$ rpki-client -vvf repo-rpki.idnic.net/repo/64f7eb4f-7924-4db6-b6d6-394d83b392fc/0/323430323a383263303a3a2f33322d3438203d3e203138303536.roa File: 323430323a383263303a3a2f33322d3438203d3e203138303536.roa (raw, json) Hash identifier: kYbld2hWxaqdjy59r1rp8P7rlOtH3HOAxyt3iwa4uDg= Subject key identifier: 4D:B9:09:49:2C:50:6F:31:14:3F:7E:E4:79:D2:16:B9:59:B5:E9:08 Certificate issuer: /CN=3E6F306418455683DBA0AC95B4FD41E1846476AB Certificate serial: 7413A352DC626405803BFB2180BC9772D7BF7566 Authority key identifier: 3E:6F:30:64:18:45:56:83:DB:A0:AC:95:B4:FD:41:E1:84:64:76:AB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3E6F306418455683DBA0AC95B4FD41E1846476AB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/64f7eb4f-7924-4db6-b6d6-394d83b392fc/0/323430323a383263303a3a2f33322d3438203d3e203138303536.roa Signing time: Wed 08 Oct 2025 09:00:00 +0000 ROA not before: Wed 08 Oct 2025 08:55:00 +0000 ROA not after: Wed 07 Oct 2026 09:00:00 +0000 asID: 18056 IP address blocks: 2402:82c0::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/64f7eb4f-7924-4db6-b6d6-394d83b392fc/0/3E6F306418455683DBA0AC95B4FD41E1846476AB.crl rsync://repo-rpki.idnic.net/repo/64f7eb4f-7924-4db6-b6d6-394d83b392fc/0/3E6F306418455683DBA0AC95B4FD41E1846476AB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3E6F306418455683DBA0AC95B4FD41E1846476AB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 08:04:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:13:a3:52:dc:62:64:05:80:3b:fb:21:80:bc:97:72:d7:bf:75:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E6F306418455683DBA0AC95B4FD41E1846476AB Validity Not Before: Oct 8 08:55:00 2025 GMT Not After : Oct 7 09:00:00 2026 GMT Subject: CN=4DB909492C506F31143F7EE479D216B959B5E908 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:8e:2d:07:ba:25:95:ba:0b:e7:cf:22:a3:cc: c2:95:f1:7f:e2:33:88:eb:d9:62:77:9f:55:2d:81: 6c:5d:cb:5c:32:3c:f8:b1:0e:d6:ff:ca:75:71:30: b8:63:a9:20:be:e7:c3:34:63:b3:f9:e3:78:47:94: b4:12:d9:f1:bc:d0:1d:73:12:37:77:66:70:7a:21: 59:76:56:f7:77:2a:56:d2:3e:79:99:e4:9c:b9:e7: 3b:0c:2d:71:f3:14:20:65:79:07:b7:a8:c0:ab:06: 61:a2:f3:24:9e:9d:5d:58:29:44:07:5c:4b:47:7b: 60:d3:3c:56:b2:3f:7a:a5:ac:27:88:9e:4c:72:a3: 61:e3:fb:d1:72:5b:61:7c:25:4e:31:5e:08:c6:fc: 00:e1:20:c0:9e:47:ee:99:b4:9d:23:8b:b3:a1:f3: 36:de:e7:48:dd:4c:28:c8:76:e7:03:70:5d:aa:29: dd:09:db:03:a6:29:81:2a:70:5d:04:96:4a:a0:bc: 4d:ae:ca:39:e0:fe:cb:84:cb:d5:a7:8f:15:b2:1b: e8:a7:57:0a:f8:f2:c3:22:1a:f5:a9:c5:38:d7:d5: 5b:18:4e:c1:f6:19:1f:0b:70:20:e9:91:88:c1:e3: 60:7e:c5:2f:be:68:41:46:6f:54:61:a9:7a:75:66: c8:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:B9:09:49:2C:50:6F:31:14:3F:7E:E4:79:D2:16:B9:59:B5:E9:08 X509v3 Authority Key Identifier: