$ rpki-client -vvf repo-rpki.idnic.net/repo/5bd4340b-21c4-4fc7-a259-e2354c53fdd2/0/323030313a6466373a376130303a3a2f34382d3438203d3e20313336303537.roa File: 323030313a6466373a376130303a3a2f34382d3438203d3e20313336303537.roa (raw, json) Hash identifier: JVL+81yV9zQDwPcNgvThrCD77NCHFX7cSVK21vFtKao= Subject key identifier: 9D:88:42:6A:57:DB:41:94:E3:DE:2C:9D:DA:04:E2:21:E5:FC:15:F8 Certificate issuer: /CN=90173425DBB7D1DBD164BBA26F4657B17A266A97 Certificate serial: 5B240B9C318D05A3CF86EFF304B84AE38BC2D0A3 Authority key identifier: 90:17:34:25:DB:B7:D1:DB:D1:64:BB:A2:6F:46:57:B1:7A:26:6A:97 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/90173425DBB7D1DBD164BBA26F4657B17A266A97.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5bd4340b-21c4-4fc7-a259-e2354c53fdd2/0/323030313a6466373a376130303a3a2f34382d3438203d3e20313336303537.roa Signing time: Thu 21 Aug 2025 08:00:00 +0000 ROA not before: Thu 21 Aug 2025 07:55:00 +0000 ROA not after: Thu 20 Aug 2026 08:00:00 +0000 asID: 136057 IP address blocks: 2001:df7:7a00::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5bd4340b-21c4-4fc7-a259-e2354c53fdd2/0/90173425DBB7D1DBD164BBA26F4657B17A266A97.crl rsync://repo-rpki.idnic.net/repo/5bd4340b-21c4-4fc7-a259-e2354c53fdd2/0/90173425DBB7D1DBD164BBA26F4657B17A266A97.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/90173425DBB7D1DBD164BBA26F4657B17A266A97.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Aug 2025 11:13:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:24:0b:9c:31:8d:05:a3:cf:86:ef:f3:04:b8:4a:e3:8b:c2:d0:a3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=90173425DBB7D1DBD164BBA26F4657B17A266A97 Validity Not Before: Aug 21 07:55:00 2025 GMT Not After : Aug 20 08:00:00 2026 GMT Subject: CN=9D88426A57DB4194E3DE2C9DDA04E221E5FC15F8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:c0:73:b5:a8:83:16:33:c7:f0:5d:9d:98:83: 36:14:8c:3c:36:08:73:56:ad:73:b3:4a:4e:a6:35: a1:65:fa:94:bf:fa:0b:48:c1:05:46:ed:21:68:32: ff:58:ae:db:63:e2:ec:99:9d:11:4b:b5:02:d5:81: ac:e3:05:58:f7:bf:11:3a:c2:b1:32:ba:c0:06:1a: ea:da:41:65:d6:7a:8f:44:96:d4:b4:7c:c2:e5:65: b6:5a:95:02:ed:f8:fa:0e:0b:d9:a1:9b:2f:55:a6: 26:fd:e2:b6:e5:0d:bb:76:c8:9e:74:54:ef:fd:3c: 1b:39:07:4a:e5:7c:86:43:01:c7:07:78:48:87:72: da:80:a4:27:e6:ad:71:93:bd:c5:6c:85:16:f1:bc: b1:9a:e6:47:a9:ad:66:d7:57:4b:bd:b3:1b:a4:45: 9c:c7:f3:6c:88:a2:74:3e:f2:f5:e1:44:f4:4e:6b: f1:82:e9:ba:b0:90:80:c0:ad:9b:27:0f:81:75:3c: bf:f2:c6:7f:14:6d:8b:72:5f:7d:cc:dc:c9:da:10: 36:2e:80:14:ce:ac:3e:81:ef:e6:70:77:28:89:95: 3a:a4:03:cd:1a:2b:5a:35:a0:7d:fb:88:a7:eb:1d: 19:ab:88:98:19:7e:d9:86:09:f7:e1:f7:0c:6f:9a: 19:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:88:42:6A:57:DB:41:94:E3:DE:2C:9D:DA:04:E2:21:E5:FC:15:F8 X509v3 Authority Key Identifier: keyid:90:17:34:25:DB:B7:D1:DB:D1:64:BB:A2:6F:46:57:B1:7A:26:6A:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5bd4340b-21c4-4fc7-a259-e2354c53fdd2/0/90173425DBB7D1DBD164BBA26F4657B17A266A97.