$ rpki-client -vvf repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a653030303a3a2f33352d3438203d3e20313430343233.roa File: 323430363a323063303a653030303a3a2f33352d3438203d3e20313430343233.roa (raw, json) Hash identifier: Wd1EQnUO1UXOXRuTwMKUm9ynIfbWR17zRhfMIDi9QVM= Subject key identifier: 00:34:7B:D3:0B:1F:49:B5:C9:D7:1F:DD:98:40:92:90:C3:0B:CD:6B Certificate issuer: /CN=7CFD0F39FE2E90EA8B1F5D32D476E387352CB874 Certificate serial: 27658FD54394EBE7824EF141B52DE85C1F69E459 Authority key identifier: 7C:FD:0F:39:FE:2E:90:EA:8B:1F:5D:32:D4:76:E3:87:35:2C:B8:74 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer Subject info access: rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a653030303a3a2f33352d3438203d3e20313430343233.roa Signing time: Sun 03 Aug 2025 08:00:00 +0000 ROA not before: Sun 03 Aug 2025 07:55:00 +0000 ROA not after: Sun 02 Aug 2026 08:00:00 +0000 asID: 140423 IP address blocks: 2406:20c0:e000::/35 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.crl rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Aug 2025 10:26:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:65:8f:d5:43:94:eb:e7:82:4e:f1:41:b5:2d:e8:5c:1f:69:e4:59 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7CFD0F39FE2E90EA8B1F5D32D476E387352CB874 Validity Not Before: Aug 3 07:55:00 2025 GMT Not After : Aug 2 08:00:00 2026 GMT Subject: CN=00347BD30B1F49B5C9D71FDD98409290C30BCD6B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:e3:d5:83:57:e4:4e:96:8a:3f:11:89:73:71: 29:53:dc:91:04:23:52:a7:9f:85:86:5c:eb:2d:80: 9d:ce:f6:41:cd:81:16:e5:ec:1b:7f:01:b2:06:a8: 69:e9:95:a7:ef:28:6c:76:20:f7:ed:ed:3d:f9:d2: d8:6e:97:8f:8c:38:53:4a:85:bd:2c:22:78:d0:44: 5c:1d:cb:90:96:78:13:09:ef:c0:31:8d:34:2e:cd: a1:fa:05:8d:71:09:74:64:74:6d:c7:88:55:e0:6c: 46:79:2d:16:46:9f:44:66:f9:b0:ce:65:2b:e4:56: dd:b6:69:71:cf:fb:67:e9:f5:df:f0:16:37:c5:55: e5:18:b6:0d:3c:b2:54:d8:58:17:0d:05:af:40:45: 33:3a:5b:90:16:e3:dd:73:e6:3a:3a:67:77:e9:27: f2:a9:05:6a:25:5e:35:2a:5b:31:73:f6:65:21:d0: d3:bc:01:b0:07:54:f9:ae:9f:5a:a5:e9:44:20:e5: f2:60:f6:28:72:1e:6f:c1:36:a4:51:1a:e6:06:ba: 70:a2:e2:78:62:0b:a0:d8:bf:05:a8:e6:cc:0e:8b: 54:f5:d8:1c:65:94:84:89:64:4e:39:6d:e9:e1:8c: 8d:06:ff:91:35:a0:01:c9:aa:c1:b6:74:da:8f:b2: a4:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:34:7B:D3:0B:1F:49:B5:C9:D7:1F:DD:98:40:92:90:C3:0B:CD:6B X509v3 Authority Key Identifier: keyid:7C:FD:0F:39:FE:2E:90:EA:8B:1F:5D:32:D4:76:E3:87:35:2C:B8:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a653030303a3a2f33352d3438203d3e20313430343233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:20c0:e000::/35 