$ rpki-client -vvf repo-rpki.idnic.net/repo/7c4935d8-96a2-4564-85a3-32a53189367e/0/323030313a6466323a656434303a3a2f34382d3438203d3e203535363838.roa File: 323030313a6466323a656434303a3a2f34382d3438203d3e203535363838.roa (raw, json) Hash identifier: EjIlnJwLN6tob8lWzuv6YJeMCHTcSGWnYIQOvyIdVqQ= Subject key identifier: 8B:CB:23:8A:1D:64:7B:52:69:6C:73:A7:F3:9F:A6:F4:0A:89:22:D8 Certificate issuer: /CN=4A9E8C61BE3670D865B8A79D7D32798550E64F2B Certificate serial: 3A5AE7D801765473D8141B856FC4AEC39425EC51 Authority key identifier: 4A:9E:8C:61:BE:36:70:D8:65:B8:A7:9D:7D:32:79:85:50:E6:4F:2B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4A9E8C61BE3670D865B8A79D7D32798550E64F2B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7c4935d8-96a2-4564-85a3-32a53189367e/0/323030313a6466323a656434303a3a2f34382d3438203d3e203535363838.roa Signing time: Mon 15 Sep 2025 02:00:00 +0000 ROA not before: Mon 15 Sep 2025 01:55:00 +0000 ROA not after: Mon 14 Sep 2026 02:00:00 +0000 asID: 55688 IP address blocks: 2001:df2:ed40::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7c4935d8-96a2-4564-85a3-32a53189367e/0/4A9E8C61BE3670D865B8A79D7D32798550E64F2B.crl rsync://repo-rpki.idnic.net/repo/7c4935d8-96a2-4564-85a3-32a53189367e/0/4A9E8C61BE3670D865B8A79D7D32798550E64F2B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4A9E8C61BE3670D865B8A79D7D32798550E64F2B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 12:15:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:5a:e7:d8:01:76:54:73:d8:14:1b:85:6f:c4:ae:c3:94:25:ec:51 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4A9E8C61BE3670D865B8A79D7D32798550E64F2B Validity Not Before: Sep 15 01:55:00 2025 GMT Not After : Sep 14 02:00:00 2026 GMT Subject: CN=8BCB238A1D647B52696C73A7F39FA6F40A8922D8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:f9:37:4b:17:ab:6a:2b:d0:1b:6b:b9:15:ff: c7:5f:e3:86:d0:6d:95:77:c9:7f:8a:f1:e5:14:0a: 7d:b6:25:fa:a8:18:f8:9e:8b:67:55:39:18:cf:e8: e6:60:61:3b:06:94:bb:72:52:10:4a:6c:a7:b4:e1: 54:c8:f0:6c:5b:b7:f5:23:21:e5:c1:96:f3:6a:f6: 3d:18:4b:1e:72:07:31:a9:1d:b7:ff:64:62:60:22: 6f:3e:f2:42:26:fa:f5:24:46:87:f0:2b:06:84:86: 74:7a:2a:39:bb:b8:f5:87:af:40:b6:b8:af:af:15: 1d:bc:e0:d6:bb:0a:76:f1:b1:eb:5c:99:df:cc:eb: c9:e7:c4:e5:ce:37:80:c5:fb:15:90:53:f1:06:61: fc:11:f9:6d:82:c7:ea:40:f3:8a:31:07:a7:ec:44: 00:21:a3:e9:a5:38:2a:a3:3b:24:96:5a:73:c5:bf: de:2e:b7:cf:c5:b9:33:17:3a:5c:71:5d:5e:3e:37: c4:84:89:9d:33:1c:f5:a3:67:ab:9b:a4:7c:20:2b: 94:e8:8a:0e:c3:c0:cd:c2:00:2c:bd:30:44:2a:22: f4:8e:43:c8:75:13:83:cf:0c:f2:88:2b:34:c3:dd: 72:ed:59:7c:5b:6f:9c:d0:38:0d:b6:b4:5e:35:f3: 80:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:CB:23:8A:1D:64:7B:52:69:6C:73:A7:F3:9F:A6:F4:0A:89:22:D8 X509v3 Authority Key Identifier: