$ rpki-client -vvf repo-rpki.idnic.net/repo/8e693b89-4597-40b5-92b0-b299fa769afa/0/323430353a326363303a343a3a2f34382d3438203d3e20313336303739.roa File: 323430353a326363303a343a3a2f34382d3438203d3e20313336303739.roa (raw, json) Hash identifier: UQwmx7kfaHxkn2EDWo9d59K9BpIkWV4oYs+G0r7Y0tg= Subject key identifier: 63:34:F5:16:B3:33:44:E1:0B:43:7D:27:0C:05:6D:7D:7D:17:81:BB Certificate issuer: /CN=F3ABA8F3C2DD8925DD47BF7EA2137302A72B5837 Certificate serial: 4499C003FC2B9A9647B0B4BBEED2C411CB5E3FFF Authority key identifier: F3:AB:A8:F3:C2:DD:89:25:DD:47:BF:7E:A2:13:73:02:A7:2B:58:37 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F3ABA8F3C2DD8925DD47BF7EA2137302A72B5837.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8e693b89-4597-40b5-92b0-b299fa769afa/0/323430353a326363303a343a3a2f34382d3438203d3e20313336303739.roa Signing time: Tue 15 Jul 2025 02:00:04 +0000 ROA not before: Tue 15 Jul 2025 01:55:04 +0000 ROA not after: Tue 14 Jul 2026 02:00:04 +0000 asID: 136079 IP address blocks: 2405:2cc0:4::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8e693b89-4597-40b5-92b0-b299fa769afa/0/F3ABA8F3C2DD8925DD47BF7EA2137302A72B5837.crl rsync://repo-rpki.idnic.net/repo/8e693b89-4597-40b5-92b0-b299fa769afa/0/F3ABA8F3C2DD8925DD47BF7EA2137302A72B5837.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F3ABA8F3C2DD8925DD47BF7EA2137302A72B5837.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Aug 2025 03:43:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:99:c0:03:fc:2b:9a:96:47:b0:b4:bb:ee:d2:c4:11:cb:5e:3f:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F3ABA8F3C2DD8925DD47BF7EA2137302A72B5837 Validity Not Before: Jul 15 01:55:04 2025 GMT Not After : Jul 14 02:00:04 2026 GMT Subject: CN=6334F516B33344E10B437D270C056D7D7D1781BB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:f2:c4:33:03:04:49:cb:5e:e6:93:a5:0c:b1: 27:e3:6a:e3:6b:f3:50:6f:39:6f:5a:ca:6c:5a:87: 6c:e2:17:f7:aa:bb:48:46:5e:3e:84:3c:2b:64:5b: d3:70:b9:3b:11:bc:85:0f:6b:4f:1b:24:bf:13:9d: 54:7f:87:9c:93:aa:d7:d3:28:f9:9f:5c:3f:12:17: 0c:69:f2:bc:12:32:e6:7e:2b:4a:36:17:bd:04:37: 93:c6:b8:4e:15:40:1f:a9:2c:44:70:18:8f:5f:5a: 0a:db:7a:b2:79:cc:ec:c0:2c:75:e2:63:cb:8f:87: c9:42:5f:9c:2f:e7:54:50:23:5b:29:93:a5:00:d0: 34:70:8a:d2:7c:00:a7:21:e7:37:7b:ea:bd:73:9a: dc:31:8c:03:da:16:16:52:15:ec:62:01:95:8f:62: c0:6c:cc:a3:0e:34:35:3b:ff:61:e8:9a:11:78:1e: 54:8b:fa:f6:b5:8a:24:57:4c:00:ce:79:1c:ed:2b: bb:b8:80:e0:3b:02:90:06:fc:20:af:f5:ff:9b:66: 19:1a:af:0e:2f:a1:89:36:e7:2d:2c:c1:5b:e9:d5: 44:ff:30:e7:6e:ed:fa:89:ab:8f:33:22:8a:74:48: 4f:d3:ed:6d:d2:7d:b2:f7:56:26:42:17:23:9f:51: fe:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:34:F5:16:B3:33:44:E1:0B:43:7D:27:0C:05:6D:7D:7D:17:81:BB X509v3 Authority Key Identifier: keyid:F3:AB:A8:F3:C2:DD:89:25:DD:47:BF:7E:A2:13:73:02:A7:2B:58:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8e693b89-4597-40b5-92b0-b299fa769afa/0/F3ABA8F3C2DD8925DD47BF7EA2137302A72B5837.