$ rpki-client -vvf repo-rpki.idnic.net/repo/07304b83-30aa-4bbf-9fd7-2fceadbf0030/0/323430313a626534303a3a2f33322d3332203d3e20313336383431.roa File: 323430313a626534303a3a2f33322d3332203d3e20313336383431.roa (raw, json) Hash identifier: UnpWLg0+2SsmnDXBrwzCKp1VDUDBelXMewYvLJ0BJ+c= Subject key identifier: E8:FE:73:92:87:FA:7B:9F:23:09:4B:98:18:2C:7C:9E:9D:EE:52:F5 Certificate issuer: /CN=645C9D445B2796662EE98A03E50C124F3E962CAB Certificate serial: 7BC126AAB8B9E82E62B00E79F715C325FAC9BCB0 Authority key identifier: 64:5C:9D:44:5B:27:96:66:2E:E9:8A:03:E5:0C:12:4F:3E:96:2C:AB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/645C9D445B2796662EE98A03E50C124F3E962CAB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/07304b83-30aa-4bbf-9fd7-2fceadbf0030/0/323430313a626534303a3a2f33322d3332203d3e20313336383431.roa Signing time: Wed 15 Oct 2025 03:00:02 +0000 ROA not before: Wed 15 Oct 2025 02:55:02 +0000 ROA not after: Wed 14 Oct 2026 03:00:02 +0000 asID: 136841 IP address blocks: 2401:be40::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/07304b83-30aa-4bbf-9fd7-2fceadbf0030/0/645C9D445B2796662EE98A03E50C124F3E962CAB.crl rsync://repo-rpki.idnic.net/repo/07304b83-30aa-4bbf-9fd7-2fceadbf0030/0/645C9D445B2796662EE98A03E50C124F3E962CAB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/645C9D445B2796662EE98A03E50C124F3E962CAB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 23:13:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:c1:26:aa:b8:b9:e8:2e:62:b0:0e:79:f7:15:c3:25:fa:c9:bc:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=645C9D445B2796662EE98A03E50C124F3E962CAB Validity Not Before: Oct 15 02:55:02 2025 GMT Not After : Oct 14 03:00:02 2026 GMT Subject: CN=E8FE739287FA7B9F23094B98182C7C9E9DEE52F5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:e3:dc:78:29:f3:5b:da:3b:22:f2:5c:3c:ff: 93:58:e6:a8:3e:a0:48:ba:77:9b:2a:d5:9e:a3:f7: 5e:80:0b:82:17:90:ab:74:a0:e5:e0:66:15:d0:a9: a5:6e:e9:4c:25:ef:29:c3:f8:ee:fa:a8:2b:5e:d3: fb:08:c1:32:e2:8d:33:47:13:2f:47:41:5d:c9:c7: f8:35:18:fd:3d:80:19:a8:b0:1b:43:2e:70:da:22: 3b:b9:b1:94:2c:1e:ed:a5:91:a6:b1:e0:fc:6f:14: d3:18:81:7e:f1:0f:1d:c5:8f:23:9e:7a:27:04:87: 21:fa:09:41:aa:f9:50:b1:b9:81:c4:7b:02:0d:13: f7:05:1b:5d:fc:bf:e2:ea:11:b5:9a:75:cc:1a:01: 7f:b0:61:fa:98:a1:1b:83:ab:5f:ca:ef:84:c7:19: 68:6c:51:0b:40:f2:a1:6d:22:ff:cc:77:c0:ee:3d: 03:49:44:30:98:ce:31:55:58:a7:fd:00:8e:59:8e: 0e:a2:4e:0d:05:68:8d:53:64:51:c5:88:d1:8d:44: 50:9b:5b:b3:2d:71:ed:85:6b:8e:db:b4:34:4f:a2: ff:d3:a0:0d:7e:db:26:d9:93:8b:88:25:ce:b2:db: 5e:42:2f:d1:b1:0e:5e:7f:98:38:36:59:58:d4:2d: 94:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:FE:73:92:87:FA:7B:9F:23:09:4B:98:18:2C:7C:9E:9D:EE:52:F5 X509v3 Authority Key Identifier: