$ rpki-client -vvf repo-rpki.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/323430333a666438303a633135303a3a2f34342d3434203d3e203538333639.roa File: 323430333a666438303a633135303a3a2f34342d3434203d3e203538333639.roa (raw, json) Hash identifier: PTQF17VFwWhqK1/mqcsdVwYn66LPCD+ipGSIndruOEU= Subject key identifier: C3:99:7B:29:55:17:C7:E4:61:C3:21:8B:27:A9:78:A4:12:E5:33:DF Certificate issuer: /CN=A095A9A71806956C905D5CF7CB797843D22D04B8 Certificate serial: 476781ED0974A018CE85401FBD21FD047C944903 Authority key identifier: A0:95:A9:A7:18:06:95:6C:90:5D:5C:F7:CB:79:78:43:D2:2D:04:B8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A095A9A71806956C905D5CF7CB797843D22D04B8.cer Subject info access: rsync://repo-rpki.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/323430333a666438303a633135303a3a2f34342d3434203d3e203538333639.roa Signing time: Tue 14 Oct 2025 03:52:25 +0000 ROA not before: Tue 14 Oct 2025 03:47:25 +0000 ROA not after: Tue 13 Oct 2026 03:52:25 +0000 asID: 58369 IP address blocks: 2403:fd80:c150::/44 maxlen: 44 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/A095A9A71806956C905D5CF7CB797843D22D04B8.crl rsync://repo-rpki.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/A095A9A71806956C905D5CF7CB797843D22D04B8.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A095A9A71806956C905D5CF7CB797843D22D04B8.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 11:48:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:67:81:ed:09:74:a0:18:ce:85:40:1f:bd:21:fd:04:7c:94:49:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A095A9A71806956C905D5CF7CB797843D22D04B8 Validity Not Before: Oct 14 03:47:25 2025 GMT Not After : Oct 13 03:52:25 2026 GMT Subject: CN=C3997B295517C7E461C3218B27A978A412E533DF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:78:e7:16:25:bd:e0:c6:98:a2:a1:9d:f4:b5: eb:83:55:e7:44:c1:00:6b:b6:ec:28:47:49:a3:24: 6b:86:e8:5b:08:b7:49:37:f1:a8:cf:6a:d0:91:f0: 2e:fd:4b:2e:45:f0:11:73:93:7c:48:60:7d:22:62: d4:cf:1d:97:8f:8c:12:a2:e5:35:4c:8c:5c:27:2a: 08:4a:9e:8d:5d:04:66:29:b7:86:42:14:c0:c2:6c: 0a:f1:6e:cb:ed:39:d1:e4:73:30:2f:4d:fb:45:2c: 8a:a8:fb:11:ed:d2:99:59:da:c7:0c:24:ff:26:8c: 2f:4a:f1:58:fd:93:e0:c8:78:65:59:6c:e6:7b:f2: f0:43:2e:85:36:3a:e5:6b:48:8e:cb:fc:e1:62:9f: f8:e6:fc:a6:1d:9f:72:37:26:26:b3:4f:50:48:a5: fb:63:ba:05:b4:17:5c:c1:9f:71:4f:a8:c2:f7:f0: 3d:4c:94:fa:d7:6c:62:f4:ef:4e:a3:79:73:05:1f: 1f:bd:2a:f0:9f:bb:24:32:e1:df:cb:c8:53:63:06: 2c:8c:dd:60:8a:aa:9a:da:53:e1:ca:13:89:58:b7: 1f:7e:2e:e3:6a:f0:39:46:df:35:3c:fb:ba:26:fa: 81:83:e1:85:b6:d9:b9:59:d7:6a:94:ed:65:22:4a: 88:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:99:7B:29:55:17:C7:E4:61:C3:21:8B:27:A9:78:A4:12:E5:33:DF X509v3 Authority Key Identifier: keyid:A0:95:A9:A7:18:06:95:6C:90:5D:5C:F7:CB:79:78:43:D2:2D:04:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/A095A9A71806956C905D5CF7CB797843D22D04B8.