$ rpki-client -vvf repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/323430313a663938303a313030303a3a2f33362d3336203d3e203633383632.roa File: 323430313a663938303a313030303a3a2f33362d3336203d3e203633383632.roa (raw, json) Hash identifier: ZRSeKc4pMgl+FGQHx8mqpdUVwvZ/a1dodM6UIQdaa88= Subject key identifier: 76:04:21:99:57:7C:F2:B7:D9:47:46:90:8B:53:63:2E:59:F0:48:F6 Certificate issuer: /CN=764B23EB6C63FFCAA305F37DBE9B904AE01D60C9 Certificate serial: 14B38878484E1760BC6E5F97E88AEEDDFCB9BFA2 Authority key identifier: 76:4B:23:EB:6C:63:FF:CA:A3:05:F3:7D:BE:9B:90:4A:E0:1D:60:C9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/323430313a663938303a313030303a3a2f33362d3336203d3e203633383632.roa Signing time: Thu 14 Aug 2025 06:00:42 +0000 ROA not before: Thu 14 Aug 2025 05:55:42 +0000 ROA not after: Thu 13 Aug 2026 06:00:42 +0000 asID: 63862 IP address blocks: 2401:f980:1000::/36 maxlen: 36 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.crl rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Aug 2025 02:48:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:b3:88:78:48:4e:17:60:bc:6e:5f:97:e8:8a:ee:dd:fc:b9:bf:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=764B23EB6C63FFCAA305F37DBE9B904AE01D60C9 Validity Not Before: Aug 14 05:55:42 2025 GMT Not After : Aug 13 06:00:42 2026 GMT Subject: CN=76042199577CF2B7D94746908B53632E59F048F6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:1d:53:7a:06:60:3b:7e:e9:47:b8:47:20:a2: 3d:13:a7:59:d2:62:82:22:14:21:72:ba:3f:25:92: 2d:6d:4f:c1:63:c2:af:f8:9c:3b:a2:3b:14:55:39: 7a:c6:fb:5e:fc:cf:bb:3c:df:15:07:57:04:49:52: b2:f9:85:7c:41:64:4f:05:12:89:f6:c5:74:7e:f5: 07:45:0b:7f:ac:d3:72:cf:fa:f9:46:f8:75:07:1d: 6d:48:2a:a2:8f:8d:a5:4d:14:1c:25:73:67:e1:c9: b6:f3:22:c9:1a:32:86:64:b2:3b:e6:a8:4c:94:7f: 19:d3:ff:80:72:37:b3:7c:64:f7:b6:cd:47:5d:c3: ee:36:9d:43:8f:2a:94:03:4b:4d:da:1c:d1:60:0a: 29:42:b9:70:60:7a:dc:62:58:a2:56:14:93:83:48: c8:e7:66:03:0c:7d:58:48:a7:b8:56:a5:c3:f0:93: 1b:6e:06:57:bf:4d:cc:72:cf:f5:09:f6:8d:3f:0d: 8a:e6:ff:1b:d9:18:2b:56:3d:31:d7:17:0e:ac:77: a3:77:42:17:65:cd:8e:fe:40:58:d5:d3:29:90:bc: af:74:a9:d0:43:02:10:18:34:38:f3:23:a1:5d:38: aa:aa:86:56:f3:9a:5b:05:a2:04:d3:de:b8:15:c9: 00:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:04:21:99:57:7C:F2:B7:D9:47:46:90:8B:53:63:2E:59:F0:48:F6 X509v3 Authority Key Identifier: keyid:76:4B:23:EB:6C:63:FF:CA:A3:05:F3:7D:BE:9B:90:4A:E0:1D:60:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/323430313a663938303a313030303a3a2f33362d3336203d3e203633383632.