$ rpki-client -vvf repo-rpki.idnic.net/repo/c2f28879-4844-42de-b2d9-a9666de282ea/0/323030313a6466313a383530303a3a2f34382d3438203d3e20313336313131.roa File: 323030313a6466313a383530303a3a2f34382d3438203d3e20313336313131.roa (raw, json) Hash identifier: umMXNYB5RwjlwGFC5Wpd2rzxhTLaoa08yJ2/wNUcpx0= Subject key identifier: 87:EC:E6:F6:44:AC:68:D1:B5:7E:F4:16:FE:18:6F:D9:B1:79:50:7C Certificate issuer: /CN=399315B18BA7D0DD666DCA8C3DBBE013575AF7D1 Certificate serial: 5915746EC1555F3DA0B9517C2E6CEDA0E184C035 Authority key identifier: 39:93:15:B1:8B:A7:D0:DD:66:6D:CA:8C:3D:BB:E0:13:57:5A:F7:D1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/399315B18BA7D0DD666DCA8C3DBBE013575AF7D1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c2f28879-4844-42de-b2d9-a9666de282ea/0/323030313a6466313a383530303a3a2f34382d3438203d3e20313336313131.roa Signing time: Wed 09 Jul 2025 04:02:22 +0000 ROA not before: Wed 09 Jul 2025 03:57:22 +0000 ROA not after: Wed 08 Jul 2026 04:02:22 +0000 asID: 136111 IP address blocks: 2001:df1:8500::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c2f28879-4844-42de-b2d9-a9666de282ea/0/399315B18BA7D0DD666DCA8C3DBBE013575AF7D1.crl rsync://repo-rpki.idnic.net/repo/c2f28879-4844-42de-b2d9-a9666de282ea/0/399315B18BA7D0DD666DCA8C3DBBE013575AF7D1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/399315B18BA7D0DD666DCA8C3DBBE013575AF7D1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 08 Aug 2025 03:16:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:15:74:6e:c1:55:5f:3d:a0:b9:51:7c:2e:6c:ed:a0:e1:84:c0:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=399315B18BA7D0DD666DCA8C3DBBE013575AF7D1 Validity Not Before: Jul 9 03:57:22 2025 GMT Not After : Jul 8 04:02:22 2026 GMT Subject: CN=87ECE6F644AC68D1B57EF416FE186FD9B179507C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:5f:84:e9:17:ae:b2:ff:df:e4:59:88:58:a4: c6:d6:30:12:41:35:82:94:fa:0d:d7:92:7b:17:9f: da:46:9f:09:11:e5:88:d5:48:01:48:50:22:27:73: 31:4c:bf:2b:f7:5c:21:99:6a:56:f1:0e:c7:59:08: 1f:ea:8e:ed:23:c6:ad:04:c3:37:69:6c:36:f1:8b: 94:18:20:6f:d1:13:7c:08:35:6b:fe:65:28:3e:02: 17:24:b9:10:a0:86:2d:cd:7d:9b:0d:0a:f0:34:e9: 5f:d4:f7:cb:96:b1:18:a1:c5:e2:d1:26:b3:c2:77: ff:65:d9:b1:40:08:56:26:d3:a8:29:6b:57:4e:6e: d0:8a:6f:a8:f1:74:11:ee:e3:05:fb:6e:0d:ca:ed: 89:a1:b1:d7:5d:2c:f1:e7:40:00:3d:c2:ff:10:35: db:3e:cb:2f:4b:38:4a:51:54:0e:69:55:ff:6a:e7: 69:e0:c4:95:89:45:97:17:5a:76:9f:45:11:58:29: 4f:66:d6:f1:6e:50:81:01:89:96:c8:ec:30:48:5d: 00:90:0e:fa:95:ba:87:a7:76:95:73:0b:f8:0e:17: dc:3c:e4:1b:fb:df:0e:05:2e:ad:48:fa:9b:9c:e0: 07:a4:84:d3:da:4b:f1:c7:0c:86:fe:a0:36:97:9f: 69:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:EC:E6:F6:44:AC:68:D1:B5:7E:F4:16:FE:18:6F:D9:B1:79:50:7C X509v3 Authority Key Identifier: