$ rpki-client -vvf repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/323430313a663938303a663030303a3a2f33362d3336203d3e203633383632.roa File: 323430313a663938303a663030303a3a2f33362d3336203d3e203633383632.roa (raw, json) Hash identifier: RsZDfa4l/Ykdunatg9OGqKFYnr67kX/kc9LRRc5DAps= Subject key identifier: 2B:97:00:79:D4:34:A7:07:EF:50:87:CC:0B:3F:07:C0:96:03:2D:32 Certificate issuer: /CN=764B23EB6C63FFCAA305F37DBE9B904AE01D60C9 Certificate serial: 37D128E3A888C3847CD9E89FEF08561FAF82462F Authority key identifier: 76:4B:23:EB:6C:63:FF:CA:A3:05:F3:7D:BE:9B:90:4A:E0:1D:60:C9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/323430313a663938303a663030303a3a2f33362d3336203d3e203633383632.roa Signing time: Thu 14 Aug 2025 07:01:53 +0000 ROA not before: Thu 14 Aug 2025 06:56:53 +0000 ROA not after: Thu 13 Aug 2026 07:01:53 +0000 asID: 63862 IP address blocks: 2401:f980:f000::/36 maxlen: 36 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.crl rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Aug 2025 02:48:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:d1:28:e3:a8:88:c3:84:7c:d9:e8:9f:ef:08:56:1f:af:82:46:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=764B23EB6C63FFCAA305F37DBE9B904AE01D60C9 Validity Not Before: Aug 14 06:56:53 2025 GMT Not After : Aug 13 07:01:53 2026 GMT Subject: CN=2B970079D434A707EF5087CC0B3F07C096032D32 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:ca:c9:9a:21:7c:15:f8:d3:0e:1f:98:22:5b: fa:d8:7e:26:c0:b8:79:c8:4e:8f:1f:76:4c:c9:1b: e5:fd:e5:c5:bd:12:02:05:8b:1b:8a:9d:d7:c8:c3: b1:d8:9f:a6:31:6e:52:0f:56:64:0e:07:d2:65:36: 68:73:55:91:40:7b:82:72:70:bf:89:95:f5:47:b3: 87:87:ab:66:06:f7:08:b2:c8:b3:97:bd:2f:b4:48: 54:e3:75:7b:04:7e:a8:e0:75:b4:98:35:95:6f:d1: 2d:11:e7:bf:fe:9e:7d:10:74:39:ad:85:37:5b:f8: 20:2a:46:ad:4c:67:d6:80:b7:2d:8e:8a:bf:be:7c: 88:80:d5:d6:cf:8b:60:9b:6b:a4:28:fe:b3:bb:cb: fd:12:68:3e:d3:de:fc:34:91:36:2f:44:03:1a:12: ec:7c:c2:7c:24:83:e3:c2:6c:25:b7:b8:2e:e4:84: d8:9a:cf:8b:7d:4e:77:f1:ad:04:44:da:20:66:e1: 88:9c:8c:7e:6a:5c:89:73:c3:59:58:f2:c3:36:b6: 87:88:24:c5:65:e2:8d:b4:5f:91:57:23:e7:90:9d: ef:ce:4b:b7:42:16:17:48:5d:03:aa:73:8a:bb:f6: c9:05:b5:0c:83:e9:e3:68:c1:a7:7a:e6:af:5f:82: 9c:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:97:00:79:D4:34:A7:07:EF:50:87:CC:0B:3F:07:C0:96:03:2D:32 X509v3 Authority Key Identifier: keyid:76:4B:23:EB:6C:63:FF:CA:A3:05:F3:7D:BE:9B:90:4A:E0:1D:60:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/323430313a663938303a663030303a3a2f33362d3336203d3e203633383632.