$ rpki-client -vvf repo-rpki.idnic.net/repo/acc637bd-5971-4264-997a-749d804a6858/0/323030313a6466353a653238303a3a2f34382d3438203d3e20313431363430.roa File: 323030313a6466353a653238303a3a2f34382d3438203d3e20313431363430.roa (raw, json) Hash identifier: 4Nyf95sTRdqoKN64WuRTyc5m5hoROhK6oFKdH03e8KY= Subject key identifier: FD:F3:AE:7C:25:23:15:71:AE:74:D2:A5:F0:36:1F:BB:7E:47:D0:12 Certificate issuer: /CN=2B69EA508DC62D34C2B3CA4FBA57BF3AFFFD4994 Certificate serial: 47584E8CCA6D82C63FA68591BE9FED13D44C84AA Authority key identifier: 2B:69:EA:50:8D:C6:2D:34:C2:B3:CA:4F:BA:57:BF:3A:FF:FD:49:94 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2B69EA508DC62D34C2B3CA4FBA57BF3AFFFD4994.cer Subject info access: rsync://repo-rpki.idnic.net/repo/acc637bd-5971-4264-997a-749d804a6858/0/323030313a6466353a653238303a3a2f34382d3438203d3e20313431363430.roa Signing time: Sat 20 Sep 2025 05:00:02 +0000 ROA not before: Sat 20 Sep 2025 04:55:02 +0000 ROA not after: Sat 19 Sep 2026 05:00:02 +0000 asID: 141640 IP address blocks: 2001:df5:e280::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/acc637bd-5971-4264-997a-749d804a6858/0/2B69EA508DC62D34C2B3CA4FBA57BF3AFFFD4994.crl rsync://repo-rpki.idnic.net/repo/acc637bd-5971-4264-997a-749d804a6858/0/2B69EA508DC62D34C2B3CA4FBA57BF3AFFFD4994.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2B69EA508DC62D34C2B3CA4FBA57BF3AFFFD4994.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 10:30:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:58:4e:8c:ca:6d:82:c6:3f:a6:85:91:be:9f:ed:13:d4:4c:84:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2B69EA508DC62D34C2B3CA4FBA57BF3AFFFD4994 Validity Not Before: Sep 20 04:55:02 2025 GMT Not After : Sep 19 05:00:02 2026 GMT Subject: CN=FDF3AE7C25231571AE74D2A5F0361FBB7E47D012 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:df:6b:5e:04:cf:90:67:d6:4c:2c:bf:50:91: 56:8a:85:60:eb:c3:14:0b:85:b6:bd:f0:76:d9:d5: 75:89:64:ba:78:eb:fc:f7:30:2a:94:82:6c:ab:66: e2:0e:cf:34:c8:02:93:fd:10:5e:ec:4a:6c:93:86: f7:b8:3f:cc:7d:b9:76:c8:fb:b1:2c:60:2e:5d:40: 0d:3a:6c:46:19:97:63:22:f6:b2:b0:d4:23:73:86: 65:33:24:0a:33:61:81:ef:de:92:54:5c:bd:ab:36: d6:98:90:ae:9a:3d:43:b8:26:31:9d:fd:c9:d7:d1: 1d:f5:65:f6:3c:b3:d9:ff:85:38:0f:17:d3:d8:55: f2:ee:fa:a3:8d:e9:cc:48:32:7f:20:f4:d3:39:48: 34:13:c9:c2:d9:eb:a8:6a:64:d6:95:4c:74:ec:3c: c2:15:9e:32:dc:e7:dd:d5:0b:eb:64:23:84:9d:97: fd:f0:3b:2c:2a:e5:ac:75:db:d7:0b:31:83:be:c4: 4a:b5:11:b3:d4:55:9b:5f:88:bd:01:82:17:2a:99: c6:13:f3:5c:7f:93:12:67:c0:21:dd:43:76:34:33: 79:48:e8:10:96:7e:45:40:ba:79:0d:c9:a2:3d:c3: e5:11:0e:36:f7:5a:15:ee:b9:25:f6:bf:25:ee:89: f1:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:F3:AE:7C:25:23:15:71:AE:74:D2:A5:F0:36:1F:BB:7E:47:D0:12 X509v3 Authority Key Identifier: keyid:2B:69:EA:50:8D:C6:2D:34:C2:B3:CA:4F:BA:57:BF:3A:FF:FD:49:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/acc637bd-5971-4264-997a-749d804a6858/0/2B69EA508DC62D34C2B3CA4FBA57BF3AFFFD4994.