$ rpki-client -vvf repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/323430313a353430303a3a2f33322d3438203d3e2034343334.roa File: 323430313a353430303a3a2f33322d3438203d3e2034343334.roa (raw, json) Hash identifier: 5f2FENCYdZXpfDtDA/XrlMk1aTtzTsaccWLZkB2kYFw= Subject key identifier: 3A:23:BC:FB:4F:C2:DA:B1:D7:44:8A:A2:BE:59:35:B1:CE:D3:94:3C Certificate issuer: /CN=10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6 Certificate serial: 680CC3FA6F8D51B8AA14216D4F45389BD112809E Authority key identifier: 10:F0:0F:AE:6F:0B:93:AB:DC:95:62:8A:CE:3C:3C:18:9A:E9:27:F6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/323430313a353430303a3a2f33322d3438203d3e2034343334.roa Signing time: Wed 20 Aug 2025 08:02:26 +0000 ROA not before: Wed 20 Aug 2025 07:57:26 +0000 ROA not after: Wed 19 Aug 2026 08:02:26 +0000 asID: 4434 IP address blocks: 2401:5400::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.crl rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 12:27:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:0c:c3:fa:6f:8d:51:b8:aa:14:21:6d:4f:45:38:9b:d1:12:80:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6 Validity Not Before: Aug 20 07:57:26 2025 GMT Not After : Aug 19 08:02:26 2026 GMT Subject: CN=3A23BCFB4FC2DAB1D7448AA2BE5935B1CED3943C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:ff:51:cd:f9:6c:0a:05:ae:17:3a:0c:07:da: 16:d9:be:50:66:71:f3:e1:88:a5:eb:9b:09:e4:bf: c1:45:e5:55:d2:13:26:65:56:22:1b:89:42:2c:81: 0f:27:70:c5:30:e8:11:5c:8c:44:da:b0:63:c9:b2: a0:46:54:2a:ff:d1:46:63:c6:32:14:ff:29:b2:fe: 1c:9f:f8:1d:8a:b0:b1:2e:67:94:a4:4b:cf:79:33: 50:79:d1:35:83:77:98:ac:f4:b0:5d:0f:2c:9b:29: cd:b7:06:6a:73:4e:b7:c6:5d:12:74:ca:a9:b3:bf: a0:69:e2:a6:6e:84:2a:6f:f4:4f:5a:04:ee:2b:ff: 63:f7:64:43:39:33:00:a7:ad:fe:c6:fe:cf:6f:1b: b2:70:4e:ab:b9:f4:28:14:11:22:6f:de:01:d1:3c: 22:7d:52:3e:d3:24:ea:d7:40:3c:f4:d6:81:4c:d3: ca:5d:30:f3:3c:a9:09:53:01:fd:ba:71:4a:7f:86: 6e:fe:4e:4d:71:69:78:b5:7a:20:e7:9e:3a:79:6f: c5:31:6c:3f:bc:2e:50:6e:84:22:e5:46:0a:c3:52: e6:0a:bc:b2:17:8d:88:f7:a2:cd:0e:30:ab:d4:f5: 96:aa:de:16:e2:1a:08:6d:fe:e8:c7:68:c0:c9:2f: 39:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:23:BC:FB:4F:C2:DA:B1:D7:44:8A:A2:BE:59:35:B1:CE:D3:94:3C X509v3 Authority Key Identifier: keyid:10:F0:0F:AE:6F:0B:93:AB:DC:95:62:8A:CE:3C:3C:18:9A:E9:27:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/323430313a353430303a3a2f33322d3438203d3e2034343334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:5400::/32 Signature Algorithm: sha256WithRSAEncryption 