335343830.roa Signing time: Mon 02 Jun 2025 02:03:34 +0000 ROA not before: Mon 02 Jun 2025 01:58:34 +0000 ROA not after: Mon 01 Jun 2026 02:03:34 +0000 asID: 135480 IP address blocks: 2001:df5:9600::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9c370e6f-f0c7-4f40-8ba4-a01e5d0c74e4/0/0FEDA288F7275DEA469AEF4C238DCA9A61A1615C.crl rsync://repo-rpki.idnic.net/repo/9c370e6f-f0c7-4f40-8ba4-a01e5d0c74e4/0/0FEDA288F7275DEA469AEF4C238DCA9A61A1615C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0FEDA288F7275DEA469AEF4C238DCA9A61A1615C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 06:40:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:20:c9:d1:b3:5d:a8:c5:43:a8:cf:1f:10:a3:5a:8d:29:c1:b1:48 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0FEDA288F7275DEA469AEF4C238DCA9A61A1615C Validity Not Before: Jun 2 01:58:34 2025 GMT Not After : Jun 1 02:03:34 2026 GMT Subject: CN=D6C1B2C2E388C15843C15ED4128805FA89A6B921 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:b7:26:5d:19:ec:ac:4d:ab:d7:13:2b:8c:f7: ff:40:85:cd:0a:87:4f:d3:7a:07:fc:6f:e3:41:9b: 63:d7:57:56:ef:a0:72:9d:ce:de:40:39:e9:77:dc: 39:ba:a2:2c:1c:19:14:ef:5f:8b:1f:dd:10:38:2e: 1f:07:a5:64:d5:f4:29:d0:8a:85:1b:d1:9d:44:c4: 6f:ce:01:a0:e0:c5:38:8c:c9:15:04:dd:1b:d7:82: b7:f8:8b:6f:9f:a6:c9:b0:fe:53:9f:0a:6f:4d:59: 52:22:5f:82:00:c9:8e:51:f9:50:8a:3f:c3:33:81: 0c:63:cc:26:1b:7c:57:d3:e5:1b:08:97:a3:94:6f: cb:44:9c:32:b3:e7:3e:c5:6d:ac:e4:bf:4e:f6:db: 5a:3c:63:e2:69:c3:0c:82:da:da:fd:4a:2f:e8:11: e6:23:74:a6:4c:28:53:f0:7d:7b:8a:d7:f8:ca:c1: 96:f9:bf:fb:99:02:c4:d2:b7:6f:0d:69:24:be:79: e4:07:4e:05:18:3a:1b:53:a9:73:d3:89:c1:7f:3d: 6b:38:d2:53:5b:1c:62:e4:b0:61:f6:19:ca:2c:b6: 8f:53:b5:5d:7f:bb:29:60:e5:13:2b:f6:7c:62:a8: 65:06:c9:c1:0a:d5:36:35:05:5e:c4:7f:e9:07:2e: 01:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:C1:B2:C2:E3:88:C1:58:43:C1:5E:D4:12:88:05:FA:89:A6:B9:21 X509v3 Authority Key Identifier: keyid:0F:ED:A2:88:F7:27:5D:EA:46:9A:EF:4C:23:8D:CA:9A:61:A1:61:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9c370e6f-f0c7-4f40-8ba4-a01e5d0c74e4/0/0FEDA288F7275DEA469AEF4C238DCA9A61A1615C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0FEDA288F7275DEA469AEF4C238DCA9A61A1615C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9c370e6f-f0c7-4f40-8ba4-a01e5d0c74e4/0/323030313a6466353a393630303a3a2f34382d3438203d3e20313335343830.