$ rpki-client -vvf repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/323430313a663938303a633030303a3a2f33362d3336203d3e203633383632.roa File: 323430313a663938303a633030303a3a2f33362d3336203d3e203633383632.roa (raw, json) Hash identifier: gZ6EFD5pd+8gqNQ96WtmpwvO7RdgA9TqPZ0oZeX1RxE= Subject key identifier: F9:B1:7F:DE:4A:1E:52:98:38:2D:50:AF:F3:2D:CE:50:04:77:2E:04 Certificate issuer: /CN=764B23EB6C63FFCAA305F37DBE9B904AE01D60C9 Certificate serial: 55593DE13ADE8FB7EC0C544466CDB49FC2DC6198 Authority key identifier: 76:4B:23:EB:6C:63:FF:CA:A3:05:F3:7D:BE:9B:90:4A:E0:1D:60:C9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/323430313a663938303a633030303a3a2f33362d3336203d3e203633383632.roa Signing time: Thu 14 Aug 2025 07:01:53 +0000 ROA not before: Thu 14 Aug 2025 06:56:53 +0000 ROA not after: Thu 13 Aug 2026 07:01:53 +0000 asID: 63862 IP address blocks: 2401:f980:c000::/36 maxlen: 36 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.crl rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Aug 2025 02:48:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:59:3d:e1:3a:de:8f:b7:ec:0c:54:44:66:cd:b4:9f:c2:dc:61:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=764B23EB6C63FFCAA305F37DBE9B904AE01D60C9 Validity Not Before: Aug 14 06:56:53 2025 GMT Not After : Aug 13 07:01:53 2026 GMT Subject: CN=F9B17FDE4A1E5298382D50AFF32DCE5004772E04 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:6d:ef:cb:9c:b7:53:6b:f1:72:e2:b9:c9:0e: b2:5f:53:94:67:45:ab:3c:ea:9d:cc:ab:b4:ff:65: 5f:d8:21:20:80:8a:89:18:79:0d:bb:66:7c:2b:e2: 7e:06:7a:72:e4:8f:c1:e1:4a:8c:90:7d:ed:76:a8: 82:d7:eb:1e:95:d7:0a:f4:a9:51:2a:9c:00:88:0c: 10:9e:50:5e:b9:b3:27:4f:73:31:5c:0e:c9:36:4f: 76:80:18:59:68:b4:62:a9:33:d5:1a:1d:94:c3:6d: d9:26:1f:48:a6:8a:e2:c7:65:c5:b5:e8:4d:88:ae: 2f:da:20:b5:ae:a3:4d:ca:be:f4:a0:ae:65:60:1d: b3:9c:44:47:0d:5c:42:6a:40:08:28:78:9c:c8:1a: 9f:b7:14:07:14:86:d8:c5:c7:37:52:d3:a2:21:10: a2:ea:46:4c:ba:eb:1f:4e:c8:0b:d9:5d:a0:05:fc: c3:86:e2:28:8f:30:d5:61:31:f0:28:bd:b9:22:13: ea:2f:03:24:ed:ba:c8:7a:1e:d1:2a:6e:98:30:e0: 2d:e2:52:07:2a:9d:2b:8a:03:9b:80:88:59:7b:78: 82:e5:52:31:c2:1e:0b:cf:f2:ba:64:eb:23:14:e6: d4:2f:4a:10:16:85:24:5b:21:f7:94:3b:75:18:77: 27:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:B1:7F:DE:4A:1E:52:98:38:2D:50:AF:F3:2D:CE:50:04:77:2E:04 X509v3 Authority Key Identifier: keyid:76:4B:23:EB:6C:63:FF:CA:A3:05:F3:7D:BE:9B:90:4A:E0:1D:60:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/323430313a663938303a633030303a3a2f33362d3336203d3e203633383632.