$ rpki-client -vvf repo-rpki.idnic.net/repo/b1a77add-a49a-4c8f-a735-ef96c33ab29f/0/323030313a6466323a356130303a3a2f34382d3438203d3e20313335343434.roa File: 323030313a6466323a356130303a3a2f34382d3438203d3e20313335343434.roa (raw, json) Hash identifier: TiFQ5+3RDDZw3hEMovau4FHuHmfphOknHBNZEgIPquo= Subject key identifier: 16:70:7B:75:3B:D0:72:3E:B7:F3:67:51:E6:99:C7:60:9D:D9:7B:9E Certificate issuer: /CN=D9CD40474BDD0C0707766CEDBAF0B6A186CF582F Certificate serial: 0B365B11F4E2CB9F5DA4535D557BD862A671A0BE Authority key identifier: D9:CD:40:47:4B:DD:0C:07:07:76:6C:ED:BA:F0:B6:A1:86:CF:58:2F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b1a77add-a49a-4c8f-a735-ef96c33ab29f/0/323030313a6466323a356130303a3a2f34382d3438203d3e20313335343434.roa Signing time: Mon 25 Aug 2025 21:00:00 +0000 ROA not before: Mon 25 Aug 2025 20:55:00 +0000 ROA not after: Mon 24 Aug 2026 21:00:00 +0000 asID: 135444 IP address blocks: 2001:df2:5a00::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b1a77add-a49a-4c8f-a735-ef96c33ab29f/0/D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.crl rsync://repo-rpki.idnic.net/repo/b1a77add-a49a-4c8f-a735-ef96c33ab29f/0/D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 23:02:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:36:5b:11:f4:e2:cb:9f:5d:a4:53:5d:55:7b:d8:62:a6:71:a0:be Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D9CD40474BDD0C0707766CEDBAF0B6A186CF582F Validity Not Before: Aug 25 20:55:00 2025 GMT Not After : Aug 24 21:00:00 2026 GMT Subject: CN=16707B753BD0723EB7F36751E699C7609DD97B9E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:8f:9a:ff:6d:d6:9c:5d:af:85:cb:7e:9e:86: 8a:93:4a:76:25:8e:a3:cd:3b:e3:77:19:e1:04:40: 40:96:c4:56:a3:44:09:e6:f2:dc:de:19:7f:50:d3: 3b:5e:ba:b2:93:67:75:c8:ed:ba:c0:66:65:9d:aa: 2f:19:e9:5d:86:aa:96:93:d7:17:e7:ba:c2:42:2f: d7:bd:c9:a8:b3:bd:39:5d:5d:a8:00:9a:58:d5:0e: 5c:71:1f:ca:54:6d:f8:41:fc:f5:df:a6:e3:ce:c0: 54:c2:3b:93:6a:ad:fb:71:24:9e:bd:4a:74:43:56: b3:00:f8:ee:2a:39:c1:ab:be:57:f4:21:f8:e8:01: 09:41:48:6a:69:8c:9b:e3:81:51:d6:0f:f8:5b:e5: 15:c8:ad:2c:32:0b:8c:48:ab:6a:fa:44:ae:d1:7b: 41:07:99:13:a4:3d:d1:af:ce:c2:f2:71:94:64:10: 13:d5:c0:d4:58:85:53:c2:5f:05:09:de:8d:a9:ec: 67:35:a8:ba:db:a1:12:c4:10:20:af:c5:fb:0e:8e: 4e:7d:f8:1a:1f:3c:e3:6c:8a:59:a4:84:c8:26:4d: 15:af:ad:59:12:98:25:e4:dd:b8:c8:94:84:e4:2a: d5:51:8f:30:a6:e0:e2:02:a0:21:be:57:e6:79:13: e5:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:70:7B:75:3B:D0:72:3E:B7:F3:67:51:E6:99:C7:60:9D:D9:7B:9E X509v3 Authority Key Identifier: keyid:D9:CD:40:47:4B:DD:0C:07:07:76:6C:ED:BA:F0:B6:A1:86:CF:58:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b1a77add-a49a-4c8f-a735-ef96c33ab29f/0/D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b1a77add-a49a-4c8f-a735-ef96c33ab29f/0/323030313a6466323a356130303a3a2f34382d3438203d3e20313335343434.