$ rpki-client -vvf repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/323430313a663938303a323030303a3a2f33362d3336203d3e203633383632.roa File: 323430313a663938303a323030303a3a2f33362d3336203d3e203633383632.roa (raw, json) Hash identifier: 2pZ6uFkAKxXYLAE9HtmsiFsHAr3GYPDr20QIIqwtmL0= Subject key identifier: DC:3E:C7:30:10:15:8B:F8:D4:CB:16:BE:6C:9B:D1:F1:C8:98:42:15 Certificate issuer: /CN=764B23EB6C63FFCAA305F37DBE9B904AE01D60C9 Certificate serial: 43B9FDA42A49AAA399F0FF479C0695756EBF964A Authority key identifier: 76:4B:23:EB:6C:63:FF:CA:A3:05:F3:7D:BE:9B:90:4A:E0:1D:60:C9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/323430313a663938303a323030303a3a2f33362d3336203d3e203633383632.roa Signing time: Thu 14 Aug 2025 06:00:42 +0000 ROA not before: Thu 14 Aug 2025 05:55:42 +0000 ROA not after: Thu 13 Aug 2026 06:00:42 +0000 asID: 63862 IP address blocks: 2401:f980:2000::/36 maxlen: 36 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.crl rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Aug 2025 02:48:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:b9:fd:a4:2a:49:aa:a3:99:f0:ff:47:9c:06:95:75:6e:bf:96:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=764B23EB6C63FFCAA305F37DBE9B904AE01D60C9 Validity Not Before: Aug 14 05:55:42 2025 GMT Not After : Aug 13 06:00:42 2026 GMT Subject: CN=DC3EC73010158BF8D4CB16BE6C9BD1F1C8984215 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:fe:55:3e:2c:14:bf:5a:b1:1f:b8:51:d9:fe: d4:a4:aa:0c:d5:c8:fb:cf:a9:d1:f1:6e:53:3b:1c: 97:32:fe:2c:33:f4:7b:4b:7b:a4:57:18:a4:5e:65: 3e:36:29:1c:cf:9d:8d:d5:8c:8c:e2:2c:e7:4f:81: bb:3c:0f:03:a6:18:2f:15:19:6b:3b:b1:9b:7b:67: 72:af:8e:92:6f:3a:55:7a:25:3a:da:30:bb:ac:ab: 1c:50:85:13:1e:3f:05:b3:b4:f8:ba:97:78:c0:ad: d1:d1:1a:90:26:49:a7:0d:5f:e7:79:17:79:0d:a6: c5:f9:34:dd:e2:1a:3f:13:ee:6c:7a:3f:8b:18:9a: c0:8e:cf:82:f0:04:73:ce:49:3b:52:f5:c0:7a:10: 28:31:1c:4f:8a:72:89:9e:f4:54:6e:e4:0a:d7:04: ff:d9:ea:c1:96:8c:7b:b6:16:82:cc:f4:ff:c6:39: 62:67:d3:72:ec:bb:7c:9c:74:ff:ce:b9:75:02:43: 07:5d:cb:1f:b9:a7:8f:19:a1:ad:06:40:8d:dc:0c: f9:bf:bf:d0:19:f2:86:1a:52:f1:96:93:07:fa:38: e8:b2:5c:e5:e8:cc:ac:79:33:9c:df:4a:47:8d:04: 70:f5:1e:11:21:14:52:60:56:c2:78:a8:25:7c:e4: 6f:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:3E:C7:30:10:15:8B:F8:D4:CB:16:BE:6C:9B:D1:F1:C8:98:42:15 X509v3 Authority Key Identifier: keyid:76:4B:23:EB:6C:63:FF:CA:A3:05:F3:7D:BE:9B:90:4A:E0:1D:60:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/323430313a663938303a323030303a3a2f33362d3336203d3e203633383632.