$ rpki-client -vvf repo-rpki.idnic.net/repo/8e693b89-4597-40b5-92b0-b299fa769afa/0/323430353a326363303a613a3a2f34382d3438203d3e20313336303739.roa File: 323430353a326363303a613a3a2f34382d3438203d3e20313336303739.roa (raw, json) Hash identifier: Ju/vO7vCQQsoKWqaI5uCjlvfJIZ0F/Vpc0p/QWILZD4= Subject key identifier: 28:66:11:46:93:82:63:AA:63:83:B4:20:39:E2:C8:F2:01:80:C1:8B Certificate issuer: /CN=F3ABA8F3C2DD8925DD47BF7EA2137302A72B5837 Certificate serial: 1A90FB8F281B386DB371251F049D72DE239BB6CA Authority key identifier: F3:AB:A8:F3:C2:DD:89:25:DD:47:BF:7E:A2:13:73:02:A7:2B:58:37 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F3ABA8F3C2DD8925DD47BF7EA2137302A72B5837.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8e693b89-4597-40b5-92b0-b299fa769afa/0/323430353a326363303a613a3a2f34382d3438203d3e20313336303739.roa Signing time: Tue 15 Jul 2025 02:00:03 +0000 ROA not before: Tue 15 Jul 2025 01:55:03 +0000 ROA not after: Tue 14 Jul 2026 02:00:03 +0000 asID: 136079 IP address blocks: 2405:2cc0:a::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8e693b89-4597-40b5-92b0-b299fa769afa/0/F3ABA8F3C2DD8925DD47BF7EA2137302A72B5837.crl rsync://repo-rpki.idnic.net/repo/8e693b89-4597-40b5-92b0-b299fa769afa/0/F3ABA8F3C2DD8925DD47BF7EA2137302A72B5837.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F3ABA8F3C2DD8925DD47BF7EA2137302A72B5837.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Aug 2025 03:43:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:90:fb:8f:28:1b:38:6d:b3:71:25:1f:04:9d:72:de:23:9b:b6:ca Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F3ABA8F3C2DD8925DD47BF7EA2137302A72B5837 Validity Not Before: Jul 15 01:55:03 2025 GMT Not After : Jul 14 02:00:03 2026 GMT Subject: CN=28661146938263AA6383B42039E2C8F20180C18B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:9e:90:27:87:67:cb:64:16:bd:04:ee:51:ee: 4e:89:d7:6e:90:79:d8:89:d1:5c:09:87:d8:a0:02: 5c:1e:7b:c0:a1:72:6d:dd:79:f1:c4:cd:aa:a3:22: fb:ff:a0:5d:2c:4a:df:6b:8b:09:0a:49:0f:e6:a4: cc:09:9a:fd:81:6f:42:64:59:b3:fd:da:45:e5:7a: 38:d7:cd:09:13:bb:2a:bd:35:9c:30:0c:8e:34:69: ca:b7:9e:bb:c0:37:96:4c:78:c8:9b:44:d2:01:e3: 28:1a:e0:0b:c9:1b:5a:4e:ae:0b:72:3e:3d:18:0d: 6e:68:f5:d2:45:54:c2:e0:ea:e8:ae:3b:71:4f:8d: 5d:ee:f3:da:98:b1:fe:b9:9a:c9:1a:5e:94:78:93: 58:65:3d:e0:89:23:68:1b:9f:a4:c6:cc:5b:99:9f: 8f:db:14:b2:52:c9:fc:3e:24:01:2e:76:f2:aa:2c: e2:33:2b:84:47:03:96:5c:85:45:5e:4b:82:ff:30: 4a:ce:fd:e0:4e:0d:07:7c:67:26:91:06:16:27:ea: 9d:f0:e7:7c:d6:a9:7b:74:5c:de:9c:94:77:29:db: 05:92:bb:c1:a3:b8:63:4b:72:9f:86:46:e8:c6:41: d3:6d:10:f0:bc:66:6b:eb:15:62:73:9d:3a:0e:8b: ab:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:66:11:46:93:82:63:AA:63:83:B4:20:39:E2:C8:F2:01:80:C1:8B X509v3 Authority Key Identifier: keyid:F3:AB:A8:F3:C2:DD:89:25:DD:47:BF:7E:A2:13:73:02:A7:2B:58:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8e693b89-4597-40b5-92b0-b299fa769afa/0/F3ABA8F3C2DD8925DD47BF7EA2137302A72B5837.