$ rpki-client -vvf repo-rpki.idnic.net/repo/52127feb-9615-4c58-a3bb-eef7b7a6547e/0/323430363a356463303a3a2f33322d3332203d3e20313336313231.roa File: 323430363a356463303a3a2f33322d3332203d3e20313336313231.roa (raw, json) Hash identifier: +GDxvCg7W3rpGkqjXTdZOjObKRgXnf9yC9gObIaf91w= Subject key identifier: 95:19:0D:12:F2:B8:2A:17:71:E3:D7:BB:63:74:27:E1:62:E6:C6:B9 Certificate issuer: /CN=94F75B04CEBE0DF1D0B924ECF1AD9C9C13992383 Certificate serial: 50865FB54248C89F0C46968AC6D6457B31B0EC4C Authority key identifier: 94:F7:5B:04:CE:BE:0D:F1:D0:B9:24:EC:F1:AD:9C:9C:13:99:23:83 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/94F75B04CEBE0DF1D0B924ECF1AD9C9C13992383.cer Subject info access: rsync://repo-rpki.idnic.net/repo/52127feb-9615-4c58-a3bb-eef7b7a6547e/0/323430363a356463303a3a2f33322d3332203d3e20313336313231.roa Signing time: Thu 18 Sep 2025 10:00:01 +0000 ROA not before: Thu 18 Sep 2025 09:55:01 +0000 ROA not after: Thu 17 Sep 2026 10:00:01 +0000 asID: 136121 IP address blocks: 2406:5dc0::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/52127feb-9615-4c58-a3bb-eef7b7a6547e/0/94F75B04CEBE0DF1D0B924ECF1AD9C9C13992383.crl rsync://repo-rpki.idnic.net/repo/52127feb-9615-4c58-a3bb-eef7b7a6547e/0/94F75B04CEBE0DF1D0B924ECF1AD9C9C13992383.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/94F75B04CEBE0DF1D0B924ECF1AD9C9C13992383.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 12:51:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:86:5f:b5:42:48:c8:9f:0c:46:96:8a:c6:d6:45:7b:31:b0:ec:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=94F75B04CEBE0DF1D0B924ECF1AD9C9C13992383 Validity Not Before: Sep 18 09:55:01 2025 GMT Not After : Sep 17 10:00:01 2026 GMT Subject: CN=95190D12F2B82A1771E3D7BB637427E162E6C6B9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:66:e2:f0:2d:2f:c8:7d:53:ea:87:88:0c:09: e5:d8:cf:3b:c6:dd:38:75:8c:3a:fd:a5:7a:09:f0: 44:ee:2c:3a:31:78:17:fd:6f:93:59:8f:45:b9:c9: 5c:30:65:04:a0:72:5e:89:4e:17:01:6a:a1:b8:b5: 16:3c:9d:44:25:fc:4e:d8:27:e5:c3:b4:a2:a4:1f: e1:e4:8c:88:64:e6:1a:b8:78:15:12:59:c2:10:fd: 66:8a:d1:ba:f8:00:12:5a:87:42:54:d4:8f:40:9c: 1f:5f:d5:b5:19:a6:35:dc:72:e4:90:35:ce:75:95: c3:d2:d0:61:4d:4e:c6:d5:f0:c3:df:08:0f:3e:09: d5:ef:1a:4d:a5:56:21:f9:7f:2d:69:69:ad:8e:46: 16:e6:8a:76:8d:ff:a5:86:14:70:5c:c1:79:57:dc: b7:8c:a8:73:36:32:a2:d7:4a:e6:e4:8a:e1:1a:9a: 31:b3:6e:93:99:28:50:b4:39:98:08:99:69:c5:29: 3b:1d:74:6f:7b:d9:9d:0b:cb:c5:d5:46:be:f8:51: 9f:f5:ce:1c:72:b8:e6:da:b8:75:14:ae:ff:a5:ed: 63:96:0a:25:50:4b:54:86:82:a1:af:c6:62:94:6a: 82:fc:f3:77:35:8d:a4:56:20:75:5d:84:83:6b:d9: 96:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:19:0D:12:F2:B8:2A:17:71:E3:D7:BB:63:74:27:E1:62:E6:C6:B9 X509v3 Authority Key Identifier: keyid:94:F7:5B:04:CE:BE:0D:F1:D0:B9:24:EC:F1:AD:9C:9C:13:99:23:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/52127feb-9615-4c58-a3bb-eef7b7a6547e/0/94F75B04CEBE0DF1D0B924ECF1AD9C9C13992383.