$ rpki-client -vvf repo-rpki.idnic.net/repo/41db3730-f499-449f-b6f2-7a5deb532b0c/0/323430333a316130303a343a3a2f34372d3437203d3e203435373233.roa File: 323430333a316130303a343a3a2f34372d3437203d3e203435373233.roa (raw, json) Hash identifier: xiMw3g54rwkg5pTrfUcRFVEPY6CzUbv7I+jMZseSJVM= Subject key identifier: E3:91:E9:7D:AA:92:CC:F1:61:DA:FC:10:1B:E6:5E:54:06:49:41:FF Certificate issuer: /CN=3F6E9BC5F16F1C3AB5FD636E7DE06FDD64892C25 Certificate serial: 455045ABACD676D71100E6678FFC51327761C6CE Authority key identifier: 3F:6E:9B:C5:F1:6F:1C:3A:B5:FD:63:6E:7D:E0:6F:DD:64:89:2C:25 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3F6E9BC5F16F1C3AB5FD636E7DE06FDD64892C25.cer Subject info access: rsync://repo-rpki.idnic.net/repo/41db3730-f499-449f-b6f2-7a5deb532b0c/0/323430333a316130303a343a3a2f34372d3437203d3e203435373233.roa Signing time: Fri 19 Sep 2025 04:01:50 +0000 ROA not before: Fri 19 Sep 2025 03:56:50 +0000 ROA not after: Fri 18 Sep 2026 04:01:50 +0000 asID: 45723 IP address blocks: 2403:1a00:4::/47 maxlen: 47 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/41db3730-f499-449f-b6f2-7a5deb532b0c/0/3F6E9BC5F16F1C3AB5FD636E7DE06FDD64892C25.crl rsync://repo-rpki.idnic.net/repo/41db3730-f499-449f-b6f2-7a5deb532b0c/0/3F6E9BC5F16F1C3AB5FD636E7DE06FDD64892C25.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3F6E9BC5F16F1C3AB5FD636E7DE06FDD64892C25.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 11:48:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:50:45:ab:ac:d6:76:d7:11:00:e6:67:8f:fc:51:32:77:61:c6:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3F6E9BC5F16F1C3AB5FD636E7DE06FDD64892C25 Validity Not Before: Sep 19 03:56:50 2025 GMT Not After : Sep 18 04:01:50 2026 GMT Subject: CN=E391E97DAA92CCF161DAFC101BE65E54064941FF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:9c:cd:81:58:b7:66:dd:a4:8f:81:7f:9e:c5: 02:1b:04:74:7c:7b:f7:99:fd:32:85:3f:8b:72:03: 81:a3:7c:64:4f:e7:83:ba:21:3b:af:4e:21:6e:43: 6b:ea:8b:48:8b:47:0d:5b:ea:6f:3e:3f:5c:23:32: 78:58:8f:3c:81:bd:f4:3a:c9:04:0d:53:2d:2c:45: b0:4e:d1:b8:27:de:6e:56:dd:4d:8d:09:c5:60:90: 73:cc:5b:4d:30:7e:cf:4a:d2:5c:75:0a:79:3f:c9: bb:9a:18:b4:86:70:8e:f4:be:bd:5d:ac:73:99:1e: 50:ee:33:5b:0e:06:6b:6c:1e:1f:e2:33:40:9e:bd: 60:cd:21:e0:b4:9a:b5:cb:8e:d9:8c:a2:7e:b7:99: 77:bd:12:f2:98:88:c5:da:65:93:98:12:b3:ce:d3: 38:37:6c:04:25:d8:fd:01:0d:a2:7c:f8:c7:08:d6: 33:30:fc:47:0b:bb:73:56:86:c7:e3:40:da:5e:54: 85:75:22:4a:5b:a1:3e:68:0b:35:e0:39:b2:9e:70: d9:2d:e7:38:65:98:56:7a:bb:69:e9:0e:b2:97:21: c2:1b:91:81:48:cb:87:0c:57:e7:ce:3a:3f:a6:3d: a9:e8:40:42:1f:5e:d3:9e:4f:79:cd:fb:9c:56:5e: 45:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:91:E9:7D:AA:92:CC:F1:61:DA:FC:10:1B:E6:5E:54:06:49:41:FF X509v3 Authority Key Identifier: keyid:3F:6E:9B:C5:F1:6F:1C:3A:B5:FD:63:6E:7D:E0:6F:DD:64:89:2C:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/41db3730-f499-449f-b6f2-7a5deb532b0c/0/3F6E9BC5F16F1C3AB5FD636E7DE06FDD64892C25.