$ rpki-client -vvf repo-rpki.idnic.net/repo/b5c9c394-fcd0-4b4b-bb1a-824770f40342/0/323030313a6466363a643730303a3a2f34382d3438203d3e20313338303738.roa File: 323030313a6466363a643730303a3a2f34382d3438203d3e20313338303738.roa (raw, json) Hash identifier: O7ms2O+UhtZVKkE81cuQDtuTyN3BEIVlVc+cc3/gZMg= Subject key identifier: F1:BA:DB:42:3F:C9:18:B3:D1:E8:81:D3:CC:2B:74:54:EC:1C:A6:24 Certificate issuer: /CN=B4153DCEE87E15F92AABAC0DF6729C9A5DE5CFCC Certificate serial: 627798BFF9AA323E4BE32D0C1372CB2339075541 Authority key identifier: B4:15:3D:CE:E8:7E:15:F9:2A:AB:AC:0D:F6:72:9C:9A:5D:E5:CF:CC Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B4153DCEE87E15F92AABAC0DF6729C9A5DE5CFCC.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b5c9c394-fcd0-4b4b-bb1a-824770f40342/0/323030313a6466363a643730303a3a2f34382d3438203d3e20313338303738.roa Signing time: Thu 17 Jul 2025 05:00:02 +0000 ROA not before: Thu 17 Jul 2025 04:55:02 +0000 ROA not after: Thu 16 Jul 2026 05:00:02 +0000 asID: 138078 IP address blocks: 2001:df6:d700::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b5c9c394-fcd0-4b4b-bb1a-824770f40342/0/B4153DCEE87E15F92AABAC0DF6729C9A5DE5CFCC.crl rsync://repo-rpki.idnic.net/repo/b5c9c394-fcd0-4b4b-bb1a-824770f40342/0/B4153DCEE87E15F92AABAC0DF6729C9A5DE5CFCC.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B4153DCEE87E15F92AABAC0DF6729C9A5DE5CFCC.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 11 Aug 2025 22:14:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:77:98:bf:f9:aa:32:3e:4b:e3:2d:0c:13:72:cb:23:39:07:55:41 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B4153DCEE87E15F92AABAC0DF6729C9A5DE5CFCC Validity Not Before: Jul 17 04:55:02 2025 GMT Not After : Jul 16 05:00:02 2026 GMT Subject: CN=F1BADB423FC918B3D1E881D3CC2B7454EC1CA624 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:f1:f3:6e:ee:25:d1:f2:5b:b8:98:ee:4d:7a: de:6a:f5:16:40:f9:f7:1a:e7:c4:cd:40:aa:b2:a5: b4:59:e3:3c:d1:81:82:74:74:ff:6d:fd:4d:26:74: 5b:16:54:dc:4a:2e:65:1a:63:9b:2b:f7:1a:28:1f: 12:9e:ad:f3:f2:bd:f0:3b:42:0a:77:28:2a:d6:cc: bb:3b:62:8a:62:7d:2c:e6:70:07:39:e5:de:b3:57: ff:1f:da:6f:da:c0:c9:1b:a5:52:9b:c3:ec:f9:cb: 9c:bf:b8:ff:b7:41:e4:5a:2e:db:63:3b:61:61:16: 55:19:24:38:65:88:f3:3e:d0:e8:c3:27:52:c4:fc: 1e:0a:9d:31:b9:a0:7f:3d:78:5b:06:c5:a4:17:44: 85:36:92:18:8b:04:b9:fb:e8:e3:8b:22:51:28:16: 2c:54:76:59:76:87:90:62:fd:aa:fb:86:12:de:3f: e2:21:5b:47:ba:c2:33:52:d6:cf:b5:a7:0a:bc:7e: a9:ea:14:19:0e:2c:be:55:5c:69:07:9e:cc:05:ad: b1:8d:aa:31:4c:24:91:81:11:ce:5e:89:5a:a5:67: 59:d3:b0:b0:60:c6:58:bb:93:bc:7a:57:2b:92:46: dc:d9:bb:de:de:3d:f8:d5:f9:67:7f:b9:02:2f:26: 65:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:BA:DB:42:3F:C9:18:B3:D1:E8:81:D3:CC:2B:74:54:EC:1C:A6:24 X509v3 Authority Key Identifier: keyid:B4:15:3D:CE:E8:7E:15:F9:2A:AB:AC:0D:F6:72:9C:9A:5D:E5:CF:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b5c9c394-fcd0-4b4b-bb1a-824770f40342/0/B4153DCEE87E15F92AABAC0DF6729C9A5DE5CFCC.