$ rpki-client -vvf repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/323430313a663938303a373030303a3a2f33362d3336203d3e203633383632.roa File: 323430313a663938303a373030303a3a2f33362d3336203d3e203633383632.roa (raw, json) Hash identifier: fDdIZ4P43rgAn2eW58sEJiSJIBnEytrfazd7HGt6WcE= Subject key identifier: 55:8A:C3:33:84:CF:55:5F:08:82:61:BB:3F:A4:30:BA:50:1C:48:7D Certificate issuer: /CN=764B23EB6C63FFCAA305F37DBE9B904AE01D60C9 Certificate serial: 2F1AF9793989741D71AB018E78BE64BCFF525A4F Authority key identifier: 76:4B:23:EB:6C:63:FF:CA:A3:05:F3:7D:BE:9B:90:4A:E0:1D:60:C9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/323430313a663938303a373030303a3a2f33362d3336203d3e203633383632.roa Signing time: Thu 14 Aug 2025 06:00:41 +0000 ROA not before: Thu 14 Aug 2025 05:55:41 +0000 ROA not after: Thu 13 Aug 2026 06:00:41 +0000 asID: 63862 IP address blocks: 2401:f980:7000::/36 maxlen: 36 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.crl rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Aug 2025 02:48:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:1a:f9:79:39:89:74:1d:71:ab:01:8e:78:be:64:bc:ff:52:5a:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=764B23EB6C63FFCAA305F37DBE9B904AE01D60C9 Validity Not Before: Aug 14 05:55:41 2025 GMT Not After : Aug 13 06:00:41 2026 GMT Subject: CN=558AC33384CF555F088261BB3FA430BA501C487D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:35:54:be:04:ea:7e:03:7c:f1:15:6b:8e:f2: 39:a6:e3:2f:24:6b:08:48:91:9a:df:ae:b2:48:c3: 72:00:fc:bc:90:b4:26:4a:56:a8:bf:01:a7:40:98: aa:b3:db:6c:1a:0a:de:57:46:0e:c2:51:62:54:12: d6:fb:b8:a3:6b:7d:90:2b:c2:b2:68:1c:04:c5:a4: f1:60:c9:dd:84:0b:54:60:8c:84:e1:e3:91:34:df: 22:ce:98:d4:72:64:6c:ab:85:58:5f:be:fb:ba:bd: 02:05:42:23:c1:bc:e8:53:1b:cc:d9:90:59:c2:fb: c4:81:73:cc:a5:93:d1:ab:fb:ac:40:6b:e8:d9:b6: f7:38:62:3f:87:a7:25:1c:d3:23:51:e9:1b:6e:ea: 2d:64:72:cd:78:49:02:f6:5e:30:11:66:b9:76:88: 09:ed:1c:f0:c4:91:ff:3b:10:be:34:71:6c:6f:7b: 03:35:17:8f:4b:7e:96:3c:51:0b:54:bd:39:fc:90: 3d:d5:4b:03:8e:8e:75:a3:83:d8:b4:b8:78:22:2e: 96:23:75:ab:06:68:00:2e:01:6c:e5:c6:6c:32:2f: 3e:1b:db:4e:8a:7f:8f:6a:52:39:f4:a5:72:c5:d9: 2b:2d:39:ce:46:63:0b:d3:4f:36:4b:13:9f:d6:3d: ec:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:8A:C3:33:84:CF:55:5F:08:82:61:BB:3F:A4:30:BA:50:1C:48:7D X509v3 Authority Key Identifier: keyid:76:4B:23:EB:6C:63:FF:CA:A3:05:F3:7D:BE:9B:90:4A:E0:1D:60:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/323430313a663938303a373030303a3a2f33362d3336203d3e203633383632.