$ rpki-client -vvf repo-rpki.idnic.net/repo/401c4d61-dcef-4a20-bd4c-a282a37aa69e/0/323030313a6466373a376438303a3a2f34382d3438203d3e20313431393039.roa File: 323030313a6466373a376438303a3a2f34382d3438203d3e20313431393039.roa (raw, json) Hash identifier: KA7O/abuJXSSbDP15REs5MblSDnNlUUXbTrePmAZ+kE= Subject key identifier: 4C:B7:40:77:FA:C7:21:97:99:8C:B2:FD:65:3B:C2:BA:64:69:3A:D4 Certificate issuer: /CN=26C01247693F68CFDA1F8CB6B88F7A3700D30001 Certificate serial: 10E84507C7AEE9548A82A6BE58DCADC0C89F7844 Authority key identifier: 26:C0:12:47:69:3F:68:CF:DA:1F:8C:B6:B8:8F:7A:37:00:D3:00:01 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/26C01247693F68CFDA1F8CB6B88F7A3700D30001.cer Subject info access: rsync://repo-rpki.idnic.net/repo/401c4d61-dcef-4a20-bd4c-a282a37aa69e/0/323030313a6466373a376438303a3a2f34382d3438203d3e20313431393039.roa Signing time: Fri 10 Oct 2025 11:00:03 +0000 ROA not before: Fri 10 Oct 2025 10:55:03 +0000 ROA not after: Fri 09 Oct 2026 11:00:03 +0000 asID: 141909 IP address blocks: 2001:df7:7d80::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/401c4d61-dcef-4a20-bd4c-a282a37aa69e/0/26C01247693F68CFDA1F8CB6B88F7A3700D30001.crl rsync://repo-rpki.idnic.net/repo/401c4d61-dcef-4a20-bd4c-a282a37aa69e/0/26C01247693F68CFDA1F8CB6B88F7A3700D30001.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/26C01247693F68CFDA1F8CB6B88F7A3700D30001.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 03:58:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:e8:45:07:c7:ae:e9:54:8a:82:a6:be:58:dc:ad:c0:c8:9f:78:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=26C01247693F68CFDA1F8CB6B88F7A3700D30001 Validity Not Before: Oct 10 10:55:03 2025 GMT Not After : Oct 9 11:00:03 2026 GMT Subject: CN=4CB74077FAC72197998CB2FD653BC2BA64693AD4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:95:dd:02:53:f3:d6:cb:ad:7a:6f:08:5f:5c: 5a:40:26:d2:3d:f4:75:e3:c5:fd:32:33:75:73:6c: 5e:e2:44:85:7d:16:f6:2d:35:e8:89:09:77:67:ee: 1b:7f:30:46:e5:fa:1c:e7:d8:16:00:bb:aa:09:7a: e0:fc:db:14:ce:6d:db:ac:dc:87:73:10:0e:99:10: 14:07:32:a0:3c:ba:98:db:7b:01:a4:de:12:3c:48: 75:c8:88:5e:1d:47:0b:6a:b1:e4:f2:96:a8:b1:3a: e8:f0:c4:1e:84:df:9c:c6:e2:01:45:8b:c3:0e:c6: 13:46:c3:21:89:29:ac:3c:ff:d3:56:90:4b:1d:34: 59:0e:69:ff:e5:b0:26:cc:1e:ba:a6:28:73:62:25: 09:16:78:cd:2d:ba:e4:a6:6e:56:d5:50:12:72:b2: a0:b3:c9:63:71:88:7c:30:7c:32:6f:ff:40:c2:33: 9b:b1:1e:99:a9:25:48:16:3a:18:95:1b:d5:b2:27: f0:f1:aa:9c:65:e9:9a:82:ca:32:dc:97:28:a5:98: 31:2e:87:43:ff:c9:bc:5f:a6:33:70:b0:5e:3a:65: a8:63:73:ed:8a:eb:b9:80:e4:5b:7f:e1:fa:e3:a0: 2a:44:74:ff:fc:12:05:b0:90:28:35:10:21:ed:a6: ad:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:B7:40:77:FA:C7:21:97:99:8C:B2:FD:65:3B:C2:BA:64:69:3A:D4 X509v3 Authority Key Identifier: keyid:26:C0:12:47:69:3F:68:CF:DA:1F:8C:B6:B8:8F:7A:37:00:D3:00:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/401c4d61-dcef-4a20-bd4c-a282a37aa69e/0/26C01247693F68CFDA1F8CB6B88F7A3700D30001.