keyid:4A:9E:8C:61:BE:36:70:D8:65:B8:A7:9D:7D:32:79:85:50:E6:4F:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7c4935d8-96a2-4564-85a3-32a53189367e/0/4A9E8C61BE3670D865B8A79D7D32798550E64F2B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4A9E8C61BE3670D865B8A79D7D32798550E64F2B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7c4935d8-96a2-4564-85a3-32a53189367e/0/323030313a6466323a656434303a3a2f34382d3438203d3e203535363838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df2:ed40::/48 Signature Algorithm: sha256WithRSAEncryption 92:45:98:af:30:e1:6a:75:45:2f:b0:e2:1d:d5:98:28:10:be: 9a:1c:0b:49:fa:16:52:c2:c7:a0:29:c6:b1:b0:03:43:c3:ac: 72:6b:64:80:07:c8:ae:e0:b2:ec:82:0f:c9:39:dd:02:77:66: 0a:8a:87:25:7b:44:b5:72:0f:42:ba:6a:fd:47:40:65:38:29: 29:a9:f1:22:b9:b1:08:b9:33:2f:aa:af:c3:12:89:32:0e:99: e1:cc:19:0a:81:9d:46:63:5d:bb:0b:d4:32:78:ae:a8:8f:11: 2d:b0:21:3e:8e:c7:75:c4:bc:29:60:1c:7b:cd:a4:da:3c:9e: 92:83:db:02:33:28:72:86:09:e9:93:06:7b:35:f7:b9:64:3e: 84:d5:20:ed:16:ad:5a:c6:23:45:18:1f:7a:2d:7d:4c:53:1a: e3:bc:b6:c7:99:62:e5:df:13:c2:fc:4e:77:98:55:f9:65:03: 4f:0f:00:79:90:c4:50:9a:7d:58:fa:fa:80:d3:e4:79:cb:e3: b2:02:92:6d:f8:89:15:cf:6b:b3:9f:2a:f0:2e:0b:10:ad:b1: 5e:f1:f0:1b:6c:1e:19:0c:54:79:cb:0a:b4:4d:ca:97:83:8a: fa:6a:91:4a:22:64:a7:50:f8:a0:0b:22:e9:f5:36:54:0b:a5: 83:46:d4:99 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUOlrn2AF2VHPYFBuFb8Suw5Ql7FEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEE5RThDNjFCRTM2NzBEODY1QjhBNzlEN0QzMjc5ODU1 MEU2NEYyQjAeFw0yNTA5MTUwMTU1MDBaFw0yNjA5MTQwMjAwMDBaMDMxMTAvBgNV BAMTKDhCQ0IyMzhBMUQ2NDdCNTI2OTZDNzNBN0YzOUZBNkY0MEE4OTIyRDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDU+TdLF6tqK9Aba7kV/8df44bQ bZV3yX+K8eUUCn22JfqoGPiei2dVORjP6OZgYTsGlLtyUhBKbKe04VTI8Gxbt/Uj IeXBlvNq9j0YSx5yBzGpHbf/ZGJgIm8+8kIm+vUkRofwKwaEhnR6Kjm7uPWHr0C2 uK+vFR284Na7Cnbxsetcmd/M68nnxOXON4DF+xWQU/EGYfwR+W2Cx+pA84oxB6fs RAAho+mlOCqjOySWWnPFv94ut8/FuTMXOlxxXV4+N8SEiZ0zHPWjZ6ubpHwgK5To ig7DwM3CACy9MEQqIvSOQ8h1E4PPDPKIKzTD3XLtWXxbb5zQOA22tF4184CDAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUi8sjih1ke1JpbHOn85+m9AqJItgwHwYDVR0j BBgwFoAUSp6MYb42cNhluKedfTJ5hVDmTyswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 YzQ5MzVkOC05NmEyLTQ1NjQtODVhMy0zMmE1MzE4OTM2N2UvMC80QTlFOEM2MUJF MzY3MEQ4NjVCOEE3OUQ3RDMyNzk4NTUwRTY0RjJCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEE5RThDNjFCRTM2NzBEODY1QjhBNzlEN0QzMjc5ODU1MEU2 NEYyQi5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdjNDkzNWQ4LTk2YTItNDU2NC04 NWEzLTMyYTUzMTg5MzY3ZS8wLzMyMzAzMDMxM2E2NDY2MzIzYTY1NjQzNDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzUzNTM2MzgzOC5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACABDfLt QDANBgkqhkiG9w0BAQsFAAOCAQEAkkWYrzDhanVFL7DiHdWYKBC+mhwLSfoWUsLH oCnGsbADQ8OscmtkgAfIruCy7IIPyTndAndmCoqHJXtEtXIPQrpq/UdAZTgpKanx IrmxCLkzL6qvwxKJMg6Z4cwZCoGdRmNduwvUMniuqI8RLbAhPo7HdcS8KWAce82k 2jyekoPbAjMocoYJ6ZMGezX3uWQ+hNUg7RatWsYjRRgfei19TFMa47y2x5li5d8T wvxOd5hV+WUDTw8AeZDEUJp9WPr6gNPkecvjsgKSbfiJFc9rs58q8C4LEK2xXvHw G2weGQxUecsKtE3Kl4OK+mqRSiJkp1D4oAsi6fU2VAulg0bUmQ== -----END CERTIFICATE-----Generated at Mon Oct 20 12:38:19 2025 by rpki-client