$ rpki-client -vvf repo-rpki.idnic.net/repo/07a1ce4e-59c8-41cc-b5e6-bd7b7a704356/0/323430363a333834303a3a2f33322d3438203d3e20313430343438.roa File: 323430363a333834303a3a2f33322d3438203d3e20313430343438.roa (raw, json) Hash identifier: jGdjjz2tkcnePijzwx0ZLso64VGE3BptkrmYyqOOX94= Subject key identifier: 94:B1:21:55:C6:1E:4E:0D:38:C2:53:2E:CC:7B:8E:E3:AC:22:26:D4 Certificate issuer: /CN=230A81B283314BA79BFA024FDF9FF4DA66B424BE Certificate serial: 2A1BCBB0FA0E3FAB84C3B1FB82555273AB265D9A Authority key identifier: 23:0A:81:B2:83:31:4B:A7:9B:FA:02:4F:DF:9F:F4:DA:66:B4:24:BE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/230A81B283314BA79BFA024FDF9FF4DA66B424BE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/07a1ce4e-59c8-41cc-b5e6-bd7b7a704356/0/323430363a333834303a3a2f33322d3438203d3e20313430343438.roa Signing time: Wed 24 Sep 2025 15:00:00 +0000 ROA not before: Wed 24 Sep 2025 14:55:00 +0000 ROA not after: Wed 23 Sep 2026 15:00:00 +0000 asID: 140448 IP address blocks: 2406:3840::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/07a1ce4e-59c8-41cc-b5e6-bd7b7a704356/0/230A81B283314BA79BFA024FDF9FF4DA66B424BE.crl rsync://repo-rpki.idnic.net/repo/07a1ce4e-59c8-41cc-b5e6-bd7b7a704356/0/230A81B283314BA79BFA024FDF9FF4DA66B424BE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/230A81B283314BA79BFA024FDF9FF4DA66B424BE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 07:07:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:1b:cb:b0:fa:0e:3f:ab:84:c3:b1:fb:82:55:52:73:ab:26:5d:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=230A81B283314BA79BFA024FDF9FF4DA66B424BE Validity Not Before: Sep 24 14:55:00 2025 GMT Not After : Sep 23 15:00:00 2026 GMT Subject: CN=94B12155C61E4E0D38C2532ECC7B8EE3AC2226D4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:a7:1a:33:65:be:18:c6:d6:68:67:59:63:5b: e1:aa:49:fc:6b:e6:89:a9:05:1b:11:51:21:37:41: 5e:e0:b6:9a:cb:f7:0b:c0:68:94:f1:ee:c4:8d:b0: 60:b1:c1:d1:49:75:24:87:3f:92:91:3f:5b:01:85: d1:80:89:55:bf:79:a6:20:40:c8:df:e8:c3:a7:2a: 46:e1:7b:78:3e:36:94:39:79:0d:e8:c4:e3:53:1c: 58:53:30:af:98:2b:88:51:90:64:af:11:6a:c2:91: 2b:71:68:a6:6e:bc:1f:81:51:a1:2f:1a:ce:ff:6e: d3:c5:63:72:6b:86:dc:46:b1:4b:a7:9d:50:3f:97: ba:40:1e:79:de:14:00:20:e5:df:4f:3b:8d:98:94: 69:c9:e4:97:1e:59:46:0a:c6:90:83:36:32:89:b8: a5:25:74:87:49:95:46:ec:f5:49:52:07:79:60:da: 45:c9:a0:60:3f:ae:60:0e:2a:41:56:b3:47:76:e4: ea:8c:47:51:fb:b5:5d:9c:84:13:a8:82:b5:ac:0f: ca:a9:5c:13:5e:a4:9b:e2:44:25:b6:e4:fe:69:e7: 7c:f9:ed:03:5c:55:94:b9:14:48:e1:e5:72:fd:74: ba:dd:d4:dc:75:00:17:46:ea:c8:71:94:26:fe:9c: 5d:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:B1:21:55:C6:1E:4E:0D:38:C2:53:2E:CC:7B:8E:E3:AC:22:26:D4 X509v3 Authority Key Identifier: keyid:23:0A:81:B2:83:31:4B:A7:9B:FA:02:4F:DF:9F:F4:DA:66:B4:24:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/07a1ce4e-59c8-41cc-b5e6-bd7b7a704356/0/230A81B283314BA79BFA024FDF9FF4DA66B424BE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/230A81B283314BA79BFA024FDF9FF4DA66B424BE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/07a1ce4e-59c8-41cc-b5e6-bd7b7a704356/0/323430363a333834303a3a2f33322d3438203d3e20313430343438.