$ rpki-client -vvf repo-rpki.idnic.net/repo/9ab3902b-7459-4854-a5f5-09f15d8c87d3/0/323030313a6466353a336530303a3a2f34382d3438203d3e203338373535.roa File: 323030313a6466353a336530303a3a2f34382d3438203d3e203338373535.roa (raw, json) Hash identifier: 9LXLYm+D6soIVqMRtdkPI6t9IFIKIsecaLtAbcGiLNw= Subject key identifier: 86:55:D1:E0:DE:9A:23:C4:EC:07:29:3F:1F:5C:AD:FC:6C:7E:26:C3 Certificate issuer: /CN=9F61990183B8D1048CDFE62E9616C3A9D01B15C7 Certificate serial: 38D8A51C40E2407A2DF29C13BBE3A117984201E9 Authority key identifier: 9F:61:99:01:83:B8:D1:04:8C:DF:E6:2E:96:16:C3:A9:D0:1B:15:C7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9F61990183B8D1048CDFE62E9616C3A9D01B15C7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9ab3902b-7459-4854-a5f5-09f15d8c87d3/0/323030313a6466353a336530303a3a2f34382d3438203d3e203338373535.roa Signing time: Thu 18 Sep 2025 11:02:25 +0000 ROA not before: Thu 18 Sep 2025 10:57:25 +0000 ROA not after: Thu 17 Sep 2026 11:02:25 +0000 asID: 38755 IP address blocks: 2001:df5:3e00::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9ab3902b-7459-4854-a5f5-09f15d8c87d3/0/9F61990183B8D1048CDFE62E9616C3A9D01B15C7.crl rsync://repo-rpki.idnic.net/repo/9ab3902b-7459-4854-a5f5-09f15d8c87d3/0/9F61990183B8D1048CDFE62E9616C3A9D01B15C7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9F61990183B8D1048CDFE62E9616C3A9D01B15C7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 19:17:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:d8:a5:1c:40:e2:40:7a:2d:f2:9c:13:bb:e3:a1:17:98:42:01:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9F61990183B8D1048CDFE62E9616C3A9D01B15C7 Validity Not Before: Sep 18 10:57:25 2025 GMT Not After : Sep 17 11:02:25 2026 GMT Subject: CN=8655D1E0DE9A23C4EC07293F1F5CADFC6C7E26C3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:ac:d1:c5:90:8e:72:af:2e:2c:68:64:ee:5c: 3f:3c:90:c4:e0:2c:ac:12:06:cf:7f:a7:35:f3:70: d4:0f:2b:64:83:09:13:dd:0b:43:d3:3b:9b:6a:ba: 20:a9:f4:8d:89:e9:f3:84:45:ef:40:bc:6d:58:56: af:c3:3f:5b:25:9e:2a:2b:13:c0:71:6e:c4:00:ee: da:7c:27:6f:b1:9f:e6:c1:10:2f:4c:8d:6d:bf:b6: 71:c9:86:30:fc:fa:6d:ce:16:2d:cc:ce:55:90:b4: 93:ed:eb:b7:f0:a1:56:10:10:b8:3a:bd:00:33:6a: 19:2c:32:f2:30:85:3a:d2:e3:3c:c2:6d:55:61:1e: f8:b5:0d:c9:77:7d:03:84:c0:d9:a7:d0:b1:df:df: 9f:06:2c:65:d2:11:9f:ee:63:e7:aa:5b:89:db:91: c4:12:cb:67:60:e5:56:fd:82:44:a1:6c:d1:79:33: 30:45:97:bb:b9:f3:4b:c5:b3:50:ff:ac:18:ad:57: 05:02:c0:f1:0f:03:f2:e2:67:d1:19:22:59:ac:c8: 20:a1:78:28:68:08:7c:51:83:bf:cd:66:a1:2b:f4: d8:06:d5:b1:99:2e:ee:af:2e:23:6d:14:0b:da:1b: dd:2f:ab:3d:61:b8:66:80:29:73:89:06:ea:03:77: 87:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:55:D1:E0:DE:9A:23:C4:EC:07:29:3F:1F:5C:AD:FC:6C:7E:26:C3 X509v3 Authority Key Identifier: keyid:9F:61:99:01:83:B8:D1:04:8C:DF:E6:2E:96:16:C3:A9:D0:1B:15:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9ab3902b-7459-4854-a5f5-09f15d8c87d3/0/9F61990183B8D1048CDFE62E9616C3A9D01B15C7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9F61990183B8D1048CDFE62E9616C3A9D01B15C7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9ab3902b-7459-4854-a5f5-09f15d8c87d3/0/323030313a6466353a336530303a3a2f34382d3438203d3e203338373535.