$ rpki-client -vvf repo-rpki.idnic.net/repo/38488519-8f04-44f5-8312-8d9d3616d0d9/0/323030313a6466333a316363303a3a2f34382d3438203d3e20313532303035.roa File: 323030313a6466333a316363303a3a2f34382d3438203d3e20313532303035.roa (raw, json) Hash identifier: nwEHa3/WlV/z4/EUCjtnhlcu3D5Y4h6NQPei0E4YMNc= Subject key identifier: B6:33:B7:46:7F:57:73:DA:40:AF:9F:E6:04:FC:FE:94:2D:C6:E5:47 Certificate issuer: /CN=49011B0D97FF49210FC27249FDD23F7172FD5561 Certificate serial: 18F6F2DDE2AA31D99EED11139EE7E442F4C77509 Authority key identifier: 49:01:1B:0D:97:FF:49:21:0F:C2:72:49:FD:D2:3F:71:72:FD:55:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/49011B0D97FF49210FC27249FDD23F7172FD5561.cer Subject info access: rsync://repo-rpki.idnic.net/repo/38488519-8f04-44f5-8312-8d9d3616d0d9/0/323030313a6466333a316363303a3a2f34382d3438203d3e20313532303035.roa Signing time: Mon 06 Oct 2025 05:00:01 +0000 ROA not before: Mon 06 Oct 2025 04:55:01 +0000 ROA not after: Mon 05 Oct 2026 05:00:01 +0000 asID: 152005 IP address blocks: 2001:df3:1cc0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/38488519-8f04-44f5-8312-8d9d3616d0d9/0/49011B0D97FF49210FC27249FDD23F7172FD5561.crl rsync://repo-rpki.idnic.net/repo/38488519-8f04-44f5-8312-8d9d3616d0d9/0/49011B0D97FF49210FC27249FDD23F7172FD5561.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/49011B0D97FF49210FC27249FDD23F7172FD5561.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 22:35:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:f6:f2:dd:e2:aa:31:d9:9e:ed:11:13:9e:e7:e4:42:f4:c7:75:09 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=49011B0D97FF49210FC27249FDD23F7172FD5561 Validity Not Before: Oct 6 04:55:01 2025 GMT Not After : Oct 5 05:00:01 2026 GMT Subject: CN=B633B7467F5773DA40AF9FE604FCFE942DC6E547 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:d9:82:46:8c:b2:56:7b:5a:5f:b4:c5:dc:9b: 4f:56:16:8c:06:ac:bb:5e:28:17:4e:ff:45:32:b8: 53:e8:6b:01:5e:ae:0c:5b:b7:87:d0:3f:28:8b:97: d5:af:0e:3d:e2:86:e7:b2:7f:b7:4f:34:1a:17:30: 5a:30:4e:5b:a5:34:56:da:5e:13:56:b0:52:a6:93: 72:3e:d8:d3:4a:1e:f7:a5:8c:51:61:bf:e0:26:03: ac:20:d2:1b:c7:41:ab:13:47:4e:b8:e9:d0:69:a5: d1:41:a0:f9:af:75:df:37:99:e4:c4:ee:f7:6f:6e: 1e:59:01:73:64:3e:31:30:77:8e:52:ca:da:5e:ce: cd:61:a5:04:c4:b4:d2:b7:85:b7:73:fd:a1:b1:e5: a6:16:97:28:c3:ea:71:36:69:ca:6c:6d:a9:15:53: a4:78:14:41:68:90:c6:d7:42:f6:76:a2:15:17:40: 78:d4:09:38:88:dc:63:f9:0e:b0:14:17:b2:20:7d: 29:5a:51:dd:4e:5d:0d:d8:9a:a3:6a:c4:9b:c0:11: f9:89:1f:b6:0f:0d:7a:50:fd:ef:c9:a6:5a:2d:e0: 7c:89:47:bc:10:c7:2d:61:45:7a:dc:ce:bd:36:b8: 6e:32:e2:de:79:dd:e0:79:bd:30:3e:6a:84:de:73: 77:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:33:B7:46:7F:57:73:DA:40:AF:9F:E6:04:FC:FE:94:2D:C6:E5:47 X509v3 Authority Key Identifier: keyid:49:01:1B:0D:97:FF:49:21:0F:C2:72:49:FD:D2:3F:71:72:FD:55:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/38488519-8f04-44f5-8312-8d9d3616d0d9/0/49011B0D97FF49210FC27249FDD23F7172FD5561.