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F3ABA8F3C2DD8925DD47BF7EA2137302A72B5837.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8e693b89-4597-40b5-92b0-b299fa769afa/0/323430353a326363303a613a3a2f34382d3438203d3e20313336303739.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:2cc0:a::/48 Signature Algorithm: sha256WithRSAEncryption 23:9e:43:e4:58:f5:e0:3e:f1:c7:23:71:ef:17:51:4c:1e:e7: 46:24:8f:0e:b7:89:c9:b0:98:82:5b:84:f4:50:ab:25:35:cd: 97:83:61:3c:cf:16:c6:40:55:40:74:5d:52:5c:bd:4e:84:ef: d2:56:84:12:ab:7d:cc:52:0b:56:a1:b6:d6:71:a7:62:e7:dc: b1:f9:59:cc:b6:e5:bb:8e:05:19:ba:5e:bb:c9:01:74:95:cd: 21:00:cb:84:75:09:4d:14:b6:77:41:69:dc:1e:ab:0c:cf:86: 05:5a:4a:59:a7:6d:56:ec:24:d7:16:ec:7c:0d:d5:57:a2:1c: 54:a4:52:c1:e1:80:60:cf:34:92:96:7f:f9:a9:76:b1:ad:6e: 8a:8a:2c:19:48:ce:65:b4:3b:60:f4:f0:5b:b2:81:72:1d:e7: 76:43:1a:ef:27:af:7d:2b:51:86:be:3d:ad:f8:75:95:f4:ef: 91:10:e5:79:08:f6:3b:68:3d:d7:e7:1c:f4:cc:0d:c7:d3:a9: db:fe:41:cf:cf:0f:f4:56:79:87:1b:76:05:5d:2a:02:45:2b: 7f:83:f6:c6:17:f8:b7:f3:d6:e9:4a:ee:a4:cd:15:fa:84:55: f9:f0:9d:5a:22:ef:2c:ac:95:17:01:04:91:34:57:23:48:2f: 51:de:46:fd -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUGpD7jygbOG2zcSUfBJ1y3iObtsowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjNBQkE4RjNDMkREODkyNURENDdCRjdFQTIxMzczMDJB NzJCNTgzNzAeFw0yNTA3MTUwMTU1MDNaFw0yNjA3MTQwMjAwMDNaMDMxMTAvBgNV BAMTKDI4NjYxMTQ2OTM4MjYzQUE2MzgzQjQyMDM5RTJDOEYyMDE4MEMxOEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLnpAnh2fLZBa9BO5R7k6J126Q ediJ0VwJh9igAlwee8Chcm3defHEzaqjIvv/oF0sSt9riwkKSQ/mpMwJmv2Bb0Jk WbP92kXlejjXzQkTuyq9NZwwDI40acq3nrvAN5ZMeMibRNIB4yga4AvJG1pOrgty Pj0YDW5o9dJFVMLg6uiuO3FPjV3u89qYsf65mskaXpR4k1hlPeCJI2gbn6TGzFuZ n4/bFLJSyfw+JAEudvKqLOIzK4RHA5ZchUVeS4L/MErO/eBODQd8ZyaRBhYn6p3w 53zWqXt0XN6clHcp2wWSu8GjuGNLcp+GRujGQdNtEPC8ZmvrFWJznToOi6ulAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUKGYRRpOCY6pjg7QgOeLI8gGAwYswHwYDVR0j BBgwFoAU86uo88LdiSXdR79+ohNzAqcrWDcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 ZTY5M2I4OS00NTk3LTQwYjUtOTJiMC1iMjk5ZmE3NjlhZmEvMC9GM0FCQThGM0My REQ4OTI1REQ0N0JGN0VBMjEzNzMwMkE3MkI1ODM3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjNBQkE4RjNDMkREODkyNURENDdCRjdFQTIxMzczMDJBNzJC NTgzNy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhlNjkzYjg5LTQ1OTctNDBiNS05 MmIwLWIyOTlmYTc2OWFmYS8wLzMyMzQzMDM1M2EzMjYzNjMzMDNhNjEzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTMzMzYzMDM3Mzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBSzAAAow DQYJKoZIhvcNAQELBQADggEBACOeQ+RY9eA+8ccjce8XUUwe50Ykjw63icmwmIJb hPRQqyU1zZeDYTzPFsZAVUB0XVJcvU6E79JWhBKrfcxSC1ahttZxp2Ln3LH5Wcy2 5buOBRm6XrvJAXSVzSEAy4R1CU0UtndBadweqwzPhgVaSlmnbVbsJNcW7HwN1Vei HFSkUsHhgGDPNJKWf/mpdrGtboqKLBlIzmW0O2D08FuygXId53ZDGu8nr30rUYa+ Pa34dZX075EQ5XkI9jtoPdfnHPTMDcfTqdv+Qc/PD/RWeYcbdgVdKgJFK3+D9sYX +Lfz1ulK7qTNFfqEVfnwnVoi7yyslRcBBJE0VyNIL1HeRv0= -----END CERTIFICATE-----Generated at Sat Aug 23 22:33:15 2025 by rpki-client