$ rpki-client -vvf repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/323430313a663938303a363030303a3a2f33362d3336203d3e203633383632.roa File: 323430313a663938303a363030303a3a2f33362d3336203d3e203633383632.roa (raw, json) Hash identifier: 0u0kW/z+IwveHT8952wWEDeMzwjeuOZR3r03FnvuCUk= Subject key identifier: 55:91:17:CC:ED:01:1F:92:13:4D:6B:0B:8D:22:FA:32:BD:B2:EE:49 Certificate issuer: /CN=764B23EB6C63FFCAA305F37DBE9B904AE01D60C9 Certificate serial: 5ED853E5498EF063846692FEA5FF889CCA79D72F Authority key identifier: 76:4B:23:EB:6C:63:FF:CA:A3:05:F3:7D:BE:9B:90:4A:E0:1D:60:C9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/323430313a663938303a363030303a3a2f33362d3336203d3e203633383632.roa Signing time: Thu 14 Aug 2025 06:00:42 +0000 ROA not before: Thu 14 Aug 2025 05:55:42 +0000 ROA not after: Thu 13 Aug 2026 06:00:42 +0000 asID: 63862 IP address blocks: 2401:f980:6000::/36 maxlen: 36 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.crl rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Aug 2025 02:48:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:d8:53:e5:49:8e:f0:63:84:66:92:fe:a5:ff:88:9c:ca:79:d7:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=764B23EB6C63FFCAA305F37DBE9B904AE01D60C9 Validity Not Before: Aug 14 05:55:42 2025 GMT Not After : Aug 13 06:00:42 2026 GMT Subject: CN=559117CCED011F92134D6B0B8D22FA32BDB2EE49 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:99:6f:18:bc:66:9a:f9:cc:9c:85:e9:ac:64: b0:84:31:10:44:87:48:11:01:52:f8:00:3d:21:53: 07:29:99:32:a3:c6:69:0c:98:74:c0:3b:82:bc:ce: da:80:de:23:93:a6:d2:f9:dd:21:bb:02:11:18:98: 2d:b7:64:7a:94:76:ce:6d:6f:0c:7d:9b:75:03:2c: 24:dc:66:15:0f:39:5f:af:37:a3:19:51:5c:76:c6: 41:45:9b:36:ac:41:de:b1:41:99:26:14:09:f3:8e: 50:49:2a:de:c8:ec:32:38:52:a3:35:95:2e:d3:28: 4c:3d:b8:11:ee:01:f0:9f:bd:6c:a8:c0:75:3a:78: f3:85:21:57:92:a4:15:ec:82:42:73:80:d7:f6:f8: cf:7c:cd:9f:b7:86:66:5e:65:76:a2:ca:d2:0e:f8: ec:b1:29:7e:1e:d5:bf:a3:5b:e0:7e:fb:81:cf:46: fb:50:69:17:7b:ea:2b:2d:93:0e:11:79:ad:d2:38: 97:c7:45:a9:02:e3:5d:03:8d:d7:3e:2d:b0:0c:c7: 55:07:0b:74:f4:7f:83:11:1e:2f:c4:fe:ad:64:87: 33:16:14:32:1c:f0:eb:c0:b0:1e:7a:f6:3a:32:9c: 9f:6f:19:2a:75:94:b8:c6:1c:8d:3e:63:59:28:51: 60:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:91:17:CC:ED:01:1F:92:13:4D:6B:0B:8D:22:FA:32:BD:B2:EE:49 X509v3 Authority Key Identifier: keyid:76:4B:23:EB:6C:63:FF:CA:A3:05:F3:7D:BE:9B:90:4A:E0:1D:60:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/323430313a663938303a363030303a3a2f33362d3336203d3e203633383632.