$ rpki-client -vvf repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/323430323a663038303a333a3a2f34382d3438203d3e203338313530.roa File: 323430323a663038303a333a3a2f34382d3438203d3e203338313530.roa (raw, json) Hash identifier: oVmfGlTp0DWOtWPGyWCK/51mm8QlFMAOkDDm7W0JfnE= Subject key identifier: 9D:3F:89:42:BC:66:33:06:4E:15:B5:4C:9D:11:96:8B:F3:1F:21:08 Certificate issuer: /CN=2CA47487F72781733330A38C95FF8A5DF68CDBB9 Certificate serial: 379FB0050CFC02A65C38A2972C1928DB23DA0DB7 Authority key identifier: 2C:A4:74:87:F7:27:81:73:33:30:A3:8C:95:FF:8A:5D:F6:8C:DB:B9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CA47487F72781733330A38C95FF8A5DF68CDBB9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/323430323a663038303a333a3a2f34382d3438203d3e203338313530.roa Signing time: Mon 11 Aug 2025 04:02:55 +0000 ROA not before: Mon 11 Aug 2025 03:57:55 +0000 ROA not after: Mon 10 Aug 2026 04:02:55 +0000 asID: 38150 IP address blocks: 2402:f080:3::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/2CA47487F72781733330A38C95FF8A5DF68CDBB9.crl rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/2CA47487F72781733330A38C95FF8A5DF68CDBB9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CA47487F72781733330A38C95FF8A5DF68CDBB9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 10:28:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:9f:b0:05:0c:fc:02:a6:5c:38:a2:97:2c:19:28:db:23:da:0d:b7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2CA47487F72781733330A38C95FF8A5DF68CDBB9 Validity Not Before: Aug 11 03:57:55 2025 GMT Not After : Aug 10 04:02:55 2026 GMT Subject: CN=9D3F8942BC6633064E15B54C9D11968BF31F2108 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:ac:75:c2:7f:75:c5:91:6d:a9:df:7a:c4:88: e0:d4:b3:91:d6:01:d6:e5:0d:44:ef:33:5b:54:77: 58:39:48:35:df:e8:b8:79:e1:35:a2:17:7e:60:c2: c6:54:3a:83:44:0b:b8:b5:6f:83:92:4b:60:ff:bc: 21:36:d4:85:2c:f0:b0:14:03:68:38:55:aa:db:7b: 54:db:78:54:32:36:36:88:9c:f7:d7:d1:36:c5:4c: a2:06:0d:2b:71:75:df:e1:e7:4b:c5:b9:c7:90:50: c9:9e:c0:2d:de:3d:a7:f4:12:92:a0:05:5b:0b:25: 2c:72:16:e9:a5:15:16:fd:10:89:7a:6c:e3:18:23: 59:72:6b:a2:54:09:99:ee:38:2c:45:42:58:34:cd: cc:86:23:de:65:6f:99:81:21:80:74:f4:00:cd:c2: 0c:34:45:ea:f0:a8:d3:b9:c5:1f:66:e9:42:e8:73: f3:54:6b:01:df:60:ee:de:19:8d:0c:07:a9:65:ba: 93:fc:17:d9:05:d0:6f:5e:5c:e3:10:d1:7f:64:ec: b8:15:14:5d:db:af:87:55:c3:1a:95:ae:5b:2a:bc: ee:c6:d7:65:30:0f:89:cd:54:ea:69:88:9b:d8:46: d7:0f:b3:2d:94:bc:e0:f1:af:70:a6:ac:90:59:94: 14:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:3F:89:42:BC:66:33:06:4E:15:B5:4C:9D:11:96:8B:F3:1F:21:08 X509v3 Authority Key Identifier: keyid:2C:A4:74:87:F7:27:81:73:33:30:A3:8C:95:FF:8A:5D:F6:8C:DB:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/2CA47487F72781733330A38C95FF8A5DF68CDBB9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CA47487F72781733330A38C95FF8A5DF68CDBB9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/323430323a663038303a333a3a2f34382d3438203d3e203338313530.