keyid:39:93:15:B1:8B:A7:D0:DD:66:6D:CA:8C:3D:BB:E0:13:57:5A:F7:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c2f28879-4844-42de-b2d9-a9666de282ea/0/399315B18BA7D0DD666DCA8C3DBBE013575AF7D1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/399315B18BA7D0DD666DCA8C3DBBE013575AF7D1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c2f28879-4844-42de-b2d9-a9666de282ea/0/323030313a6466313a383530303a3a2f34382d3438203d3e20313336313131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df1:8500::/48 Signature Algorithm: sha256WithRSAEncryption 00:4d:c3:e8:80:db:35:43:18:37:28:14:39:af:0c:99:54:70: 3d:08:8f:2d:d3:d3:18:6a:91:5e:94:d2:1b:d4:9d:63:55:45: 53:23:2f:b4:02:5a:98:24:61:be:e8:64:7f:53:dc:14:c7:fb: 6a:41:f1:bc:b1:bb:44:62:92:bb:49:0a:e7:09:3b:68:d7:2a: 88:ed:7a:6f:26:2f:ea:ff:cd:cd:42:a9:5b:0e:b7:e2:c3:76: 36:07:5a:3d:dd:25:9e:5c:96:e2:c1:3c:ca:42:7c:d8:45:35: c2:50:6e:75:90:ae:bf:a6:81:04:70:0d:41:08:2e:93:55:28: 18:d7:63:dc:dd:20:82:00:50:3b:c7:8b:c3:4a:f1:65:9f:b5: 15:08:89:4e:4e:33:1d:a0:19:46:08:d4:59:c3:f6:0b:a9:2a: f5:57:5e:bd:29:01:4a:40:fd:b0:c8:76:4e:49:f3:76:75:b2: 2d:ac:de:f4:81:fb:ef:99:ca:5a:22:81:d3:cf:b9:7e:aa:ab: db:74:8e:d5:29:60:a5:f2:94:e7:ab:a5:76:76:2d:65:22:4b: c2:89:f6:51:8a:b5:e9:5d:f2:39:92:27:0f:d7:0f:20:84:57: 54:d4:b8:93:43:11:24:cc:4a:4b:35:e6:58:3c:d1:64:f2:10: 43:82:1d:d6 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUWRV0bsFVXz2guVF8LmztoOGEwDUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzk5MzE1QjE4QkE3RDBERDY2NkRDQThDM0RCQkUwMTM1 NzVBRjdEMTAeFw0yNTA3MDkwMzU3MjJaFw0yNjA3MDgwNDAyMjJaMDMxMTAvBgNV BAMTKDg3RUNFNkY2NDRBQzY4RDFCNTdFRjQxNkZFMTg2RkQ5QjE3OTUwN0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDpX4TpF66y/9/kWYhYpMbWMBJB NYKU+g3XknsXn9pGnwkR5YjVSAFIUCInczFMvyv3XCGZalbxDsdZCB/qju0jxq0E wzdpbDbxi5QYIG/RE3wINWv+ZSg+AhckuRCghi3NfZsNCvA06V/U98uWsRihxeLR JrPCd/9l2bFACFYm06gpa1dObtCKb6jxdBHu4wX7bg3K7YmhsdddLPHnQAA9wv8Q Nds+yy9LOEpRVA5pVf9q52ngxJWJRZcXWnafRRFYKU9m1vFuUIEBiZbI7DBIXQCQ DvqVuoendpVzC/gOF9w85Bv73w4FLq1I+puc4AekhNPaS/HHDIb+oDaXn2mfAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUh+zm9kSsaNG1fvQW/hhv2bF5UHwwHwYDVR0j BBgwFoAUOZMVsYun0N1mbcqMPbvgE1da99EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j MmYyODg3OS00ODQ0LTQyZGUtYjJkOS1hOTY2NmRlMjgyZWEvMC8zOTkzMTVCMThC QTdEMERENjY2RENBOEMzREJCRTAxMzU3NUFGN0QxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzk5MzE1QjE4QkE3RDBERDY2NkRDQThDM0RCQkUwMTM1NzVB RjdEMS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2MyZjI4ODc5LTQ4NDQtNDJkZS1i MmQ5LWE5NjY2ZGUyODJlYS8wLzMyMzAzMDMxM2E2NDY2MzEzYTM4MzUzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM2MzEzMTMxLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8YUAMA0GCSqGSIb3DQEBCwUAA4IBAQAATcPogNs1Qxg3KBQ5rwyZVHA9CI8t09MY apFelNIb1J1jVUVTIy+0AlqYJGG+6GR/U9wUx/tqQfG8sbtEYpK7SQrnCTto1yqI 7XpvJi/q/83NQqlbDrfiw3Y2B1o93SWeXJbiwTzKQnzYRTXCUG51kK6/poEEcA1B CC6TVSgY12Pc3SCCAFA7x4vDSvFln7UVCIlOTjMdoBlGCNRZw/YLqSr1V169KQFK QP2wyHZOSfN2dbItrN70gfvvmcpaIoHTz7l+qqvbdI7VKWCl8pTnq6V2di1lIkvC ifZRirXpXfI5kicP1w8ghFdU1LiTQxEkzEpLNeZYPNFk8hBDgh3W -----END CERTIFICATE-----Generated at Wed Aug 6 14:21:47 2025 by rpki-client