Signature Algorithm: sha256WithRSAEncryption 33:ae:f7:50:53:c9:83:e6:f9:f4:a9:3b:28:e1:3d:6a:26:c7: 53:a8:63:c3:87:e7:65:1e:de:94:d1:04:b5:65:14:05:0f:dc: 28:3d:2c:24:a7:cc:e2:ff:fd:c9:da:eb:c1:86:49:f6:29:98: 50:6e:2b:6c:5b:92:f8:cb:c7:16:0c:8a:97:89:ed:4f:a7:c9: 55:b2:94:57:ff:19:61:d2:bd:b6:91:b6:4d:00:b0:48:67:8a: 5d:19:8b:9a:9b:d7:4a:2a:1f:9f:76:a3:70:90:32:56:03:94: 15:eb:c2:17:d1:45:20:71:cc:0b:81:d6:97:99:93:64:c8:d4: 06:f4:63:65:bf:e8:ca:b9:e5:91:cb:c3:ab:f8:47:57:23:a8: 56:5e:14:ed:4c:65:2c:81:bc:ff:44:cd:fa:9d:b1:2f:dd:6e: c6:f0:6f:9b:48:e1:8d:c0:f8:b4:b2:42:5d:4b:1f:1c:07:9c: 67:c3:05:3b:ae:6d:50:bf:f3:26:eb:f7:ab:23:5c:e1:0f:7b: 32:6d:26:04:50:9c:fe:6b:a3:e5:5b:95:7c:8f:fb:53:ec:59: a5:b6:dd:9e:d9:27:05:31:52:24:0f:9d:d4:63:d9:0c:85:9a: 0e:95:41:e3:98:73:63:a1:33:6b:22:1f:34:a6:e6:1e:b3:47: 29:68:ff:b8 -----BEGIN CERTIFICATE----- MIIFNDCCBBygAwIBAgIUJ2WP1UOU6+eCTvFBtS3oXB9p5FkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0NGRDBGMzlGRTJFOTBFQThCMUY1RDMyRDQ3NkUzODcz NTJDQjg3NDAeFw0yNTA4MDMwNzU1MDBaFw0yNjA4MDIwODAwMDBaMDMxMTAvBgNV BAMTKDAwMzQ3QkQzMEIxRjQ5QjVDOUQ3MUZERDk4NDA5MjkwQzMwQkNENkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDC49WDV+ROloo/EYlzcSlT3JEE I1Knn4WGXOstgJ3O9kHNgRbl7Bt/AbIGqGnplafvKGx2IPft7T350thul4+MOFNK hb0sInjQRFwdy5CWeBMJ78AxjTQuzaH6BY1xCXRkdG3HiFXgbEZ5LRZGn0Rm+bDO ZSvkVt22aXHP+2fp9d/wFjfFVeUYtg08slTYWBcNBa9ARTM6W5AW491z5jo6Z3fp J/KpBWolXjUqWzFz9mUh0NO8AbAHVPmun1ql6UQg5fJg9ihyHm/BNqRRGuYGunCi 4nhiC6DYvwWo5swOi1T12BxllISJZE45benhjI0G/5E1oAHJqsG2dNqPsqSFAgMB AAGjggI+MIICOjAdBgNVHQ4EFgQUADR70wsfSbXJ1x/dmECSkMMLzWswHwYDVR0j BBgwFoAUfP0POf4ukOqLH10y1HbjhzUsuHQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x OWEwMDM2OS02ODQwLTRhOTUtODliMS1hNDg1MThmOThkYzcvMC83Q0ZEMEYzOUZF MkU5MEVBOEIxRjVEMzJENDc2RTM4NzM1MkNCODc0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0NGRDBGMzlGRTJFOTBFQThCMUY1RDMyRDQ3NkUzODczNTJD Qjg3NC5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE5YTAwMzY5LTY4NDAtNGE5NS04 OWIxLWE0ODUxOGY5OGRjNy8wLzMyMzQzMDM2M2EzMjMwNjMzMDNhNjUzMDMwMzAz YTNhMmYzMzM1MmQzNDM4MjAzZDNlMjAzMTM0MzAzNDMyMzMucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgUk BiDA4DANBgkqhkiG9w0BAQsFAAOCAQEAM673UFPJg+b59Kk7KOE9aibHU6hjw4fn ZR7elNEEtWUUBQ/cKD0sJKfM4v/9ydrrwYZJ9imYUG4rbFuS+MvHFgyKl4ntT6fJ VbKUV/8ZYdK9tpG2TQCwSGeKXRmLmpvXSiofn3ajcJAyVgOUFevCF9FFIHHMC4HW l5mTZMjUBvRjZb/oyrnlkcvDq/hHVyOoVl4U7UxlLIG8/0TN+p2xL91uxvBvm0jh jcD4tLJCXUsfHAecZ8MFO65tUL/zJuv3qyNc4Q97Mm0mBFCc/muj5VuVfI/7U+xZ pbbdntknBTFSJA+d1GPZDIWaDpVB45hzY6EzayIfNKbmHrNHKWj/uA== -----END CERTIFICATE-----Generated at Sat Aug 23 15:54:56 2025 by rpki-client