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:f080:3::/48 Signature Algorithm: sha256WithRSAEncryption 5f:38:94:56:39:27:61:ef:76:25:58:6f:f1:74:0f:9d:23:dd: 37:82:10:a0:b3:ee:21:bd:8c:74:33:75:4a:89:2d:72:fd:d7: 05:34:dc:54:2d:08:51:22:43:00:a6:73:d7:7e:7e:7b:19:e8: 4f:03:f2:0c:a1:ff:1a:14:20:06:da:38:9b:4e:4a:05:d8:94: 01:be:2e:9d:89:5c:7c:d4:43:76:3f:cd:ac:53:29:fe:cc:e2: 85:b4:c8:0a:60:10:b3:26:98:4d:90:f6:59:a4:8e:8c:36:b8: b9:20:32:6c:e7:1a:a1:23:5c:7a:51:d8:c3:2a:2b:ef:db:39: 66:89:78:fb:f6:9d:0c:8f:52:90:87:ac:43:6c:6b:d4:54:67: 48:50:77:56:ee:21:23:3b:60:f3:90:8b:2a:fc:a5:b6:50:61: c5:03:36:5e:9b:72:39:60:63:6e:86:a7:ef:e5:44:5b:43:b1: 26:98:d7:c9:c0:0f:d9:94:be:16:95:9e:85:27:74:96:47:8d: 7b:bb:b3:00:27:6e:d7:0c:45:22:b8:af:6f:f1:c2:08:55:29: 3a:58:a2:ca:da:e6:c9:cc:22:42:ed:6b:a3:1c:f1:e0:f3:b1: 0f:2b:09:04:ee:80:7f:22:59:32:96:46:bb:b9:be:5d:fb:69: 6c:f5:ba:11 -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUN5+wBQz8AqZcOKKXLBko2yPaDbcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkNBNDc0ODdGNzI3ODE3MzMzMzBBMzhDOTVGRjhBNURG NjhDREJCOTAeFw0yNTA4MTEwMzU3NTVaFw0yNjA4MTAwNDAyNTVaMDMxMTAvBgNV BAMTKDlEM0Y4OTQyQkM2NjMzMDY0RTE1QjU0QzlEMTE5NjhCRjMxRjIxMDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFrHXCf3XFkW2p33rEiODUs5HW AdblDUTvM1tUd1g5SDXf6Lh54TWiF35gwsZUOoNEC7i1b4OSS2D/vCE21IUs8LAU A2g4Varbe1TbeFQyNjaInPfX0TbFTKIGDStxdd/h50vFuceQUMmewC3ePaf0EpKg BVsLJSxyFumlFRb9EIl6bOMYI1lya6JUCZnuOCxFQlg0zcyGI95lb5mBIYB09ADN wgw0RerwqNO5xR9m6ULoc/NUawHfYO7eGY0MB6llupP8F9kF0G9eXOMQ0X9k7LgV FF3br4dVwxqVrlsqvO7G12UwD4nNVOppiJvYRtcPsy2UvODxr3CmrJBZlBRLAgMB AAGjggI3MIICMzAdBgNVHQ4EFgQUnT+JQrxmMwZOFbVMnRGWi/MfIQgwHwYDVR0j BBgwFoAULKR0h/cngXMzMKOMlf+KXfaM27kwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x N2U2NWI2Ny05MDVjLTQwM2MtOGM3OS0yMzE1NjU5NjY4YWEvMC8yQ0E0NzQ4N0Y3 Mjc4MTczMzMzMEEzOEM5NUZGOEE1REY2OENEQkI5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkNBNDc0ODdGNzI3ODE3MzMzMzBBMzhDOTVGRjhBNURGNjhD REJCOS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE3ZTY1YjY3LTkwNWMtNDAzYy04 Yzc5LTIzMTU2NTk2NjhhYS8wLzMyMzQzMDMyM2E2NjMwMzgzMDNhMzMzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMzM4MzEzNTMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJALwgAADMA0G CSqGSIb3DQEBCwUAA4IBAQBfOJRWOSdh73YlWG/xdA+dI903ghCgs+4hvYx0M3VK iS1y/dcFNNxULQhRIkMApnPXfn57GehPA/IMof8aFCAG2jibTkoF2JQBvi6diVx8 1EN2P82sUyn+zOKFtMgKYBCzJphNkPZZpI6MNri5IDJs5xqhI1x6UdjDKivv2zlm iXj79p0Mj1KQh6xDbGvUVGdIUHdW7iEjO2DzkIsq/KW2UGHFAzZem3I5YGNuhqfv 5URbQ7EmmNfJwA/ZlL4WlZ6FJ3SWR417u7MAJ27XDEUiuK9v8cIIVSk6WKLK2ubJ zCJC7WujHPHg87EPKwkE7oB/Ilkylka7ub5d+2ls9boR -----END CERTIFICATE-----Generated at Sat Aug 23 15:35:09 2025 by rpki-client