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3F6E9BC5F16F1C3AB5FD636E7DE06FDD64892C25.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/41db3730-f499-449f-b6f2-7a5deb532b0c/0/323430333a316130303a343a3a2f34372d3437203d3e203435373233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:1a00:4::/47 Signature Algorithm: sha256WithRSAEncryption 06:2d:41:68:99:40:9a:e1:c6:66:4a:3e:9a:ea:97:3b:4f:c0: 6f:4e:0a:b5:3a:a8:46:28:e8:9f:73:4b:32:66:4a:e1:3a:a6: d8:97:91:35:bc:82:04:bf:5c:0f:97:74:4a:29:db:4b:25:e6: fe:8e:ec:4c:72:9b:0e:f7:0c:63:9e:f9:41:46:d1:7c:55:c2: f0:81:f9:c3:8c:e3:e5:9d:fb:e1:63:5a:70:29:55:18:e2:a1: 17:84:9b:42:42:26:43:00:f0:52:c9:3c:2f:31:0e:ba:e4:a3: fc:78:e4:fa:f0:2a:e8:e5:ad:a3:9e:1e:9c:8c:fe:3c:86:d7: a3:ef:c7:e4:39:ba:31:44:15:f4:03:b0:6d:1f:ba:b5:a2:8c: b6:57:1e:a0:2f:9a:77:8c:55:2b:59:84:00:a6:13:20:92:91: ee:a1:ce:37:62:84:c8:00:f2:5f:89:62:53:b7:b6:76:78:81: 91:2d:02:71:e9:6c:d5:22:d7:ff:1c:c6:a2:29:d1:60:a3:22: ab:bc:50:fb:d2:c1:1f:87:ab:3d:2c:fd:49:77:d2:cf:a8:0d: 53:58:fe:cd:85:25:2d:ab:01:8f:32:61:65:d0:06:d8:2e:c9: 68:3e:34:df:48:8d:6d:05:8e:b7:93:c5:d0:5b:6b:12:df:ab: ef:1a:da:8f -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIURVBFq6zWdtcRAOZnj/xRMndhxs4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0Y2RTlCQzVGMTZGMUMzQUI1RkQ2MzZFN0RFMDZGREQ2 NDg5MkMyNTAeFw0yNTA5MTkwMzU2NTBaFw0yNjA5MTgwNDAxNTBaMDMxMTAvBgNV BAMTKEUzOTFFOTdEQUE5MkNDRjE2MURBRkMxMDFCRTY1RTU0MDY0OTQxRkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDnM2BWLdm3aSPgX+exQIbBHR8 e/eZ/TKFP4tyA4GjfGRP54O6ITuvTiFuQ2vqi0iLRw1b6m8+P1wjMnhYjzyBvfQ6 yQQNUy0sRbBO0bgn3m5W3U2NCcVgkHPMW00wfs9K0lx1Cnk/ybuaGLSGcI70vr1d rHOZHlDuM1sOBmtsHh/iM0CevWDNIeC0mrXLjtmMon63mXe9EvKYiMXaZZOYErPO 0zg3bAQl2P0BDaJ8+McI1jMw/EcLu3NWhsfjQNpeVIV1IkpboT5oCzXgObKecNkt 5zhlmFZ6u2npDrKXIcIbkYFIy4cMV+fOOj+mPanoQEIfXtOeT3nN+5xWXkXlAgMB AAGjggI3MIICMzAdBgNVHQ4EFgQU45HpfaqSzPFh2vwQG+ZeVAZJQf8wHwYDVR0j BBgwFoAUP26bxfFvHDq1/WNufeBv3WSJLCUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 MWRiMzczMC1mNDk5LTQ0OWYtYjZmMi03YTVkZWI1MzJiMGMvMC8zRjZFOUJDNUYx NkYxQzNBQjVGRDYzNkU3REUwNkZERDY0ODkyQzI1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0Y2RTlCQzVGMTZGMUMzQUI1RkQ2MzZFN0RFMDZGREQ2NDg5 MkMyNS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQxZGIzNzMwLWY0OTktNDQ5Zi1i NmYyLTdhNWRlYjUzMmIwYy8wLzMyMzQzMDMzM2EzMTYxMzAzMDNhMzQzYTNhMmYz NDM3MmQzNDM3MjAzZDNlMjAzNDM1MzczMjMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcBJAMaAAAEMA0G CSqGSIb3DQEBCwUAA4IBAQAGLUFomUCa4cZmSj6a6pc7T8BvTgq1OqhGKOifc0sy ZkrhOqbYl5E1vIIEv1wPl3RKKdtLJeb+juxMcpsO9wxjnvlBRtF8VcLwgfnDjOPl nfvhY1pwKVUY4qEXhJtCQiZDAPBSyTwvMQ665KP8eOT68Cro5a2jnh6cjP48htej 78fkOboxRBX0A7BtH7q1ooy2Vx6gL5p3jFUrWYQAphMgkpHuoc43YoTIAPJfiWJT t7Z2eIGRLQJx6WzVItf/HMaiKdFgoyKrvFD70sEfh6s9LP1Jd9LPqA1TWP7NhSUt qwGPMmFl0AbYLsloPjTfSI1tBY63k8XQW2sS36vvGtqP -----END CERTIFICATE-----Generated at Mon Oct 20 19:08:28 2025 by rpki-client