$ rpki-client -vvf repo-rpki.idnic.net/repo/f98f19c3-e4e1-41a1-aaf0-d613aca4930c/0/323030313a6466363a616330303a3a2f34382d3438203d3e203538343034.roa File: 323030313a6466363a616330303a3a2f34382d3438203d3e203538343034.roa (raw, json) Hash identifier: hmq0uoHwUsEo+oTXEtyTpYYQCEB74jpeYd9ceOhWLKI= Subject key identifier: 96:08:00:E1:84:69:BD:2B:C9:DC:D2:B7:37:CD:37:69:97:92:25:F1 Certificate issuer: /CN=528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB Certificate serial: 2133F5CA553711015651401D2736C45124FC6092 Authority key identifier: 52:8A:79:9E:94:BD:50:52:F6:F5:8A:CF:DD:9F:4D:ED:3A:0E:D5:BB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f98f19c3-e4e1-41a1-aaf0-d613aca4930c/0/323030313a6466363a616330303a3a2f34382d3438203d3e203538343034.roa Signing time: Wed 11 Jun 2025 10:00:02 +0000 ROA not before: Wed 11 Jun 2025 09:55:02 +0000 ROA not after: Wed 10 Jun 2026 10:00:02 +0000 asID: 58404 IP address blocks: 2001:df6:ac00::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f98f19c3-e4e1-41a1-aaf0-d613aca4930c/0/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.crl rsync://repo-rpki.idnic.net/repo/f98f19c3-e4e1-41a1-aaf0-d613aca4930c/0/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Nov 2025 11:29:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:33:f5:ca:55:37:11:01:56:51:40:1d:27:36:c4:51:24:fc:60:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB Validity Not Before: Jun 11 09:55:02 2025 GMT Not After : Jun 10 10:00:02 2026 GMT Subject: CN=960800E18469BD2BC9DCD2B737CD3769979225F1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:8d:18:c2:71:17:52:5d:0c:32:92:68:dd:85: 1c:65:e1:16:eb:de:1d:e0:60:f2:23:bf:62:60:d7: e3:f9:f1:2e:ed:ef:f6:75:bb:4c:0a:0d:63:22:32: d9:04:13:ab:88:d0:10:f6:2e:63:5e:86:65:e9:c0: 0a:7c:ae:8b:73:86:0a:75:b7:38:75:1a:e5:a4:40: 5a:67:1a:e7:cd:29:3a:ee:fd:e6:da:b8:28:ed:59: 1c:d8:10:d9:5c:c4:d4:b6:da:99:75:81:50:e7:ed: 16:6e:1f:14:57:8b:6d:73:18:67:9d:0e:f1:b8:0e: 13:e9:1b:f8:11:99:49:45:c7:d8:d4:36:e5:e7:08: 06:ec:80:ad:70:41:00:56:84:9f:c9:b5:a1:b2:90: 4c:42:0b:26:25:c5:f3:ba:7e:25:3e:4d:da:bb:28: 46:af:3d:89:ab:d6:62:53:56:2d:26:3d:77:80:7f: a9:4e:1e:5b:5e:55:25:11:83:b3:4f:ba:d3:2b:f2: 29:60:0f:3f:25:3b:67:19:d3:83:86:bd:86:3f:cc: 91:08:88:dd:5a:5d:46:c3:2e:c3:b7:41:06:e0:05: a4:79:d5:f8:b8:00:2b:dd:ee:d5:78:95:d7:7b:b7: 22:e6:36:c7:61:26:da:c6:2c:a0:b8:61:7c:d0:c5: 9a:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:08:00:E1:84:69:BD:2B:C9:DC:D2:B7:37:CD:37:69:97:92:25:F1 X509v3 Authority Key Identifier: keyid:52:8A:79:9E:94:BD:50:52:F6:F5:8A:CF:DD:9F:4D:ED:3A:0E:D5:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f98f19c3-e4e1-41a1-aaf0-d613aca4930c/0/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f98f19c3-e4e1-41a1-aaf0-d613aca4930c/0/323030313a6466363a616330303a3a2f34382d3438203d3e203538343034.