$ rpki-client -vvf repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a3a2f33322d3332203d3e20313533303837.roa File: 323430343a393763303a3a2f33322d3332203d3e20313533303837.roa (raw, json) Hash identifier: RbbbhN7gQjhRmlONdMhkhAU8C3rOa0UopxhZkN4y+0U= Subject key identifier: B2:2A:1F:EC:4D:B6:AF:AD:E9:38:85:5F:7A:1F:4A:1E:79:B4:55:08 Certificate issuer: /CN=4DF3DB3DA21D0022202130736E4CCB048C1D5158 Certificate serial: 328B8C7673C39BBAD9AA63ED10DFD1E8ED0CE0 Authority key identifier: 4D:F3:DB:3D:A2:1D:00:22:20:21:30:73:6E:4C:CB:04:8C:1D:51:58 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF3DB3DA21D0022202130736E4CCB048C1D5158.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a3a2f33322d3332203d3e20313533303837.roa Signing time: Fri 11 Jul 2025 12:00:03 +0000 ROA not before: Fri 11 Jul 2025 11:55:03 +0000 ROA not after: Fri 10 Jul 2026 12:00:03 +0000 asID: 153087 IP address blocks: 2404:97c0::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/4DF3DB3DA21D0022202130736E4CCB048C1D5158.crl rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/4DF3DB3DA21D0022202130736E4CCB048C1D5158.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF3DB3DA21D0022202130736E4CCB048C1D5158.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 11:48:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:8b:8c:76:73:c3:9b:ba:d9:aa:63:ed:10:df:d1:e8:ed:0c:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4DF3DB3DA21D0022202130736E4CCB048C1D5158 Validity Not Before: Jul 11 11:55:03 2025 GMT Not After : Jul 10 12:00:03 2026 GMT Subject: CN=B22A1FEC4DB6AFADE938855F7A1F4A1E79B45508 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:1b:f5:e2:55:29:86:bd:a7:72:24:c8:5d:c1: 6e:78:73:34:7a:9b:5e:aa:f1:c1:96:cf:ad:bd:38: 17:c3:16:a6:ec:e6:c0:f1:7c:e0:1b:2a:d4:25:73: 2b:04:eb:91:ba:59:e0:1f:9e:3d:30:9d:9d:98:7b: 32:32:84:b9:96:85:3d:08:d3:53:79:23:f7:15:70: a2:7c:d2:85:46:64:6e:5f:ba:1d:5a:e9:c1:55:28: 47:49:e0:33:37:1b:f8:54:79:05:a9:d1:82:1f:f4: c1:b2:2b:3e:7b:72:f9:e6:d0:f4:f3:02:f4:9c:2e: 96:31:ff:f3:16:0a:ce:06:bf:1b:e7:15:8f:95:49: ab:2b:05:c2:0d:f2:94:2d:45:25:76:a6:0d:6c:42: 03:3a:91:b0:af:be:e1:e8:a9:7d:82:26:cd:09:f5: 2a:d5:a7:63:93:04:39:64:20:a8:47:95:55:48:ac: ab:a5:3b:2c:ba:6a:d9:99:60:d2:1e:4f:06:31:da: 99:1c:64:6b:6d:98:2f:16:65:a1:a4:5f:bf:1d:c8: 02:d9:79:69:52:75:a2:7f:aa:e9:3e:ad:68:da:cf: e8:1f:59:b7:26:7a:e0:1d:44:46:2d:5b:2e:69:df: 7c:af:50:11:ac:06:2e:22:7c:e0:d8:a6:24:52:b8: f8:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:2A:1F:EC:4D:B6:AF:AD:E9:38:85:5F:7A:1F:4A:1E:79:B4:55:08 X509v3 Authority Key Identifier: keyid:4D:F3:DB:3D:A2:1D:00:22:20:21:30:73:6E:4C:CB:04:8C:1D:51:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/4DF3DB3DA21D0022202130736E4CCB048C1D5158.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF3DB3DA21D0022202130736E4CCB048C1D5158.