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B4153DCEE87E15F92AABAC0DF6729C9A5DE5CFCC.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b5c9c394-fcd0-4b4b-bb1a-824770f40342/0/323030313a6466363a643730303a3a2f34382d3438203d3e20313338303738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df6:d700::/48 Signature Algorithm: sha256WithRSAEncryption a7:6d:68:f1:9d:f3:98:2a:18:03:41:8b:d5:94:ce:ff:86:b3: 82:a0:58:5c:ac:12:77:3d:e3:69:f7:06:08:c9:3b:3b:a4:63: ca:46:00:b5:2b:c3:ff:b2:e9:e9:3e:50:51:ac:f0:75:24:3a: 25:e4:4b:fa:ee:71:b5:34:38:f6:a7:28:af:cc:24:f7:6b:67: 44:dc:ef:6a:11:01:3d:c6:3a:28:60:be:7e:7e:dc:9a:08:de: e7:e9:0f:3e:75:e0:1c:45:74:fa:32:37:9d:3a:d2:b2:59:4d: 37:a2:26:0d:9f:e6:78:48:be:b5:c0:f5:87:33:28:01:36:04: d3:fb:83:ac:c3:58:88:07:f9:dc:0c:27:b1:52:4c:e5:3e:66: 0e:98:55:12:92:44:25:6c:88:a0:a1:18:b0:cb:69:d0:5b:96: c7:7b:eb:3f:59:4f:a5:4a:b4:cd:d2:c0:21:2f:21:70:31:c3: 23:35:45:d3:e8:f3:64:a5:e3:ff:fa:de:ca:53:fe:69:b8:0f: f7:43:60:68:d4:6d:90:f8:b0:a2:ec:3f:9d:e4:e4:8f:ba:35: f8:38:d3:ba:a4:39:57:aa:24:4c:dc:1d:fb:40:de:fc:9d:b6: 16:f0:3d:84:7f:34:39:3b:62:19:05:e7:12:04:11:d7:a8:a6: 33:76:33:93 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUYneYv/mqMj5L4y0ME3LLIzkHVUEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjQxNTNEQ0VFODdFMTVGOTJBQUJBQzBERjY3MjlDOUE1 REU1Q0ZDQzAeFw0yNTA3MTcwNDU1MDJaFw0yNjA3MTYwNTAwMDJaMDMxMTAvBgNV BAMTKEYxQkFEQjQyM0ZDOTE4QjNEMUU4ODFEM0NDMkI3NDU0RUMxQ0E2MjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDC8fNu7iXR8lu4mO5Net5q9RZA +fca58TNQKqypbRZ4zzRgYJ0dP9t/U0mdFsWVNxKLmUaY5sr9xooHxKerfPyvfA7 Qgp3KCrWzLs7YopifSzmcAc55d6zV/8f2m/awMkbpVKbw+z5y5y/uP+3QeRaLttj O2FhFlUZJDhliPM+0OjDJ1LE/B4KnTG5oH89eFsGxaQXRIU2khiLBLn76OOLIlEo FixUdll2h5Bi/ar7hhLeP+IhW0e6wjNS1s+1pwq8fqnqFBkOLL5VXGkHnswFrbGN qjFMJJGBEc5eiVqlZ1nTsLBgxli7k7x6VyuSRtzZu97ePfjV+Wd/uQIvJmXxAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQU8brbQj/JGLPR6IHTzCt0VOwcpiQwHwYDVR0j BBgwFoAUtBU9zuh+Ffkqq6wN9nKcml3lz8wwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i NWM5YzM5NC1mY2QwLTRiNGItYmIxYS04MjQ3NzBmNDAzNDIvMC9CNDE1M0RDRUU4 N0UxNUY5MkFBQkFDMERGNjcyOUM5QTVERTVDRkNDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjQxNTNEQ0VFODdFMTVGOTJBQUJBQzBERjY3MjlDOUE1REU1 Q0ZDQy5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I1YzljMzk0LWZjZDAtNGI0Yi1i YjFhLTgyNDc3MGY0MDM0Mi8wLzMyMzAzMDMxM2E2NDY2MzYzYTY0MzczMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM4MzAzNzM4LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 9tcAMA0GCSqGSIb3DQEBCwUAA4IBAQCnbWjxnfOYKhgDQYvVlM7/hrOCoFhcrBJ3 PeNp9wYIyTs7pGPKRgC1K8P/sunpPlBRrPB1JDol5Ev67nG1NDj2pyivzCT3a2dE 3O9qEQE9xjooYL5+ftyaCN7n6Q8+deAcRXT6MjedOtKyWU03oiYNn+Z4SL61wPWH MygBNgTT+4Osw1iIB/ncDCexUkzlPmYOmFUSkkQlbIigoRiwy2nQW5bHe+s/WU+l SrTN0sAhLyFwMcMjNUXT6PNkpeP/+t7KU/5puA/3Q2Bo1G2Q+LCi7D+d5OSPujX4 ONO6pDlXqiRM3B37QN78nbYW8D2EfzQ5O2IZBecSBBHXqKYzdjOT -----END CERTIFICATE-----Generated at Sat Aug 9 14:22:41 2025 by rpki-client