$ rpki-client -vvf repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/323430313a663938303a623030303a3a2f33362d3336203d3e203633383632.roa File: 323430313a663938303a623030303a3a2f33362d3336203d3e203633383632.roa (raw, json) Hash identifier: OIXgMAkVr/N11Akj2gSI1RIkXDHXPy2DRGOsurzJVOo= Subject key identifier: 18:AD:12:0F:3D:38:ED:6B:A9:01:44:53:C2:CA:E9:CC:D9:2D:6B:89 Certificate issuer: /CN=764B23EB6C63FFCAA305F37DBE9B904AE01D60C9 Certificate serial: 272E61B1E954B98BAAB0B12FBA7D8562986C3FC9 Authority key identifier: 76:4B:23:EB:6C:63:FF:CA:A3:05:F3:7D:BE:9B:90:4A:E0:1D:60:C9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/323430313a663938303a623030303a3a2f33362d3336203d3e203633383632.roa Signing time: Thu 14 Aug 2025 07:01:54 +0000 ROA not before: Thu 14 Aug 2025 06:56:54 +0000 ROA not after: Thu 13 Aug 2026 07:01:54 +0000 asID: 63862 IP address blocks: 2401:f980:b000::/36 maxlen: 36 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.crl rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Aug 2025 02:48:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:2e:61:b1:e9:54:b9:8b:aa:b0:b1:2f:ba:7d:85:62:98:6c:3f:c9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=764B23EB6C63FFCAA305F37DBE9B904AE01D60C9 Validity Not Before: Aug 14 06:56:54 2025 GMT Not After : Aug 13 07:01:54 2026 GMT Subject: CN=18AD120F3D38ED6BA9014453C2CAE9CCD92D6B89 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:54:55:27:8c:f5:57:6c:32:c6:b1:f9:0f:ca: 8e:30:81:63:9d:f9:bd:43:dc:2f:68:e1:af:b7:1b: 2e:a0:c3:2a:d7:2e:2c:0b:40:4a:f3:53:47:52:c9: 54:16:5d:70:a1:bd:5d:3e:14:04:e2:ec:aa:2d:a8: 7d:15:f0:46:1c:37:c4:c8:68:4d:36:a1:7d:01:e3: d1:1b:8b:e5:7b:8d:bf:be:ec:8b:cb:07:4f:e4:e7: 4d:42:2f:3f:15:02:c5:0f:17:b6:60:93:14:fd:0e: de:ad:4b:2a:89:86:9e:08:51:83:a4:30:8b:8b:1b: 97:fc:ce:9a:01:8b:98:2f:c2:be:79:cd:c0:89:ae: d8:24:2d:5a:a4:89:b6:d2:b0:a1:fb:1d:8c:e4:17: 0e:f5:55:65:50:0b:ef:ae:3f:55:c1:e1:f0:68:d1: 17:98:35:8a:5d:6a:30:24:80:83:0d:19:ae:90:57: f7:8e:56:c8:fa:48:0c:0c:38:7e:51:fc:52:c0:0d: f6:b3:1f:f2:46:00:de:5f:6e:a7:cb:02:6c:7f:88: 8c:7c:f1:e5:39:c5:c5:e6:55:c5:33:46:2f:cc:15: 15:f4:a9:7a:61:41:01:e4:9d:d3:80:97:95:c7:cd: 48:30:1e:5b:dc:66:e3:d7:fe:93:2f:e2:33:e5:30: 39:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:AD:12:0F:3D:38:ED:6B:A9:01:44:53:C2:CA:E9:CC:D9:2D:6B:89 X509v3 Authority Key Identifier: keyid:76:4B:23:EB:6C:63:FF:CA:A3:05:F3:7D:BE:9B:90:4A:E0:1D:60:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/323430313a663938303a623030303a3a2f33362d3336203d3e203633383632.