$ rpki-client -vvf repo-rpki.idnic.net/repo/87775dcf-283f-43c5-af60-09e0deba01a2/0/323430343a343230303a3a2f33322d3438203d3e203234353336.roa File: 323430343a343230303a3a2f33322d3438203d3e203234353336.roa (raw, json) Hash identifier: Hub7rZ2q+AdvyEruoWB8nsArXPAxnFiXXAQjsmifcPA= Subject key identifier: D7:AE:3C:0B:10:62:FE:B3:6B:F2:2A:82:15:86:60:CE:2B:6C:D2:9F Certificate issuer: /CN=A63CCE6366E3FCB7A2666A9090F2A0575A74DCF4 Certificate serial: 2E8EB102659C162383A6AB456DA320BD7659642F Authority key identifier: A6:3C:CE:63:66:E3:FC:B7:A2:66:6A:90:90:F2:A0:57:5A:74:DC:F4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A63CCE6366E3FCB7A2666A9090F2A0575A74DCF4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/87775dcf-283f-43c5-af60-09e0deba01a2/0/323430343a343230303a3a2f33322d3438203d3e203234353336.roa Signing time: Sat 04 Oct 2025 11:00:00 +0000 ROA not before: Sat 04 Oct 2025 10:55:00 +0000 ROA not after: Sat 03 Oct 2026 11:00:00 +0000 asID: 24536 IP address blocks: 2404:4200::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/87775dcf-283f-43c5-af60-09e0deba01a2/0/A63CCE6366E3FCB7A2666A9090F2A0575A74DCF4.crl rsync://repo-rpki.idnic.net/repo/87775dcf-283f-43c5-af60-09e0deba01a2/0/A63CCE6366E3FCB7A2666A9090F2A0575A74DCF4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A63CCE6366E3FCB7A2666A9090F2A0575A74DCF4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 11:48:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:8e:b1:02:65:9c:16:23:83:a6:ab:45:6d:a3:20:bd:76:59:64:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A63CCE6366E3FCB7A2666A9090F2A0575A74DCF4 Validity Not Before: Oct 4 10:55:00 2025 GMT Not After : Oct 3 11:00:00 2026 GMT Subject: CN=D7AE3C0B1062FEB36BF22A82158660CE2B6CD29F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:40:9d:b7:5d:ad:f0:9c:df:aa:7e:30:fd:f8: cc:9f:ea:56:4e:22:6c:55:a9:21:96:a5:67:03:42: d1:bf:f6:f4:23:18:30:49:05:b3:2f:0a:a5:b5:65: 7f:35:6c:44:2f:70:53:e8:c5:ab:9b:44:7a:37:2e: a3:65:7d:4f:02:f7:d7:24:98:5a:8c:0f:3b:df:0e: c9:4a:ea:53:33:87:aa:c3:a6:72:4d:41:04:15:3a: 3b:75:a1:73:0e:1b:dc:6d:16:4b:26:63:55:dd:74: e2:93:6e:91:c2:fc:97:75:d9:d9:01:41:e2:d2:68: 3e:c8:67:35:be:17:a8:18:23:50:8d:48:5b:7c:ab: bc:d2:59:d5:ff:00:84:60:82:cd:c9:ed:9d:53:bd: dd:ab:11:c7:3b:16:00:a6:ac:04:bf:db:bf:a4:cf: db:36:2b:0f:e8:b1:c4:9e:b9:ac:2f:84:8c:48:35: 5a:84:45:fe:03:99:83:5a:80:e1:4e:93:9e:55:20: b7:52:7b:be:c2:bb:a3:ac:36:87:e5:9f:ec:b5:4f: ff:c6:9a:93:e8:14:b2:ac:20:e8:e0:4a:1e:8d:ab: 0b:c6:01:95:52:d3:a7:2d:67:ed:69:3c:3a:28:ee: 97:0a:a7:04:aa:52:82:d2:5a:f8:fc:9b:cd:dd:5e: 38:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:AE:3C:0B:10:62:FE:B3:6B:F2:2A:82:15:86:60:CE:2B:6C:D2:9F X509v3 Authority Key Identifier: keyid:A6:3C:CE:63:66:E3:FC:B7:A2:66:6A:90:90:F2:A0:57:5A:74:DC:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/87775dcf-283f-43c5-af60-09e0deba01a2/0/A63CCE6366E3FCB7A2666A9090F2A0575A74DCF4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A63CCE6366E3FCB7A2666A9090F2A0575A74DCF4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/87775dcf-283f-43c5-af60-09e0deba01a2/0/323430343a343230303a3a2f33322d3438203d3e203234353336.