keyid:64:5C:9D:44:5B:27:96:66:2E:E9:8A:03:E5:0C:12:4F:3E:96:2C:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/07304b83-30aa-4bbf-9fd7-2fceadbf0030/0/645C9D445B2796662EE98A03E50C124F3E962CAB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/645C9D445B2796662EE98A03E50C124F3E962CAB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/07304b83-30aa-4bbf-9fd7-2fceadbf0030/0/323430313a626534303a3a2f33322d3332203d3e20313336383431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:be40::/32 Signature Algorithm: sha256WithRSAEncryption 87:18:f5:f4:90:18:31:a8:cd:d1:ec:b3:d6:3e:ba:8f:f3:56: 4a:db:6e:d1:a6:57:d7:66:0b:49:32:90:6f:a0:17:fd:33:f4: f3:e6:bd:db:6b:18:13:87:4f:3e:65:1a:1a:6a:ac:98:20:59: 0d:9a:ee:71:fb:df:c9:1a:82:74:fd:b0:d9:ee:64:78:51:37: 8a:c4:0f:b3:1e:6b:90:70:00:08:73:d6:07:88:ed:37:a0:56: d7:23:8b:29:b9:23:8d:1c:e9:ac:24:52:e7:ac:c0:73:a9:3c: e9:e8:ee:1d:3b:b6:3b:19:9f:8b:71:26:da:ae:36:57:56:0f: 97:e5:b9:06:06:da:46:08:75:d1:79:82:55:d0:02:31:f4:92: 1e:cc:cf:d5:be:8b:03:7c:c0:1b:c1:52:2e:42:6f:76:43:b0: 0e:11:40:a5:5b:e3:3d:07:0e:89:d0:75:d2:ad:01:69:78:fd: 18:88:89:75:2e:89:fc:95:7e:d6:7a:47:58:19:b2:18:32:56: e1:ac:8e:e3:ee:d8:85:cf:4c:40:7d:ae:9f:e9:5f:13:cd:fc: e2:ff:51:0f:cd:39:db:4e:b3:df:67:45:a5:35:b4:0e:66:84: 99:b6:7f:4b:5f:15:9a:6e:17:96:da:bc:e1:99:65:c7:71:76: 3a:eb:a5:1a -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUe8Emqri56C5isA559xXDJfrJvLAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjQ1QzlENDQ1QjI3OTY2NjJFRTk4QTAzRTUwQzEyNEYz RTk2MkNBQjAeFw0yNTEwMTUwMjU1MDJaFw0yNjEwMTQwMzAwMDJaMDMxMTAvBgNV BAMTKEU4RkU3MzkyODdGQTdCOUYyMzA5NEI5ODE4MkM3QzlFOURFRTUyRjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC049x4KfNb2jsi8lw8/5NY5qg+ oEi6d5sq1Z6j916AC4IXkKt0oOXgZhXQqaVu6Uwl7ynD+O76qCte0/sIwTLijTNH Ey9HQV3Jx/g1GP09gBmosBtDLnDaIju5sZQsHu2lkaax4PxvFNMYgX7xDx3FjyOe eicEhyH6CUGq+VCxuYHEewINE/cFG138v+LqEbWadcwaAX+wYfqYoRuDq1/K74TH GWhsUQtA8qFtIv/Md8DuPQNJRDCYzjFVWKf9AI5Zjg6iTg0FaI1TZFHFiNGNRFCb W7Mtce2Fa47btDRPov/ToA1+2ybZk4uIJc6y215CL9GxDl5/mDg2WVjULZS9AgMB AAGjggIzMIICLzAdBgNVHQ4EFgQU6P5zkof6e58jCUuYGCx8np3uUvUwHwYDVR0j BBgwFoAUZFydRFsnlmYu6YoD5QwSTz6WLKswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NzMwNGI4My0zMGFhLTRiYmYtOWZkNy0yZmNlYWRiZjAwMzAvMC82NDVDOUQ0NDVC Mjc5NjY2MkVFOThBMDNFNTBDMTI0RjNFOTYyQ0FCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjQ1QzlENDQ1QjI3OTY2NjJFRTk4QTAzRTUwQzEyNEYzRTk2 MkNBQi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA3MzA0YjgzLTMwYWEtNGJiZi05 ZmQ3LTJmY2VhZGJmMDAzMC8wLzMyMzQzMDMxM2E2MjY1MzQzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzMzNjM4MzQzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQBvkAwDQYJKoZI hvcNAQELBQADggEBAIcY9fSQGDGozdHss9Y+uo/zVkrbbtGmV9dmC0kykG+gF/0z 9PPmvdtrGBOHTz5lGhpqrJggWQ2a7nH738kagnT9sNnuZHhRN4rED7Mea5BwAAhz 1geI7TegVtcjiym5I40c6awkUueswHOpPOno7h07tjsZn4txJtquNldWD5fluQYG 2kYIddF5glXQAjH0kh7Mz9W+iwN8wBvBUi5Cb3ZDsA4RQKVb4z0HDonQddKtAWl4 /RiIiXUuifyVftZ6R1gZshgyVuGsjuPu2IXPTEB9rp/pXxPN/OL/UQ/NOdtOs99n RaU1tA5mhJm2f0tfFZpuF5bavOGZZcdxdjrrpRo= -----END CERTIFICATE-----Generated at Tue Oct 21 03:03:00 2025 by rpki-client