$ rpki-client -vvf repo-rpki.idnic.net/repo/477bc3d2-4ab3-4cfb-9222-66c6ea9447e3/0/323430323a326334303a3a2f34382d3438203d3e20313336383734.roa File: 323430323a326334303a3a2f34382d3438203d3e20313336383734.roa (raw, json) Hash identifier: u1/FWvhkUX8NdpjOfCEzIQ83rh9KfgiQw+mbq+Uaf5Y= Subject key identifier: 97:42:EB:1F:0F:72:D3:94:16:4D:2E:54:B0:25:CB:CC:B8:9D:2E:59 Certificate issuer: /CN=2993EFF92300988A33773DD8C4B502F74B907112 Certificate serial: 7A8765EE3EF3F6F33DD8DB98854FBB256593ADB9 Authority key identifier: 29:93:EF:F9:23:00:98:8A:33:77:3D:D8:C4:B5:02:F7:4B:90:71:12 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2993EFF92300988A33773DD8C4B502F74B907112.cer Subject info access: rsync://repo-rpki.idnic.net/repo/477bc3d2-4ab3-4cfb-9222-66c6ea9447e3/0/323430323a326334303a3a2f34382d3438203d3e20313336383734.roa Signing time: Wed 13 Aug 2025 13:00:00 +0000 ROA not before: Wed 13 Aug 2025 12:55:00 +0000 ROA not after: Wed 12 Aug 2026 13:00:00 +0000 asID: 136874 IP address blocks: 2402:2c40::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/477bc3d2-4ab3-4cfb-9222-66c6ea9447e3/0/2993EFF92300988A33773DD8C4B502F74B907112.crl rsync://repo-rpki.idnic.net/repo/477bc3d2-4ab3-4cfb-9222-66c6ea9447e3/0/2993EFF92300988A33773DD8C4B502F74B907112.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2993EFF92300988A33773DD8C4B502F74B907112.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 06:13:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:87:65:ee:3e:f3:f6:f3:3d:d8:db:98:85:4f:bb:25:65:93:ad:b9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2993EFF92300988A33773DD8C4B502F74B907112 Validity Not Before: Aug 13 12:55:00 2025 GMT Not After : Aug 12 13:00:00 2026 GMT Subject: CN=9742EB1F0F72D394164D2E54B025CBCCB89D2E59 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:8e:9b:1f:e8:42:2b:d2:c7:98:fa:30:c9:ab: 06:ca:8e:16:d6:90:ac:d4:51:ee:35:4a:d9:ab:b7: 26:7c:fb:52:3f:52:a6:bc:c1:2c:69:42:5c:8f:a4: 5e:bb:7d:49:f4:d8:34:4f:2d:85:72:8e:c8:47:2a: c8:88:16:b5:b9:a0:75:24:86:90:90:d1:dc:53:76: 24:12:70:ca:13:18:f0:f5:1c:df:b6:43:3c:a7:ac: 9d:d3:04:d8:a7:55:eb:72:6d:f5:ec:59:e0:2f:c3: 9e:53:1d:46:f6:a7:f3:68:e5:1b:44:ac:49:7f:af: 85:04:b8:2b:86:50:45:94:c9:b3:05:c9:ce:34:8b: 1c:3e:41:b2:34:9d:24:fc:dc:84:b8:83:3a:81:35: 13:30:43:40:dc:99:97:3d:de:f4:00:7d:f3:bf:99: f2:15:c0:aa:7c:c1:f4:3e:50:05:96:45:0f:60:0b: 98:b7:5a:97:1e:22:92:30:3c:fc:d0:13:8f:e4:84: 30:15:1f:5e:69:95:b3:f5:fc:31:8f:f7:e2:21:8b: 98:a8:0e:a2:d2:8a:7a:5c:d1:5d:02:71:44:e1:cd: 11:9d:69:0b:6a:a3:95:f4:35:ec:ab:2a:f9:3f:cb: e2:27:28:de:86:14:f1:6d:c9:73:ed:59:45:5b:6b: b3:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:42:EB:1F:0F:72:D3:94:16:4D:2E:54:B0:25:CB:CC:B8:9D:2E:59 X509v3 Authority Key Identifier: keyid:29:93:EF:F9:23:00:98:8A:33:77:3D:D8:C4:B5:02:F7:4B:90:71:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/477bc3d2-4ab3-4cfb-9222-66c6ea9447e3/0/2993EFF92300988A33773DD8C4B502F74B907112.