$ rpki-client -vvf repo-rpki.idnic.net/repo/d67fb837-1b2f-4c4e-b999-6e990ddc1499/0/323030313a6466313a353638303a3a2f34382d3438203d3e20313339333738.roa File: 323030313a6466313a353638303a3a2f34382d3438203d3e20313339333738.roa (raw, json) Hash identifier: q7ox9dPZeS59odB2IJMVaFXBFhKkSZPWVMJt5aLWrRc= Subject key identifier: F6:B3:D0:AE:BB:11:EF:D8:BC:0F:94:16:70:EC:16:52:83:A9:C9:B0 Certificate issuer: /CN=C5CA2999FE7612F56CCCB7441743B05181458ED0 Certificate serial: 3854373B0C9F48111F2AABA41E3ED99510D0846D Authority key identifier: C5:CA:29:99:FE:76:12:F5:6C:CC:B7:44:17:43:B0:51:81:45:8E:D0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C5CA2999FE7612F56CCCB7441743B05181458ED0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d67fb837-1b2f-4c4e-b999-6e990ddc1499/0/323030313a6466313a353638303a3a2f34382d3438203d3e20313339333738.roa Signing time: Mon 02 Jun 2025 02:03:46 +0000 ROA not before: Mon 02 Jun 2025 01:58:46 +0000 ROA not after: Mon 01 Jun 2026 02:03:46 +0000 asID: 139378 IP address blocks: 2001:df1:5680::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d67fb837-1b2f-4c4e-b999-6e990ddc1499/0/C5CA2999FE7612F56CCCB7441743B05181458ED0.crl rsync://repo-rpki.idnic.net/repo/d67fb837-1b2f-4c4e-b999-6e990ddc1499/0/C5CA2999FE7612F56CCCB7441743B05181458ED0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C5CA2999FE7612F56CCCB7441743B05181458ED0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 02:50:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:54:37:3b:0c:9f:48:11:1f:2a:ab:a4:1e:3e:d9:95:10:d0:84:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C5CA2999FE7612F56CCCB7441743B05181458ED0 Validity Not Before: Jun 2 01:58:46 2025 GMT Not After : Jun 1 02:03:46 2026 GMT Subject: CN=F6B3D0AEBB11EFD8BC0F941670EC165283A9C9B0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:30:e4:6d:07:4a:2f:bf:9d:f2:50:f2:40:a2: 87:78:a2:14:ba:5d:60:5e:95:a1:85:4b:00:3f:fd: 7e:bc:d7:5f:56:c8:53:17:9e:12:94:8a:d6:29:c0: 28:87:40:20:fc:73:04:98:d5:32:42:40:23:fe:29: 2e:23:8e:79:80:12:16:7f:17:f3:a1:15:5d:d2:86: 52:e3:20:d5:36:58:6e:fb:90:f9:db:f6:bd:1a:e8: a5:ca:c1:ca:ca:8e:a4:a4:82:60:a1:7a:a4:89:a8: 13:de:72:82:39:f8:3c:0a:1c:f9:0f:80:f3:74:08: a4:e6:6d:fe:7b:8f:c7:eb:88:46:c7:5a:ca:8f:59: 3b:26:46:03:b0:94:b3:22:2f:02:3f:aa:84:5a:ca: ff:00:94:6c:af:52:be:96:05:32:42:16:b6:95:1e: c0:ff:dc:c1:98:52:99:fc:ad:96:9d:59:b9:fb:fe: 0d:1a:25:98:ae:d1:47:bd:a3:6f:95:d5:51:7e:07: 8f:da:71:8c:fd:0f:bf:89:6f:00:7c:ec:9e:06:5a: 85:e9:f8:b3:f7:4e:bb:89:cc:6d:19:a9:49:ca:45: d6:9e:64:37:8b:ff:9b:fd:cc:35:d8:76:60:9d:0c: 62:78:bc:57:da:ac:41:76:3a:c9:56:8c:24:10:bf: a0:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:B3:D0:AE:BB:11:EF:D8:BC:0F:94:16:70:EC:16:52:83:A9:C9:B0 X509v3 Authority Key Identifier: keyid:C5:CA:29:99:FE:76:12:F5:6C:CC:B7:44:17:43:B0:51:81:45:8E:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d67fb837-1b2f-4c4e-b999-6e990ddc1499/0/C5CA2999FE7612F56CCCB7441743B05181458ED0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C5CA2999FE7612F56CCCB7441743B05181458ED0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d67fb837-1b2f-4c4e-b999-6e990ddc1499/0/323030313a6466313a353638303a3a2f34382d3438203d3e20313339333738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df1:5680::/48 Signature Algorithm: sha256WithRSAEncryption 3a:76:8c:20:9a:83:4d:de:2f:6e:f4:15:14:80:49:1e:35:b7: 76:24:53:8b:5b:66:7b:29:ad:0e:3a:fb:e7:4c:31:e6:35:30: 0e:d8:42:97:4e:5d:5a:35:a1:b0:c8:89:e9:94:69:be:31:80: a5:c5:63:4c:35:0e:8d:db:da:ad:ab:95:37:22:75:5d:c5:63: a5:ad:da:90:5b:7d:41:54:4d:af:5d:52:16:ed:19:16:85:48: 28:2e:ea:30:53:65:29:28:ee:95:45:0f:c8:51:43:a5:84:6e: bf:08:6f:8c:ca:70:12:a8:08:a2:1f:12:ae:ce:02:bd:07:ea: 89:bd:0b:5d:70:aa:1c:76:ef:63:e6:17:6f:e0:ec:fa:07:e5: c2:d2:97:a2:c1:e6:5b:d3:ed:6c:e2:01:d6:bd:e6:6b:50:81: c7:7a:75:e3:c7:b8:10:e8:3d:f5:9b:e6:aa:bc:a4:98:af:5a: 92:95:8a:9d:68:4d:ce:fe:83:b4:60:fe:10:89:0e:28:c0:94: 5f:e0:27:b2:a4:f4:58:9d:6b:8a:63:65:9d:e7:35:a9:48:23: 32:09:e5:ed:85:8a:ff:ad:fb:3b:2c:e0:87:aa:a4:ba:fe:da: e9:2a:12:c9:fa:51:9c:ce:08:df:bb:b6:54:f0:ca:7d:c7:a6: 5d:6a:1b:7f -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUOFQ3OwyfSBEfKqukHj7ZlRDQhG0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzVDQTI5OTlGRTc2MTJGNTZDQ0NCNzQ0MTc0M0IwNTE4 MTQ1OEVEMDAeFw0yNTA2MDIwMTU4NDZaFw0yNjA2MDEwMjAzNDZaMDMxMTAvBgNV BAMTKEY2QjNEMEFFQkIxMUVGRDhCQzBGOTQxNjcwRUMxNjUyODNBOUM5QjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1MORtB0ovv53yUPJAood4ohS6 XWBelaGFSwA//X68119WyFMXnhKUitYpwCiHQCD8cwSY1TJCQCP+KS4jjnmAEhZ/ F/OhFV3ShlLjINU2WG77kPnb9r0a6KXKwcrKjqSkgmCheqSJqBPecoI5+DwKHPkP gPN0CKTmbf57j8friEbHWsqPWTsmRgOwlLMiLwI/qoRayv8AlGyvUr6WBTJCFraV HsD/3MGYUpn8rZadWbn7/g0aJZiu0Ue9o2+V1VF+B4/acYz9D7+JbwB87J4GWoXp +LP3TruJzG0ZqUnKRdaeZDeL/5v9zDXYdmCdDGJ4vFfarEF2OslWjCQQv6BzAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQU9rPQrrsR79i8D5QWcOwWUoOpybAwHwYDVR0j BBgwFoAUxcopmf52EvVszLdEF0OwUYFFjtAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k NjdmYjgzNy0xYjJmLTRjNGUtYjk5OS02ZTk5MGRkYzE0OTkvMC9DNUNBMjk5OUZF NzYxMkY1NkNDQ0I3NDQxNzQzQjA1MTgxNDU4RUQwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzVDQTI5OTlGRTc2MTJGNTZDQ0NCNzQ0MTc0M0IwNTE4MTQ1 OEVEMC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q2N2ZiODM3LTFiMmYtNGM0ZS1i OTk5LTZlOTkwZGRjMTQ5OS8wLzMyMzAzMDMxM2E2NDY2MzEzYTM1MzYzODMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM5MzMzNzM4LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8VaAMA0GCSqGSIb3DQEBCwUAA4IBAQA6dowgmoNN3i9u9BUUgEkeNbd2JFOLW2Z7 Ka0OOvvnTDHmNTAO2EKXTl1aNaGwyInplGm+MYClxWNMNQ6N29qtq5U3InVdxWOl rdqQW31BVE2vXVIW7RkWhUgoLuowU2UpKO6VRQ/IUUOlhG6/CG+MynASqAiiHxKu zgK9B+qJvQtdcKocdu9j5hdv4Oz6B+XC0peiweZb0+1s4gHWveZrUIHHenXjx7gQ 6D31m+aqvKSYr1qSlYqdaE3O/oO0YP4QiQ4owJRf4CeypPRYnWuKY2Wd5zWpSCMy CeXthYr/rfs7LOCHqqS6/trpKhLJ+lGczgjfu7ZU8Mp9x6Zdaht/ -----END CERTIFICATE-----Generated at Wed Jun 18 06:17:17 2025 by rpki-client