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a3a2f33322d3332203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0::/32 Signature Algorithm: sha256WithRSAEncryption 07:e2:a1:f2:2b:92:0c:0c:23:46:8b:82:21:f9:6b:f7:d5:4e: 6e:dd:cf:d9:5a:ba:80:c0:3d:ba:97:13:7b:3b:20:6a:47:7e: 3d:0e:35:e9:91:68:f0:0d:58:e3:35:86:5a:32:6d:04:46:a7: 47:63:ed:59:e5:18:92:56:e9:38:dd:0b:22:bd:28:3d:35:6c: d4:50:8e:f9:94:93:8c:c8:1e:f7:7a:08:3b:79:28:ef:b2:4d: da:8f:e1:9e:ac:c7:c0:3f:04:a4:d4:f9:3f:77:30:6b:ac:00: e6:0b:d4:60:39:11:84:66:4b:59:c2:d5:b9:2d:37:e4:96:b0: a2:35:25:8c:17:b8:59:c1:fd:5d:52:f8:11:9d:50:ec:9d:fc: 65:fc:7b:81:2f:2a:7e:0b:68:a5:7a:fc:cf:56:f0:0f:7f:4b: 03:49:96:70:1b:94:ca:d1:1c:68:e4:24:8c:cf:68:d4:3a:45: 57:db:61:f2:77:62:e1:f2:7e:99:4a:3d:14:8b:f5:b3:8e:78: ab:68:29:80:74:27:35:07:24:9a:96:ca:41:8c:1e:b2:61:20: 01:dc:a6:a3:68:3e:09:5f:5f:c7:97:49:f7:fc:a1:da:82:30: 92:84:75:6a:cb:33:4b:aa:7f:21:9b:07:c9:85:be:e1:f8:4f: ee:b0:31:f7 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgITMouMdnPDm7rZqmPtEN/R6O0M4DANBgkqhkiG9w0BAQsF ADAzMTEwLwYDVQQDEyg0REYzREIzREEyMUQwMDIyMjAyMTMwNzM2RTRDQ0IwNDhD MUQ1MTU4MB4XDTI1MDcxMTExNTUwM1oXDTI2MDcxMDEyMDAwM1owMzExMC8GA1UE AxMoQjIyQTFGRUM0REI2QUZBREU5Mzg4NTVGN0ExRjRBMUU3OUI0NTUwODCCASIw DQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBANYb9eJVKYa9p3IkyF3BbnhzNHqb XqrxwZbPrb04F8MWpuzmwPF84Bsq1CVzKwTrkbpZ4B+ePTCdnZh7MjKEuZaFPQjT U3kj9xVwonzShUZkbl+6HVrpwVUoR0ngMzcb+FR5BanRgh/0wbIrPnty+ebQ9PMC 9JwuljH/8xYKzga/G+cVj5VJqysFwg3ylC1FJXamDWxCAzqRsK++4eipfYImzQn1 KtWnY5MEOWQgqEeVVUisq6U7LLpq2Zlg0h5PBjHamRxka22YLxZloaRfvx3IAtl5 aVJ1on+q6T6taNrP6B9ZtyZ64B1ERi1bLmnffK9QEawGLiJ84NimJFK4+GUCAwEA AaOCAjMwggIvMB0GA1UdDgQWBBSyKh/sTbavrek4hV96H0oeebRVCDAfBgNVHSME GDAWgBRN89s9oh0AIiAhMHNuTMsEjB1RWDAOBgNVHQ8BAf8EBAMCB4AwgYUGA1Ud HwR+MHwweqB4oHaGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFk ZWQ1ODExLWJlNTAtNGNhYS05Zjk2LTYzZDM3MjAzMTFkZS8xLzRERjNEQjNEQTIx RDAwMjIyMDIxMzA3MzZFNENDQjA0OEMxRDUxNTguY3JsMHQGCCsGAQUFBwEBBGgw ZjBkBggrBgEFBQcwAoZYcnN5bmM6Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8v SUROSUMtSUQvMi80REYzREIzREEyMUQwMDIyMjAyMTMwNzM2RTRDQ0IwNDhDMUQ1 MTU4LmNlcjCBogYIKwYBBQUHAQsEgZUwgZIwgY8GCCsGAQUFBzALhoGCcnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMWRlZDU4MTEtYmU1MC00Y2FhLTlm OTYtNjNkMzcyMDMxMWRlLzEvMzIzNDMwMzQzYTM5Mzc2MzMwM2EzYTJmMzMzMjJk MzMzMjIwM2QzZTIwMzEzNTMzMzAzODM3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsG AQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAJASXwDANBgkqhkiG 9w0BAQsFAAOCAQEAB+Kh8iuSDAwjRouCIflr99VObt3P2Vq6gMA9upcTezsgakd+ PQ416ZFo8A1Y4zWGWjJtBEanR2PtWeUYklbpON0LIr0oPTVs1FCO+ZSTjMge93oI O3ko77JN2o/hnqzHwD8EpNT5P3cwa6wA5gvUYDkRhGZLWcLVuS035JawojUljBe4 WcH9XVL4EZ1Q7J38Zfx7gS8qfgtopXr8z1bwD39LA0mWcBuUytEcaOQkjM9o1DpF V9th8ndi4fJ+mUo9FIv1s454q2gpgHQnNQckmpbKQYwesmEgAdymo2g+CV9fx5dJ 9/yh2oIwkoR1asszS6p/IZsHyYW+4fhP7rAx9w== -----END CERTIFICATE-----Generated at Mon Oct 20 21:23:38 2025 by rpki-client