$ rpki-client -vvf repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/323430313a663938303a343030303a3a2f33362d3336203d3e203633383632.roa File: 323430313a663938303a343030303a3a2f33362d3336203d3e203633383632.roa (raw, json) Hash identifier: MvAl+VLsKwMPS7SAuBK6iH2yg75H3l7BSJCwZaIQZeA= Subject key identifier: 45:B7:AA:64:DC:36:E6:2D:3D:21:F1:7A:AF:35:B3:86:8F:27:E9:5D Certificate issuer: /CN=764B23EB6C63FFCAA305F37DBE9B904AE01D60C9 Certificate serial: 60E170D2943C6F10E2C288FCED32E92FBE550039 Authority key identifier: 76:4B:23:EB:6C:63:FF:CA:A3:05:F3:7D:BE:9B:90:4A:E0:1D:60:C9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/323430313a663938303a343030303a3a2f33362d3336203d3e203633383632.roa Signing time: Thu 14 Aug 2025 06:00:42 +0000 ROA not before: Thu 14 Aug 2025 05:55:42 +0000 ROA not after: Thu 13 Aug 2026 06:00:42 +0000 asID: 63862 IP address blocks: 2401:f980:4000::/36 maxlen: 36 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.crl rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Aug 2025 02:48:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:e1:70:d2:94:3c:6f:10:e2:c2:88:fc:ed:32:e9:2f:be:55:00:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=764B23EB6C63FFCAA305F37DBE9B904AE01D60C9 Validity Not Before: Aug 14 05:55:42 2025 GMT Not After : Aug 13 06:00:42 2026 GMT Subject: CN=45B7AA64DC36E62D3D21F17AAF35B3868F27E95D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:4e:aa:d8:c0:10:10:4b:df:f2:14:db:89:dc: 47:60:cf:22:50:c7:e8:4c:e9:8b:10:a1:11:fa:1b: 8b:e6:4b:5a:dc:ed:88:b6:88:53:1d:cb:89:84:59: 78:14:18:67:ae:30:85:c2:a3:98:83:08:3d:58:f5: da:fb:af:c9:5c:0c:0f:a5:41:c2:9e:e5:20:bd:ef: 3c:f7:aa:23:36:21:c7:82:35:ea:bf:23:0e:a7:1a: e6:b7:69:3b:8f:e2:c6:7e:86:1e:92:42:e8:9e:c3: 23:e9:d2:b3:83:3a:10:12:a0:54:ad:2c:b0:c5:91: 20:8f:e1:1b:46:46:9b:d7:25:b5:23:96:56:65:a2: 49:12:14:c5:7e:dd:b4:3e:83:a8:81:4b:a3:13:7d: 10:e2:8e:4e:4f:42:1a:46:78:2f:7e:88:90:de:12: 2f:29:27:a3:7b:e3:c2:d7:2a:33:4a:6f:55:73:10: ce:0d:45:46:55:d4:11:83:26:39:84:ad:b1:98:41: d2:8d:06:9b:d0:47:12:fd:cb:6f:b9:3d:3e:a7:e1: 37:ff:1b:d8:55:d2:71:da:2e:59:35:31:73:e1:e2: c2:1a:55:c6:25:7d:47:01:43:c4:b6:8c:fd:9a:2b: 45:00:da:16:9b:21:77:fd:a1:2b:5e:0a:bb:2e:f6: 8c:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:B7:AA:64:DC:36:E6:2D:3D:21:F1:7A:AF:35:B3:86:8F:27:E9:5D X509v3 Authority Key Identifier: keyid:76:4B:23:EB:6C:63:FF:CA:A3:05:F3:7D:BE:9B:90:4A:E0:1D:60:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/323430313a663938303a343030303a3a2f33362d3336203d3e203633383632.