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:f980:f000::/36 Signature Algorithm: sha256WithRSAEncryption 14:b7:3c:d2:78:b9:b9:37:3e:ff:6c:32:e5:54:4b:50:be:23: 96:91:67:a9:a9:e2:f5:69:47:9b:ad:9a:10:98:a9:16:0b:86: e9:d7:75:10:77:43:a9:a9:b8:60:67:b7:56:0d:9a:81:89:bb: dd:9f:6d:6c:7e:ad:32:8a:13:e7:5d:ed:9e:4c:ce:26:24:a6: 9a:32:2c:05:5f:b2:d0:f2:1f:db:8d:33:47:ae:97:36:32:14: 62:8f:18:2a:0e:48:fc:d9:3d:25:7d:37:b7:e3:4b:71:30:88: 69:b9:60:5b:48:c6:23:89:d7:d2:75:2e:d3:a6:9e:9b:96:2b: fb:98:da:a6:e1:f6:59:1e:d6:e9:84:19:b4:35:e4:ca:f8:a7: 6a:eb:83:e6:48:a3:a5:cf:85:d5:5a:4a:e1:7d:83:81:83:f2: cb:36:6d:23:d8:f4:53:92:41:2e:c2:49:b5:30:a8:eb:97:78: 15:4b:72:ba:5a:f2:2f:96:58:07:1b:27:e1:8d:64:9a:02:83: e6:4f:18:9f:3d:31:d3:34:47:5e:9c:20:01:79:2e:f7:11:a2: 3f:02:f4:a4:e6:d4:12:35:49:45:f8:9a:88:31:4e:d6:53:86: f9:d8:04:39:f7:ec:4e:4b:ac:4d:d7:02:47:ea:32:16:5e:b5: 2d:89:65:e9 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUN9Eo46iIw4R82eif7whWH6+CRi8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzY0QjIzRUI2QzYzRkZDQUEzMDVGMzdEQkU5QjkwNEFF MDFENjBDOTAeFw0yNTA4MTQwNjU2NTNaFw0yNjA4MTMwNzAxNTNaMDMxMTAvBgNV BAMTKDJCOTcwMDc5RDQzNEE3MDdFRjUwODdDQzBCM0YwN0MwOTYwMzJEMzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQysmaIXwV+NMOH5giW/rYfibA uHnITo8fdkzJG+X95cW9EgIFixuKndfIw7HYn6YxblIPVmQOB9JlNmhzVZFAe4Jy cL+JlfVHs4eHq2YG9wiyyLOXvS+0SFTjdXsEfqjgdbSYNZVv0S0R57/+nn0QdDmt hTdb+CAqRq1MZ9aAty2Oir++fIiA1dbPi2Cba6Qo/rO7y/0SaD7T3vw0kTYvRAMa Eux8wnwkg+PCbCW3uC7khNiaz4t9TnfxrQRE2iBm4YicjH5qXIlzw1lY8sM2toeI JMVl4o20X5FXI+eQne/OS7dCFhdIXQOqc4q79skFtQyD6eNowad65q9fgpwxAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUK5cAedQ0pwfvUIfMCz8HwJYDLTIwHwYDVR0j BBgwFoAUdksj62xj/8qjBfN9vpuQSuAdYMkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 N2U4MzBjOC1kNTU5LTQ1NmEtODgzNS00ZjZlYjU1MjdhYTIvMC83NjRCMjNFQjZD NjNGRkNBQTMwNUYzN0RCRTlCOTA0QUUwMUQ2MEM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzY0QjIzRUI2QzYzRkZDQUEzMDVGMzdEQkU5QjkwNEFFMDFE NjBDOS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg3ZTgzMGM4LWQ1NTktNDU2YS04 ODM1LTRmNmViNTUyN2FhMi8wLzMyMzQzMDMxM2E2NjM5MzgzMDNhNjYzMDMwMzAz YTNhMmYzMzM2MmQzMzM2MjAzZDNlMjAzNjMzMzgzNjMyLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYEJAH5 gPAwDQYJKoZIhvcNAQELBQADggEBABS3PNJ4ubk3Pv9sMuVUS1C+I5aRZ6mp4vVp R5utmhCYqRYLhunXdRB3Q6mpuGBnt1YNmoGJu92fbWx+rTKKE+dd7Z5MziYkppoy LAVfstDyH9uNM0eulzYyFGKPGCoOSPzZPSV9N7fjS3EwiGm5YFtIxiOJ19J1LtOm npuWK/uY2qbh9lke1umEGbQ15Mr4p2rrg+ZIo6XPhdVaSuF9g4GD8ss2bSPY9FOS QS7CSbUwqOuXeBVLcrpa8i+WWAcbJ+GNZJoCg+ZPGJ89MdM0R16cIAF5LvcRoj8C 9KTm1BI1SUX4mogxTtZThvnYBDn37E5LrE3XAkfqMhZetS2JZek= -----END CERTIFICATE-----Generated at Sat Aug 23 18:25:08 2025 by rpki-client