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:f980:7000::/36 Signature Algorithm: sha256WithRSAEncryption 58:fd:1c:77:64:1f:06:e8:8d:d3:e4:1f:d2:91:fe:70:a1:cd: 64:0d:4b:02:bc:71:3b:b2:de:b2:6c:ba:be:42:83:a5:6b:70: ff:6d:7b:ac:70:44:97:e3:fb:fd:5d:d6:dd:df:d7:ca:a7:9a: d2:9d:0d:c0:f1:da:4c:a0:58:fa:e7:01:fc:c7:72:c2:4a:2e: 5c:15:cc:78:ad:40:4c:e8:7d:8b:32:87:29:02:9e:ad:c7:d0: a3:05:53:94:ce:cb:ed:58:c2:ba:09:6b:0e:3c:0f:4f:0f:b9: 6c:ae:13:29:24:09:19:07:44:2d:b4:21:aa:43:10:3f:2b:d6: d4:0a:60:0d:b5:ae:6e:16:a2:4c:26:79:af:38:e0:fe:d5:1a: 0e:a7:37:3a:35:23:eb:5d:1d:75:5d:c9:97:21:b1:3b:c5:ad: f7:74:e7:ad:6d:36:24:6f:18:14:e7:0b:bd:3f:02:be:a4:2c: 16:61:e0:8d:d1:54:66:73:8c:a9:04:ec:e1:77:7a:0f:95:11: 29:a0:9c:d8:b4:e3:91:66:b0:70:2b:dd:06:6d:ef:e8:9c:9a: 05:43:3f:dd:73:13:fd:23:45:3e:94:57:bd:f2:53:33:a1:ba: ca:22:14:58:fb:c7:49:36:a4:db:88:24:06:b2:15:e2:ac:11: 64:77:8d:46 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIULxr5eTmJdB1xqwGOeL5kvP9SWk8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzY0QjIzRUI2QzYzRkZDQUEzMDVGMzdEQkU5QjkwNEFF MDFENjBDOTAeFw0yNTA4MTQwNTU1NDFaFw0yNjA4MTMwNjAwNDFaMDMxMTAvBgNV BAMTKDU1OEFDMzMzODRDRjU1NUYwODgyNjFCQjNGQTQzMEJBNTAxQzQ4N0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDiNVS+BOp+A3zxFWuO8jmm4y8k awhIkZrfrrJIw3IA/LyQtCZKVqi/AadAmKqz22waCt5XRg7CUWJUEtb7uKNrfZAr wrJoHATFpPFgyd2EC1RgjITh45E03yLOmNRyZGyrhVhfvvu6vQIFQiPBvOhTG8zZ kFnC+8SBc8ylk9Gr+6xAa+jZtvc4Yj+HpyUc0yNR6Rtu6i1kcs14SQL2XjARZrl2 iAntHPDEkf87EL40cWxvewM1F49LfpY8UQtUvTn8kD3VSwOOjnWjg9i0uHgiLpYj dasGaAAuAWzlxmwyLz4b206Kf49qUjn0pXLF2SstOc5GYwvTTzZLE5/WPewDAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUVYrDM4TPVV8IgmG7P6QwulAcSH0wHwYDVR0j BBgwFoAUdksj62xj/8qjBfN9vpuQSuAdYMkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 N2U4MzBjOC1kNTU5LTQ1NmEtODgzNS00ZjZlYjU1MjdhYTIvMC83NjRCMjNFQjZD NjNGRkNBQTMwNUYzN0RCRTlCOTA0QUUwMUQ2MEM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzY0QjIzRUI2QzYzRkZDQUEzMDVGMzdEQkU5QjkwNEFFMDFE NjBDOS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg3ZTgzMGM4LWQ1NTktNDU2YS04 ODM1LTRmNmViNTUyN2FhMi8wLzMyMzQzMDMxM2E2NjM5MzgzMDNhMzczMDMwMzAz YTNhMmYzMzM2MmQzMzM2MjAzZDNlMjAzNjMzMzgzNjMyLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYEJAH5 gHAwDQYJKoZIhvcNAQELBQADggEBAFj9HHdkHwbojdPkH9KR/nChzWQNSwK8cTuy 3rJsur5Cg6VrcP9te6xwRJfj+/1d1t3f18qnmtKdDcDx2kygWPrnAfzHcsJKLlwV zHitQEzofYsyhykCnq3H0KMFU5TOy+1YwroJaw48D08PuWyuEykkCRkHRC20IapD ED8r1tQKYA21rm4Wokwmea844P7VGg6nNzo1I+tdHXVdyZchsTvFrfd0561tNiRv GBTnC70/Ar6kLBZh4I3RVGZzjKkE7OF3eg+VESmgnNi045FmsHAr3QZt7+icmgVD P91zE/0jRT6UV73yUzOhusoiFFj7x0k2pNuIJAayFeKsEWR3jUY= -----END CERTIFICATE-----Generated at Sat Aug 23 15:15:48 2025 by rpki-client