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F3ABA8F3C2DD8925DD47BF7EA2137302A72B5837.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8e693b89-4597-40b5-92b0-b299fa769afa/0/323430353a326363303a343a3a2f34382d3438203d3e20313336303739.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:2cc0:4::/48 Signature Algorithm: sha256WithRSAEncryption 09:9a:61:1f:eb:bf:88:2a:b4:01:b9:6d:7b:45:5a:db:d9:8f: 2c:6c:f5:d5:9c:5c:a7:6f:16:dc:4e:ea:8c:ee:64:56:af:a8: e8:46:45:0c:01:c8:ee:c6:5b:28:e9:45:87:ed:85:dc:64:7c: 61:2e:3f:43:0f:73:fa:da:7d:9d:bc:28:8c:f5:83:d4:49:a3: 6b:22:cf:5e:fe:7f:44:99:8f:2e:4c:21:66:c7:85:fa:31:19: 2c:39:d2:ca:66:80:69:ee:45:36:5a:3a:bb:d8:c3:64:a1:08: d5:11:3a:21:47:d2:3e:97:fa:56:55:24:0e:86:2e:df:36:01: 11:fb:81:d7:ef:25:6e:e6:1b:49:fb:a6:c5:44:28:b1:08:2f: 60:dc:a1:da:b9:89:31:c9:ec:11:f5:d2:e7:b3:32:c4:86:c4: c4:8e:ba:e3:16:23:79:de:11:e5:30:c7:3d:0d:8a:5b:7f:9f: a0:0f:84:d3:b9:ac:24:f6:82:77:8a:dd:62:8e:35:61:f4:59: d4:20:7d:41:d8:6e:37:b1:2b:4c:e9:d6:bd:ea:ac:9e:7a:31: b1:cf:44:7e:be:c6:9b:27:ba:11:01:45:c8:38:a0:21:4b:32: 9c:8f:50:97:a6:d1:54:32:21:21:a6:02:ee:ed:41:72:c5:44: ec:c6:ff:61 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIURJnAA/wrmpZHsLS77tLEEcteP/8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjNBQkE4RjNDMkREODkyNURENDdCRjdFQTIxMzczMDJB NzJCNTgzNzAeFw0yNTA3MTUwMTU1MDRaFw0yNjA3MTQwMjAwMDRaMDMxMTAvBgNV BAMTKDYzMzRGNTE2QjMzMzQ0RTEwQjQzN0QyNzBDMDU2RDdEN0QxNzgxQkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC18sQzAwRJy17mk6UMsSfjauNr 81BvOW9aymxah2ziF/equ0hGXj6EPCtkW9NwuTsRvIUPa08bJL8TnVR/h5yTqtfT KPmfXD8SFwxp8rwSMuZ+K0o2F70EN5PGuE4VQB+pLERwGI9fWgrberJ5zOzALHXi Y8uPh8lCX5wv51RQI1spk6UA0DRwitJ8AKch5zd76r1zmtwxjAPaFhZSFexiAZWP YsBszKMONDU7/2HomhF4HlSL+va1iiRXTADOeRztK7u4gOA7ApAG/CCv9f+bZhka rw4voYk25y0swVvp1UT/MOdu7fqJq48zIop0SE/T7W3SfbL3ViZCFyOfUf69AgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUYzT1FrMzROELQ30nDAVtfX0XgbswHwYDVR0j BBgwFoAU86uo88LdiSXdR79+ohNzAqcrWDcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 ZTY5M2I4OS00NTk3LTQwYjUtOTJiMC1iMjk5ZmE3NjlhZmEvMC9GM0FCQThGM0My REQ4OTI1REQ0N0JGN0VBMjEzNzMwMkE3MkI1ODM3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjNBQkE4RjNDMkREODkyNURENDdCRjdFQTIxMzczMDJBNzJC NTgzNy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhlNjkzYjg5LTQ1OTctNDBiNS05 MmIwLWIyOTlmYTc2OWFmYS8wLzMyMzQzMDM1M2EzMjYzNjMzMDNhMzQzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTMzMzYzMDM3Mzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBSzAAAQw DQYJKoZIhvcNAQELBQADggEBAAmaYR/rv4gqtAG5bXtFWtvZjyxs9dWcXKdvFtxO 6ozuZFavqOhGRQwByO7GWyjpRYfthdxkfGEuP0MPc/rafZ28KIz1g9RJo2siz17+ f0SZjy5MIWbHhfoxGSw50spmgGnuRTZaOrvYw2ShCNUROiFH0j6X+lZVJA6GLt82 ARH7gdfvJW7mG0n7psVEKLEIL2Dcodq5iTHJ7BH10uezMsSGxMSOuuMWI3neEeUw xz0Nilt/n6APhNO5rCT2gneK3WKONWH0WdQgfUHYbjexK0zp1r3qrJ56MbHPRH6+ xpsnuhEBRcg4oCFLMpyPUJem0VQyISGmAu7tQXLFROzG/2E= -----END CERTIFICATE-----Generated at Sat Aug 23 22:34:51 2025 by rpki-client