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:f980:b000::/36 Signature Algorithm: sha256WithRSAEncryption 70:19:57:6d:4b:bb:bc:db:51:a0:61:68:2a:10:1a:05:5a:0a: 96:d8:35:3f:39:5c:1c:78:09:5c:08:40:99:34:ca:9d:dc:aa: 2b:12:1a:fb:5f:7d:85:e9:79:3e:1f:cd:46:cc:56:34:36:82: fd:14:99:87:ca:30:4e:45:90:e1:87:e3:7d:f7:43:38:0c:d4: 62:1d:af:11:92:10:4e:9b:31:e1:6d:21:08:ba:96:a2:a2:3c: f4:39:8d:3d:31:19:01:e5:ae:3e:f5:0d:81:61:f7:d9:9c:54: db:57:f3:b1:60:54:24:a8:15:02:a1:ab:c7:07:e1:ab:f7:81: fe:c8:c0:a2:00:2c:19:4f:52:96:b4:e1:f6:7c:69:c4:d5:61: 61:6a:44:22:a6:03:08:df:ba:68:38:91:da:24:72:f8:50:3d: 3d:5d:6f:6e:78:dd:f1:d4:c8:09:a9:4d:c1:6b:81:e0:67:40: 45:d8:0e:ac:9b:ad:9e:26:c9:00:47:4c:ca:e1:ec:39:03:51: b4:36:86:4a:8f:90:81:2e:e4:d6:5f:16:0f:92:7a:1b:aa:c2: 13:05:8f:9f:8a:4c:e9:3b:b4:b3:ee:c5:6b:b4:91:c5:91:4b: e5:8c:d2:c9:0e:56:e8:ff:eb:38:07:e7:8b:31:8e:d6:55:26: 14:22:e6:39 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUJy5hselUuYuqsLEvun2FYphsP8kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzY0QjIzRUI2QzYzRkZDQUEzMDVGMzdEQkU5QjkwNEFF MDFENjBDOTAeFw0yNTA4MTQwNjU2NTRaFw0yNjA4MTMwNzAxNTRaMDMxMTAvBgNV BAMTKDE4QUQxMjBGM0QzOEVENkJBOTAxNDQ1M0MyQ0FFOUNDRDkyRDZCODkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCsVFUnjPVXbDLGsfkPyo4wgWOd +b1D3C9o4a+3Gy6gwyrXLiwLQErzU0dSyVQWXXChvV0+FATi7KotqH0V8EYcN8TI aE02oX0B49Ebi+V7jb++7IvLB0/k501CLz8VAsUPF7ZgkxT9Dt6tSyqJhp4IUYOk MIuLG5f8zpoBi5gvwr55zcCJrtgkLVqkibbSsKH7HYzkFw71VWVQC++uP1XB4fBo 0ReYNYpdajAkgIMNGa6QV/eOVsj6SAwMOH5R/FLADfazH/JGAN5fbqfLAmx/iIx8 8eU5xcXmVcUzRi/MFRX0qXphQQHkndOAl5XHzUgwHlvcZuPX/pMv4jPlMDmPAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUGK0SDz047WupAURTwsrpzNkta4kwHwYDVR0j BBgwFoAUdksj62xj/8qjBfN9vpuQSuAdYMkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 N2U4MzBjOC1kNTU5LTQ1NmEtODgzNS00ZjZlYjU1MjdhYTIvMC83NjRCMjNFQjZD NjNGRkNBQTMwNUYzN0RCRTlCOTA0QUUwMUQ2MEM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzY0QjIzRUI2QzYzRkZDQUEzMDVGMzdEQkU5QjkwNEFFMDFE NjBDOS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg3ZTgzMGM4LWQ1NTktNDU2YS04 ODM1LTRmNmViNTUyN2FhMi8wLzMyMzQzMDMxM2E2NjM5MzgzMDNhNjIzMDMwMzAz YTNhMmYzMzM2MmQzMzM2MjAzZDNlMjAzNjMzMzgzNjMyLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYEJAH5 gLAwDQYJKoZIhvcNAQELBQADggEBAHAZV21Lu7zbUaBhaCoQGgVaCpbYNT85XBx4 CVwIQJk0yp3cqisSGvtffYXpeT4fzUbMVjQ2gv0UmYfKME5FkOGH4333QzgM1GId rxGSEE6bMeFtIQi6lqKiPPQ5jT0xGQHlrj71DYFh99mcVNtX87FgVCSoFQKhq8cH 4av3gf7IwKIALBlPUpa04fZ8acTVYWFqRCKmAwjfumg4kdokcvhQPT1db2543fHU yAmpTcFrgeBnQEXYDqybrZ4myQBHTMrh7DkDUbQ2hkqPkIEu5NZfFg+SehuqwhMF j5+KTOk7tLPuxWu0kcWRS+WM0skOVuj/6zgH54sxjtZVJhQi5jk= -----END CERTIFICATE-----Generated at Sat Aug 23 18:26:53 2025 by rpki-client