$ rpki-client -vvf repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/323430313a663938303a653030303a3a2f33362d3336203d3e203633383632.roa File: 323430313a663938303a653030303a3a2f33362d3336203d3e203633383632.roa (raw, json) Hash identifier: M8k1ObpwWRLtpo6cotfacaJuetwePH7UVQJ67SzDIUk= Subject key identifier: 15:83:91:68:FF:FC:C8:BE:43:FA:D8:40:9C:4B:99:8B:29:EE:19:09 Certificate issuer: /CN=764B23EB6C63FFCAA305F37DBE9B904AE01D60C9 Certificate serial: 0EA1C61EFC37BBBF68D5AE06AF8442E006DF235B Authority key identifier: 76:4B:23:EB:6C:63:FF:CA:A3:05:F3:7D:BE:9B:90:4A:E0:1D:60:C9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/323430313a663938303a653030303a3a2f33362d3336203d3e203633383632.roa Signing time: Thu 14 Aug 2025 07:01:53 +0000 ROA not before: Thu 14 Aug 2025 06:56:53 +0000 ROA not after: Thu 13 Aug 2026 07:01:53 +0000 asID: 63862 IP address blocks: 2401:f980:e000::/36 maxlen: 36 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.crl rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Aug 2025 02:48:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:a1:c6:1e:fc:37:bb:bf:68:d5:ae:06:af:84:42:e0:06:df:23:5b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=764B23EB6C63FFCAA305F37DBE9B904AE01D60C9 Validity Not Before: Aug 14 06:56:53 2025 GMT Not After : Aug 13 07:01:53 2026 GMT Subject: CN=15839168FFFCC8BE43FAD8409C4B998B29EE1909 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:52:26:ef:bb:1c:66:d3:27:fb:00:e9:34:0b: 97:d5:7b:45:35:56:1d:60:65:63:a7:ef:1b:68:2a: 59:80:7a:4c:ff:8b:7c:ff:67:99:c9:55:51:ae:ce: d0:ae:ec:44:f6:e8:e5:48:aa:af:94:b9:1f:bd:0a: 3b:fe:96:f4:94:04:60:57:da:f1:59:d2:59:ef:0c: b4:19:c7:57:b4:c7:88:49:25:64:48:74:3d:57:1f: e3:b2:ac:de:98:e5:ff:82:7c:8a:5a:42:ec:01:56: 39:97:38:84:4c:52:4a:24:44:0f:e6:d8:6b:60:64: 5f:d9:93:8a:c3:f2:ef:03:e9:e4:0f:ae:08:d5:84: 7c:bb:4e:d4:71:45:ad:2d:36:55:fb:10:fc:e7:4d: 46:26:a6:bb:95:bc:e8:96:c1:c5:46:16:7f:9b:f3: 1d:18:49:6e:c4:c2:1d:9b:75:56:31:64:b5:8b:34: 18:88:9a:fc:f6:cd:79:d9:32:73:03:96:f8:6a:b2: 99:9d:b0:19:c5:c0:13:a3:d3:bd:1f:2b:d7:e6:ed: 26:d1:0a:82:b5:2b:d8:42:b4:57:c6:45:01:4f:56: 12:4d:18:a6:77:78:a4:0e:97:b7:dc:05:29:f8:fb: 9f:6a:f6:ed:8c:66:8b:c9:7e:85:5f:50:82:c8:46: 8d:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:83:91:68:FF:FC:C8:BE:43:FA:D8:40:9C:4B:99:8B:29:EE:19:09 X509v3 Authority Key Identifier: keyid:76:4B:23:EB:6C:63:FF:CA:A3:05:F3:7D:BE:9B:90:4A:E0:1D:60:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/323430313a663938303a653030303a3a2f33362d3336203d3e203633383632.