$ rpki-client -vvf repo-rpki.idnic.net/repo/2d487360-8735-41d7-97a8-dbb34d79eff4/0/323430343a366338303a3a2f33322d3438203d3e20313334363538.roa File: 323430343a366338303a3a2f33322d3438203d3e20313334363538.roa (raw, json) Hash identifier: /De9PraBKQ9VNMLW73eKsHyTdK5CxUO/Ms23Vqs0bog= Subject key identifier: BC:FB:E1:A1:AD:13:0F:75:62:AB:75:5B:99:0D:07:B7:7B:08:86:38 Certificate issuer: /CN=B11E5C9B4E322460FD701387F25B9EAEFE67C3EC Certificate serial: 691085EDB8ABD81875330E3F6B82CA81D1311245 Authority key identifier: B1:1E:5C:9B:4E:32:24:60:FD:70:13:87:F2:5B:9E:AE:FE:67:C3:EC Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B11E5C9B4E322460FD701387F25B9EAEFE67C3EC.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2d487360-8735-41d7-97a8-dbb34d79eff4/0/323430343a366338303a3a2f33322d3438203d3e20313334363538.roa Signing time: Fri 22 Aug 2025 19:00:00 +0000 ROA not before: Fri 22 Aug 2025 18:55:00 +0000 ROA not after: Fri 21 Aug 2026 19:00:00 +0000 asID: 134658 IP address blocks: 2404:6c80::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2d487360-8735-41d7-97a8-dbb34d79eff4/0/B11E5C9B4E322460FD701387F25B9EAEFE67C3EC.crl rsync://repo-rpki.idnic.net/repo/2d487360-8735-41d7-97a8-dbb34d79eff4/0/B11E5C9B4E322460FD701387F25B9EAEFE67C3EC.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B11E5C9B4E322460FD701387F25B9EAEFE67C3EC.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 22:52:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:10:85:ed:b8:ab:d8:18:75:33:0e:3f:6b:82:ca:81:d1:31:12:45 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B11E5C9B4E322460FD701387F25B9EAEFE67C3EC Validity Not Before: Aug 22 18:55:00 2025 GMT Not After : Aug 21 19:00:00 2026 GMT Subject: CN=BCFBE1A1AD130F7562AB755B990D07B77B088638 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:85:f9:e6:a9:c6:7e:18:d3:c7:25:ed:09:bc: 50:91:d3:e8:3b:02:9b:ab:5b:cc:31:b4:55:c0:be: ba:07:07:a5:c4:63:72:17:32:d0:f4:8a:ab:67:3c: 94:1d:3d:12:c5:80:56:90:13:cc:45:9a:8f:9d:7f: 8c:03:da:f0:d4:8d:14:61:b7:fc:6e:49:6b:11:2b: 26:99:f8:a6:4b:79:1e:4a:4f:83:c2:ea:91:c3:38: 69:95:5b:fe:a8:7c:ac:fc:e7:c6:02:78:99:05:f6: b7:f4:ea:53:ad:aa:ee:60:7a:2c:d8:21:e8:62:96: da:f9:8a:d8:8d:0a:c9:0c:58:eb:2d:b1:15:24:a7: 29:1d:06:4c:14:b9:90:6f:77:d4:62:f1:c9:20:fa: bc:02:8a:78:e9:62:15:41:e2:65:27:7c:ca:e4:8e: 83:fa:ef:03:f2:90:9a:0f:ee:8b:df:00:17:98:3c: 17:1f:23:a6:ab:44:13:ee:f3:4f:68:af:d0:16:8e: 52:76:a7:15:48:0e:26:d7:43:90:ce:3e:3a:6d:aa: ec:0e:d4:a8:ef:a3:41:db:ff:d8:fc:ba:b2:f2:9a: 41:e1:a8:9a:c2:88:88:fe:c6:2c:fd:69:21:ab:7a: 81:80:ad:97:c2:b7:92:bb:96:d4:d9:c6:05:4a:d6: de:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:FB:E1:A1:AD:13:0F:75:62:AB:75:5B:99:0D:07:B7:7B:08:86:38 X509v3 Authority Key Identifier: keyid:B1:1E:5C:9B:4E:32:24:60:FD:70:13:87:F2:5B:9E:AE:FE:67:C3:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2d487360-8735-41d7-97a8-dbb34d79eff4/0/B11E5C9B4E322460FD701387F25B9EAEFE67C3EC.