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:f980:2000::/36 Signature Algorithm: sha256WithRSAEncryption 67:6a:19:c4:1d:87:15:a1:38:c7:69:31:98:a8:10:86:d5:f4: f1:5f:f9:70:9d:30:de:b3:c8:3c:64:ac:28:f6:50:2d:ed:ed: 0a:76:a5:e9:47:c4:77:4e:62:f1:47:7d:9b:6e:0c:ff:89:4c: 59:bc:ac:db:25:70:f4:1b:77:56:4f:cd:e2:79:3f:12:19:3e: f9:73:99:4b:9d:62:6f:80:9b:30:a8:55:70:46:b5:6b:5a:69: a4:02:51:24:b9:34:01:66:fe:60:a8:93:f8:4f:24:5b:4e:4e: e6:29:91:e2:20:10:18:ea:ca:1b:1d:9b:af:ed:09:a6:a3:cd: be:4e:44:9b:fc:f2:05:0e:fa:49:ef:82:24:4f:e7:72:72:c3: 7d:4d:51:0a:28:0a:e6:fa:e6:2b:24:8d:e8:2a:8a:5d:29:05: 68:3e:17:75:14:f0:b0:2b:67:ce:38:65:e4:6f:ac:1c:83:60: 46:46:16:d9:32:31:71:de:bd:76:d3:3a:65:5f:ca:6a:f1:37: 24:b1:59:71:18:5e:1b:6d:2a:ed:bc:a9:a8:73:78:ca:26:d6: c2:ec:73:18:a9:80:1e:b3:5f:a0:2e:df:58:c9:02:73:b1:8d: 2f:76:f5:ac:06:c3:98:8f:cd:14:be:7e:c2:d9:ca:62:e0:3a: 68:bf:a9:4b -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUQ7n9pCpJqqOZ8P9HnAaVdW6/lkowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzY0QjIzRUI2QzYzRkZDQUEzMDVGMzdEQkU5QjkwNEFF MDFENjBDOTAeFw0yNTA4MTQwNTU1NDJaFw0yNjA4MTMwNjAwNDJaMDMxMTAvBgNV BAMTKERDM0VDNzMwMTAxNThCRjhENENCMTZCRTZDOUJEMUYxQzg5ODQyMTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDC/lU+LBS/WrEfuFHZ/tSkqgzV yPvPqdHxblM7HJcy/iwz9HtLe6RXGKReZT42KRzPnY3VjIziLOdPgbs8DwOmGC8V GWs7sZt7Z3KvjpJvOlV6JTraMLusqxxQhRMePwWztPi6l3jArdHRGpAmSacNX+d5 F3kNpsX5NN3iGj8T7mx6P4sYmsCOz4LwBHPOSTtS9cB6ECgxHE+Kcome9FRu5ArX BP/Z6sGWjHu2FoLM9P/GOWJn03Lsu3ycdP/OuXUCQwddyx+5p48Zoa0GQI3cDPm/ v9AZ8oYaUvGWkwf6OOiyXOXozKx5M5zfSkeNBHD1HhEhFFJgVsJ4qCV85G9zAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU3D7HMBAVi/jUyxa+bJvR8ciYQhUwHwYDVR0j BBgwFoAUdksj62xj/8qjBfN9vpuQSuAdYMkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 N2U4MzBjOC1kNTU5LTQ1NmEtODgzNS00ZjZlYjU1MjdhYTIvMC83NjRCMjNFQjZD NjNGRkNBQTMwNUYzN0RCRTlCOTA0QUUwMUQ2MEM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzY0QjIzRUI2QzYzRkZDQUEzMDVGMzdEQkU5QjkwNEFFMDFE NjBDOS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg3ZTgzMGM4LWQ1NTktNDU2YS04 ODM1LTRmNmViNTUyN2FhMi8wLzMyMzQzMDMxM2E2NjM5MzgzMDNhMzIzMDMwMzAz YTNhMmYzMzM2MmQzMzM2MjAzZDNlMjAzNjMzMzgzNjMyLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYEJAH5 gCAwDQYJKoZIhvcNAQELBQADggEBAGdqGcQdhxWhOMdpMZioEIbV9PFf+XCdMN6z yDxkrCj2UC3t7Qp2pelHxHdOYvFHfZtuDP+JTFm8rNslcPQbd1ZPzeJ5PxIZPvlz mUudYm+AmzCoVXBGtWtaaaQCUSS5NAFm/mCok/hPJFtOTuYpkeIgEBjqyhsdm6/t Caajzb5ORJv88gUO+knvgiRP53Jyw31NUQooCub65iskjegqil0pBWg+F3UU8LAr Z844ZeRvrByDYEZGFtkyMXHevXbTOmVfymrxNySxWXEYXhttKu28qahzeMom1sLs cxipgB6zX6Au31jJAnOxjS929awGw5iPzRS+fsLZymLgOmi/qUs= -----END CERTIFICATE-----Generated at Sat Aug 23 17:05:45 2025 by rpki-client