$ rpki-client -vvf repo-rpki.idnic.net/repo/8e693b89-4597-40b5-92b0-b299fa769afa/0/323430353a326363303a3a2f33322d3332203d3e20313336303739.roa File: 323430353a326363303a3a2f33322d3332203d3e20313336303739.roa (raw, json) Hash identifier: RTJdm4ux75KqUxTLd+HL3T2/W81Q6eNxAPEmBwe4d2I= Subject key identifier: C2:0D:84:D8:0E:F5:C1:F3:11:11:4A:5B:28:9D:35:FC:E2:B5:FA:62 Certificate issuer: /CN=F3ABA8F3C2DD8925DD47BF7EA2137302A72B5837 Certificate serial: 627A55CD5FDDC35D633D49ABE258C3FF56870D66 Authority key identifier: F3:AB:A8:F3:C2:DD:89:25:DD:47:BF:7E:A2:13:73:02:A7:2B:58:37 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F3ABA8F3C2DD8925DD47BF7EA2137302A72B5837.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8e693b89-4597-40b5-92b0-b299fa769afa/0/323430353a326363303a3a2f33322d3332203d3e20313336303739.roa Signing time: Thu 11 Sep 2025 17:15:51 +0000 ROA not before: Thu 11 Sep 2025 17:10:51 +0000 ROA not after: Thu 10 Sep 2026 17:15:51 +0000 asID: 136079 IP address blocks: 2405:2cc0::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8e693b89-4597-40b5-92b0-b299fa769afa/0/F3ABA8F3C2DD8925DD47BF7EA2137302A72B5837.crl rsync://repo-rpki.idnic.net/repo/8e693b89-4597-40b5-92b0-b299fa769afa/0/F3ABA8F3C2DD8925DD47BF7EA2137302A72B5837.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F3ABA8F3C2DD8925DD47BF7EA2137302A72B5837.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 18:24:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:7a:55:cd:5f:dd:c3:5d:63:3d:49:ab:e2:58:c3:ff:56:87:0d:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F3ABA8F3C2DD8925DD47BF7EA2137302A72B5837 Validity Not Before: Sep 11 17:10:51 2025 GMT Not After : Sep 10 17:15:51 2026 GMT Subject: CN=C20D84D80EF5C1F311114A5B289D35FCE2B5FA62 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:44:c0:7d:49:27:39:87:8e:41:df:eb:14:7a: 8d:0b:db:03:c3:cd:03:76:47:f6:18:c5:3c:c7:7a: 08:37:7b:61:e3:2c:63:eb:5d:33:de:dd:22:4c:db: ec:bc:61:40:73:b4:47:aa:c4:bc:79:15:ad:af:c6: f5:25:ee:29:5e:81:4f:57:b6:56:c6:11:83:b6:8f: f3:d1:6c:20:26:4c:68:a5:29:b2:07:27:ad:6a:23: 71:dd:79:f0:a7:0f:d9:c9:86:3b:43:d9:7d:61:bd: bb:86:75:1d:78:d4:5f:8a:52:8a:dc:79:da:2d:b6: cf:ec:6e:06:cc:eb:1d:ce:e5:39:f0:c8:90:84:85: 60:47:b6:c7:b5:b3:b7:d3:0b:15:a9:71:2b:49:16: f5:0f:fe:35:59:82:49:3e:3d:8b:18:90:56:e9:6c: 84:dd:41:ab:97:5d:50:9f:37:da:a7:15:99:3c:01: d0:7d:43:fb:81:f6:a0:35:00:00:18:b6:f5:54:19: be:87:1b:0e:c4:8e:55:cf:15:69:8b:83:d2:c4:9c: 23:6c:31:c5:27:9f:16:80:96:dd:4a:87:f8:a1:01: 83:78:d2:84:08:7b:ad:c2:7f:3a:d0:fb:05:36:91: 71:38:7f:4b:4e:12:83:f6:34:79:79:c7:ca:f3:43: f9:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:0D:84:D8:0E:F5:C1:F3:11:11:4A:5B:28:9D:35:FC:E2:B5:FA:62 X509v3 Authority Key Identifier: keyid:F3:AB:A8:F3:C2:DD:89:25:DD:47:BF:7E:A2:13:73:02:A7:2B:58:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8e693b89-4597-40b5-92b0-b299fa769afa/0/F3ABA8F3C2DD8925DD47BF7EA2137302A72B5837.