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:f980:c000::/36 Signature Algorithm: sha256WithRSAEncryption 47:e2:37:b6:ce:41:23:9c:54:08:a6:63:a5:a2:28:af:aa:5b: 31:b8:63:2c:4a:08:2a:7c:26:d7:e0:1c:b5:c2:05:9b:79:57: 84:17:de:34:11:94:09:33:ff:b3:b7:f5:c1:6a:9d:bb:b5:2c: b3:5c:81:8d:78:6c:68:23:e9:1c:df:a6:2f:57:9a:33:27:d2: b0:b9:fe:c8:25:b9:37:06:26:1b:5f:f5:da:3a:1e:e5:26:24: 45:d9:1b:a5:b9:45:2c:cb:1f:94:34:c7:30:d9:f2:e1:c6:dc: ce:3d:ae:55:e0:ca:b2:02:68:cc:ac:b8:73:9f:9c:a2:cb:b9: bb:7e:dc:fd:72:ed:3b:70:47:e0:64:a0:c6:3b:c3:04:21:ba: 5b:d2:a1:c6:cb:72:63:52:f0:89:e6:ba:db:3b:1b:64:95:c9: ed:48:21:45:3a:0d:6d:93:5b:b4:f7:11:c4:29:b9:7b:1c:46: 8e:40:d7:96:5f:66:58:2b:9e:7e:d5:e7:84:a9:8a:4f:0e:04: 9c:bb:2c:45:8f:cf:b2:4d:82:1a:48:f3:2d:0c:cb:80:4e:51: cc:00:01:a9:83:28:df:3b:9a:40:0a:b1:5c:33:30:39:2d:2b: 42:4c:9f:7a:df:78:16:05:d9:c0:93:ab:d5:76:97:73:53:78: c9:a5:fa:e8 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUVVk94Trej7fsDFREZs20n8LcYZgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzY0QjIzRUI2QzYzRkZDQUEzMDVGMzdEQkU5QjkwNEFF MDFENjBDOTAeFw0yNTA4MTQwNjU2NTNaFw0yNjA4MTMwNzAxNTNaMDMxMTAvBgNV BAMTKEY5QjE3RkRFNEExRTUyOTgzODJENTBBRkYzMkRDRTUwMDQ3NzJFMDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8be/LnLdTa/Fy4rnJDrJfU5Rn Ras86p3Mq7T/ZV/YISCAiokYeQ27Znwr4n4GenLkj8HhSoyQfe12qILX6x6V1wr0 qVEqnACIDBCeUF65sydPczFcDsk2T3aAGFlotGKpM9UaHZTDbdkmH0imiuLHZcW1 6E2Iri/aILWuo03KvvSgrmVgHbOcREcNXEJqQAgoeJzIGp+3FAcUhtjFxzdS06Ih EKLqRky66x9OyAvZXaAF/MOG4iiPMNVhMfAovbkiE+ovAyTtush6HtEqbpgw4C3i UgcqnSuKA5uAiFl7eILlUjHCHgvP8rpk6yMU5tQvShAWhSRbIfeUO3UYdydXAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU+bF/3koeUpg4LVCv8y3OUAR3LgQwHwYDVR0j BBgwFoAUdksj62xj/8qjBfN9vpuQSuAdYMkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 N2U4MzBjOC1kNTU5LTQ1NmEtODgzNS00ZjZlYjU1MjdhYTIvMC83NjRCMjNFQjZD NjNGRkNBQTMwNUYzN0RCRTlCOTA0QUUwMUQ2MEM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzY0QjIzRUI2QzYzRkZDQUEzMDVGMzdEQkU5QjkwNEFFMDFE NjBDOS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg3ZTgzMGM4LWQ1NTktNDU2YS04 ODM1LTRmNmViNTUyN2FhMi8wLzMyMzQzMDMxM2E2NjM5MzgzMDNhNjMzMDMwMzAz YTNhMmYzMzM2MmQzMzM2MjAzZDNlMjAzNjMzMzgzNjMyLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYEJAH5 gMAwDQYJKoZIhvcNAQELBQADggEBAEfiN7bOQSOcVAimY6WiKK+qWzG4YyxKCCp8 JtfgHLXCBZt5V4QX3jQRlAkz/7O39cFqnbu1LLNcgY14bGgj6Rzfpi9XmjMn0rC5 /sgluTcGJhtf9do6HuUmJEXZG6W5RSzLH5Q0xzDZ8uHG3M49rlXgyrICaMysuHOf nKLLubt+3P1y7TtwR+BkoMY7wwQhulvSocbLcmNS8Inmuts7G2SVye1IIUU6DW2T W7T3EcQpuXscRo5A15ZfZlgrnn7V54Spik8OBJy7LEWPz7JNghpI8y0My4BOUcwA AamDKN87mkAKsVwzMDktK0JMn3rfeBYF2cCTq9V2l3NTeMml+ug= -----END CERTIFICATE-----Generated at Sat Aug 23 15:13:21 2025 by rpki-client