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2993EFF92300988A33773DD8C4B502F74B907112.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/477bc3d2-4ab3-4cfb-9222-66c6ea9447e3/0/323430323a326334303a3a2f34382d3438203d3e20313336383734.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:2c40::/48 Signature Algorithm: sha256WithRSAEncryption 51:f5:19:a1:74:1b:65:35:01:31:7d:79:bb:0d:b4:2c:b4:35: 5f:f1:25:98:2b:85:d4:7a:8a:3c:b8:99:43:bc:2e:8b:8d:8a: ed:4a:d9:eb:8e:db:12:54:cc:3d:86:ed:9a:53:5d:7a:40:d9: 43:ca:5e:88:d9:ec:0a:01:b8:18:7a:20:f5:32:66:2d:87:9d: 12:6b:4d:44:ff:36:e1:3c:32:6e:58:c9:5f:33:04:c8:68:5c: 37:2b:50:61:fd:31:4d:dc:3c:7a:26:ab:7c:7d:66:11:28:1d: 2b:84:e5:6c:71:15:2c:42:83:2e:8f:88:bf:c5:77:ff:4b:09: 49:3e:60:5f:a2:b1:f9:fc:1b:25:71:b2:cd:61:f0:44:18:96: 7a:df:20:9d:08:78:4c:59:ca:f6:25:eb:2e:c4:3b:8b:fa:bb: 4a:ea:99:b5:04:e0:53:be:c5:65:55:e0:a6:54:b1:95:72:ec: cf:42:29:fd:11:9c:d7:cb:20:ad:66:23:70:21:ab:a2:3e:0a: 3d:99:a6:16:f4:07:68:96:a4:10:10:f3:e1:1f:12:68:41:f8: 39:a4:95:17:60:b6:79:22:43:31:77:fc:0b:db:21:c3:6c:94: 64:0a:4d:01:36:4f:d5:91:b9:7c:ca:4e:6e:b9:db:27:fd:a7: 61:ba:25:5d -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgIUeodl7j7z9vM92NuYhU+7JWWTrbkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjk5M0VGRjkyMzAwOTg4QTMzNzczREQ4QzRCNTAyRjc0 QjkwNzExMjAeFw0yNTA4MTMxMjU1MDBaFw0yNjA4MTIxMzAwMDBaMDMxMTAvBgNV BAMTKDk3NDJFQjFGMEY3MkQzOTQxNjREMkU1NEIwMjVDQkNDQjg5RDJFNTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEjpsf6EIr0seY+jDJqwbKjhbW kKzUUe41StmrtyZ8+1I/Uqa8wSxpQlyPpF67fUn02DRPLYVyjshHKsiIFrW5oHUk hpCQ0dxTdiQScMoTGPD1HN+2QzynrJ3TBNinVetybfXsWeAvw55THUb2p/No5RtE rEl/r4UEuCuGUEWUybMFyc40ixw+QbI0nST83IS4gzqBNRMwQ0DcmZc93vQAffO/ mfIVwKp8wfQ+UAWWRQ9gC5i3WpceIpIwPPzQE4/khDAVH15plbP1/DGP9+Ihi5io DqLSinpc0V0CcUThzRGdaQtqo5X0NeyrKvk/y+InKN6GFPFtyXPtWUVba7NvAgMB AAGjggI1MIICMTAdBgNVHQ4EFgQUl0LrHw9y05QWTS5UsCXLzLidLlkwHwYDVR0j BBgwFoAUKZPv+SMAmIozdz3YxLUC90uQcRIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 NzdiYzNkMi00YWIzLTRjZmItOTIyMi02NmM2ZWE5NDQ3ZTMvMC8yOTkzRUZGOTIz MDA5ODhBMzM3NzNERDhDNEI1MDJGNzRCOTA3MTEyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjk5M0VGRjkyMzAwOTg4QTMzNzczREQ4QzRCNTAyRjc0Qjkw NzExMi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ3N2JjM2QyLTRhYjMtNGNmYi05 MjIyLTY2YzZlYTk0NDdlMy8wLzMyMzQzMDMyM2EzMjYzMzQzMDNhM2EyZjM0Mzgy ZDM0MzgyMDNkM2UyMDMxMzMzNjM4MzczNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQCLEAAADANBgkq hkiG9w0BAQsFAAOCAQEAUfUZoXQbZTUBMX15uw20LLQ1X/ElmCuF1HqKPLiZQ7wu i42K7UrZ647bElTMPYbtmlNdekDZQ8peiNnsCgG4GHog9TJmLYedEmtNRP824Twy bljJXzMEyGhcNytQYf0xTdw8eiarfH1mESgdK4TlbHEVLEKDLo+Iv8V3/0sJST5g X6Kx+fwbJXGyzWHwRBiWet8gnQh4TFnK9iXrLsQ7i/q7SuqZtQTgU77FZVXgplSx lXLsz0Ip/RGc18sgrWYjcCGroj4KPZmmFvQHaJakEBDz4R8SaEH4OaSVF2C2eSJD MXf8C9shw2yUZApNATZP1ZG5fMpObrnbJ/2nYbolXQ== -----END CERTIFICATE-----Generated at Sat Aug 23 16:58:07 2025 by rpki-client