$ rpki-client -vvf repo-rpki.idnic.net/repo/1e3159f2-0cf0-43c6-b282-c69fba13a14a/0/323430363a326330303a3a2f33322d3332203d3e203138333933.roa File: 323430363a326330303a3a2f33322d3332203d3e203138333933.roa (raw, json) Hash identifier: ZvIOYubJ+KOpLdAH6lWrdFzQ/UkrzTNaoN6Xo2ij/oU= Subject key identifier: 9B:CA:C8:43:1D:69:FE:D5:EE:25:11:4B:29:F8:69:36:F0:C3:D9:89 Certificate issuer: /CN=E6FEA7CE7F6FA5EAE05EBBDFD86FD53E84FA75A8 Certificate serial: 72986839225C808022ECB5080FCA0526AC14E05F Authority key identifier: E6:FE:A7:CE:7F:6F:A5:EA:E0:5E:BB:DF:D8:6F:D5:3E:84:FA:75:A8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E6FEA7CE7F6FA5EAE05EBBDFD86FD53E84FA75A8.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1e3159f2-0cf0-43c6-b282-c69fba13a14a/0/323430363a326330303a3a2f33322d3332203d3e203138333933.roa Signing time: Wed 15 Oct 2025 14:46:22 +0000 ROA not before: Wed 15 Oct 2025 14:41:22 +0000 ROA not after: Wed 14 Oct 2026 14:46:22 +0000 asID: 18393 IP address blocks: 2406:2c00::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1e3159f2-0cf0-43c6-b282-c69fba13a14a/0/E6FEA7CE7F6FA5EAE05EBBDFD86FD53E84FA75A8.crl rsync://repo-rpki.idnic.net/repo/1e3159f2-0cf0-43c6-b282-c69fba13a14a/0/E6FEA7CE7F6FA5EAE05EBBDFD86FD53E84FA75A8.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E6FEA7CE7F6FA5EAE05EBBDFD86FD53E84FA75A8.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 11:48:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:98:68:39:22:5c:80:80:22:ec:b5:08:0f:ca:05:26:ac:14:e0:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E6FEA7CE7F6FA5EAE05EBBDFD86FD53E84FA75A8 Validity Not Before: Oct 15 14:41:22 2025 GMT Not After : Oct 14 14:46:22 2026 GMT Subject: CN=9BCAC8431D69FED5EE25114B29F86936F0C3D989 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:8a:7d:cb:97:e7:02:8c:31:39:dc:94:86:28: 14:21:38:08:01:a0:ed:8e:16:77:2b:77:9d:97:0a: 77:50:de:e4:40:ee:92:e8:e0:8b:a3:fe:b6:a8:0e: 29:2c:22:37:06:e0:10:d7:9e:23:d7:a4:26:6c:63: 10:7c:08:2b:f9:3a:f6:1e:2e:ae:81:4f:5d:91:2a: 2a:8c:e2:5a:ea:e5:be:f8:c7:f1:a7:06:fa:10:d5: 36:1c:d3:19:74:1c:ac:fb:ce:c0:bc:34:7b:5e:83: c7:bd:48:b2:b2:75:8e:8d:ba:59:de:a4:11:1c:74: d1:18:31:e0:62:12:f8:34:d6:31:eb:71:40:10:c6: ff:10:38:81:49:85:16:bd:3a:93:ac:80:21:1b:55: 34:13:6e:8a:ae:90:d1:e3:d0:04:c1:09:9c:1f:2d: bd:30:b9:73:d3:7e:80:df:4c:aa:dd:0c:e4:5a:61: d4:30:96:3c:98:20:41:8c:3a:91:fa:b8:5e:70:37: a9:db:08:00:32:64:fa:6f:50:36:12:ab:d6:e7:0c: 79:6d:9d:9b:8f:28:c3:53:90:ee:9a:43:60:00:00: 4e:de:f0:6e:23:58:54:55:d6:6f:e0:ba:0f:24:8d: 01:2c:c5:2a:41:af:54:83:24:f5:03:97:6f:8f:16: 3a:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:CA:C8:43:1D:69:FE:D5:EE:25:11:4B:29:F8:69:36:F0:C3:D9:89 X509v3 Authority Key Identifier: keyid:E6:FE:A7:CE:7F:6F:A5:EA:E0:5E:BB:DF:D8:6F:D5:3E:84:FA:75:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1e3159f2-0cf0-43c6-b282-c69fba13a14a/0/E6FEA7CE7F6FA5EAE05EBBDFD86FD53E84FA75A8.