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/90173425DBB7D1DBD164BBA26F4657B17A266A97.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5bd4340b-21c4-4fc7-a259-e2354c53fdd2/0/323030313a6466373a376130303a3a2f34382d3438203d3e20313336303537.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df7:7a00::/48 Signature Algorithm: sha256WithRSAEncryption 42:dd:d1:48:09:1b:00:ae:c2:7c:1b:31:82:1d:10:80:bb:d1: 0e:1b:37:ee:8a:fd:c0:69:4a:9d:0f:e5:0a:22:9d:77:a5:90: df:f7:4c:fb:53:0d:7e:90:58:55:e8:97:56:d3:dd:72:4c:9a: 28:b1:24:06:cf:9d:2a:cb:e2:fb:dc:9f:de:16:0b:12:6d:73: 2e:d3:2e:50:9d:88:b2:8d:a8:ee:a6:21:e4:cb:0d:41:ba:34: 10:21:88:19:e3:26:93:f4:42:af:b0:69:1c:89:3e:28:9d:90: fc:cd:09:50:13:08:2f:6b:e2:b8:04:5f:12:c8:4a:e1:33:68: b0:b5:ce:f4:c2:13:b8:1c:3b:5b:da:32:c7:ea:14:24:58:8a: 3a:fa:45:81:93:f4:f0:fc:fd:cf:d1:46:88:91:e0:32:9a:8e: 56:da:10:2c:f3:20:93:a9:53:2e:92:d0:52:d4:3f:25:31:05: 89:aa:fe:a9:a9:53:bc:dd:11:68:38:b8:dd:1d:08:06:eb:cc: 63:17:32:b9:57:da:df:f3:c2:21:1b:72:c9:b0:47:a1:58:f6: 3b:24:82:96:83:df:8f:af:1a:e1:7b:9c:85:70:71:94:af:2b: 79:6b:1b:99:a2:59:c6:9a:1c:a0:a6:e5:d4:31:97:9c:12:56: fc:96:00:3e -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUWyQLnDGNBaPPhu/zBLhK44vC0KMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTAxNzM0MjVEQkI3RDFEQkQxNjRCQkEyNkY0NjU3QjE3 QTI2NkE5NzAeFw0yNTA4MjEwNzU1MDBaFw0yNjA4MjAwODAwMDBaMDMxMTAvBgNV BAMTKDlEODg0MjZBNTdEQjQxOTRFM0RFMkM5RERBMDRFMjIxRTVGQzE1RjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTwHO1qIMWM8fwXZ2YgzYUjDw2 CHNWrXOzSk6mNaFl+pS/+gtIwQVG7SFoMv9Yrttj4uyZnRFLtQLVgazjBVj3vxE6 wrEyusAGGuraQWXWeo9EltS0fMLlZbZalQLt+PoOC9mhmy9Vpib94rblDbt2yJ50 VO/9PBs5B0rlfIZDAccHeEiHctqApCfmrXGTvcVshRbxvLGa5keprWbXV0u9sxuk RZzH82yIonQ+8vXhRPROa/GC6bqwkIDArZsnD4F1PL/yxn8UbYtyX33M3MnaEDYu gBTOrD6B7+ZwdyiJlTqkA80aK1o1oH37iKfrHRmriJgZftmGCffh9wxvmhmvAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUnYhCalfbQZTj3iyd2gTiIeX8FfgwHwYDVR0j BBgwFoAUkBc0Jdu30dvRZLuib0ZXsXomapcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YmQ0MzQwYi0yMWM0LTRmYzctYTI1OS1lMjM1NGM1M2ZkZDIvMC85MDE3MzQyNURC QjdEMURCRDE2NEJCQTI2RjQ2NTdCMTdBMjY2QTk3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTAxNzM0MjVEQkI3RDFEQkQxNjRCQkEyNkY0NjU3QjE3QTI2 NkE5Ny5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzViZDQzNDBiLTIxYzQtNGZjNy1h MjU5LWUyMzU0YzUzZmRkMi8wLzMyMzAzMDMxM2E2NDY2MzczYTM3NjEzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM2MzAzNTM3LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 93oAMA0GCSqGSIb3DQEBCwUAA4IBAQBC3dFICRsArsJ8GzGCHRCAu9EOGzfuiv3A aUqdD+UKIp13pZDf90z7Uw1+kFhV6JdW091yTJoosSQGz50qy+L73J/eFgsSbXMu 0y5QnYiyjajupiHkyw1BujQQIYgZ4yaT9EKvsGkciT4onZD8zQlQEwgva+K4BF8S yErhM2iwtc70whO4HDtb2jLH6hQkWIo6+kWBk/Tw/P3P0UaIkeAymo5W2hAs8yCT qVMuktBS1D8lMQWJqv6pqVO83RFoOLjdHQgG68xjFzK5V9rf88IhG3LJsEehWPY7 JIKWg9+Prxrhe5yFcHGUryt5axuZolnGmhygpuXUMZecElb8lgA+ -----END CERTIFICATE-----Generated at Sat Aug 23 15:40:19 2025 by rpki-client