70:60:e6:f4:64:7e:ea:73:55:d5:f5:6d:be:94:a6:ca:fd:ac: 7f:0a:63:cd:ff:b3:82:8b:70:ad:70:92:0e:88:ce:a4:7f:20: e4:9e:e1:83:cf:76:13:a8:17:e7:75:e6:08:cf:0a:63:ae:c7: 52:5a:a2:bc:d9:cb:13:dc:f5:3f:26:f7:29:19:3e:c9:57:2e: 6b:c2:a4:5e:04:07:a8:02:e4:e2:0c:0a:d1:05:c4:3c:bd:56: 3b:d0:f8:f6:ed:c6:be:33:57:3b:e6:97:35:32:c7:4a:79:50: 0b:b7:a3:54:b4:d3:01:70:ed:ef:de:45:e7:57:c1:d8:15:2c: 33:4e:0f:cf:24:cc:88:d3:fa:e2:04:c5:50:11:85:35:20:8c: ad:79:45:36:b5:55:b7:a8:56:6b:5b:ab:bc:f7:90:e8:2a:45: 95:89:8d:c4:a1:d5:7f:94:70:06:83:e4:b0:9f:e0:f4:ee:ca: 64:43:0d:16:80:13:7b:39:95:ca:fd:2e:1f:d9:4b:33:6f:85: 75:5b:39:d5:68:7b:e3:7a:af:79:d7:41:c6:fa:58:8c:aa:93: ea:f2:da:7d:0c:83:75:a3:21:74:a7:3d:fa:1c:79:af:df:03: a1:53:76:36:26:42:eb:03:09:0c:b7:b5:97:6b:ab:75:82:6b: dc:6a:a8:ee -----BEGIN CERTIFICATE----- MIIFJDCCBAygAwIBAgIUaAzD+m+NUbiqFCFtT0U4m9ESgJ4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTBGMDBGQUU2RjBCOTNBQkRDOTU2MjhBQ0UzQzNDMTg5 QUU5MjdGNjAeFw0yNTA4MjAwNzU3MjZaFw0yNjA4MTkwODAyMjZaMDMxMTAvBgNV BAMTKDNBMjNCQ0ZCNEZDMkRBQjFENzQ0OEFBMkJFNTkzNUIxQ0VEMzk0M0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDi/1HN+WwKBa4XOgwH2hbZvlBm cfPhiKXrmwnkv8FF5VXSEyZlViIbiUIsgQ8ncMUw6BFcjETasGPJsqBGVCr/0UZj xjIU/ymy/hyf+B2KsLEuZ5SkS895M1B50TWDd5is9LBdDyybKc23BmpzTrfGXRJ0 yqmzv6Bp4qZuhCpv9E9aBO4r/2P3ZEM5MwCnrf7G/s9vG7JwTqu59CgUESJv3gHR PCJ9Uj7TJOrXQDz01oFM08pdMPM8qQlTAf26cUp/hm7+Tk1xaXi1eiDnnjp5b8Ux bD+8LlBuhCLlRgrDUuYKvLIXjYj3os0OMKvU9Zaq3hbiGght/ujHaMDJLzm/AgMB AAGjggIuMIICKjAdBgNVHQ4EFgQUOiO8+0/C2rHXRIqivlk1sc7TlDwwHwYDVR0j BBgwFoAUEPAPrm8Lk6vclWKKzjw8GJrpJ/YwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YzBjMTRhOS0zYTc3LTQ5ZTItOTE5NC00OGQwOTEzNDU4YjIvMC8xMEYwMEZBRTZG MEI5M0FCREM5NTYyOEFDRTNDM0MxODlBRTkyN0Y2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTBGMDBGQUU2RjBCOTNBQkRDOTU2MjhBQ0UzQzNDMTg5QUU5 MjdGNi5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNWMwYzE0YTktM2E3Ny00OWUyLTkx OTQtNDhkMDkxMzQ1OGIyLzAvMzIzNDMwMzEzYTM1MzQzMDMwM2EzYTJmMzMzMjJk MzQzODIwM2QzZTIwMzQzNDMzMzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkAVQAMA0GCSqGSIb3DQEB CwUAA4IBAQBwYOb0ZH7qc1XV9W2+lKbK/ax/CmPN/7OCi3CtcJIOiM6kfyDknuGD z3YTqBfndeYIzwpjrsdSWqK82csT3PU/JvcpGT7JVy5rwqReBAeoAuTiDArRBcQ8 vVY70Pj27ca+M1c75pc1MsdKeVALt6NUtNMBcO3v3kXnV8HYFSwzTg/PJMyI0/ri BMVQEYU1IIyteUU2tVW3qFZrW6u895DoKkWViY3EodV/lHAGg+Swn+D07spkQw0W gBN7OZXK/S4f2Uszb4V1WznVaHvjeq9510HG+liMqpPq8tp9DIN1oyF0pz36HHmv 3wOhU3Y2JkLrAwkMt7WXa6t1gmvcaqju -----END CERTIFICATE-----Generated at Sat Aug 23 17:56:11 2025 by rpki-client