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A095A9A71806956C905D5CF7CB797843D22D04B8.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/323430333a666438303a633135303a3a2f34342d3434203d3e203538333639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:fd80:c150::/44 Signature Algorithm: sha256WithRSAEncryption a7:71:03:3c:61:2c:70:fd:5b:1d:82:54:45:f5:9f:2b:d5:27: 77:64:1d:95:9a:1f:3c:2f:fb:80:98:e1:ac:27:d7:a7:39:90: da:1a:67:5b:62:17:1f:9b:9a:bd:4e:ee:16:c2:fe:0f:05:67: 13:69:ab:4b:f4:4f:77:70:b0:84:be:8d:c0:7e:38:2a:03:05: 47:ca:b8:44:a4:c2:a1:25:bb:c7:c4:b2:cf:2b:b3:41:1c:11: a7:bd:0f:df:6d:d4:3d:5e:37:93:7f:16:e3:e8:23:47:48:a2: a5:a1:ff:ce:2e:1a:36:99:ed:38:cc:ec:d3:45:f3:0c:0b:d4: 24:ef:26:ee:7b:c1:c5:7c:f8:dd:cd:9b:7a:17:38:36:f5:af: eb:b6:83:d5:c3:2e:62:05:92:ee:75:b4:28:e3:bf:1e:0f:b9: 23:93:9c:2e:a5:30:2a:5b:35:ea:df:75:08:26:cc:9e:e4:43: 32:44:b9:62:60:6b:fb:d4:5b:70:61:57:45:dc:9f:a9:f0:96: c5:67:65:06:b4:aa:ba:74:b5:4b:e1:4e:b9:ac:b7:e4:50:c2: 02:c7:3b:d9:e5:49:d0:24:fc:7f:4a:78:a5:94:4d:d8:83:19: 71:f8:16:91:16:04:29:97:fd:0f:0f:7d:f6:99:c8:2b:35:4d: ad:8e:74:54 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUR2eB7Ql0oBjOhUAfvSH9BHyUSQMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTA5NUE5QTcxODA2OTU2QzkwNUQ1Q0Y3Q0I3OTc4NDNE MjJEMDRCODAeFw0yNTEwMTQwMzQ3MjVaFw0yNjEwMTMwMzUyMjVaMDMxMTAvBgNV BAMTKEMzOTk3QjI5NTUxN0M3RTQ2MUMzMjE4QjI3QTk3OEE0MTJFNTMzREYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDieOcWJb3gxpiioZ30teuDVedE wQBrtuwoR0mjJGuG6FsIt0k38ajPatCR8C79Sy5F8BFzk3xIYH0iYtTPHZePjBKi 5TVMjFwnKghKno1dBGYpt4ZCFMDCbArxbsvtOdHkczAvTftFLIqo+xHt0plZ2scM JP8mjC9K8Vj9k+DIeGVZbOZ78vBDLoU2OuVrSI7L/OFin/jm/KYdn3I3JiazT1BI pftjugW0F1zBn3FPqML38D1MlPrXbGL0706jeXMFHx+9KvCfuyQy4d/LyFNjBiyM 3WCKqpraU+HKE4lYtx9+LuNq8DlG3zU8+7om+oGD4YW22blZ12qU7WUiSoipAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUw5l7KVUXx+RhwyGLJ6l4pBLlM98wHwYDVR0j BBgwFoAUoJWppxgGlWyQXVz3y3l4Q9ItBLgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x NmE4MTE4Mi03Y2ViLTQ2NWMtYTViNS1hMTRlYzczOWJmOTkvMC9BMDk1QTlBNzE4 MDY5NTZDOTA1RDVDRjdDQjc5Nzg0M0QyMkQwNEI4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTA5NUE5QTcxODA2OTU2QzkwNUQ1Q0Y3Q0I3OTc4NDNEMjJE MDRCOC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE2YTgxMTgyLTdjZWItNDY1Yy1h NWI1LWExNGVjNzM5YmY5OS8wLzMyMzQzMDMzM2E2NjY0MzgzMDNhNjMzMTM1MzAz YTNhMmYzNDM0MmQzNDM0MjAzZDNlMjAzNTM4MzMzNjM5LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEJAP9 gMFQMA0GCSqGSIb3DQEBCwUAA4IBAQCncQM8YSxw/VsdglRF9Z8r1Sd3ZB2Vmh88 L/uAmOGsJ9enOZDaGmdbYhcfm5q9Tu4Wwv4PBWcTaatL9E93cLCEvo3AfjgqAwVH yrhEpMKhJbvHxLLPK7NBHBGnvQ/fbdQ9XjeTfxbj6CNHSKKlof/OLho2me04zOzT RfMMC9Qk7ybue8HFfPjdzZt6Fzg29a/rtoPVwy5iBZLudbQo478eD7kjk5wupTAq WzXq33UIJsye5EMyRLliYGv71FtwYVdF3J+p8JbFZ2UGtKq6dLVL4U65rLfkUMIC xzvZ5UnQJPx/SnillE3Ygxlx+BaRFgQpl/0PD332mcgrNU2tjnRU -----END CERTIFICATE-----Generated at Tue Oct 21 01:28:20 2025 by rpki-client