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:3840::/32 Signature Algorithm: sha256WithRSAEncryption 2d:84:6f:da:27:5d:7e:9c:70:78:d4:bb:9a:5a:2b:50:48:31: 07:bb:8f:d6:6d:9e:2f:30:c5:76:07:f3:6f:be:ac:2b:40:fd: 25:6b:bd:ea:31:51:d0:6f:4f:84:4b:eb:59:43:8e:40:79:f3: b2:ea:a7:67:11:d6:92:a3:a6:ef:2a:b9:b8:3e:b3:31:84:64: 38:23:9f:2d:f0:4b:79:0f:75:4d:dd:a4:91:cf:69:75:f3:8a: 75:38:93:e0:eb:55:09:d6:bf:f6:db:12:a5:23:c2:06:11:e8: ac:4e:44:f7:cd:a0:4c:46:90:4a:34:3c:c1:e4:86:1f:92:21: 38:d9:1d:2a:91:a8:bf:29:fd:1d:39:ed:bc:a0:dd:02:dc:af: 3b:ac:d2:04:4f:93:62:c1:40:1d:f4:48:99:a1:fc:82:0e:f6: 6f:47:36:cb:03:ff:cf:7c:3f:03:88:30:6a:68:9b:38:02:94: c1:f1:39:c9:44:97:2e:f3:8e:18:62:88:90:8c:fc:48:24:04: ca:8e:d8:20:45:6f:1d:a5:70:88:a5:44:25:1b:66:0f:df:c4: cc:5e:72:4d:a9:a1:f0:3f:6a:87:ad:c8:17:53:61:27:52:dc: c4:a3:f7:49:1d:11:cf:d1:7f:c3:df:2a:aa:45:6f:c0:23:2e: 5d:d4:49:79 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUKhvLsPoOP6uEw7H7glVSc6smXZowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjMwQTgxQjI4MzMxNEJBNzlCRkEwMjRGREY5RkY0REE2 NkI0MjRCRTAeFw0yNTA5MjQxNDU1MDBaFw0yNjA5MjMxNTAwMDBaMDMxMTAvBgNV BAMTKDk0QjEyMTU1QzYxRTRFMEQzOEMyNTMyRUNDN0I4RUUzQUMyMjI2RDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0pxozZb4YxtZoZ1ljW+GqSfxr 5ompBRsRUSE3QV7gtprL9wvAaJTx7sSNsGCxwdFJdSSHP5KRP1sBhdGAiVW/eaYg QMjf6MOnKkbhe3g+NpQ5eQ3oxONTHFhTMK+YK4hRkGSvEWrCkStxaKZuvB+BUaEv Gs7/btPFY3JrhtxGsUunnVA/l7pAHnneFAAg5d9PO42YlGnJ5JceWUYKxpCDNjKJ uKUldIdJlUbs9UlSB3lg2kXJoGA/rmAOKkFWs0d25OqMR1H7tV2chBOogrWsD8qp XBNepJviRCW25P5p53z57QNcVZS5FEjh5XL9dLrd1Nx1ABdG6shxlCb+nF1jAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUlLEhVcYeTg04wlMuzHuO46wiJtQwHwYDVR0j BBgwFoAUIwqBsoMxS6eb+gJP35/02ma0JL4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w N2ExY2U0ZS01OWM4LTQxY2MtYjVlNi1iZDdiN2E3MDQzNTYvMC8yMzBBODFCMjgz MzE0QkE3OUJGQTAyNEZERjlGRjREQTY2QjQyNEJFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjMwQTgxQjI4MzMxNEJBNzlCRkEwMjRGREY5RkY0REE2NkI0 MjRCRS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA3YTFjZTRlLTU5YzgtNDFjYy1i NWU2LWJkN2I3YTcwNDM1Ni8wLzMyMzQzMDM2M2EzMzM4MzQzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMxMzQzMDM0MzQzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQGOEAwDQYJKoZI hvcNAQELBQADggEBAC2Eb9onXX6ccHjUu5paK1BIMQe7j9Ztni8wxXYH82++rCtA /SVrveoxUdBvT4RL61lDjkB587Lqp2cR1pKjpu8qubg+szGEZDgjny3wS3kPdU3d pJHPaXXzinU4k+DrVQnWv/bbEqUjwgYR6KxORPfNoExGkEo0PMHkhh+SITjZHSqR qL8p/R057byg3QLcrzus0gRPk2LBQB30SJmh/IIO9m9HNssD/898PwOIMGpomzgC lMHxOclEly7zjhhiiJCM/EgkBMqO2CBFbx2lcIilRCUbZg/fxMxeck2pofA/aoet yBdTYSdS3MSj90kdEc/Rf8PfKqpFb8AjLl3USXk= -----END CERTIFICATE-----Generated at Tue Oct 21 00:48:12 2025 by rpki-client