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df2:5a00::/48 Signature Algorithm: sha256WithRSAEncryption 81:93:d3:bf:87:24:10:65:47:3f:4a:d7:09:a1:29:f0:90:a2: 5f:9c:ea:a9:ee:b4:bf:ec:d9:5b:8d:22:d2:ae:63:ac:b8:71: ad:b5:00:47:3e:af:30:25:1b:40:fa:42:39:1d:4e:f1:6b:bc: ad:d0:9a:c6:1a:28:85:b3:67:d2:13:39:15:92:cf:e1:cb:e5: bc:57:18:eb:cb:c4:e0:38:f7:db:8c:ac:01:a4:2c:5b:03:be: 20:57:50:e8:c6:1c:33:7d:32:55:dd:8f:47:d9:f6:43:77:5e: 9f:7e:50:d8:b8:81:cf:3c:b7:93:81:cd:f8:b7:28:b5:db:94: e6:93:ea:e6:c8:45:44:dc:da:cc:e7:eb:6a:be:c8:72:75:83: e5:aa:bd:e6:63:c1:71:b5:47:2f:b1:b8:d2:15:31:b9:4e:3f: 57:57:b9:84:d1:f6:17:83:81:11:ba:b5:ae:8e:f0:fb:e5:46: 6e:2d:3f:1f:6f:bb:37:b1:86:64:25:9c:e6:00:e1:f1:f6:4d: f9:95:30:f9:ab:7b:fc:fd:ee:a6:e3:46:89:74:5a:33:bb:a9: ba:33:5c:93:9a:1a:05:0a:cb:41:e0:80:f7:30:fd:1f:9f:c2: 2c:55:2b:a7:77:47:4e:a7:41:03:45:43:d7:b1:9a:99:db:29: 7d:ad:7c:e6 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUCzZbEfTiy59dpFNdVXvYYqZxoL4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDlDRDQwNDc0QkREMEMwNzA3NzY2Q0VEQkFGMEI2QTE4 NkNGNTgyRjAeFw0yNTA4MjUyMDU1MDBaFw0yNjA4MjQyMTAwMDBaMDMxMTAvBgNV BAMTKDE2NzA3Qjc1M0JEMDcyM0VCN0YzNjc1MUU2OTlDNzYwOUREOTdCOUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvj5r/bdacXa+Fy36ehoqTSnYl jqPNO+N3GeEEQECWxFajRAnm8tzeGX9Q0zteurKTZ3XI7brAZmWdqi8Z6V2GqpaT 1xfnusJCL9e9yaizvTldXagAmljVDlxxH8pUbfhB/PXfpuPOwFTCO5NqrftxJJ69 SnRDVrMA+O4qOcGrvlf0IfjoAQlBSGppjJvjgVHWD/hb5RXIrSwyC4xIq2r6RK7R e0EHmROkPdGvzsLycZRkEBPVwNRYhVPCXwUJ3o2p7Gc1qLrboRLEECCvxfsOjk59 +BofPONsilmkhMgmTRWvrVkSmCXk3bjIlITkKtVRjzCm4OICoCG+V+Z5E+VxAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUFnB7dTvQcj6382dR5pnHYJ3Ze54wHwYDVR0j BBgwFoAU2c1AR0vdDAcHdmztuvC2oYbPWC8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MWE3N2FkZC1hNDlhLTRjOGYtYTczNS1lZjk2YzMzYWIyOWYvMC9EOUNENDA0NzRC REQwQzA3MDc3NjZDRURCQUYwQjZBMTg2Q0Y1ODJGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDlDRDQwNDc0QkREMEMwNzA3NzY2Q0VEQkFGMEI2QTE4NkNG NTgyRi5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IxYTc3YWRkLWE0OWEtNGM4Zi1h NzM1LWVmOTZjMzNhYjI5Zi8wLzMyMzAzMDMxM2E2NDY2MzIzYTM1NjEzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM1MzQzNDM0LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8loAMA0GCSqGSIb3DQEBCwUAA4IBAQCBk9O/hyQQZUc/StcJoSnwkKJfnOqp7rS/ 7NlbjSLSrmOsuHGttQBHPq8wJRtA+kI5HU7xa7yt0JrGGiiFs2fSEzkVks/hy+W8 Vxjry8TgOPfbjKwBpCxbA74gV1DoxhwzfTJV3Y9H2fZDd16fflDYuIHPPLeTgc34 tyi125Tmk+rmyEVE3NrM5+tqvshydYPlqr3mY8FxtUcvsbjSFTG5Tj9XV7mE0fYX g4ERurWujvD75UZuLT8fb7s3sYZkJZzmAOHx9k35lTD5q3v8/e6m40aJdFozu6m6 M1yTmhoFCstB4ID3MP0fn8IsVSund0dOp0EDRUPXsZqZ2yl9rXzm -----END CERTIFICATE-----Generated at Mon Oct 20 20:44:36 2025 by rpki-client