$ rpki-client -vvf repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/323430313a663938303a333030303a3a2f33362d3336203d3e203633383632.roa File: 323430313a663938303a333030303a3a2f33362d3336203d3e203633383632.roa (raw, json) Hash identifier: BJzh6fi2j7EDPGFdArFNRS0CDexcva0kRaMPjrQlvKk= Subject key identifier: 03:0F:A3:8A:A8:94:0A:A9:47:74:2B:30:E8:A1:D3:85:BC:14:A5:99 Certificate issuer: /CN=764B23EB6C63FFCAA305F37DBE9B904AE01D60C9 Certificate serial: 084F316B0F2BA5A2384A0D793BE8F5FA95882789 Authority key identifier: 76:4B:23:EB:6C:63:FF:CA:A3:05:F3:7D:BE:9B:90:4A:E0:1D:60:C9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/323430313a663938303a333030303a3a2f33362d3336203d3e203633383632.roa Signing time: Thu 14 Aug 2025 06:00:41 +0000 ROA not before: Thu 14 Aug 2025 05:55:41 +0000 ROA not after: Thu 13 Aug 2026 06:00:41 +0000 asID: 63862 IP address blocks: 2401:f980:3000::/36 maxlen: 36 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.crl rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Aug 2025 02:48:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:4f:31:6b:0f:2b:a5:a2:38:4a:0d:79:3b:e8:f5:fa:95:88:27:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=764B23EB6C63FFCAA305F37DBE9B904AE01D60C9 Validity Not Before: Aug 14 05:55:41 2025 GMT Not After : Aug 13 06:00:41 2026 GMT Subject: CN=030FA38AA8940AA947742B30E8A1D385BC14A599 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fc:5e:20:0f:ac:96:d1:9d:d5:70:fd:f7:69:d6: 53:e0:f8:27:b7:7f:f0:20:9e:9a:55:91:7d:c5:51: 5f:8f:a0:82:22:cd:96:0f:33:39:2d:c3:c9:6e:33: ae:da:cb:1c:a8:4c:cb:84:32:73:c1:07:46:a9:c3: c4:44:d9:a0:26:53:43:d9:98:5c:be:c9:cd:98:cf: 29:f4:2b:69:80:2a:6b:3f:55:19:1b:f2:b8:b4:4e: fd:e5:30:bb:39:c3:4e:2d:fc:4d:7a:10:3a:5a:cc: 31:40:dc:d8:0a:55:78:cc:1d:7d:f1:cc:aa:dd:5a: 75:52:78:63:39:9c:60:89:c4:1c:51:a9:24:c1:23: 38:22:50:53:e5:83:d7:9b:0d:b3:0d:67:a8:4f:42: 1f:50:79:48:b6:59:27:0c:09:da:af:7a:99:03:3b: a3:2c:6c:a2:f0:93:1d:ee:d0:7c:5e:2b:7f:91:15: 5e:2f:39:47:82:a5:bb:30:c0:3a:3c:1c:06:c1:40: e1:ea:b6:2a:99:01:d8:e3:22:3b:33:a5:53:ff:fe: ec:5e:d5:3f:f9:0a:8c:49:2b:59:9a:57:f3:88:b7: be:98:ea:2c:54:b8:8c:6a:c6:ee:0d:51:c7:b1:35: 51:28:08:93:ea:ed:12:70:78:c5:38:e3:00:9b:aa: 4a:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:0F:A3:8A:A8:94:0A:A9:47:74:2B:30:E8:A1:D3:85:BC:14:A5:99 X509v3 Authority Key Identifier: keyid:76:4B:23:EB:6C:63:FF:CA:A3:05:F3:7D:BE:9B:90:4A:E0:1D:60:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/323430313a663938303a333030303a3a2f33362d3336203d3e203633383632.