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B11E5C9B4E322460FD701387F25B9EAEFE67C3EC.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2d487360-8735-41d7-97a8-dbb34d79eff4/0/323430343a366338303a3a2f33322d3438203d3e20313334363538.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:6c80::/32 Signature Algorithm: sha256WithRSAEncryption 18:09:a2:15:57:10:3e:54:20:d3:bc:3a:2c:eb:ae:8e:a8:8c: 3f:08:37:5d:0d:22:70:fa:2e:ab:75:e3:33:d9:ad:f3:93:4e: e5:1b:29:df:c1:39:a4:ca:bb:02:8a:ef:48:3b:09:22:5d:b8: 41:2e:74:0b:f2:31:1c:8b:e6:cd:14:ec:74:94:87:9b:90:34: 8b:97:84:0b:d3:2a:a7:70:db:0e:b9:bc:8b:8a:04:7a:f4:a5: 29:3b:a3:b5:70:9f:e2:6d:98:e8:85:39:61:40:64:f9:91:84: 9d:2d:0e:ae:00:74:4c:fd:f1:fb:c8:42:84:eb:ec:6a:00:dc: 3b:05:5a:42:e8:43:8e:50:0c:8d:7b:47:78:9a:16:c4:1e:ae: fd:20:cd:4c:df:99:9e:ad:51:6e:74:82:06:56:ba:60:7e:ff: fe:86:7b:1d:92:e3:f6:e7:4b:33:44:8d:e3:c1:56:4c:cd:24: e9:70:7e:02:08:69:6a:41:aa:55:06:ee:94:90:58:ec:69:07: 99:bd:42:0e:38:13:87:fe:2d:93:28:82:a2:3d:a5:14:ba:94: cc:d2:73:1f:ab:9e:02:4a:cc:f8:2b:58:dd:f2:aa:67:5c:88: 88:bb:32:f3:7a:31:8d:b1:00:ec:40:c1:a1:9b:d0:f3:c7:85: d7:b3:6a:13 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUaRCF7bir2Bh1Mw4/a4LKgdExEkUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjExRTVDOUI0RTMyMjQ2MEZENzAxMzg3RjI1QjlFQUVG RTY3QzNFQzAeFw0yNTA4MjIxODU1MDBaFw0yNjA4MjExOTAwMDBaMDMxMTAvBgNV BAMTKEJDRkJFMUExQUQxMzBGNzU2MkFCNzU1Qjk5MEQwN0I3N0IwODg2MzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCihfnmqcZ+GNPHJe0JvFCR0+g7 ApurW8wxtFXAvroHB6XEY3IXMtD0iqtnPJQdPRLFgFaQE8xFmo+df4wD2vDUjRRh t/xuSWsRKyaZ+KZLeR5KT4PC6pHDOGmVW/6ofKz858YCeJkF9rf06lOtqu5geizY Iehiltr5itiNCskMWOstsRUkpykdBkwUuZBvd9Ri8ckg+rwCinjpYhVB4mUnfMrk joP67wPykJoP7ovfABeYPBcfI6arRBPu809or9AWjlJ2pxVIDibXQ5DOPjptquwO 1Kjvo0Hb/9j8urLymkHhqJrCiIj+xiz9aSGreoGArZfCt5K7ltTZxgVK1t67AgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUvPvhoa0TD3Viq3VbmQ0Ht3sIhjgwHwYDVR0j BBgwFoAUsR5cm04yJGD9cBOH8luerv5nw+wwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZDQ4NzM2MC04NzM1LTQxZDctOTdhOC1kYmIzNGQ3OWVmZjQvMC9CMTFFNUM5QjRF MzIyNDYwRkQ3MDEzODdGMjVCOUVBRUZFNjdDM0VDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjExRTVDOUI0RTMyMjQ2MEZENzAxMzg3RjI1QjlFQUVGRTY3 QzNFQy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJkNDg3MzYwLTg3MzUtNDFkNy05 N2E4LWRiYjM0ZDc5ZWZmNC8wLzMyMzQzMDM0M2EzNjYzMzgzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMxMzMzNDM2MzUzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQEbIAwDQYJKoZI hvcNAQELBQADggEBABgJohVXED5UINO8Oizrro6ojD8IN10NInD6Lqt14zPZrfOT TuUbKd/BOaTKuwKK70g7CSJduEEudAvyMRyL5s0U7HSUh5uQNIuXhAvTKqdw2w65 vIuKBHr0pSk7o7Vwn+JtmOiFOWFAZPmRhJ0tDq4AdEz98fvIQoTr7GoA3DsFWkLo Q45QDI17R3iaFsQerv0gzUzfmZ6tUW50ggZWumB+//6Gex2S4/bnSzNEjePBVkzN JOlwfgIIaWpBqlUG7pSQWOxpB5m9Qg44E4f+LZMogqI9pRS6lMzScx+rngJKzPgr WN3yqmdciIi7MvN6MY2xAOxAwaGb0PPHhdezahM= -----END CERTIFICATE-----Generated at Sat Aug 23 13:17:59 2025 by rpki-client