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/49011B0D97FF49210FC27249FDD23F7172FD5561.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/38488519-8f04-44f5-8312-8d9d3616d0d9/0/323030313a6466333a316363303a3a2f34382d3438203d3e20313532303035.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df3:1cc0::/48 Signature Algorithm: sha256WithRSAEncryption c7:e0:e3:65:98:d6:3a:cb:e3:4b:a7:7f:94:63:b0:b1:8e:4e: 17:2b:14:af:fd:aa:9b:eb:80:3e:3c:b4:5d:80:ca:e1:37:52: 2d:65:31:99:e1:ba:48:49:9d:26:c9:e0:ea:4b:fb:62:80:19: 6c:95:70:99:43:e5:a6:de:1a:f2:a9:ae:c7:ac:40:24:83:67: bd:a1:94:22:bc:2b:b0:59:2d:26:60:28:57:a6:e8:1a:01:be: 56:bc:29:f9:b5:69:20:2d:a8:ec:e2:7e:47:65:14:4b:f3:73: 2f:c3:cc:19:10:fb:e6:41:d3:df:55:0a:3b:1b:95:8b:c5:5e: 55:02:7e:c6:1b:9a:c0:e6:74:0f:09:43:45:4c:11:a4:cb:47: 59:33:3f:f8:e7:e1:c4:e8:2a:4e:79:65:c6:77:c6:e5:22:69: b6:4e:a9:14:e4:83:ad:fb:46:3c:28:36:bf:1d:f8:e4:81:12: ff:44:6d:75:cf:31:bb:12:38:2c:19:50:d9:1f:db:82:48:6b: 77:5f:2e:1b:99:a1:cf:c0:6b:43:19:bd:60:7e:a6:e0:5f:6a: 84:34:ae:b8:30:a8:7a:13:5f:41:e5:81:68:11:02:b8:16:5f: d2:a3:6d:60:3f:a6:9e:b4:17:be:94:ea:6a:f6:02:82:1a:de: 45:7d:dc:d3 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUGPby3eKqMdme7RETnufkQvTHdQkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDkwMTFCMEQ5N0ZGNDkyMTBGQzI3MjQ5RkREMjNGNzE3 MkZENTU2MTAeFw0yNTEwMDYwNDU1MDFaFw0yNjEwMDUwNTAwMDFaMDMxMTAvBgNV BAMTKEI2MzNCNzQ2N0Y1NzczREE0MEFGOUZFNjA0RkNGRTk0MkRDNkU1NDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC82YJGjLJWe1pftMXcm09WFowG rLteKBdO/0UyuFPoawFergxbt4fQPyiLl9WvDj3ihueyf7dPNBoXMFowTlulNFba XhNWsFKmk3I+2NNKHveljFFhv+AmA6wg0hvHQasTR0646dBppdFBoPmvdd83meTE 7vdvbh5ZAXNkPjEwd45Sytpezs1hpQTEtNK3hbdz/aGx5aYWlyjD6nE2acpsbakV U6R4FEFokMbXQvZ2ohUXQHjUCTiI3GP5DrAUF7IgfSlaUd1OXQ3YmqNqxJvAEfmJ H7YPDXpQ/e/Jplot4HyJR7wQxy1hRXrczr02uG4y4t553eB5vTA+aoTec3dBAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUtjO3Rn9Xc9pAr5/mBPz+lC3G5UcwHwYDVR0j BBgwFoAUSQEbDZf/SSEPwnJJ/dI/cXL9VWEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ODQ4ODUxOS04ZjA0LTQ0ZjUtODMxMi04ZDlkMzYxNmQwZDkvMC80OTAxMUIwRDk3 RkY0OTIxMEZDMjcyNDlGREQyM0Y3MTcyRkQ1NTYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDkwMTFCMEQ5N0ZGNDkyMTBGQzI3MjQ5RkREMjNGNzE3MkZE NTU2MS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzM4NDg4NTE5LThmMDQtNDRmNS04 MzEyLThkOWQzNjE2ZDBkOS8wLzMyMzAzMDMxM2E2NDY2MzMzYTMxNjM2MzMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNTMyMzAzMDM1LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8xzAMA0GCSqGSIb3DQEBCwUAA4IBAQDH4ONlmNY6y+NLp3+UY7Cxjk4XKxSv/aqb 64A+PLRdgMrhN1ItZTGZ4bpISZ0myeDqS/tigBlslXCZQ+Wm3hryqa7HrEAkg2e9 oZQivCuwWS0mYChXpugaAb5WvCn5tWkgLajs4n5HZRRL83Mvw8wZEPvmQdPfVQo7 G5WLxV5VAn7GG5rA5nQPCUNFTBGky0dZMz/45+HE6CpOeWXGd8blImm2TqkU5IOt +0Y8KDa/HfjkgRL/RG11zzG7EjgsGVDZH9uCSGt3Xy4bmaHPwGtDGb1gfqbgX2qE NK64MKh6E19B5YFoEQK4Fl/So21gP6aetBe+lOpq9gKCGt5FfdzT -----END CERTIFICATE-----Generated at Mon Oct 20 15:23:14 2025 by rpki-client