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:f980:e000::/36 Signature Algorithm: sha256WithRSAEncryption 90:3b:00:e2:ca:86:4a:75:d0:03:a4:d2:f2:c1:3c:1f:6b:32: 55:20:2c:ba:9a:39:d1:16:82:f4:08:f3:1a:4a:59:85:09:06: 8e:df:a5:e2:ca:49:48:53:2d:55:f3:ac:f2:a7:48:7a:ae:c0: 72:04:73:dc:9f:cd:f4:28:09:8d:e1:6c:e9:80:b3:79:b0:d4: 8b:11:07:95:46:f2:75:b6:9d:62:35:43:78:9f:44:c6:8e:c4: d1:87:42:84:72:07:fa:d4:61:8d:8b:87:84:db:b6:a5:cf:9e: 22:d8:6d:7a:76:7c:df:20:dc:09:5a:5e:c1:9a:57:7c:51:9b: 4e:e4:f0:68:48:2c:94:47:0a:e5:17:39:33:49:f7:e9:4b:d8: fc:d6:57:19:b3:cd:c9:aa:84:7e:62:d9:2a:23:6e:cd:28:e8: 2b:45:f5:f9:9a:f0:33:78:6b:a4:8f:6b:d4:29:25:50:59:c5: fe:da:41:75:e2:3a:04:cb:a5:1f:e9:5a:07:f4:4d:67:27:75: 49:91:f1:4c:56:00:98:fa:af:0a:6e:13:8f:4b:36:1e:23:44: fb:24:9b:dd:69:b2:ff:33:56:c1:aa:9a:39:b8:36:9c:3e:9e: 3d:a9:af:9b:df:8d:f6:1b:09:81:e0:1a:14:c1:48:46:ef:95: 5d:1d:10:17 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUDqHGHvw3u79o1a4Gr4RC4AbfI1swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzY0QjIzRUI2QzYzRkZDQUEzMDVGMzdEQkU5QjkwNEFF MDFENjBDOTAeFw0yNTA4MTQwNjU2NTNaFw0yNjA4MTMwNzAxNTNaMDMxMTAvBgNV BAMTKDE1ODM5MTY4RkZGQ0M4QkU0M0ZBRDg0MDlDNEI5OThCMjlFRTE5MDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyUibvuxxm0yf7AOk0C5fVe0U1 Vh1gZWOn7xtoKlmAekz/i3z/Z5nJVVGuztCu7ET26OVIqq+UuR+9Cjv+lvSUBGBX 2vFZ0lnvDLQZx1e0x4hJJWRIdD1XH+OyrN6Y5f+CfIpaQuwBVjmXOIRMUkokRA/m 2GtgZF/Zk4rD8u8D6eQPrgjVhHy7TtRxRa0tNlX7EPznTUYmpruVvOiWwcVGFn+b 8x0YSW7Ewh2bdVYxZLWLNBiImvz2zXnZMnMDlvhqspmdsBnFwBOj070fK9fm7SbR CoK1K9hCtFfGRQFPVhJNGKZ3eKQOl7fcBSn4+59q9u2MZovJfoVfUILIRo3zAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUFYORaP/8yL5D+thAnEuZiynuGQkwHwYDVR0j BBgwFoAUdksj62xj/8qjBfN9vpuQSuAdYMkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 N2U4MzBjOC1kNTU5LTQ1NmEtODgzNS00ZjZlYjU1MjdhYTIvMC83NjRCMjNFQjZD NjNGRkNBQTMwNUYzN0RCRTlCOTA0QUUwMUQ2MEM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzY0QjIzRUI2QzYzRkZDQUEzMDVGMzdEQkU5QjkwNEFFMDFE NjBDOS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg3ZTgzMGM4LWQ1NTktNDU2YS04 ODM1LTRmNmViNTUyN2FhMi8wLzMyMzQzMDMxM2E2NjM5MzgzMDNhNjUzMDMwMzAz YTNhMmYzMzM2MmQzMzM2MjAzZDNlMjAzNjMzMzgzNjMyLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYEJAH5 gOAwDQYJKoZIhvcNAQELBQADggEBAJA7AOLKhkp10AOk0vLBPB9rMlUgLLqaOdEW gvQI8xpKWYUJBo7fpeLKSUhTLVXzrPKnSHquwHIEc9yfzfQoCY3hbOmAs3mw1IsR B5VG8nW2nWI1Q3ifRMaOxNGHQoRyB/rUYY2Lh4TbtqXPniLYbXp2fN8g3AlaXsGa V3xRm07k8GhILJRHCuUXOTNJ9+lL2PzWVxmzzcmqhH5i2Sojbs0o6CtF9fma8DN4 a6SPa9QpJVBZxf7aQXXiOgTLpR/pWgf0TWcndUmR8UxWAJj6rwpuE49LNh4jRPsk m91psv8zVsGqmjm4Npw+nj2pr5vfjfYbCYHgGhTBSEbvlV0dEBc= -----END CERTIFICATE-----Generated at Sat Aug 23 16:43:33 2025 by rpki-client