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/26C01247693F68CFDA1F8CB6B88F7A3700D30001.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/401c4d61-dcef-4a20-bd4c-a282a37aa69e/0/323030313a6466373a376438303a3a2f34382d3438203d3e20313431393039.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df7:7d80::/48 Signature Algorithm: sha256WithRSAEncryption ba:83:2a:6d:90:f7:79:df:58:96:c4:64:11:0e:17:a6:85:8b: 24:b9:49:bc:cf:a3:65:0e:fe:16:a6:9c:4f:5e:f2:f4:3e:0e: b5:19:ac:fa:3d:b1:c1:10:d1:13:c9:02:3b:3f:eb:61:29:e6: fd:5e:f3:cd:b5:fd:49:cf:a1:c4:3f:1a:e9:3b:d2:84:a6:aa: bd:66:71:11:78:26:4b:f4:e8:65:10:09:c9:f5:8e:a3:3d:0a: a3:e5:d3:e7:55:c5:a0:42:65:c1:54:c3:03:f5:7b:25:b2:8c: ad:8d:de:d2:50:48:01:3a:54:d9:05:ed:63:11:94:a2:25:7c: 6b:f2:3a:b7:15:46:ea:4e:a9:30:09:e3:20:c1:5c:7d:95:d1: 46:b1:97:8b:7c:dc:35:70:4c:2f:27:33:49:ff:96:b4:0a:58: a8:3b:79:f6:22:ae:63:99:73:d9:a1:a0:d2:f5:9f:8e:dd:fd: 25:a2:32:6d:0f:21:38:65:4b:fe:b2:24:42:6b:c6:da:d6:e8: 17:52:4f:8e:b5:a6:ec:3a:96:50:90:32:01:53:59:59:27:b7: 7b:6f:3e:f3:c9:cd:6d:04:08:45:74:2f:04:da:a4:1d:49:2e: a6:e1:07:3d:51:5e:9a:33:c2:34:f6:d9:93:d6:c2:7a:50:2c: b5:91:40:bf -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUEOhFB8eu6VSKgqa+WNytwMifeEQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjZDMDEyNDc2OTNGNjhDRkRBMUY4Q0I2Qjg4RjdBMzcw MEQzMDAwMTAeFw0yNTEwMTAxMDU1MDNaFw0yNjEwMDkxMTAwMDNaMDMxMTAvBgNV BAMTKDRDQjc0MDc3RkFDNzIxOTc5OThDQjJGRDY1M0JDMkJBNjQ2OTNBRDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCdld0CU/PWy616bwhfXFpAJtI9 9HXjxf0yM3VzbF7iRIV9FvYtNeiJCXdn7ht/MEbl+hzn2BYAu6oJeuD82xTObdus 3IdzEA6ZEBQHMqA8upjbewGk3hI8SHXIiF4dRwtqseTylqixOujwxB6E35zG4gFF i8MOxhNGwyGJKaw8/9NWkEsdNFkOaf/lsCbMHrqmKHNiJQkWeM0tuuSmblbVUBJy sqCzyWNxiHwwfDJv/0DCM5uxHpmpJUgWOhiVG9WyJ/Dxqpxl6ZqCyjLclyilmDEu h0P/ybxfpjNwsF46Zahjc+2K67mA5Ft/4frjoCpEdP/8EgWwkCg1ECHtpq2lAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUTLdAd/rHIZeZjLL9ZTvCumRpOtQwHwYDVR0j BBgwFoAUJsASR2k/aM/aH4y2uI96NwDTAAEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 MDFjNGQ2MS1kY2VmLTRhMjAtYmQ0Yy1hMjgyYTM3YWE2OWUvMC8yNkMwMTI0NzY5 M0Y2OENGREExRjhDQjZCODhGN0EzNzAwRDMwMDAxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjZDMDEyNDc2OTNGNjhDRkRBMUY4Q0I2Qjg4RjdBMzcwMEQz MDAwMS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQwMWM0ZDYxLWRjZWYtNGEyMC1i ZDRjLWEyODJhMzdhYTY5ZS8wLzMyMzAzMDMxM2E2NDY2MzczYTM3NjQzODMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNDMxMzkzMDM5LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 932AMA0GCSqGSIb3DQEBCwUAA4IBAQC6gyptkPd531iWxGQRDhemhYskuUm8z6Nl Dv4WppxPXvL0Pg61Gaz6PbHBENETyQI7P+thKeb9XvPNtf1Jz6HEPxrpO9KEpqq9 ZnEReCZL9OhlEAnJ9Y6jPQqj5dPnVcWgQmXBVMMD9Xslsoytjd7SUEgBOlTZBe1j EZSiJXxr8jq3FUbqTqkwCeMgwVx9ldFGsZeLfNw1cEwvJzNJ/5a0ClioO3n2Iq5j mXPZoaDS9Z+O3f0lojJtDyE4ZUv+siRCa8ba1ugXUk+OtabsOpZQkDIBU1lZJ7d7 bz7zyc1tBAhFdC8E2qQdSS6m4Qc9UV6aM8I09tmT1sJ6UCy1kUC/ -----END CERTIFICATE-----Generated at Tue Oct 21 01:42:14 2025 by rpki-client