$ rpki-client -vvf repo-rpki.idnic.net/repo/26652000-1f2c-4791-81b4-d4457cef1270/0/323430353a623034303a3a2f33322d3332203d3e20313339393531.roa File: 323430353a623034303a3a2f33322d3332203d3e20313339393531.roa (raw, json) Hash identifier: BOXleI82qkqA+XBkcaVMr9vBsmwOlXi/gSfu64m+8zY= Subject key identifier: 08:65:4C:30:13:56:5D:D1:10:3F:48:77:D0:67:7B:45:61:06:82:26 Certificate issuer: /CN=7D52713C0D26932DC1EECC75CB0C11784C9B0592 Certificate serial: 64864B5CF6EB6DFAE9ED2F846CD22DE235ED4B27 Authority key identifier: 7D:52:71:3C:0D:26:93:2D:C1:EE:CC:75:CB:0C:11:78:4C:9B:05:92 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7D52713C0D26932DC1EECC75CB0C11784C9B0592.cer Subject info access: rsync://repo-rpki.idnic.net/repo/26652000-1f2c-4791-81b4-d4457cef1270/0/323430353a623034303a3a2f33322d3332203d3e20313339393531.roa Signing time: Fri 29 Aug 2025 04:00:01 +0000 ROA not before: Fri 29 Aug 2025 03:55:01 +0000 ROA not after: Fri 28 Aug 2026 04:00:01 +0000 asID: 139951 IP address blocks: 2405:b040::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/26652000-1f2c-4791-81b4-d4457cef1270/0/7D52713C0D26932DC1EECC75CB0C11784C9B0592.crl rsync://repo-rpki.idnic.net/repo/26652000-1f2c-4791-81b4-d4457cef1270/0/7D52713C0D26932DC1EECC75CB0C11784C9B0592.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7D52713C0D26932DC1EECC75CB0C11784C9B0592.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 04:43:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:86:4b:5c:f6:eb:6d:fa:e9:ed:2f:84:6c:d2:2d:e2:35:ed:4b:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7D52713C0D26932DC1EECC75CB0C11784C9B0592 Validity Not Before: Aug 29 03:55:01 2025 GMT Not After : Aug 28 04:00:01 2026 GMT Subject: CN=08654C3013565DD1103F4877D0677B4561068226 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:68:cf:d8:40:e9:1c:d2:04:04:82:1a:08:91: fc:22:b7:fe:a4:62:a7:87:3b:b2:12:25:e6:db:ba: 9f:fd:33:92:86:5d:c6:e5:7f:14:fd:9d:a0:08:28: 1e:71:0e:48:da:17:7f:be:a7:65:ea:2b:a8:61:6d: 28:29:45:c1:d5:88:79:d3:7e:9b:d1:d5:46:6e:d5: ac:45:bf:89:8d:e9:e5:cb:36:48:a5:8d:a1:bf:b4: 92:1f:c8:cc:43:11:cc:57:6f:df:ff:46:4e:07:f8: f4:bf:5c:ab:b6:2f:8e:15:6c:1c:38:6d:ab:0e:6d: 42:d9:30:42:7f:b2:ec:f5:11:f5:da:ff:2a:61:91: d2:2f:10:b9:f0:96:f5:82:84:97:47:77:15:9e:59: 68:73:f0:5e:b8:6e:18:66:25:de:04:6f:d5:db:83: 02:88:a6:ec:c8:17:32:8e:0d:05:43:c1:34:2c:77: ae:a9:36:a7:72:ea:ac:59:88:a7:30:bf:b2:74:36: 9f:59:26:0e:75:a4:ae:04:ce:f1:3b:23:1b:12:11: 3f:bb:66:da:9b:97:84:79:23:09:82:2d:f0:dc:70: 10:50:84:a4:c5:de:a9:9b:2e:77:65:d3:1a:5e:3e: bc:60:50:46:cd:d2:1e:df:7e:08:2e:46:c6:16:54: 23:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:65:4C:30:13:56:5D:D1:10:3F:48:77:D0:67:7B:45:61:06:82:26 X509v3 Authority Key Identifier: keyid:7D:52:71:3C:0D:26:93:2D:C1:EE:CC:75:CB:0C:11:78:4C:9B:05:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/26652000-1f2c-4791-81b4-d4457cef1270/0/7D52713C0D26932DC1EECC75CB0C11784C9B0592.