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F3ABA8F3C2DD8925DD47BF7EA2137302A72B5837.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8e693b89-4597-40b5-92b0-b299fa769afa/0/323430353a326363303a3a2f33322d3332203d3e20313336303739.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:2cc0::/32 Signature Algorithm: sha256WithRSAEncryption 46:47:e0:b3:08:41:17:65:ec:a0:d9:02:c9:d1:eb:1e:75:78: d0:b8:df:10:88:13:f2:65:04:87:19:c3:3a:b6:a6:5a:05:ed: fd:6d:f5:1f:50:98:57:d7:19:81:62:94:85:55:23:a4:28:b8: 35:b2:7c:a5:c9:43:46:eb:02:96:79:15:3d:ef:2f:31:c7:dc: 85:a7:a3:fe:fc:9f:71:1f:df:da:bb:d6:9c:e8:ea:b6:cc:80: a6:9e:eb:1f:e1:1c:06:73:ad:40:bd:7d:86:86:94:f4:83:91: d6:81:90:56:10:92:a7:fe:e9:21:7b:6c:d0:ba:d1:f2:27:af: 3b:c6:c8:f3:60:9e:be:2a:30:29:5e:0c:16:eb:ce:16:4b:0d: 67:ab:01:d8:1a:16:38:3a:61:f2:9e:2e:b6:68:e4:d6:21:43: 4c:79:e5:e8:42:15:eb:d1:b6:1a:dc:35:da:3b:66:86:af:00: c5:f9:3e:90:1c:89:0c:34:4e:2f:a8:45:8e:bb:d8:86:6a:0f: 7d:43:94:28:81:85:f5:70:9f:59:c0:b8:ad:f3:40:1a:ea:6a: b3:49:a6:bc:16:8b:aa:bb:12:1c:8c:95:b7:90:c2:03:76:ff: a4:92:71:fa:c2:7d:01:57:56:d9:50:86:4b:42:86:9f:b8:7e: 81:4d:7e:33 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUYnpVzV/dw11jPUmr4ljD/1aHDWYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjNBQkE4RjNDMkREODkyNURENDdCRjdFQTIxMzczMDJB NzJCNTgzNzAeFw0yNTA5MTExNzEwNTFaFw0yNjA5MTAxNzE1NTFaMDMxMTAvBgNV BAMTKEMyMEQ4NEQ4MEVGNUMxRjMxMTExNEE1QjI4OUQzNUZDRTJCNUZBNjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDjRMB9SSc5h45B3+sUeo0L2wPD zQN2R/YYxTzHegg3e2HjLGPrXTPe3SJM2+y8YUBztEeqxLx5Fa2vxvUl7ilegU9X tlbGEYO2j/PRbCAmTGilKbIHJ61qI3HdefCnD9nJhjtD2X1hvbuGdR141F+KUorc edotts/sbgbM6x3O5TnwyJCEhWBHtse1s7fTCxWpcStJFvUP/jVZgkk+PYsYkFbp bITdQauXXVCfN9qnFZk8AdB9Q/uB9qA1AAAYtvVUGb6HGw7EjlXPFWmLg9LEnCNs McUnnxaAlt1Kh/ihAYN40oQIe63CfzrQ+wU2kXE4f0tOEoP2NHl5x8rzQ/k1AgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUwg2E2A71wfMREUpbKJ01/OK1+mIwHwYDVR0j BBgwFoAU86uo88LdiSXdR79+ohNzAqcrWDcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 ZTY5M2I4OS00NTk3LTQwYjUtOTJiMC1iMjk5ZmE3NjlhZmEvMC9GM0FCQThGM0My REQ4OTI1REQ0N0JGN0VBMjEzNzMwMkE3MkI1ODM3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjNBQkE4RjNDMkREODkyNURENDdCRjdFQTIxMzczMDJBNzJC NTgzNy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhlNjkzYjg5LTQ1OTctNDBiNS05 MmIwLWIyOTlmYTc2OWFmYS8wLzMyMzQzMDM1M2EzMjYzNjMzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzMzNjMwMzczOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQFLMAwDQYJKoZI hvcNAQELBQADggEBAEZH4LMIQRdl7KDZAsnR6x51eNC43xCIE/JlBIcZwzq2ploF 7f1t9R9QmFfXGYFilIVVI6QouDWyfKXJQ0brApZ5FT3vLzHH3IWno/78n3Ef39q7 1pzo6rbMgKae6x/hHAZzrUC9fYaGlPSDkdaBkFYQkqf+6SF7bNC60fInrzvGyPNg nr4qMCleDBbrzhZLDWerAdgaFjg6YfKeLrZo5NYhQ0x55ehCFevRthrcNdo7Zoav AMX5PpAciQw0Ti+oRY672IZqD31DlCiBhfVwn1nAuK3zQBrqarNJprwWi6q7EhyM lbeQwgN2/6SScfrCfQFXVtlQhktChp+4foFNfjM= -----END CERTIFICATE-----Generated at Mon Oct 20 18:37:20 2025 by rpki-client