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:f980:6000::/36 Signature Algorithm: sha256WithRSAEncryption 61:a0:d6:fc:ef:f5:60:65:4f:00:91:4f:18:0c:c9:33:c0:4f: da:f1:d5:ab:6e:ac:a7:9b:5f:56:d6:51:09:45:c1:00:fc:bf: 76:1d:94:67:da:ba:62:78:86:13:d9:db:77:e9:8b:d5:87:67: df:f8:91:bd:13:29:26:3b:76:2d:e1:40:3a:30:21:54:3a:7c: 9a:93:df:69:43:59:34:47:cb:7d:6f:bd:3b:7b:0d:c7:35:5d: 31:34:8c:b9:a7:f7:6d:3f:62:00:47:27:cb:90:5f:33:e8:80: cc:02:59:e6:63:7a:7a:dc:c2:f9:a1:ad:40:7b:7c:cd:3d:02: e3:01:a3:8b:96:bb:8c:7f:85:ea:19:75:3d:a9:f6:25:49:df: 9f:12:3d:6d:19:79:29:cf:0b:ce:68:c5:42:13:37:e3:65:cf: 70:f3:18:29:6e:c7:5c:7c:02:2c:9b:84:61:ca:a2:9a:5c:99: 01:24:32:95:02:69:3a:e8:24:3b:7e:8e:45:49:c4:a3:c6:ed: 1f:5b:08:6f:7c:ab:bc:95:35:e7:b5:d4:16:3d:e1:57:06:a2: 4d:64:3c:ec:1e:b5:da:5a:1b:95:cf:f5:37:3a:63:65:43:ce: 60:00:ab:8c:2c:aa:8b:08:3b:ad:e6:c3:e0:c6:0e:e1:e7:a0: f5:b2:a0:c3 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUXthT5UmO8GOEZpL+pf+InMp51y8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzY0QjIzRUI2QzYzRkZDQUEzMDVGMzdEQkU5QjkwNEFF MDFENjBDOTAeFw0yNTA4MTQwNTU1NDJaFw0yNjA4MTMwNjAwNDJaMDMxMTAvBgNV BAMTKDU1OTExN0NDRUQwMTFGOTIxMzRENkIwQjhEMjJGQTMyQkRCMkVFNDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTmW8YvGaa+cychemsZLCEMRBE h0gRAVL4AD0hUwcpmTKjxmkMmHTAO4K8ztqA3iOTptL53SG7AhEYmC23ZHqUds5t bwx9m3UDLCTcZhUPOV+vN6MZUVx2xkFFmzasQd6xQZkmFAnzjlBJKt7I7DI4UqM1 lS7TKEw9uBHuAfCfvWyowHU6ePOFIVeSpBXsgkJzgNf2+M98zZ+3hmZeZXaiytIO +OyxKX4e1b+jW+B++4HPRvtQaRd76istkw4Rea3SOJfHRakC410Djdc+LbAMx1UH C3T0f4MRHi/E/q1khzMWFDIc8OvAsB569joynJ9vGSp1lLjGHI0+Y1koUWDZAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUVZEXzO0BH5ITTWsLjSL6Mr2y7kkwHwYDVR0j BBgwFoAUdksj62xj/8qjBfN9vpuQSuAdYMkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 N2U4MzBjOC1kNTU5LTQ1NmEtODgzNS00ZjZlYjU1MjdhYTIvMC83NjRCMjNFQjZD NjNGRkNBQTMwNUYzN0RCRTlCOTA0QUUwMUQ2MEM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzY0QjIzRUI2QzYzRkZDQUEzMDVGMzdEQkU5QjkwNEFFMDFE NjBDOS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg3ZTgzMGM4LWQ1NTktNDU2YS04 ODM1LTRmNmViNTUyN2FhMi8wLzMyMzQzMDMxM2E2NjM5MzgzMDNhMzYzMDMwMzAz YTNhMmYzMzM2MmQzMzM2MjAzZDNlMjAzNjMzMzgzNjMyLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYEJAH5 gGAwDQYJKoZIhvcNAQELBQADggEBAGGg1vzv9WBlTwCRTxgMyTPAT9rx1aturKeb X1bWUQlFwQD8v3YdlGfaumJ4hhPZ23fpi9WHZ9/4kb0TKSY7di3hQDowIVQ6fJqT 32lDWTRHy31vvTt7Dcc1XTE0jLmn920/YgBHJ8uQXzPogMwCWeZjenrcwvmhrUB7 fM09AuMBo4uWu4x/heoZdT2p9iVJ358SPW0ZeSnPC85oxUITN+Nlz3DzGClux1x8 AiybhGHKoppcmQEkMpUCaTroJDt+jkVJxKPG7R9bCG98q7yVNee11BY94VcGok1k POwetdpaG5XP9Tc6Y2VDzmAAq4wsqosIO63mw+DGDuHnoPWyoMM= -----END CERTIFICATE-----Generated at Sat Aug 23 18:23:37 2025 by rpki-client