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df5:9600::/48 Signature Algorithm: sha256WithRSAEncryption 1a:df:25:a4:0e:13:78:d1:1c:de:74:b1:44:4d:5e:62:9a:88: 32:d7:c9:0c:d2:c4:e1:c4:9c:b0:55:2e:a7:11:77:52:14:1e: ea:6f:52:fd:6f:77:a3:ff:e4:06:75:0c:fc:ca:a0:ee:9f:26: 70:dd:36:52:c3:09:92:b8:79:17:d8:19:97:fb:c8:bb:e2:a9: 24:4d:1f:c8:85:42:f9:3b:88:ea:84:57:56:f5:3b:16:3a:ca: 0d:ca:a8:0b:bf:d0:2b:b0:ef:b5:7a:bf:00:f1:ba:74:9f:58: 01:0f:05:e5:ca:04:cd:ca:9e:00:06:79:10:41:82:d5:8a:ac: ca:dc:ae:9c:c7:b6:55:e3:44:43:94:3c:b6:26:b3:f3:fa:63: a5:f2:07:26:38:38:1e:9e:c8:81:16:30:14:e1:f0:74:8e:3c: e2:aa:f5:84:48:16:8e:15:41:e3:9c:f8:88:a0:78:32:7a:00: 8b:20:f1:05:82:4b:45:bc:73:bb:28:44:69:9c:0b:2c:8d:4b: b3:61:20:e9:02:0c:08:aa:df:f6:9d:b9:b6:d6:3a:ea:43:64: 03:79:fd:32:ac:d8:ec:5d:87:b0:a8:a6:07:24:eb:d9:2e:24: d6:b6:83:f5:fc:fc:a8:6c:51:99:03:d4:60:64:d8:f8:10:3b: 77:f4:0c:dd -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUYiDJ0bNdqMVDqM8fEKNajSnBsUgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEZFREEyODhGNzI3NURFQTQ2OUFFRjRDMjM4RENBOUE2 MUExNjE1QzAeFw0yNTA2MDIwMTU4MzRaFw0yNjA2MDEwMjAzMzRaMDMxMTAvBgNV BAMTKEQ2QzFCMkMyRTM4OEMxNTg0M0MxNUVENDEyODgwNUZBODlBNkI5MjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCotyZdGeysTavXEyuM9/9Ahc0K h0/Tegf8b+NBm2PXV1bvoHKdzt5AOel33Dm6oiwcGRTvX4sf3RA4Lh8HpWTV9CnQ ioUb0Z1ExG/OAaDgxTiMyRUE3RvXgrf4i2+fpsmw/lOfCm9NWVIiX4IAyY5R+VCK P8MzgQxjzCYbfFfT5RsIl6OUb8tEnDKz5z7Fbazkv07221o8Y+JpwwyC2tr9Si/o EeYjdKZMKFPwfXuK1/jKwZb5v/uZAsTSt28NaSS+eeQHTgUYOhtTqXPTicF/PWs4 0lNbHGLksGH2Gcosto9TtV1/uylg5RMr9nxiqGUGycEK1TY1BV7Ef+kHLgHrAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQU1sGywuOIwVhDwV7UEogF+ommuSEwHwYDVR0j BBgwFoAUD+2iiPcnXepGmu9MI43KmmGhYVwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 YzM3MGU2Zi1mMGM3LTRmNDAtOGJhNC1hMDFlNWQwYzc0ZTQvMC8wRkVEQTI4OEY3 Mjc1REVBNDY5QUVGNEMyMzhEQ0E5QTYxQTE2MTVDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMEZFREEyODhGNzI3NURFQTQ2OUFFRjRDMjM4RENBOUE2MUEx NjE1Qy5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzljMzcwZTZmLWYwYzctNGY0MC04 YmE0LWEwMWU1ZDBjNzRlNC8wLzMyMzAzMDMxM2E2NDY2MzUzYTM5MzYzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM1MzQzODMwLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 9ZYAMA0GCSqGSIb3DQEBCwUAA4IBAQAa3yWkDhN40RzedLFETV5imogy18kM0sTh xJywVS6nEXdSFB7qb1L9b3ej/+QGdQz8yqDunyZw3TZSwwmSuHkX2BmX+8i74qkk TR/IhUL5O4jqhFdW9TsWOsoNyqgLv9ArsO+1er8A8bp0n1gBDwXlygTNyp4ABnkQ QYLViqzK3K6cx7ZV40RDlDy2JrPz+mOl8gcmODgensiBFjAU4fB0jjziqvWESBaO FUHjnPiIoHgyegCLIPEFgktFvHO7KERpnAssjUuzYSDpAgwIqt/2nbm21jrqQ2QD ef0yrNjsXYewqKYHJOvZLiTWtoP1/PyobFGZA9RgZNj4EDt39Azd -----END CERTIFICATE-----Generated at Wed Jun 18 00:10:21 2025 by rpki-client