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:f980:1000::/36 Signature Algorithm: sha256WithRSAEncryption 30:2d:af:0c:81:3c:93:ca:37:c4:0e:96:7a:f7:28:9e:e9:e1: f2:87:b9:ba:da:d1:c2:cf:d8:2a:db:12:9d:73:97:52:b1:6a: c0:4d:af:af:46:e4:4d:2d:99:56:32:e6:9e:90:2b:10:c1:d2: bf:d1:1d:34:ae:c6:75:c8:ff:af:f9:26:77:c9:1d:f9:72:be: ed:e3:a6:e9:59:f9:59:2f:dd:fb:bb:a3:f0:35:de:4a:4a:2a: ea:ac:8a:57:80:28:8a:7b:b2:db:95:97:49:7d:3e:c3:72:df: a8:b4:24:72:d5:58:b5:f2:47:6b:c7:82:81:30:43:8d:62:3a: 00:bb:02:2f:c7:eb:9f:ec:8d:40:50:8c:d6:da:6d:2f:b3:b6: c4:74:ac:ce:e7:f4:5c:35:f5:41:4a:78:f9:4b:5a:a0:45:36: 79:ea:de:4e:d2:8a:08:04:3e:01:47:8d:e5:1c:31:27:21:30: 8e:4d:2d:b5:dc:f6:39:1c:71:f2:af:a2:21:43:51:8d:42:75: 44:47:0c:08:8f:62:a6:5a:89:72:ea:fd:5f:a4:5b:b2:4c:e4: 69:3f:bb:0c:21:8f:ee:e5:fd:8c:c9:7c:e7:a8:0c:4f:b4:bb: d0:91:31:7a:e6:17:a7:08:cd:61:4e:f5:05:fc:74:85:d7:bb: d3:ef:38:83 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUFLOIeEhOF2C8bl+X6Iru3fy5v6IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzY0QjIzRUI2QzYzRkZDQUEzMDVGMzdEQkU5QjkwNEFF MDFENjBDOTAeFw0yNTA4MTQwNTU1NDJaFw0yNjA4MTMwNjAwNDJaMDMxMTAvBgNV BAMTKDc2MDQyMTk5NTc3Q0YyQjdEOTQ3NDY5MDhCNTM2MzJFNTlGMDQ4RjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDaHVN6BmA7fulHuEcgoj0Tp1nS YoIiFCFyuj8lki1tT8Fjwq/4nDuiOxRVOXrG+178z7s83xUHVwRJUrL5hXxBZE8F Eon2xXR+9QdFC3+s03LP+vlG+HUHHW1IKqKPjaVNFBwlc2fhybbzIskaMoZksjvm qEyUfxnT/4ByN7N8ZPe2zUddw+42nUOPKpQDS03aHNFgCilCuXBgetxiWKJWFJOD SMjnZgMMfVhIp7hWpcPwkxtuBle/Tcxyz/UJ9o0/DYrm/xvZGCtWPTHXFw6sd6N3 QhdlzY7+QFjV0ymQvK90qdBDAhAYNDjzI6FdOKqqhlbzmlsFogTT3rgVyQCpAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUdgQhmVd88rfZR0aQi1NjLlnwSPYwHwYDVR0j BBgwFoAUdksj62xj/8qjBfN9vpuQSuAdYMkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 N2U4MzBjOC1kNTU5LTQ1NmEtODgzNS00ZjZlYjU1MjdhYTIvMC83NjRCMjNFQjZD NjNGRkNBQTMwNUYzN0RCRTlCOTA0QUUwMUQ2MEM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzY0QjIzRUI2QzYzRkZDQUEzMDVGMzdEQkU5QjkwNEFFMDFE NjBDOS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg3ZTgzMGM4LWQ1NTktNDU2YS04 ODM1LTRmNmViNTUyN2FhMi8wLzMyMzQzMDMxM2E2NjM5MzgzMDNhMzEzMDMwMzAz YTNhMmYzMzM2MmQzMzM2MjAzZDNlMjAzNjMzMzgzNjMyLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYEJAH5 gBAwDQYJKoZIhvcNAQELBQADggEBADAtrwyBPJPKN8QOlnr3KJ7p4fKHubra0cLP 2CrbEp1zl1KxasBNr69G5E0tmVYy5p6QKxDB0r/RHTSuxnXI/6/5JnfJHflyvu3j pulZ+Vkv3fu7o/A13kpKKuqsileAKIp7stuVl0l9PsNy36i0JHLVWLXyR2vHgoEw Q41iOgC7Ai/H65/sjUBQjNbabS+ztsR0rM7n9Fw19UFKePlLWqBFNnnq3k7SiggE PgFHjeUcMSchMI5NLbXc9jkccfKvoiFDUY1CdURHDAiPYqZaiXLq/V+kW7JM5Gk/ uwwhj+7l/YzJfOeoDE+0u9CRMXrmF6cIzWFO9QX8dIXXu9PvOIM= -----END CERTIFICATE-----Generated at Sat Aug 23 15:17:01 2025 by rpki-client