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:f980:3000::/36 Signature Algorithm: sha256WithRSAEncryption 4c:91:33:9c:8c:39:de:e6:e7:81:b4:bf:47:e2:5a:12:8e:b7: ec:90:4f:8b:79:18:a0:8a:58:66:d8:73:25:af:5b:d2:26:38: 4c:24:78:d5:9d:cb:96:30:79:4e:03:fa:16:85:79:19:eb:66: ca:ce:ab:c2:e5:ba:08:a2:f8:1d:01:71:60:d4:91:56:18:25: d5:83:68:2d:6d:ed:ce:79:63:37:82:63:b0:ba:57:23:66:63: 4d:ab:cc:03:87:de:45:77:ba:23:b0:ba:03:92:7e:0f:d7:1a: 9a:44:d8:09:c3:e4:17:ec:bc:11:09:3a:b6:de:bd:4c:80:bc: 2e:e5:01:65:4a:6d:bf:e2:46:2e:19:96:85:c2:4f:89:b3:55: e7:52:bb:64:92:d0:27:27:ff:6f:c7:c7:a7:d1:37:fc:b5:9f: ff:8f:bc:63:ab:fc:c4:c2:41:e3:0c:b7:bf:cc:07:02:ad:20: 25:ec:87:e6:ec:5d:f0:51:5d:f3:18:0f:4e:cc:09:0a:a9:09: 4f:3f:7c:97:48:fb:cb:46:7d:24:47:00:ff:7b:4e:1e:02:07: 5c:a1:66:9c:0c:56:0e:ae:31:f5:7b:91:ad:64:ec:48:f3:6e: dc:70:bd:8c:4a:c1:56:c1:b3:5b:f4:95:08:dd:a7:0d:98:48: 7e:02:d7:4c -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUCE8xaw8rpaI4Sg15O+j1+pWIJ4kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzY0QjIzRUI2QzYzRkZDQUEzMDVGMzdEQkU5QjkwNEFF MDFENjBDOTAeFw0yNTA4MTQwNTU1NDFaFw0yNjA4MTMwNjAwNDFaMDMxMTAvBgNV BAMTKDAzMEZBMzhBQTg5NDBBQTk0Nzc0MkIzMEU4QTFEMzg1QkMxNEE1OTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD8XiAPrJbRndVw/fdp1lPg+Ce3 f/AgnppVkX3FUV+PoIIizZYPMzktw8luM67ayxyoTMuEMnPBB0apw8RE2aAmU0PZ mFy+yc2Yzyn0K2mAKms/VRkb8ri0Tv3lMLs5w04t/E16EDpazDFA3NgKVXjMHX3x zKrdWnVSeGM5nGCJxBxRqSTBIzgiUFPlg9ebDbMNZ6hPQh9QeUi2WScMCdqvepkD O6MsbKLwkx3u0HxeK3+RFV4vOUeCpbswwDo8HAbBQOHqtiqZAdjjIjszpVP//uxe 1T/5CoxJK1maV/OIt76Y6ixUuIxqxu4NUcexNVEoCJPq7RJweMU44wCbqkr1AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUAw+jiqiUCqlHdCsw6KHThbwUpZkwHwYDVR0j BBgwFoAUdksj62xj/8qjBfN9vpuQSuAdYMkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 N2U4MzBjOC1kNTU5LTQ1NmEtODgzNS00ZjZlYjU1MjdhYTIvMC83NjRCMjNFQjZD NjNGRkNBQTMwNUYzN0RCRTlCOTA0QUUwMUQ2MEM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzY0QjIzRUI2QzYzRkZDQUEzMDVGMzdEQkU5QjkwNEFFMDFE NjBDOS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg3ZTgzMGM4LWQ1NTktNDU2YS04 ODM1LTRmNmViNTUyN2FhMi8wLzMyMzQzMDMxM2E2NjM5MzgzMDNhMzMzMDMwMzAz YTNhMmYzMzM2MmQzMzM2MjAzZDNlMjAzNjMzMzgzNjMyLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYEJAH5 gDAwDQYJKoZIhvcNAQELBQADggEBAEyRM5yMOd7m54G0v0fiWhKOt+yQT4t5GKCK WGbYcyWvW9ImOEwkeNWdy5YweU4D+haFeRnrZsrOq8Llugii+B0BcWDUkVYYJdWD aC1t7c55YzeCY7C6VyNmY02rzAOH3kV3uiOwugOSfg/XGppE2AnD5BfsvBEJOrbe vUyAvC7lAWVKbb/iRi4ZloXCT4mzVedSu2SS0Ccn/2/Hx6fRN/y1n/+PvGOr/MTC QeMMt7/MBwKtICXsh+bsXfBRXfMYD07MCQqpCU8/fJdI+8tGfSRHAP97Th4CB1yh ZpwMVg6uMfV7ka1k7EjzbtxwvYxKwVbBs1v0lQjdpw2YSH4C10w= -----END CERTIFICATE-----Generated at Sat Aug 23 18:22:33 2025 by rpki-client