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E6FEA7CE7F6FA5EAE05EBBDFD86FD53E84FA75A8.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1e3159f2-0cf0-43c6-b282-c69fba13a14a/0/323430363a326330303a3a2f33322d3332203d3e203138333933.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:2c00::/32 Signature Algorithm: sha256WithRSAEncryption bb:85:b1:e3:db:a1:3b:c6:8f:c8:f5:9f:aa:90:52:d7:1e:06: 9a:41:19:4c:e4:f3:c6:21:0a:ae:33:31:3b:e8:f3:02:d2:f6: 54:d1:02:08:21:91:6d:a0:3c:ef:1b:7d:96:d8:65:e7:49:4f: fc:97:b5:2b:20:d2:5a:81:94:ae:59:e3:f8:8d:bb:50:f2:41: ab:72:09:c1:50:1d:27:52:e3:d3:ba:a2:be:3e:bc:e7:ab:c3: 24:b9:4a:43:74:96:d9:a0:a3:42:e5:43:b5:74:a9:97:3d:51: ba:43:b5:18:b8:ad:d8:6d:40:34:9b:9e:ea:59:48:d8:82:69: 40:b0:22:a6:a6:3e:40:96:4d:1b:f5:82:30:af:f5:06:01:c4: 18:db:79:3b:7d:62:7a:13:13:84:e4:e5:cd:30:24:09:5a:a7: b2:68:9e:28:c4:d1:a7:68:a9:0e:76:ae:e3:25:d8:e6:8a:d8: e2:a2:9c:01:c4:e3:a1:9b:44:d1:13:5a:95:12:13:13:6e:06: 43:44:75:66:25:9f:ee:fe:77:a3:41:ff:65:3f:b9:31:92:12: ec:02:e0:17:54:f7:2e:9d:8f:ce:a1:cd:a2:2b:b5:3a:5f:ef: e2:ea:95:ca:22:2a:f4:16:21:88:13:08:e8:5a:8a:17:b3:e3: 28:ec:91:18 -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUcphoOSJcgIAi7LUID8oFJqwU4F8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTZGRUE3Q0U3RjZGQTVFQUUwNUVCQkRGRDg2RkQ1M0U4 NEZBNzVBODAeFw0yNTEwMTUxNDQxMjJaFw0yNjEwMTQxNDQ2MjJaMDMxMTAvBgNV BAMTKDlCQ0FDODQzMUQ2OUZFRDVFRTI1MTE0QjI5Rjg2OTM2RjBDM0Q5ODkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCjin3Ll+cCjDE53JSGKBQhOAgB oO2OFncrd52XCndQ3uRA7pLo4Iuj/raoDiksIjcG4BDXniPXpCZsYxB8CCv5OvYe Lq6BT12RKiqM4lrq5b74x/GnBvoQ1TYc0xl0HKz7zsC8NHteg8e9SLKydY6Nulne pBEcdNEYMeBiEvg01jHrcUAQxv8QOIFJhRa9OpOsgCEbVTQTboqukNHj0ATBCZwf Lb0wuXPTfoDfTKrdDORaYdQwljyYIEGMOpH6uF5wN6nbCAAyZPpvUDYSq9bnDHlt nZuPKMNTkO6aQ2AAAE7e8G4jWFRV1m/gug8kjQEsxSpBr1SDJPUDl2+PFjqtAgMB AAGjggIxMIICLTAdBgNVHQ4EFgQUm8rIQx1p/tXuJRFLKfhpNvDD2YkwHwYDVR0j BBgwFoAU5v6nzn9vpergXrvf2G/VPoT6dagwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZTMxNTlmMi0wY2YwLTQzYzYtYjI4Mi1jNjlmYmExM2ExNGEvMC9FNkZFQTdDRTdG NkZBNUVBRTA1RUJCREZEODZGRDUzRTg0RkE3NUE4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRTZGRUE3Q0U3RjZGQTVFQUUwNUVCQkRGRDg2RkQ1M0U4NEZB NzVBOC5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFlMzE1OWYyLTBjZjAtNDNjNi1i MjgyLWM2OWZiYTEzYTE0YS8wLzMyMzQzMDM2M2EzMjYzMzAzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzgzMzM5MzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkBiwAMA0GCSqGSIb3 DQEBCwUAA4IBAQC7hbHj26E7xo/I9Z+qkFLXHgaaQRlM5PPGIQquMzE76PMC0vZU 0QIIIZFtoDzvG32W2GXnSU/8l7UrINJagZSuWeP4jbtQ8kGrcgnBUB0nUuPTuqK+ Prznq8MkuUpDdJbZoKNC5UO1dKmXPVG6Q7UYuK3YbUA0m57qWUjYgmlAsCKmpj5A lk0b9YIwr/UGAcQY23k7fWJ6ExOE5OXNMCQJWqeyaJ4oxNGnaKkOdq7jJdjmitji opwBxOOhm0TRE1qVEhMTbgZDRHVmJZ/u/nejQf9lP7kxkhLsAuAXVPcunY/Ooc2i K7U6X+/i6pXKIir0FiGIEwjoWooXs+Mo7JEY -----END CERTIFICATE-----Generated at Tue Oct 21 01:29:22 2025 by rpki-client