$ rpki-client -vvf repo-rpki.idnic.net/repo/2a97bcf4-e1aa-47d6-bde6-2e667b9d6134/0/323430353a6263303a3a2f33332d3438203d3e20313336383432.roa File: 323430353a6263303a3a2f33332d3438203d3e20313336383432.roa (raw, json) Hash identifier: /afnBbe9lqmeZWTu4VD92m9xOkkp/GMDn8V+1M5ITYk= Subject key identifier: 21:C0:1A:50:62:A1:C7:22:7A:C8:67:B4:B5:C7:8B:63:10:91:88:DD Certificate issuer: /CN=A08B1B14AA5B6512424EDF8650A984942F27A4EF Certificate serial: 693358265CB727DBC091C324283DE0369A4C706C Authority key identifier: A0:8B:1B:14:AA:5B:65:12:42:4E:DF:86:50:A9:84:94:2F:27:A4:EF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A08B1B14AA5B6512424EDF8650A984942F27A4EF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2a97bcf4-e1aa-47d6-bde6-2e667b9d6134/0/323430353a6263303a3a2f33332d3438203d3e20313336383432.roa Signing time: Fri 15 Aug 2025 08:00:23 +0000 ROA not before: Fri 15 Aug 2025 07:55:23 +0000 ROA not after: Fri 14 Aug 2026 08:00:23 +0000 asID: 136842 IP address blocks: 2405:bc0::/33 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2a97bcf4-e1aa-47d6-bde6-2e667b9d6134/0/A08B1B14AA5B6512424EDF8650A984942F27A4EF.crl rsync://repo-rpki.idnic.net/repo/2a97bcf4-e1aa-47d6-bde6-2e667b9d6134/0/A08B1B14AA5B6512424EDF8650A984942F27A4EF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A08B1B14AA5B6512424EDF8650A984942F27A4EF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 09:03:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:33:58:26:5c:b7:27:db:c0:91:c3:24:28:3d:e0:36:9a:4c:70:6c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A08B1B14AA5B6512424EDF8650A984942F27A4EF Validity Not Before: Aug 15 07:55:23 2025 GMT Not After : Aug 14 08:00:23 2026 GMT Subject: CN=21C01A5062A1C7227AC867B4B5C78B63109188DD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:f4:94:2c:86:b1:83:df:47:64:9b:03:a6:b7: 81:fc:fe:45:b1:96:e3:f6:e5:a3:de:9e:a8:75:3d: c1:3b:9c:31:0f:3b:bf:87:d4:8c:ae:6b:35:1d:d2: 3a:3a:0c:a6:8c:70:22:75:1e:e2:fd:ba:e5:66:97: 22:d6:86:6f:83:0c:89:c1:14:77:80:0d:d6:ff:d3: bb:ad:12:7c:c5:17:be:1d:68:84:e6:e1:01:80:9f: 78:2d:15:6c:c7:b6:03:91:bb:11:59:72:5e:8e:4c: 2a:0a:20:86:40:f2:0d:54:ce:94:78:84:c4:85:ca: 2f:fd:21:83:7c:96:57:0a:dd:8b:56:12:af:50:6b: 01:5a:02:e9:61:d9:b2:50:c7:d1:f5:dc:2a:8f:a8: c1:81:4b:2a:e4:99:0b:10:03:47:29:1c:50:fb:48: f2:b2:e4:73:84:b4:f4:bb:da:c5:36:d4:44:71:c9: dc:40:6c:3e:c0:01:32:a4:dc:a3:36:1b:88:e0:ea: 30:cf:c9:eb:03:32:65:13:21:cd:14:a8:3c:8e:e6: be:54:0f:0e:0e:fd:6e:86:b4:71:63:c1:c0:a2:3a: 81:68:99:39:d7:b8:ed:46:cc:fb:dd:e3:42:47:6d: 81:30:be:7c:12:01:5f:db:d9:c9:12:fb:87:38:bd: 3b:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:C0:1A:50:62:A1:C7:22:7A:C8:67:B4:B5:C7:8B:63:10:91:88:DD X509v3 Authority Key Identifier: keyid:A0:8B:1B:14:AA:5B:65:12:42:4E:DF:86:50:A9:84:94:2F:27:A4:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2a97bcf4-e1aa-47d6-bde6-2e667b9d6134/0/A08B1B14AA5B6512424EDF8650A984942F27A4EF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A08B1B14AA5B6512424EDF8650A984942F27A4EF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2a97bcf4-e1aa-47d6-bde6-2e667b9d6134/0/323430353a6263303a3a2f33332d3438203d3e20313336383432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:bc0::/33 Signature Algorithm: sha256WithRSAEncryption 80:09:70:98:98:b5:a6:7a:7d:a2:1f:9a:b1:93:95:f4:6f:e3: 66:3c:42:09:94:b3:1f:9d:8c:e3:4f:fd:35:e2:c2:c5:c4:1c: 75:7a:9b:73:1f:fd:5a:46:9c:2a:cd:78:49:73:8a:b6:65:36: 58:46:8d:29:32:4f:b3:ce:76:70:a7:ef:ae:5b:39:82:64:4d: 74:f2:af:e5:b9:93:91:e9:87:bd:d7:67:e7:18:57:3e:56:07: 5a:ae:7d:5d:6f:3a:cf:d5:ec:ed:ca:19:d3:67:7f:15:e5:10: 5c:ce:53:02:11:03:9b:59:a5:8b:b2:8c:c6:1f:e0:ff:61:3a: 52:81:3d:64:da:f4:42:e4:a1:60:bc:d9:e4:ae:df:ee:9f:fe: 40:39:23:3b:e8:1b:ec:a0:2a:dd:32:2c:cd:6d:f4:48:be:8e: 69:ab:7a:ba:1c:66:3c:77:01:b8:44:8e:31:16:e3:17:78:9b: c3:53:03:2d:59:94:4f:02:44:ea:39:be:a6:8f:85:d1:fd:34: c3:27:a1:ff:80:45:21:83:e5:7e:5e:f8:a0:32:57:81:23:23: 21:47:cf:ce:6a:56:15:6f:a0:d7:9d:b0:c7:fb:ab:8b:c4:d5: c7:9a:c0:a4:9d:e7:62:ae:9c:ee:36:f2:21:7f:9d:48:bd:81: e0:cc:e1:c2 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUaTNYJly3J9vAkcMkKD3gNppMcGwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTA4QjFCMTRBQTVCNjUxMjQyNEVERjg2NTBBOTg0OTQy RjI3QTRFRjAeFw0yNTA4MTUwNzU1MjNaFw0yNjA4MTQwODAwMjNaMDMxMTAvBgNV BAMTKDIxQzAxQTUwNjJBMUM3MjI3QUM4NjdCNEI1Qzc4QjYzMTA5MTg4REQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDA9JQshrGD30dkmwOmt4H8/kWx luP25aPenqh1PcE7nDEPO7+H1IyuazUd0jo6DKaMcCJ1HuL9uuVmlyLWhm+DDInB FHeADdb/07utEnzFF74daITm4QGAn3gtFWzHtgORuxFZcl6OTCoKIIZA8g1UzpR4 hMSFyi/9IYN8llcK3YtWEq9QawFaAulh2bJQx9H13CqPqMGBSyrkmQsQA0cpHFD7 SPKy5HOEtPS72sU21ERxydxAbD7AATKk3KM2G4jg6jDPyesDMmUTIc0UqDyO5r5U Dw4O/W6GtHFjwcCiOoFomTnXuO1GzPvd40JHbYEwvnwSAV/b2ckS+4c4vTulAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUIcAaUGKhxyJ6yGe0tceLYxCRiN0wHwYDVR0j BBgwFoAUoIsbFKpbZRJCTt+GUKmElC8npO8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y YTk3YmNmNC1lMWFhLTQ3ZDYtYmRlNi0yZTY2N2I5ZDYxMzQvMC9BMDhCMUIxNEFB NUI2NTEyNDI0RURGODY1MEE5ODQ5NDJGMjdBNEVGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTA4QjFCMTRBQTVCNjUxMjQyNEVERjg2NTBBOTg0OTQyRjI3 QTRFRi5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJhOTdiY2Y0LWUxYWEtNDdkNi1i ZGU2LTJlNjY3YjlkNjEzNC8wLzMyMzQzMDM1M2E2MjYzMzAzYTNhMmYzMzMzMmQz NDM4MjAzZDNlMjAzMTMzMzYzODM0MzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgckBQvAADANBgkqhkiG 9w0BAQsFAAOCAQEAgAlwmJi1pnp9oh+asZOV9G/jZjxCCZSzH52M40/9NeLCxcQc dXqbcx/9WkacKs14SXOKtmU2WEaNKTJPs852cKfvrls5gmRNdPKv5bmTkemHvddn 5xhXPlYHWq59XW86z9Xs7coZ02d/FeUQXM5TAhEDm1mli7KMxh/g/2E6UoE9ZNr0 QuShYLzZ5K7f7p/+QDkjO+gb7KAq3TIszW30SL6Oaat6uhxmPHcBuESOMRbjF3ib w1MDLVmUTwJE6jm+po+F0f00wyeh/4BFIYPlfl74oDJXgSMjIUfPzmpWFW+g152w x/uri8TVx5rApJ3nYq6c7jbyIX+dSL2B4Mzhwg== -----END CERTIFICATE-----Generated at Sat Aug 23 21:55:00 2025 by rpki-client