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:f980:4000::/36 Signature Algorithm: sha256WithRSAEncryption 19:52:32:2c:df:3d:34:dd:d3:72:43:43:62:8c:55:44:b8:89: 2c:a6:11:34:c7:01:63:8e:08:8d:77:47:79:6b:06:f2:42:6b: ea:bd:01:f3:fa:12:7c:72:6b:3d:d4:1a:1f:65:10:54:0f:e4: cd:5c:fd:ae:68:8f:90:e3:41:53:1e:96:1a:a7:22:df:93:8b: cd:6e:ce:0a:e2:69:c1:26:5f:ea:38:24:03:7d:c5:c2:82:0a: 7f:ef:bb:aa:b4:12:d7:f2:1c:43:c6:cd:e9:39:ce:fc:f4:e8: 93:97:ac:55:2f:e0:60:36:e0:ec:61:82:6d:3f:20:09:b9:aa: 6c:91:62:a6:ac:e1:16:2a:b4:ea:ef:29:05:48:57:ed:1d:a9: d9:ce:35:4b:19:82:22:20:e6:07:95:da:e1:40:f9:2e:01:53: 38:6d:a5:e8:d9:13:57:56:6b:2f:bf:9f:3c:37:c1:58:37:58: 58:89:53:97:41:51:22:79:f3:02:06:b8:fb:71:42:fa:fd:be: e7:fa:35:86:85:7e:9b:76:6a:46:00:21:ae:0e:4f:9d:3b:9e: de:aa:c8:57:8c:20:6d:5c:ea:1a:bc:a1:ff:d7:da:2c:00:7a: c8:92:f7:e1:31:56:1f:f7:a1:33:11:50:c2:38:60:43:89:6f: b3:0a:1b:71 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUYOFw0pQ8bxDiwoj87TLpL75VADkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzY0QjIzRUI2QzYzRkZDQUEzMDVGMzdEQkU5QjkwNEFF MDFENjBDOTAeFw0yNTA4MTQwNTU1NDJaFw0yNjA4MTMwNjAwNDJaMDMxMTAvBgNV BAMTKDQ1QjdBQTY0REMzNkU2MkQzRDIxRjE3QUFGMzVCMzg2OEYyN0U5NUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJTqrYwBAQS9/yFNuJ3EdgzyJQ x+hM6YsQoRH6G4vmS1rc7Yi2iFMdy4mEWXgUGGeuMIXCo5iDCD1Y9dr7r8lcDA+l QcKe5SC97zz3qiM2IceCNeq/Iw6nGua3aTuP4sZ+hh6SQuiewyPp0rODOhASoFSt LLDFkSCP4RtGRpvXJbUjllZlokkSFMV+3bQ+g6iBS6MTfRDijk5PQhpGeC9+iJDe Ei8pJ6N748LXKjNKb1VzEM4NRUZV1BGDJjmErbGYQdKNBpvQRxL9y2+5PT6n4Tf/ G9hV0nHaLlk1MXPh4sIaVcYlfUcBQ8S2jP2aK0UA2habIXf9oSteCrsu9ow3AgMB AAGjggI8MIICODAdBgNVHQ4EFgQURbeqZNw25i09IfF6rzWzho8n6V0wHwYDVR0j BBgwFoAUdksj62xj/8qjBfN9vpuQSuAdYMkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 N2U4MzBjOC1kNTU5LTQ1NmEtODgzNS00ZjZlYjU1MjdhYTIvMC83NjRCMjNFQjZD NjNGRkNBQTMwNUYzN0RCRTlCOTA0QUUwMUQ2MEM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzY0QjIzRUI2QzYzRkZDQUEzMDVGMzdEQkU5QjkwNEFFMDFE NjBDOS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg3ZTgzMGM4LWQ1NTktNDU2YS04 ODM1LTRmNmViNTUyN2FhMi8wLzMyMzQzMDMxM2E2NjM5MzgzMDNhMzQzMDMwMzAz YTNhMmYzMzM2MmQzMzM2MjAzZDNlMjAzNjMzMzgzNjMyLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYEJAH5 gEAwDQYJKoZIhvcNAQELBQADggEBABlSMizfPTTd03JDQ2KMVUS4iSymETTHAWOO CI13R3lrBvJCa+q9AfP6Enxyaz3UGh9lEFQP5M1c/a5oj5DjQVMelhqnIt+Ti81u zgriacEmX+o4JAN9xcKCCn/vu6q0EtfyHEPGzek5zvz06JOXrFUv4GA24Oxhgm0/ IAm5qmyRYqas4RYqtOrvKQVIV+0dqdnONUsZgiIg5geV2uFA+S4BUzhtpejZE1dW ay+/nzw3wVg3WFiJU5dBUSJ58wIGuPtxQvr9vuf6NYaFfpt2akYAIa4OT507nt6q yFeMIG1c6hq8of/X2iwAesiS9+ExVh/3oTMRUMI4YEOJb7MKG3E= -----END CERTIFICATE-----Generated at Sat Aug 23 18:23:16 2025 by rpki-client