$ rpki-client -vvf repo-rpki.idnic.net/repo/0f0bcdc3-0fea-4747-9907-656486bae8da/0/323030313a6466323a623263303a3a2f34382d3438203d3e20313530393538.roa File: 323030313a6466323a623263303a3a2f34382d3438203d3e20313530393538.roa (raw, json) Hash identifier: BIDljILBNKsrSwzyZxnTSaIaANst4K6p4IMi96hI1tI= Subject key identifier: 1C:BE:A8:F6:B1:55:A1:61:EB:AA:F0:65:40:E5:8E:41:1E:C9:D9:54 Certificate issuer: /CN=DA737E8BB9E3519F19E608DC3E839F360D2C4623 Certificate serial: 73E3A2E12D6F177CCAFE197697A123D88C45217E Authority key identifier: DA:73:7E:8B:B9:E3:51:9F:19:E6:08:DC:3E:83:9F:36:0D:2C:46:23 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA737E8BB9E3519F19E608DC3E839F360D2C4623.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0f0bcdc3-0fea-4747-9907-656486bae8da/0/323030313a6466323a623263303a3a2f34382d3438203d3e20313530393538.roa Signing time: Mon 08 Sep 2025 14:00:00 +0000 ROA not before: Mon 08 Sep 2025 13:55:00 +0000 ROA not after: Mon 07 Sep 2026 14:00:00 +0000 asID: 150958 IP address blocks: 2001:df2:b2c0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0f0bcdc3-0fea-4747-9907-656486bae8da/0/DA737E8BB9E3519F19E608DC3E839F360D2C4623.crl rsync://repo-rpki.idnic.net/repo/0f0bcdc3-0fea-4747-9907-656486bae8da/0/DA737E8BB9E3519F19E608DC3E839F360D2C4623.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA737E8BB9E3519F19E608DC3E839F360D2C4623.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Oct 2025 23:13:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:e3:a2:e1:2d:6f:17:7c:ca:fe:19:76:97:a1:23:d8:8c:45:21:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DA737E8BB9E3519F19E608DC3E839F360D2C4623 Validity Not Before: Sep 8 13:55:00 2025 GMT Not After : Sep 7 14:00:00 2026 GMT Subject: CN=1CBEA8F6B155A161EBAAF06540E58E411EC9D954 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:60:7c:06:4c:0d:ab:32:0f:6d:3b:fb:75:11: 99:5e:06:29:af:52:1c:61:ee:3f:9b:8f:c2:86:1f: 7e:2b:57:a1:b1:27:d0:f0:cf:59:22:34:ba:b1:b2: 0d:70:bd:bc:ef:3d:d6:21:e5:e9:a0:a3:dc:da:fc: 99:23:a4:57:1e:68:2e:b1:68:92:ef:3f:87:8d:c9: fe:5e:c4:5a:b8:cf:02:3e:62:6b:c9:ba:5b:48:18: a4:ed:36:a6:88:ec:12:f8:b7:93:32:ed:3c:b0:21: 6a:68:95:56:a1:9a:46:55:d1:90:10:90:af:e9:96: 60:3f:9d:53:31:ab:a8:f2:a8:82:07:c7:c4:9b:eb: 29:19:67:ee:11:0b:76:51:84:63:9f:af:54:24:5b: 41:d1:90:71:cf:91:6e:a5:f7:02:26:4c:41:c8:01: b3:83:90:ab:dd:0c:26:36:29:64:1f:de:a2:7b:98: bc:1c:32:3c:d8:2a:90:d9:a4:f5:b2:92:38:a1:e7: 1d:e0:c9:5d:9c:0e:fb:0d:17:7c:8d:0c:b8:b0:db: f5:08:6d:5f:ee:ba:00:7a:cf:9a:d4:56:91:7e:1f: 26:68:87:99:cd:7e:3b:8e:af:ad:e4:e4:76:6d:af: 4c:8d:6b:ca:7c:45:6b:ef:d0:bf:0f:80:0a:8c:3e: bd:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:BE:A8:F6:B1:55:A1:61:EB:AA:F0:65:40:E5:8E:41:1E:C9:D9:54 X509v3 Authority Key Identifier: keyid:DA:73:7E:8B:B9:E3:51:9F:19:E6:08:DC:3E:83:9F:36:0D:2C:46:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0f0bcdc3-0fea-4747-9907-656486bae8da/0/DA737E8BB9E3519F19E608DC3E839F360D2C4623.