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:4200::/32 Signature Algorithm: sha256WithRSAEncryption 6f:b2:f1:fa:4a:87:13:b2:c9:68:82:c1:b5:06:c5:57:f9:2d: 42:97:2a:5e:b2:b6:af:94:2e:d5:2a:83:6e:80:65:d9:8d:56: 27:78:3b:4b:bc:32:de:eb:25:78:91:57:ab:90:22:fb:69:c6: 18:bf:c8:b2:76:36:c1:e8:c9:ec:1b:fc:ba:e7:a7:bb:68:73: cd:42:25:71:a1:54:b5:77:04:d2:92:12:65:05:48:a2:79:8b: bb:7f:ca:21:09:38:d1:14:4f:f3:e5:28:a5:9f:53:80:77:f3: 49:9c:a1:ef:37:17:1a:80:27:8d:56:99:49:54:cb:8f:af:07: 53:92:7f:0e:32:c5:82:d8:69:28:34:41:66:f7:a0:0a:88:04: 78:3b:6f:06:de:ff:9b:55:d4:50:03:2d:07:be:e9:f3:9a:43: 6d:2c:b4:70:4c:fc:48:55:2d:24:99:4f:fc:15:f5:d0:a7:1c: ca:98:ad:74:91:05:de:65:0f:c4:de:41:de:2f:97:f3:59:40: 7f:ff:77:55:e9:e3:2b:f7:32:eb:d2:3c:3f:40:c5:a6:4b:a8: 8f:45:5b:99:d4:f0:b0:31:f9:51:e1:3a:88:f4:a1:87:1d:02: 38:8c:c9:32:cc:c9:07:69:ea:3b:d1:80:ba:00:cb:66:0b:47: ac:cb:54:0e -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIULo6xAmWcFiODpqtFbaMgvXZZZC8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTYzQ0NFNjM2NkUzRkNCN0EyNjY2QTkwOTBGMkEwNTc1 QTc0RENGNDAeFw0yNTEwMDQxMDU1MDBaFw0yNjEwMDMxMTAwMDBaMDMxMTAvBgNV BAMTKEQ3QUUzQzBCMTA2MkZFQjM2QkYyMkE4MjE1ODY2MENFMkI2Q0QyOUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAQJ23Xa3wnN+qfjD9+Myf6lZO ImxVqSGWpWcDQtG/9vQjGDBJBbMvCqW1ZX81bEQvcFPoxaubRHo3LqNlfU8C99ck mFqMDzvfDslK6lMzh6rDpnJNQQQVOjt1oXMOG9xtFksmY1XddOKTbpHC/Jd12dkB QeLSaD7IZzW+F6gYI1CNSFt8q7zSWdX/AIRggs3J7Z1Tvd2rEcc7FgCmrAS/27+k z9s2Kw/oscSeuawvhIxINVqERf4DmYNagOFOk55VILdSe77Cu6OsNofln+y1T//G mpPoFLKsIOjgSh6NqwvGAZVS06ctZ+1pPDoo7pcKpwSqUoLSWvj8m83dXjirAgMB AAGjggIxMIICLTAdBgNVHQ4EFgQU1648CxBi/rNr8iqCFYZgzits0p8wHwYDVR0j BBgwFoAUpjzOY2bj/LeiZmqQkPKgV1p03PQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 Nzc3NWRjZi0yODNmLTQzYzUtYWY2MC0wOWUwZGViYTAxYTIvMC9BNjNDQ0U2MzY2 RTNGQ0I3QTI2NjZBOTA5MEYyQTA1NzVBNzREQ0Y0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTYzQ0NFNjM2NkUzRkNCN0EyNjY2QTkwOTBGMkEwNTc1QTc0 RENGNC5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg3Nzc1ZGNmLTI4M2YtNDNjNS1h ZjYwLTA5ZTBkZWJhMDFhMi8wLzMyMzQzMDM0M2EzNDMyMzAzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMyMzQzNTMzMzYucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkBEIAMA0GCSqGSIb3 DQEBCwUAA4IBAQBvsvH6SocTsslogsG1BsVX+S1ClypesravlC7VKoNugGXZjVYn eDtLvDLe6yV4kVerkCL7acYYv8iydjbB6MnsG/y656e7aHPNQiVxoVS1dwTSkhJl BUiieYu7f8ohCTjRFE/z5Siln1OAd/NJnKHvNxcagCeNVplJVMuPrwdTkn8OMsWC 2GkoNEFm96AKiAR4O28G3v+bVdRQAy0HvunzmkNtLLRwTPxIVS0kmU/8FfXQpxzK mK10kQXeZQ/E3kHeL5fzWUB//3dV6eMr9zLr0jw/QMWmS6iPRVuZ1PCwMflR4TqI 9KGHHQI4jMkyzMkHaeo70YC6AMtmC0esy1QO -----END CERTIFICATE-----Generated at Tue Oct 21 00:00:27 2025 by rpki-client