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df5:3e00::/48 Signature Algorithm: sha256WithRSAEncryption 68:0f:e7:bf:3a:07:38:b2:43:3e:fc:39:07:de:4e:a5:04:04: e6:13:c1:90:2e:6f:d1:0b:16:d5:ad:e6:b2:5d:80:ba:62:27: 44:b5:95:33:08:d8:18:7a:bf:fa:4f:6c:d1:84:00:da:46:7b: 3a:cb:bc:20:14:65:d2:66:29:c8:aa:33:ec:e3:c5:5f:91:42: 12:13:11:d4:25:a1:b0:06:d3:fe:80:83:07:bd:d8:28:cd:61: f0:a4:11:3d:50:5c:e4:8d:a9:87:eb:f2:d3:bc:71:74:0c:00: 64:2d:f9:e6:6b:74:8b:74:11:0f:39:b8:3a:99:cb:84:4b:fa: 7c:3d:a4:ec:4c:7d:98:c0:f4:ba:78:5d:4e:1d:40:bc:ef:a5: d8:76:44:ac:cd:cb:ac:bf:62:e2:df:a6:ee:83:86:ee:b2:80: 13:0d:67:07:d1:78:48:4d:9c:8a:77:7d:c7:9f:86:8a:40:42: e3:eb:37:da:94:e2:97:e9:8e:3a:9c:bb:5b:8d:05:d0:78:9e: 46:5b:29:58:62:1a:df:39:db:f6:12:05:f7:44:64:d9:ad:a4: 8f:e1:53:cb:16:08:08:b0:fd:c2:1c:3b:1a:a6:e3:e2:51:36: 12:ac:60:66:1d:a5:60:f8:36:5d:ef:3a:ac:a2:c1:84:45:0a: e8:7d:4a:3a -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUONilHEDiQHot8pwTu+OhF5hCAekwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUY2MTk5MDE4M0I4RDEwNDhDREZFNjJFOTYxNkMzQTlE MDFCMTVDNzAeFw0yNTA5MTgxMDU3MjVaFw0yNjA5MTcxMTAyMjVaMDMxMTAvBgNV BAMTKDg2NTVEMUUwREU5QTIzQzRFQzA3MjkzRjFGNUNBREZDNkM3RTI2QzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD3rNHFkI5yry4saGTuXD88kMTg LKwSBs9/pzXzcNQPK2SDCRPdC0PTO5tquiCp9I2J6fOERe9AvG1YVq/DP1slnior E8BxbsQA7tp8J2+xn+bBEC9MjW2/tnHJhjD8+m3OFi3MzlWQtJPt67fwoVYQELg6 vQAzahksMvIwhTrS4zzCbVVhHvi1Dcl3fQOEwNmn0LHf358GLGXSEZ/uY+eqW4nb kcQSy2dg5Vb9gkShbNF5MzBFl7u580vFs1D/rBitVwUCwPEPA/LiZ9EZIlmsyCCh eChoCHxRg7/NZqEr9NgG1bGZLu6vLiNtFAvaG90vqz1huGaAKXOJBuoDd4fNAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUhlXR4N6aI8TsByk/H1yt/Gx+JsMwHwYDVR0j BBgwFoAUn2GZAYO40QSM3+YulhbDqdAbFccwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 YWIzOTAyYi03NDU5LTQ4NTQtYTVmNS0wOWYxNWQ4Yzg3ZDMvMC85RjYxOTkwMTgz QjhEMTA0OENERkU2MkU5NjE2QzNBOUQwMUIxNUM3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUY2MTk5MDE4M0I4RDEwNDhDREZFNjJFOTYxNkMzQTlEMDFC MTVDNy5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzlhYjM5MDJiLTc0NTktNDg1NC1h NWY1LTA5ZjE1ZDhjODdkMy8wLzMyMzAzMDMxM2E2NDY2MzUzYTMzNjUzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzMzODM3MzUzNS5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACABDfU+ ADANBgkqhkiG9w0BAQsFAAOCAQEAaA/nvzoHOLJDPvw5B95OpQQE5hPBkC5v0QsW 1a3msl2AumInRLWVMwjYGHq/+k9s0YQA2kZ7Osu8IBRl0mYpyKoz7OPFX5FCEhMR 1CWhsAbT/oCDB73YKM1h8KQRPVBc5I2ph+vy07xxdAwAZC355mt0i3QRDzm4OpnL hEv6fD2k7Ex9mMD0unhdTh1AvO+l2HZErM3LrL9i4t+m7oOG7rKAEw1nB9F4SE2c ind9x5+GikBC4+s32pTil+mOOpy7W40F0HieRlspWGIa3znb9hIF90Rk2a2kj+FT yxYICLD9whw7Gqbj4lE2EqxgZh2lYPg2Xe86rKLBhEUK6H1KOg== -----END CERTIFICATE-----Generated at Tue Oct 21 00:35:16 2025 by rpki-client