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df6:ac00::/48 Signature Algorithm: sha256WithRSAEncryption 05:47:e5:7b:a8:e4:07:e8:46:52:51:a9:f7:c0:d6:d4:6f:38: 97:13:fa:29:09:ff:c3:f3:04:07:df:27:d0:01:8b:39:bd:a6: ec:1a:58:49:5c:6f:d3:4c:ef:4b:cd:10:e2:84:91:db:1c:c8: 02:4a:ad:f7:dc:4d:41:52:e7:51:ee:f9:09:c6:76:06:e4:cb: cd:8b:f8:1d:fc:1d:e0:f2:63:a5:dc:d1:48:43:88:3a:25:bb: 39:49:e2:4c:55:fa:29:e6:2e:61:a7:86:23:d5:39:57:68:51: cd:bc:c6:5f:05:95:cf:9f:04:b4:15:6a:d9:73:c9:6a:7f:3e: 22:e3:78:be:bf:fc:fc:97:b1:b0:a1:32:4e:b1:ad:37:b2:1f: 72:c1:ab:07:b8:1d:65:10:27:df:96:37:6a:29:0b:2d:b3:80: 33:b3:dc:83:36:04:85:16:88:09:3f:bd:24:a0:15:4a:d2:a5: ac:e1:d0:a1:4a:bf:c1:00:ca:e5:4a:0e:0f:9c:40:8a:f3:c9: 4d:1e:78:f9:5b:fa:02:66:18:f1:b4:78:cc:83:c8:65:88:09: cb:54:07:9a:c6:b1:d9:08:2b:95:57:36:92:94:29:e2:b7:85: 15:33:d5:62:48:88:4b:11:a4:d7:e9:d4:8f:2f:ba:7a:64:a4: db:f8:00:d2 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUITP1ylU3EQFWUUAdJzbEUST8YJIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTI4QTc5OUU5NEJENTA1MkY2RjU4QUNGREQ5RjRERUQz QTBFRDVCQjAeFw0yNTA2MTEwOTU1MDJaFw0yNjA2MTAxMDAwMDJaMDMxMTAvBgNV BAMTKDk2MDgwMEUxODQ2OUJEMkJDOURDRDJCNzM3Q0QzNzY5OTc5MjI1RjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHjRjCcRdSXQwykmjdhRxl4Rbr 3h3gYPIjv2Jg1+P58S7t7/Z1u0wKDWMiMtkEE6uI0BD2LmNehmXpwAp8rotzhgp1 tzh1GuWkQFpnGufNKTru/ebauCjtWRzYENlcxNS22pl1gVDn7RZuHxRXi21zGGed DvG4DhPpG/gRmUlFx9jUNuXnCAbsgK1wQQBWhJ/JtaGykExCCyYlxfO6fiU+Tdq7 KEavPYmr1mJTVi0mPXeAf6lOHlteVSURg7NPutMr8ilgDz8lO2cZ04OGvYY/zJEI iN1aXUbDLsO3QQbgBaR51fi4ACvd7tV4ldd7tyLmNsdhJtrGLKC4YXzQxZovAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUlggA4YRpvSvJ3NK3N803aZeSJfEwHwYDVR0j BBgwFoAUUop5npS9UFL29YrP3Z9N7ToO1bswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m OThmMTljMy1lNGUxLTQxYTEtYWFmMC1kNjEzYWNhNDkzMGMvMC81MjhBNzk5RTk0 QkQ1MDUyRjZGNThBQ0ZERDlGNERFRDNBMEVENUJCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTI4QTc5OUU5NEJENTA1MkY2RjU4QUNGREQ5RjRERUQzQTBF RDVCQi5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Y5OGYxOWMzLWU0ZTEtNDFhMS1h YWYwLWQ2MTNhY2E0OTMwYy8wLzMyMzAzMDMxM2E2NDY2MzYzYTYxNjMzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzUzODM0MzAzNC5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACABDfas ADANBgkqhkiG9w0BAQsFAAOCAQEABUfle6jkB+hGUlGp98DW1G84lxP6KQn/w/ME B98n0AGLOb2m7BpYSVxv00zvS80Q4oSR2xzIAkqt99xNQVLnUe75CcZ2BuTLzYv4 Hfwd4PJjpdzRSEOIOiW7OUniTFX6KeYuYaeGI9U5V2hRzbzGXwWVz58EtBVq2XPJ an8+IuN4vr/8/JexsKEyTrGtN7IfcsGrB7gdZRAn35Y3aikLLbOAM7PcgzYEhRaI CT+9JKAVStKlrOHQoUq/wQDK5UoOD5xAivPJTR54+Vv6AmYY8bR4zIPIZYgJy1QH msax2QgrlVc2kpQp4reFFTPVYkiISxGk1+nUjy+6emSk2/gA0g== -----END CERTIFICATE-----Generated at Wed Nov 5 16:08:33 2025 by rpki-client