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2B69EA508DC62D34C2B3CA4FBA57BF3AFFFD4994.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/acc637bd-5971-4264-997a-749d804a6858/0/323030313a6466353a653238303a3a2f34382d3438203d3e20313431363430.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df5:e280::/48 Signature Algorithm: sha256WithRSAEncryption 43:f4:e4:0b:28:5e:12:c4:d1:c3:06:15:2d:f1:54:0d:d8:60: 85:6f:fa:a0:75:bf:46:76:7a:e6:de:82:93:91:46:32:05:4a: 33:8e:ca:a3:9e:d9:a9:4f:19:96:98:f1:d7:1e:d6:97:79:c4: 9a:fc:85:31:be:f1:84:f6:f8:98:27:18:fe:29:90:28:bf:c5: 7b:32:83:0c:c6:b2:54:ab:c4:e7:69:46:a4:72:b0:3b:5d:88: 4b:8f:2c:b5:42:6b:5e:97:9c:5b:b7:1b:3c:aa:19:5a:db:c0: 73:c6:e2:fd:bd:04:a7:cf:4d:0d:17:13:df:8e:13:74:fa:05: 45:dc:13:5d:a7:21:31:6e:04:e8:91:8f:c3:7a:22:3a:80:07: b1:50:91:22:c8:eb:0b:58:73:c6:bf:6b:8c:74:7e:0d:b4:8b: ca:52:a3:d1:77:e6:2b:76:9e:23:0c:0a:2d:e8:05:71:25:58: 8f:42:28:63:44:44:19:91:46:67:6c:0b:30:22:0f:15:0d:d7: db:ac:42:34:c5:92:8c:ce:0e:08:2c:02:7a:b4:8c:cf:f3:88: 27:b6:c4:ab:21:93:a8:17:d3:1b:03:ab:cf:ea:b3:c4:ca:a8: 46:e7:ed:c4:1a:3c:ab:4c:64:b0:6a:7e:73:30:d8:42:74:4b: 34:22:92:15 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUR1hOjMptgsY/poWRvp/tE9RMhKowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkI2OUVBNTA4REM2MkQzNEMyQjNDQTRGQkE1N0JGM0FG RkZENDk5NDAeFw0yNTA5MjAwNDU1MDJaFw0yNjA5MTkwNTAwMDJaMDMxMTAvBgNV BAMTKEZERjNBRTdDMjUyMzE1NzFBRTc0RDJBNUYwMzYxRkJCN0U0N0QwMTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCi32teBM+QZ9ZMLL9QkVaKhWDr wxQLhba98HbZ1XWJZLp46/z3MCqUgmyrZuIOzzTIApP9EF7sSmyThve4P8x9uXbI +7EsYC5dQA06bEYZl2Mi9rKw1CNzhmUzJAozYYHv3pJUXL2rNtaYkK6aPUO4JjGd /cnX0R31ZfY8s9n/hTgPF9PYVfLu+qON6cxIMn8g9NM5SDQTycLZ66hqZNaVTHTs PMIVnjLc593VC+tkI4Sdl/3wOywq5ax129cLMYO+xEq1EbPUVZtfiL0BghcqmcYT 81x/kxJnwCHdQ3Y0M3lI6BCWfkVAunkNyaI9w+URDjb3WhXuuSX2vyXuifGHAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQU/fOufCUjFXGudNKl8DYfu35H0BIwHwYDVR0j BBgwFoAUK2nqUI3GLTTCs8pPule/Ov/9SZQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h Y2M2MzdiZC01OTcxLTQyNjQtOTk3YS03NDlkODA0YTY4NTgvMC8yQjY5RUE1MDhE QzYyRDM0QzJCM0NBNEZCQTU3QkYzQUZGRkQ0OTk0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkI2OUVBNTA4REM2MkQzNEMyQjNDQTRGQkE1N0JGM0FGRkZE NDk5NC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FjYzYzN2JkLTU5NzEtNDI2NC05 OTdhLTc0OWQ4MDRhNjg1OC8wLzMyMzAzMDMxM2E2NDY2MzUzYTY1MzIzODMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNDMxMzYzNDMwLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 9eKAMA0GCSqGSIb3DQEBCwUAA4IBAQBD9OQLKF4SxNHDBhUt8VQN2GCFb/qgdb9G dnrm3oKTkUYyBUozjsqjntmpTxmWmPHXHtaXecSa/IUxvvGE9viYJxj+KZAov8V7 MoMMxrJUq8TnaUakcrA7XYhLjyy1Qmtel5xbtxs8qhla28BzxuL9vQSnz00NFxPf jhN0+gVF3BNdpyExbgTokY/DeiI6gAexUJEiyOsLWHPGv2uMdH4NtIvKUqPRd+Yr dp4jDAot6AVxJViPQihjREQZkUZnbAswIg8VDdfbrEI0xZKMzg4ILAJ6tIzP84gn tsSrIZOoF9MbA6vP6rPEyqhG5+3EGjyrTGSwan5zMNhCdEs0IpIV -----END CERTIFICATE-----Generated at Mon Oct 20 21:37:05 2025 by rpki-client