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/94F75B04CEBE0DF1D0B924ECF1AD9C9C13992383.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/52127feb-9615-4c58-a3bb-eef7b7a6547e/0/323430363a356463303a3a2f33322d3332203d3e20313336313231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:5dc0::/32 Signature Algorithm: sha256WithRSAEncryption 7a:09:2d:bc:5c:01:21:9c:07:f3:70:75:47:d3:00:35:d7:ca: e3:c4:8c:6a:09:2e:71:66:18:1e:4a:bd:00:e9:47:68:2a:48: 84:02:1a:1d:71:fb:81:4c:48:aa:77:94:8e:e7:bf:34:00:f0: 41:81:cf:17:95:67:8b:01:a7:c0:44:2c:ca:54:01:88:6f:40: 80:33:d2:ba:78:89:5f:8e:3e:c0:61:69:69:28:86:e5:a3:ea: 4f:11:1c:de:5e:cf:9c:2b:a3:f1:1d:69:41:12:82:e0:ee:84: 3e:2b:f4:5f:7e:c6:ef:c7:1d:70:94:55:ba:12:66:64:a1:a7: a1:87:72:48:95:17:9f:f8:ef:5b:8b:2e:d8:2d:ba:23:b6:de: f0:0b:eb:06:d9:c0:c9:8b:13:3b:a2:01:d5:7f:ba:7b:2f:43: fb:c7:d9:cf:71:76:23:97:62:81:0c:34:52:d3:d5:68:e5:c9: e2:9b:82:f9:e2:7e:ac:3c:d5:70:fc:8a:c5:95:c1:1f:47:4c: ca:d9:6f:e2:6d:4c:85:40:12:75:64:13:bb:f7:c3:ff:13:24: e1:02:53:bd:a0:e8:b0:98:74:a5:e9:32:81:26:46:99:5c:08: 7d:72:57:3a:57:f9:37:7c:d8:84:b4:65:7a:6c:57:fc:c1:e4: fa:3d:28:90 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUUIZftUJIyJ8MRpaKxtZFezGw7EwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTRGNzVCMDRDRUJFMERGMUQwQjkyNEVDRjFBRDlDOUMx Mzk5MjM4MzAeFw0yNTA5MTgwOTU1MDFaFw0yNjA5MTcxMDAwMDFaMDMxMTAvBgNV BAMTKDk1MTkwRDEyRjJCODJBMTc3MUUzRDdCQjYzNzQyN0UxNjJFNkM2QjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+ZuLwLS/IfVPqh4gMCeXYzzvG 3Th1jDr9pXoJ8ETuLDoxeBf9b5NZj0W5yVwwZQSgcl6JThcBaqG4tRY8nUQl/E7Y J+XDtKKkH+HkjIhk5hq4eBUSWcIQ/WaK0br4ABJah0JU1I9AnB9f1bUZpjXccuSQ Nc51lcPS0GFNTsbV8MPfCA8+CdXvGk2lViH5fy1paa2ORhbminaN/6WGFHBcwXlX 3LeMqHM2MqLXSubkiuEamjGzbpOZKFC0OZgImWnFKTsddG972Z0Ly8XVRr74UZ/1 zhxyuObauHUUrv+l7WOWCiVQS1SGgqGvxmKUaoL883c1jaRWIHVdhINr2ZbDAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUlRkNEvK4Khdx49e7Y3Qn4WLmxrkwHwYDVR0j BBgwFoAUlPdbBM6+DfHQuSTs8a2cnBOZI4MwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 MjEyN2ZlYi05NjE1LTRjNTgtYTNiYi1lZWY3YjdhNjU0N2UvMC85NEY3NUIwNENF QkUwREYxRDBCOTI0RUNGMUFEOUM5QzEzOTkyMzgzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTRGNzVCMDRDRUJFMERGMUQwQjkyNEVDRjFBRDlDOUMxMzk5 MjM4My5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzUyMTI3ZmViLTk2MTUtNGM1OC1h M2JiLWVlZjdiN2E2NTQ3ZS8wLzMyMzQzMDM2M2EzNTY0NjMzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzMzNjMxMzIzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQGXcAwDQYJKoZI hvcNAQELBQADggEBAHoJLbxcASGcB/NwdUfTADXXyuPEjGoJLnFmGB5KvQDpR2gq SIQCGh1x+4FMSKp3lI7nvzQA8EGBzxeVZ4sBp8BELMpUAYhvQIAz0rp4iV+OPsBh aWkohuWj6k8RHN5ez5wro/EdaUESguDuhD4r9F9+xu/HHXCUVboSZmShp6GHckiV F5/471uLLtgtuiO23vAL6wbZwMmLEzuiAdV/unsvQ/vH2c9xdiOXYoEMNFLT1Wjl yeKbgvnifqw81XD8isWVwR9HTMrZb+JtTIVAEnVkE7v3w/8TJOECU72g6LCYdKXp MoEmRplcCH1yVzpX+Td82IS0ZXpsV/zB5Po9KJA= -----END CERTIFICATE-----Generated at Tue Oct 21 11:40:37 2025 by rpki-client