$ rpki-client -vvf repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/323430353a616163303a3130303a3a2f34382d3438203d3e20313339393439.roa File: 323430353a616163303a3130303a3a2f34382d3438203d3e20313339393439.roa (raw, json) Hash identifier: OZL2E/cxafeD3j68dR4Goq3KpVcZ8ZFBeGKFytnaELo= Subject key identifier: 4A:7C:5D:AC:C3:C8:A2:0E:5D:85:AF:2A:11:21:04:66:00:BF:2F:00 Certificate issuer: /CN=DA8766A90851AE44D76B8563D83586F0164FE5CF Certificate serial: 4DC05810CF585DCBCC3500B032EBEDB5F11FFC37 Authority key identifier: DA:87:66:A9:08:51:AE:44:D7:6B:85:63:D8:35:86:F0:16:4F:E5:CF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA8766A90851AE44D76B8563D83586F0164FE5CF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/323430353a616163303a3130303a3a2f34382d3438203d3e20313339393439.roa Signing time: Sat 20 Sep 2025 19:00:00 +0000 ROA not before: Sat 20 Sep 2025 18:55:00 +0000 ROA not after: Sat 19 Sep 2026 19:00:00 +0000 asID: 139949 IP address blocks: 2405:aac0:100::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/DA8766A90851AE44D76B8563D83586F0164FE5CF.crl rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/DA8766A90851AE44D76B8563D83586F0164FE5CF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA8766A90851AE44D76B8563D83586F0164FE5CF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Oct 2025 07:28:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:c0:58:10:cf:58:5d:cb:cc:35:00:b0:32:eb:ed:b5:f1:1f:fc:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DA8766A90851AE44D76B8563D83586F0164FE5CF Validity Not Before: Sep 20 18:55:00 2025 GMT Not After : Sep 19 19:00:00 2026 GMT Subject: CN=4A7C5DACC3C8A20E5D85AF2A1121046600BF2F00 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:d1:dc:29:11:e6:98:90:d5:f5:97:cc:64:ce: 22:a7:49:71:c1:48:fe:4b:69:43:72:f4:0c:7b:26: 92:3c:28:02:6a:27:1c:5b:bc:8d:6d:a5:3e:f3:e2: 0b:cf:77:e7:3f:9e:94:01:47:37:fa:1b:40:fc:43: ac:ad:b1:26:ac:ac:83:24:7b:59:6a:ba:dc:3d:df: 3f:7b:af:5d:d3:c2:e3:27:3b:5d:29:98:a2:67:72: a3:7e:57:d1:75:11:f8:9a:5f:55:da:43:78:43:29: f3:0b:4a:0e:91:3e:42:1a:aa:38:45:63:22:94:1c: 21:81:60:ca:a6:04:68:b0:de:58:f4:cb:2a:4f:84: bf:0b:08:d5:71:00:05:5a:5a:39:56:70:cc:65:d4: 55:2c:df:15:b4:5f:fa:6d:4b:07:82:a9:e5:64:59: 33:70:87:d5:e4:9a:56:f7:43:f7:44:cb:e2:42:51: b7:ef:fa:63:16:41:cc:d6:50:4d:5e:68:ae:ba:28: 99:c2:2e:40:6c:dc:a1:83:ed:3d:9d:7a:4f:c3:6e: 6e:37:6b:ad:ac:fc:8b:15:5c:14:c0:e0:18:48:f2: 6d:09:c8:38:ee:e6:23:40:a9:e3:99:fb:37:25:65: 1b:ef:67:ad:2f:e7:1d:4f:c0:cc:0c:9e:4b:69:ff: 0b:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:7C:5D:AC:C3:C8:A2:0E:5D:85:AF:2A:11:21:04:66:00:BF:2F:00 X509v3 Authority Key Identifier: keyid:DA:87:66:A9:08:51:AE:44:D7:6B:85:63:D8:35:86:F0:16:4F:E5:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/DA8766A90851AE44D76B8563D83586F0164FE5CF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA8766A90851AE44D76B8563D83586F0164FE5CF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/323430353a616163303a3130303a3a2f34382d3438203d3e20313339393439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:aac0:100::/48 Signature Algorithm: sha256WithRSAEncryption 6c:30:ef:05:48:54:7c:d6:28:36:41:ba:40:17:5a:d3:ed:94: 64:fa:f7:b6:d4:58:6b:92:0d:c2:3c:70:38:ab:4d:01:bf:db: 3a:51:b7:2a:78:31:b5:59:aa:4c:dc:95:f2:7b:da:e4:b4:0f: 56:b1:b3:12:15:41:07:af:58:d0:9b:75:b1:e6:e0:03:1d:0d: 0e:3f:4e:ba:a9:b4:64:05:4b:87:85:3e:4d:1e:59:f0:8b:02: 17:e9:cf:17:15:82:9b:23:7e:f8:65:d9:92:80:a5:fe:4b:56: 6c:74:68:b9:aa:15:ec:ef:a8:69:8a:21:5f:5f:cb:7f:fc:10: 03:7f:c8:04:7d:53:40:12:64:01:f6:43:3e:20:5e:5b:57:3f: b4:3a:d7:db:66:9a:08:11:c4:d5:fb:6c:12:67:c9:4d:db:b8: 75:12:2a:3f:86:d2:08:64:7f:ec:29:c1:ac:ea:48:6c:b5:0f: d2:fb:4e:40:3a:aa:af:87:b2:9f:bc:76:c7:64:c2:12:b9:e8: 16:d0:93:bf:6a:3a:c7:0e:30:a8:0e:07:1c:e2:a7:cf:78:e9: 09:cc:ba:55:0d:90:25:6f:69:59:78:39:86:a2:ad:82:93:d7: 08:b8:93:ae:b1:5f:06:aa:95:74:52:ff:c7:44:a9:c5:24:8d: 17:7c:cd:96 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUTcBYEM9YXcvMNQCwMuvttfEf/DcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREE4NzY2QTkwODUxQUU0NEQ3NkI4NTYzRDgzNTg2RjAx NjRGRTVDRjAeFw0yNTA5MjAxODU1MDBaFw0yNjA5MTkxOTAwMDBaMDMxMTAvBgNV BAMTKDRBN0M1REFDQzNDOEEyMEU1RDg1QUYyQTExMjEwNDY2MDBCRjJGMDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDM0dwpEeaYkNX1l8xkziKnSXHB SP5LaUNy9Ax7JpI8KAJqJxxbvI1tpT7z4gvPd+c/npQBRzf6G0D8Q6ytsSasrIMk e1lqutw93z97r13TwuMnO10pmKJncqN+V9F1EfiaX1XaQ3hDKfMLSg6RPkIaqjhF YyKUHCGBYMqmBGiw3lj0yypPhL8LCNVxAAVaWjlWcMxl1FUs3xW0X/ptSweCqeVk WTNwh9Xkmlb3Q/dEy+JCUbfv+mMWQczWUE1eaK66KJnCLkBs3KGD7T2dek/Dbm43 a62s/IsVXBTA4BhI8m0JyDju5iNAqeOZ+zclZRvvZ60v5x1PwMwMnktp/wstAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUSnxdrMPIog5dha8qESEEZgC/LwAwHwYDVR0j BBgwFoAU2odmqQhRrkTXa4Vj2DWG8BZP5c8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ZGVkYzAzMy1jZDRkLTQ2MjAtOTM3Mi1lNmUwMzlmYzA2YjkvMC9EQTg3NjZBOTA4 NTFBRTQ0RDc2Qjg1NjNEODM1ODZGMDE2NEZFNUNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREE4NzY2QTkwODUxQUU0NEQ3NkI4NTYzRDgzNTg2RjAxNjRG RTVDRi5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNkZWRjMDMzLWNkNGQtNDYyMC05 MzcyLWU2ZTAzOWZjMDZiOS8wLzMyMzQzMDM1M2E2MTYxNjMzMDNhMzEzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM5MzkzNDM5LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAWq wAEAMA0GCSqGSIb3DQEBCwUAA4IBAQBsMO8FSFR81ig2QbpAF1rT7ZRk+ve21Fhr kg3CPHA4q00Bv9s6UbcqeDG1WapM3JXye9rktA9WsbMSFUEHr1jQm3Wx5uADHQ0O P066qbRkBUuHhT5NHlnwiwIX6c8XFYKbI374ZdmSgKX+S1ZsdGi5qhXs76hpiiFf X8t//BADf8gEfVNAEmQB9kM+IF5bVz+0OtfbZpoIEcTV+2wSZ8lN27h1Eio/htII ZH/sKcGs6khstQ/S+05AOqqvh7KfvHbHZMISuegW0JO/ajrHDjCoDgcc4qfPeOkJ zLpVDZAlb2lZeDmGoq2Ck9cIuJOusV8GqpV0Uv/HRKnFJI0XfM2W -----END CERTIFICATE-----Generated at Mon Oct 20 04:20:36 2025 by rpki-client