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA737E8BB9E3519F19E608DC3E839F360D2C4623.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0f0bcdc3-0fea-4747-9907-656486bae8da/0/323030313a6466323a623263303a3a2f34382d3438203d3e20313530393538.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df2:b2c0::/48 Signature Algorithm: sha256WithRSAEncryption 74:dc:f5:20:ab:63:b2:61:3f:69:3e:54:b7:43:61:77:a1:3a: dd:5e:a8:4d:14:a8:b2:63:bc:c7:aa:ab:f0:7b:50:5a:7f:48: 45:6c:18:74:09:de:69:cc:b2:69:90:cf:d7:7f:a3:9f:f9:0f: 5e:e5:a5:4d:c4:17:ac:b8:91:06:6d:d0:99:0d:4a:09:dc:5f: 6a:7f:15:6a:fe:32:f9:d0:10:23:41:68:08:e2:cf:04:0f:65: 40:24:d9:f1:5c:4e:0f:ca:a5:e5:cf:a1:cf:fb:dd:0d:55:8c: 74:1c:4b:7b:e9:d7:b7:36:ed:8e:f2:23:bf:4d:ce:7d:4e:a6: df:fe:75:3a:11:3b:da:6b:95:5c:36:a8:87:5a:62:07:4c:ae: 89:63:11:80:14:30:db:cf:a0:cb:65:6f:67:20:27:41:74:c5: e4:03:41:c4:ab:50:30:99:71:ec:99:21:53:25:28:a5:4d:95: 25:41:cc:7a:fd:e9:72:fc:4f:82:d2:0b:13:22:52:42:10:d4: cf:ef:8e:52:a7:d7:99:76:b8:94:25:a5:02:4b:3a:48:e2:cb: 8c:c9:19:5e:10:b1:15:13:a9:0b:3a:83:b8:3e:14:51:10:70: fe:de:6b:60:cc:34:32:92:41:60:5f:ae:f6:55:e6:d3:38:cb: ff:db:73:21 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUc+Oi4S1vF3zK/hl2l6Ej2IxFIX4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREE3MzdFOEJCOUUzNTE5RjE5RTYwOERDM0U4MzlGMzYw RDJDNDYyMzAeFw0yNTA5MDgxMzU1MDBaFw0yNjA5MDcxNDAwMDBaMDMxMTAvBgNV BAMTKDFDQkVBOEY2QjE1NUExNjFFQkFBRjA2NTQwRTU4RTQxMUVDOUQ5NTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8YHwGTA2rMg9tO/t1EZleBimv Uhxh7j+bj8KGH34rV6GxJ9Dwz1kiNLqxsg1wvbzvPdYh5emgo9za/JkjpFceaC6x aJLvP4eNyf5exFq4zwI+YmvJultIGKTtNqaI7BL4t5My7TywIWpolVahmkZV0ZAQ kK/plmA/nVMxq6jyqIIHx8Sb6ykZZ+4RC3ZRhGOfr1QkW0HRkHHPkW6l9wImTEHI AbODkKvdDCY2KWQf3qJ7mLwcMjzYKpDZpPWykjih5x3gyV2cDvsNF3yNDLiw2/UI bV/uugB6z5rUVpF+HyZoh5nNfjuOr63k5HZtr0yNa8p8RWvv0L8PgAqMPr1fAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUHL6o9rFVoWHrqvBlQOWOQR7J2VQwHwYDVR0j BBgwFoAU2nN+i7njUZ8Z5gjcPoOfNg0sRiMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w ZjBiY2RjMy0wZmVhLTQ3NDctOTkwNy02NTY0ODZiYWU4ZGEvMC9EQTczN0U4QkI5 RTM1MTlGMTlFNjA4REMzRTgzOUYzNjBEMkM0NjIzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREE3MzdFOEJCOUUzNTE5RjE5RTYwOERDM0U4MzlGMzYwRDJD NDYyMy5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBmMGJjZGMzLTBmZWEtNDc0Ny05 OTA3LTY1NjQ4NmJhZThkYS8wLzMyMzAzMDMxM2E2NDY2MzIzYTYyMzI2MzMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNTMwMzkzNTM4LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8rLAMA0GCSqGSIb3DQEBCwUAA4IBAQB03PUgq2OyYT9pPlS3Q2F3oTrdXqhNFKiy Y7zHqqvwe1Baf0hFbBh0Cd5pzLJpkM/Xf6Of+Q9e5aVNxBesuJEGbdCZDUoJ3F9q fxVq/jL50BAjQWgI4s8ED2VAJNnxXE4PyqXlz6HP+90NVYx0HEt76de3Nu2O8iO/ Tc59Tqbf/nU6ETvaa5VcNqiHWmIHTK6JYxGAFDDbz6DLZW9nICdBdMXkA0HEq1Aw mXHsmSFTJSilTZUlQcx6/ely/E+C0gsTIlJCENTP745Sp9eZdriUJaUCSzpI4suM yRleELEVE6kLOoO4PhRREHD+3mtgzDQykkFgX672VebTOMv/23Mh -----END CERTIFICATE-----Generated at Mon Oct 20 18:23:21 2025 by rpki-client