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7D52713C0D26932DC1EECC75CB0C11784C9B0592.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/26652000-1f2c-4791-81b4-d4457cef1270/0/323430353a623034303a3a2f33322d3332203d3e20313339393531.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:b040::/32 Signature Algorithm: sha256WithRSAEncryption 31:51:49:cc:50:8d:f2:2c:2e:9f:36:8a:3f:1c:98:69:5c:c6: 07:df:bf:9b:d3:aa:ad:b5:6e:1f:f7:4b:08:cd:7a:87:93:e5: 80:ba:77:0c:cc:21:d3:67:43:51:ba:fc:e0:1a:68:a8:d5:50: f9:93:bf:35:cb:22:4b:6a:3f:2d:a1:4d:fb:4c:40:37:aa:32: d7:4d:2b:bc:f3:5f:7d:b2:57:9b:39:c4:58:28:dd:cc:8e:cc: 9b:27:13:4e:f1:33:67:d8:a0:a2:65:58:7a:4d:64:71:ad:3f: da:e5:a4:cf:ee:21:17:89:24:7c:25:2b:c8:4a:55:4f:75:d8: 24:b2:d2:b3:72:11:c1:4a:1d:fc:af:32:69:c4:5b:ba:57:45: 60:01:86:88:b5:4d:44:97:88:8b:78:56:21:c4:20:6d:77:82: 35:00:d5:f8:89:b0:81:54:70:49:ab:22:49:88:51:0b:ad:9c: 7c:3a:23:f3:bb:ab:39:04:c4:c9:fd:52:ba:95:3e:03:c2:20: 69:4b:d9:5e:ef:0b:77:91:77:89:a2:36:6e:e2:52:87:78:76: 30:e9:38:a3:f8:05:f6:3c:a6:28:1d:fc:d4:18:28:73:d1:b2: a9:be:6c:dc:dc:81:57:d8:db:0c:ad:f7:c1:06:d2:44:9f:6b: 71:90:42:ba -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUZIZLXPbrbfrp7S+EbNIt4jXtSycwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0Q1MjcxM0MwRDI2OTMyREMxRUVDQzc1Q0IwQzExNzg0 QzlCMDU5MjAeFw0yNTA4MjkwMzU1MDFaFw0yNjA4MjgwNDAwMDFaMDMxMTAvBgNV BAMTKDA4NjU0QzMwMTM1NjVERDExMDNGNDg3N0QwNjc3QjQ1NjEwNjgyMjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwaM/YQOkc0gQEghoIkfwit/6k YqeHO7ISJebbup/9M5KGXcblfxT9naAIKB5xDkjaF3++p2XqK6hhbSgpRcHViHnT fpvR1UZu1axFv4mN6eXLNkiljaG/tJIfyMxDEcxXb9//Rk4H+PS/XKu2L44VbBw4 basObULZMEJ/suz1EfXa/yphkdIvELnwlvWChJdHdxWeWWhz8F64bhhmJd4Eb9Xb gwKIpuzIFzKODQVDwTQsd66pNqdy6qxZiKcwv7J0Np9ZJg51pK4EzvE7IxsSET+7 Ztqbl4R5IwmCLfDccBBQhKTF3qmbLndl0xpePrxgUEbN0h7ffgguRsYWVCMvAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUCGVMMBNWXdEQP0h30Gd7RWEGgiYwHwYDVR0j BBgwFoAUfVJxPA0mky3B7sx1ywwReEybBZIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y NjY1MjAwMC0xZjJjLTQ3OTEtODFiNC1kNDQ1N2NlZjEyNzAvMC83RDUyNzEzQzBE MjY5MzJEQzFFRUNDNzVDQjBDMTE3ODRDOUIwNTkyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0Q1MjcxM0MwRDI2OTMyREMxRUVDQzc1Q0IwQzExNzg0QzlC MDU5Mi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI2NjUyMDAwLTFmMmMtNDc5MS04 MWI0LWQ0NDU3Y2VmMTI3MC8wLzMyMzQzMDM1M2E2MjMwMzQzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzMzOTM5MzUzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQFsEAwDQYJKoZI hvcNAQELBQADggEBADFRScxQjfIsLp82ij8cmGlcxgffv5vTqq21bh/3SwjNeoeT 5YC6dwzMIdNnQ1G6/OAaaKjVUPmTvzXLIktqPy2hTftMQDeqMtdNK7zzX32yV5s5 xFgo3cyOzJsnE07xM2fYoKJlWHpNZHGtP9rlpM/uIReJJHwlK8hKVU912CSy0rNy EcFKHfyvMmnEW7pXRWABhoi1TUSXiIt4ViHEIG13gjUA1fiJsIFUcEmrIkmIUQut nHw6I/O7qzkExMn9UrqVPgPCIGlL2V7vC3eRd4miNm7iUod4djDpOKP4BfY8pigd /NQYKHPRsqm+bNzcgVfY2wyt98EG0kSfa3GQQro= -----END CERTIFICATE-----Generated at Mon Oct 20 09:40:59 2025 by rpki-client