$ rpki-client -vvf repo-rpki.idnic.net/repo/009c22b1-1b7b-4671-ab94-5c5e74882547/0/323430333a626130303a3630303a3a2f34302d3438203d3e203234353231.roa File: 323430333a626130303a3630303a3a2f34302d3438203d3e203234353231.roa (raw, json) Hash identifier: 3d/V5R3s99pTSM8/puBLUbnmOCHIHkwIjm/VO8zQunM= Subject key identifier: 8F:B4:28:D1:CA:D3:33:A3:4A:24:1B:EF:0D:5F:B6:95:17:CE:B9:49 Certificate issuer: /CN=C3F745EDE7F4C0D8E5674965B52080083B271E3E Certificate serial: 45301D51E67A321C61CEDBBBAA893E9E4E647CE1 Authority key identifier: C3:F7:45:ED:E7:F4:C0:D8:E5:67:49:65:B5:20:80:08:3B:27:1E:3E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C3F745EDE7F4C0D8E5674965B52080083B271E3E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/009c22b1-1b7b-4671-ab94-5c5e74882547/0/323430333a626130303a3630303a3a2f34302d3438203d3e203234353231.roa Signing time: Mon 06 Oct 2025 04:02:56 +0000 ROA not before: Mon 06 Oct 2025 03:57:56 +0000 ROA not after: Mon 05 Oct 2026 04:02:56 +0000 asID: 24521 IP address blocks: 2403:ba00:600::/40 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/009c22b1-1b7b-4671-ab94-5c5e74882547/0/C3F745EDE7F4C0D8E5674965B52080083B271E3E.crl rsync://repo-rpki.idnic.net/repo/009c22b1-1b7b-4671-ab94-5c5e74882547/0/C3F745EDE7F4C0D8E5674965B52080083B271E3E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C3F745EDE7F4C0D8E5674965B52080083B271E3E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 14:25:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:30:1d:51:e6:7a:32:1c:61:ce:db:bb:aa:89:3e:9e:4e:64:7c:e1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C3F745EDE7F4C0D8E5674965B52080083B271E3E Validity Not Before: Oct 6 03:57:56 2025 GMT Not After : Oct 5 04:02:56 2026 GMT Subject: CN=8FB428D1CAD333A34A241BEF0D5FB69517CEB949 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:f8:9a:e1:f5:6c:0a:6c:1b:86:ab:cc:5a:8a: 2e:40:36:4e:3c:54:66:d5:e4:21:f4:ee:6a:25:1f: 15:81:d4:58:58:9d:ec:6b:38:e7:ac:08:cc:94:0e: b8:9a:5a:7d:e4:df:34:da:0d:6d:2c:c4:48:21:ad: 9f:a1:e6:0d:30:64:1a:03:1a:47:fd:35:b8:6b:12: 1f:5e:af:cf:c2:52:38:31:8e:1c:c5:25:52:23:ee: f2:fd:19:ab:de:06:a3:c1:9f:a8:16:ee:3d:a7:34: de:76:e2:27:7e:57:f5:45:8d:85:c9:72:7b:75:21: e7:43:23:00:84:f0:1b:5e:b1:b4:0b:5b:1b:9c:61: 9f:ef:fb:dd:a9:fa:87:26:32:6a:dd:56:74:99:7a: cf:90:91:7f:a6:9c:b5:8a:62:e5:7d:46:ba:12:77: 10:12:ac:be:4c:d0:19:ef:59:4f:8a:b0:a3:61:d1: 22:fa:37:fa:63:a7:3f:76:cb:fb:da:b0:fb:dc:f8: 9b:bc:da:b1:09:85:8f:30:6b:e1:0c:59:e0:64:47: 4a:11:ad:4f:c4:fd:44:e6:fd:25:54:49:a4:46:be: dc:26:c1:e5:a6:b4:72:35:98:e8:76:80:3b:1f:1e: b5:de:7e:a1:00:9b:75:f9:e8:c0:a3:8f:84:5c:b8: 01:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:B4:28:D1:CA:D3:33:A3:4A:24:1B:EF:0D:5F:B6:95:17:CE:B9:49 X509v3 Authority Key Identifier: keyid:C3:F7:45:ED:E7:F4:C0:D8:E5:67:49:65:B5:20:80:08:3B:27:1E:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/009c22b1-1b7b-4671-ab94-5c5e74882547/0/C3F745EDE7F4C0D8E5674965B52080083B271E3E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C3F745EDE7F4C0D8E5674965B52080083B271E3E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/009c22b1-1b7b-4671-ab94-5c5e74882547/0/323430333a626130303a3630303a3a2f34302d3438203d3e203234353231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:ba00:600::/40 Signature Algorithm: sha256WithRSAEncryption 6f:9f:3c:c4:8b:6f:2e:8b:b5:6e:e0:6f:f7:6b:db:a8:0f:ae: 27:75:8d:25:65:ab:2f:8f:e3:79:d7:e1:92:e7:e6:46:08:d7: f5:07:8f:39:87:c6:4b:a6:42:49:57:7b:c0:4c:ce:99:2f:63: 7c:ff:80:c6:81:98:2e:ba:ad:26:c7:2f:ca:ef:a2:92:6b:c3: 0d:cf:8f:28:89:a9:0a:f2:98:09:84:80:e6:37:de:47:d0:f9: 7c:a1:2e:93:5c:f1:70:7c:3a:7f:9a:c3:b5:7f:ff:a9:e4:6d: e3:0a:82:df:d9:a4:43:dd:29:78:9e:e6:bc:65:b0:5c:43:e7: 95:30:f9:93:83:93:f8:08:86:ef:f2:4e:ed:6b:f2:74:b3:c3: b2:c6:83:26:9f:a0:e6:09:8c:f1:37:4d:d0:8a:c7:8c:3e:fd: db:8d:7f:98:8f:61:2c:ef:f5:e5:80:83:42:71:8b:56:91:2c: 02:91:69:72:bf:69:06:ed:9d:e8:44:34:73:15:bb:bc:ad:d6: bf:7f:75:7e:87:be:04:04:53:33:37:bc:6c:34:29:89:6c:c3: 0d:9f:0e:7f:6b:95:86:b0:03:83:4f:a2:d6:70:6a:a2:ee:48: eb:d8:cd:23:e6:96:0f:b4:d1:6f:1b:ca:0b:30:bc:b5:74:ac: 4b:4e:66:44 -----BEGIN CERTIFICATE----- MIIFMDCCBBigAwIBAgIURTAdUeZ6Mhxhztu7qok+nk5kfOEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzNGNzQ1RURFN0Y0QzBEOEU1Njc0OTY1QjUyMDgwMDgz QjI3MUUzRTAeFw0yNTEwMDYwMzU3NTZaFw0yNjEwMDUwNDAyNTZaMDMxMTAvBgNV BAMTKDhGQjQyOEQxQ0FEMzMzQTM0QTI0MUJFRjBENUZCNjk1MTdDRUI5NDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDU+Jrh9WwKbBuGq8xaii5ANk48 VGbV5CH07molHxWB1FhYnexrOOesCMyUDriaWn3k3zTaDW0sxEghrZ+h5g0wZBoD Gkf9NbhrEh9er8/CUjgxjhzFJVIj7vL9GaveBqPBn6gW7j2nNN524id+V/VFjYXJ cnt1IedDIwCE8BtesbQLWxucYZ/v+92p+ocmMmrdVnSZes+QkX+mnLWKYuV9RroS dxASrL5M0BnvWU+KsKNh0SL6N/pjpz92y/vasPvc+Ju82rEJhY8wa+EMWeBkR0oR rU/E/UTm/SVUSaRGvtwmweWmtHI1mOh2gDsfHrXefqEAm3X56MCjj4RcuAHpAgMB AAGjggI6MIICNjAdBgNVHQ4EFgQUj7Qo0crTM6NKJBvvDV+2lRfOuUkwHwYDVR0j BBgwFoAUw/dF7ef0wNjlZ0lltSCACDsnHj4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w MDljMjJiMS0xYjdiLTQ2NzEtYWI5NC01YzVlNzQ4ODI1NDcvMC9DM0Y3NDVFREU3 RjRDMEQ4RTU2NzQ5NjVCNTIwODAwODNCMjcxRTNFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzNGNzQ1RURFN0Y0QzBEOEU1Njc0OTY1QjUyMDgwMDgzQjI3 MUUzRS5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzAwOWMyMmIxLTFiN2ItNDY3MS1h Yjk0LTVjNWU3NDg4MjU0Ny8wLzMyMzQzMDMzM2E2MjYxMzAzMDNhMzYzMDMwM2Ez YTJmMzQzMDJkMzQzODIwM2QzZTIwMzIzNDM1MzIzMS5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGACQDugAG MA0GCSqGSIb3DQEBCwUAA4IBAQBvnzzEi28ui7Vu4G/3a9uoD64ndY0lZasvj+N5 1+GS5+ZGCNf1B485h8ZLpkJJV3vATM6ZL2N8/4DGgZguuq0mxy/K76KSa8MNz48o iakK8pgJhIDmN95H0Pl8oS6TXPFwfDp/msO1f/+p5G3jCoLf2aRD3Sl4nua8ZbBc Q+eVMPmTg5P4CIbv8k7ta/J0s8OyxoMmn6DmCYzxN03QiseMPv3bjX+Yj2Es7/Xl gINCcYtWkSwCkWlyv2kG7Z3oRDRzFbu8rda/f3V+h74EBFMzN7xsNCmJbMMNnw5/ a5WGsAODT6LWcGqi7kjr2M0j5pYPtNFvG8oLMLy1dKxLTmZE -----END CERTIFICATE-----Generated at Tue Oct 21 04:49:52 2025 by rpki-client