$ rpki-client -vvf repo-rpki.idnic.net/repo/06a7665a-b50b-4a45-a8f9-0d69bd7d743d/0/323030313a6466303a663530303a3a2f34382d3438203d3e20313432333739.roa File: 323030313a6466303a663530303a3a2f34382d3438203d3e20313432333739.roa (raw, json) Hash identifier: BfvR/So226bitOLhPr9CHxhxgb1Q7qOXOhbe2UXDXlU= Subject key identifier: EA:6E:9F:BB:CD:7C:0F:51:61:BB:5C:AF:79:6D:59:7D:57:24:6A:64 Certificate issuer: /CN=25D788BD2A450C01354B9AB70826895FDFF56208 Certificate serial: 5098D2E102A0F09524A585A2DC9F1695F8BD64A0 Authority key identifier: 25:D7:88:BD:2A:45:0C:01:35:4B:9A:B7:08:26:89:5F:DF:F5:62:08 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/25D788BD2A450C01354B9AB70826895FDFF56208.cer Subject info access: rsync://repo-rpki.idnic.net/repo/06a7665a-b50b-4a45-a8f9-0d69bd7d743d/0/323030313a6466303a663530303a3a2f34382d3438203d3e20313432333739.roa Signing time: Sun 21 Sep 2025 05:02:22 +0000 ROA not before: Sun 21 Sep 2025 04:57:22 +0000 ROA not after: Sun 20 Sep 2026 05:02:22 +0000 asID: 142379 IP address blocks: 2001:df0:f500::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/06a7665a-b50b-4a45-a8f9-0d69bd7d743d/0/25D788BD2A450C01354B9AB70826895FDFF56208.crl rsync://repo-rpki.idnic.net/repo/06a7665a-b50b-4a45-a8f9-0d69bd7d743d/0/25D788BD2A450C01354B9AB70826895FDFF56208.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/25D788BD2A450C01354B9AB70826895FDFF56208.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 07:06:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:98:d2:e1:02:a0:f0:95:24:a5:85:a2:dc:9f:16:95:f8:bd:64:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=25D788BD2A450C01354B9AB70826895FDFF56208 Validity Not Before: Sep 21 04:57:22 2025 GMT Not After : Sep 20 05:02:22 2026 GMT Subject: CN=EA6E9FBBCD7C0F5161BB5CAF796D597D57246A64 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:3b:a2:1d:b1:14:60:ee:01:da:11:97:44:c8: 79:79:04:2f:4b:41:b4:eb:8c:d5:c0:c3:0c:8a:0b: a0:9c:d1:4e:63:c7:e7:b8:ea:4f:99:a7:f2:73:c0: ea:60:3b:a4:e1:b4:9b:db:74:1b:9e:e8:3d:46:97: 72:5a:ae:cc:df:66:75:61:75:5f:30:8c:01:b9:c4: d1:5d:3a:c3:2b:20:1b:f7:7f:ee:4e:71:6c:51:3a: 3e:9d:32:bf:c1:a9:d6:ae:23:06:a9:3c:d3:17:b9: de:06:fe:74:52:87:06:82:cc:40:dd:fc:27:b2:41: a9:b3:d9:0d:2e:88:18:ab:fb:4b:d0:71:51:32:3b: 26:c5:22:0c:aa:e1:bb:65:ce:a7:74:43:48:a1:9b: 1a:b6:7f:d4:59:93:a3:36:80:32:8a:44:bf:f8:32: d5:5c:cc:bd:4a:ce:59:5d:49:85:60:e9:3e:66:cc: 77:54:7d:78:fb:02:0a:0e:6c:b1:74:49:e4:c5:db: 99:d0:f4:3a:d8:84:4e:20:0e:1b:de:ae:26:d1:3d: 7f:86:22:c4:67:29:f6:10:5f:00:70:87:fb:fa:e4: 75:05:9f:e8:e9:18:98:f6:d0:53:4a:98:78:9a:17: 21:3c:4f:85:8b:a2:6b:2f:31:38:6d:19:c2:66:a2: bf:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:6E:9F:BB:CD:7C:0F:51:61:BB:5C:AF:79:6D:59:7D:57:24:6A:64 X509v3 Authority Key Identifier: keyid:25:D7:88:BD:2A:45:0C:01:35:4B:9A:B7:08:26:89:5F:DF:F5:62:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/06a7665a-b50b-4a45-a8f9-0d69bd7d743d/0/25D788BD2A450C01354B9AB70826895FDFF56208.