keyid:3E:6F:30:64:18:45:56:83:DB:A0:AC:95:B4:FD:41:E1:84:64:76:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/64f7eb4f-7924-4db6-b6d6-394d83b392fc/0/3E6F306418455683DBA0AC95B4FD41E1846476AB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3E6F306418455683DBA0AC95B4FD41E1846476AB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/64f7eb4f-7924-4db6-b6d6-394d83b392fc/0/323430323a383263303a3a2f33322d3438203d3e203138303536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:82c0::/32 Signature Algorithm: sha256WithRSAEncryption 67:de:e0:22:5a:6e:96:b0:f5:f6:cb:38:1e:6e:9f:3c:fe:a7: c3:17:fb:b5:b7:42:d7:5d:01:b8:2e:81:1a:5d:39:4f:53:d1: 30:b8:e5:6c:6b:b4:b1:4f:3e:ed:e2:1a:1a:33:80:d3:1d:c4: c3:c2:8b:2a:59:ba:22:27:57:70:cb:4a:5d:17:44:5b:86:56: de:61:5c:9a:8f:c7:9c:6f:be:ba:03:24:5a:41:20:a8:1b:81: 38:ee:38:db:06:b5:86:09:61:f6:37:89:e8:c9:ab:34:47:02: de:28:bc:dc:8f:6c:89:bb:2a:d6:f6:7c:11:1b:ec:00:29:14: a0:aa:53:57:69:c0:99:05:75:13:a0:6b:22:c9:3c:1f:f2:49: a8:b2:d4:09:b0:d9:ea:6e:7e:d3:88:3c:b1:95:a9:b8:23:5f: c6:14:7f:a2:5d:04:cb:98:57:73:02:ad:7d:4c:9b:64:d7:de: 53:a0:e9:a5:01:07:d1:7a:3a:f6:22:ee:d9:a5:eb:e3:be:c7: f7:08:23:44:b7:18:f9:cd:ca:f2:92:89:77:d1:8c:f0:b8:51: 80:e4:77:32:4b:99:a6:40:21:c0:e7:15:e1:a4:ed:fe:b6:e5: 5e:5c:90:76:fa:a7:35:52:e3:7a:18:67:5b:b2:2f:12:17:29: 3d:8b:a4:a3 -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUdBOjUtxiZAWAO/shgLyXcte/dWYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0U2RjMwNjQxODQ1NTY4M0RCQTBBQzk1QjRGRDQxRTE4 NDY0NzZBQjAeFw0yNTEwMDgwODU1MDBaFw0yNjEwMDcwOTAwMDBaMDMxMTAvBgNV BAMTKDREQjkwOTQ5MkM1MDZGMzExNDNGN0VFNDc5RDIxNkI5NTlCNUU5MDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1ji0HuiWVugvnzyKjzMKV8X/i M4jr2WJ3n1UtgWxdy1wyPPixDtb/ynVxMLhjqSC+58M0Y7P543hHlLQS2fG80B1z Ejd3ZnB6IVl2Vvd3KlbSPnmZ5Jy55zsMLXHzFCBleQe3qMCrBmGi8ySenV1YKUQH XEtHe2DTPFayP3qlrCeInkxyo2Hj+9FyW2F8JU4xXgjG/ADhIMCeR+6ZtJ0ji7Oh 8zbe50jdTCjIducDcF2qKd0J2wOmKYEqcF0ElkqgvE2uyjng/suEy9WnjxWyG+in Vwr48sMiGvWpxTjX1VsYTsH2GR8LcCDpkYjB42B+xS++aEFGb1RhqXp1ZsiNAgMB AAGjggIxMIICLTAdBgNVHQ4EFgQUTbkJSSxQbzEUP37kedIWuVm16QgwHwYDVR0j BBgwFoAUPm8wZBhFVoPboKyVtP1B4YRkdqswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 NGY3ZWI0Zi03OTI0LTRkYjYtYjZkNi0zOTRkODNiMzkyZmMvMC8zRTZGMzA2NDE4 NDU1NjgzREJBMEFDOTVCNEZENDFFMTg0NjQ3NkFCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0U2RjMwNjQxODQ1NTY4M0RCQTBBQzk1QjRGRDQxRTE4NDY0 NzZBQi5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY0ZjdlYjRmLTc5MjQtNGRiNi1i NmQ2LTM5NGQ4M2IzOTJmYy8wLzMyMzQzMDMyM2EzODMyNjMzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMxMzgzMDM1MzYucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkAoLAMA0GCSqGSIb3 DQEBCwUAA4IBAQBn3uAiWm6WsPX2yzgebp88/qfDF/u1t0LXXQG4LoEaXTlPU9Ew uOVsa7SxTz7t4hoaM4DTHcTDwosqWboiJ1dwy0pdF0RbhlbeYVyaj8ecb766AyRa QSCoG4E47jjbBrWGCWH2N4noyas0RwLeKLzcj2yJuyrW9nwRG+wAKRSgqlNXacCZ BXUToGsiyTwf8kmostQJsNnqbn7TiDyxlam4I1/GFH+iXQTLmFdzAq19TJtk195T oOmlAQfRejr2Iu7Zpevjvsf3CCNEtxj5zcrykol30YzwuFGA5HcyS5mmQCHA5xXh pO3+tuVeXJB2+qc1UuN6GGdbsi8SFyk9i6Sj -----END CERTIFICATE-----Generated at Mon Oct 20 18:53:26 2025 by rpki-client