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/25D788BD2A450C01354B9AB70826895FDFF56208.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/06a7665a-b50b-4a45-a8f9-0d69bd7d743d/0/323030313a6466303a663530303a3a2f34382d3438203d3e20313432333739.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df0:f500::/48 Signature Algorithm: sha256WithRSAEncryption c8:b9:f7:40:d3:d3:6f:c1:ca:49:7f:06:ce:3f:cf:5f:1a:22: ec:0a:7d:91:2a:63:6c:d3:43:ff:90:aa:fb:1f:f1:33:5c:d8: f7:2d:9c:f9:0d:1c:2a:82:81:35:51:16:3f:f2:8a:05:3a:80: b0:b1:37:0f:05:57:9b:6a:aa:9e:46:b0:42:12:3f:db:c5:5a: c2:9d:ee:86:9d:68:4f:57:2d:c9:ce:75:a4:15:30:81:3b:55: 70:82:3e:51:3d:9d:e7:59:5c:8f:08:80:26:bf:4e:64:dc:a2: 39:3f:09:3c:9c:ef:14:e6:92:c9:f4:d6:d0:0e:d7:58:2c:31: 66:48:5f:c7:8b:41:00:77:a0:9b:09:34:03:f4:d6:61:b2:b7: 68:4f:fd:0d:a6:d4:51:39:d6:a6:12:09:62:e7:27:71:51:e6: 37:5f:ad:e0:fd:61:39:36:7f:d4:af:38:ec:04:9f:d8:73:ac: 57:bf:86:3c:81:9b:64:25:92:71:6e:54:8c:c7:d6:d3:2c:01: 0b:13:f9:b5:10:27:a8:29:21:26:08:1d:c3:05:7a:6e:ae:eb: da:9b:f9:63:55:22:21:e9:95:80:3e:b8:24:dd:76:aa:1d:74: 71:4a:78:b5:2f:10:7e:0d:d9:30:dc:c9:6e:f6:90:d8:e2:22: 27:3c:71:5d -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUUJjS4QKg8JUkpYWi3J8Wlfi9ZKAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjVENzg4QkQyQTQ1MEMwMTM1NEI5QUI3MDgyNjg5NUZE RkY1NjIwODAeFw0yNTA5MjEwNDU3MjJaFw0yNjA5MjAwNTAyMjJaMDMxMTAvBgNV BAMTKEVBNkU5RkJCQ0Q3QzBGNTE2MUJCNUNBRjc5NkQ1OTdENTcyNDZBNjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1O6IdsRRg7gHaEZdEyHl5BC9L QbTrjNXAwwyKC6Cc0U5jx+e46k+Zp/JzwOpgO6ThtJvbdBue6D1Gl3JarszfZnVh dV8wjAG5xNFdOsMrIBv3f+5OcWxROj6dMr/BqdauIwapPNMXud4G/nRShwaCzEDd /CeyQamz2Q0uiBir+0vQcVEyOybFIgyq4btlzqd0Q0ihmxq2f9RZk6M2gDKKRL/4 MtVczL1KzlldSYVg6T5mzHdUfXj7AgoObLF0SeTF25nQ9DrYhE4gDhveribRPX+G IsRnKfYQXwBwh/v65HUFn+jpGJj20FNKmHiaFyE8T4WLomsvMThtGcJmor+9AgMB AAGjggI9MIICOTAdBgNVHQ4EFgQU6m6fu818D1Fhu1yveW1ZfVckamQwHwYDVR0j BBgwFoAUJdeIvSpFDAE1S5q3CCaJX9/1YggwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NmE3NjY1YS1iNTBiLTRhNDUtYThmOS0wZDY5YmQ3ZDc0M2QvMC8yNUQ3ODhCRDJB NDUwQzAxMzU0QjlBQjcwODI2ODk1RkRGRjU2MjA4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjVENzg4QkQyQTQ1MEMwMTM1NEI5QUI3MDgyNjg5NUZERkY1 NjIwOC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA2YTc2NjVhLWI1MGItNGE0NS1h OGY5LTBkNjliZDdkNzQzZC8wLzMyMzAzMDMxM2E2NDY2MzAzYTY2MzUzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNDMyMzMzNzM5LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8PUAMA0GCSqGSIb3DQEBCwUAA4IBAQDIufdA09NvwcpJfwbOP89fGiLsCn2RKmNs 00P/kKr7H/EzXNj3LZz5DRwqgoE1URY/8ooFOoCwsTcPBVebaqqeRrBCEj/bxVrC ne6GnWhPVy3JznWkFTCBO1Vwgj5RPZ3nWVyPCIAmv05k3KI5Pwk8nO8U5pLJ9NbQ DtdYLDFmSF/Hi0EAd6CbCTQD9NZhsrdoT/0NptRROdamEgli5ydxUeY3X63g/WE5 Nn/UrzjsBJ/Yc6xXv4Y8gZtkJZJxblSMx9bTLAELE/m1ECeoKSEmCB3DBXpuruva m/ljVSIh6ZWAPrgk3XaqHXRxSni1LxB+Ddkw3Mlu9pDY4iInPHFd -----END CERTIFICATE-----Generated at Mon Oct 20 20:34:28 2025 by rpki-client