$ rpki-client -vvf repo-rpki.idnic.net/repo/b20c6d69-6290-402f-a84e-d289c6e93a73/0/323430343a636534303a313a3a2f34382d3438203d3e20313338383834.roa File: 323430343a636534303a313a3a2f34382d3438203d3e20313338383834.roa (raw, json) Hash identifier: Svxu0NqHa+wHzLIVUZs9pIJtQr2JGvA1Prp0dp6pQO8= Subject key identifier: 30:40:CC:90:03:B2:85:85:DF:A2:8A:49:CD:CE:6C:E1:EC:74:22:9A Certificate issuer: /CN=88BD1AAEA16D8A24550416CDB95E232152249B3E Certificate serial: 76481E3B0DE42BE659557F56872828276E7313BC Authority key identifier: 88:BD:1A:AE:A1:6D:8A:24:55:04:16:CD:B9:5E:23:21:52:24:9B:3E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/88BD1AAEA16D8A24550416CDB95E232152249B3E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b20c6d69-6290-402f-a84e-d289c6e93a73/0/323430343a636534303a313a3a2f34382d3438203d3e20313338383834.roa Signing time: Sat 16 Aug 2025 19:00:01 +0000 ROA not before: Sat 16 Aug 2025 18:55:01 +0000 ROA not after: Sat 15 Aug 2026 19:00:01 +0000 asID: 138884 IP address blocks: 2404:ce40:1::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b20c6d69-6290-402f-a84e-d289c6e93a73/0/88BD1AAEA16D8A24550416CDB95E232152249B3E.crl rsync://repo-rpki.idnic.net/repo/b20c6d69-6290-402f-a84e-d289c6e93a73/0/88BD1AAEA16D8A24550416CDB95E232152249B3E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/88BD1AAEA16D8A24550416CDB95E232152249B3E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 16:49:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:48:1e:3b:0d:e4:2b:e6:59:55:7f:56:87:28:28:27:6e:73:13:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=88BD1AAEA16D8A24550416CDB95E232152249B3E Validity Not Before: Aug 16 18:55:01 2025 GMT Not After : Aug 15 19:00:01 2026 GMT Subject: CN=3040CC9003B28585DFA28A49CDCE6CE1EC74229A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:dc:65:3d:83:13:ce:57:22:3a:2a:97:cb:55: 8a:2b:d2:f2:0f:1b:ec:75:7f:04:af:a2:cd:a1:ca: e6:8a:5a:e6:cd:56:54:d2:9c:41:74:30:ec:6c:44: e8:46:3a:0d:dd:d8:2a:e6:85:f7:b3:9a:89:7a:28: 1b:7c:a7:78:0e:97:17:82:28:4c:5e:a4:40:32:c0: 97:24:e1:d1:96:8c:22:14:2e:ce:f0:2b:ee:18:26: ff:e3:cb:1a:30:13:32:ea:ec:d4:f8:11:cf:39:b8: ca:c6:ed:f8:10:1a:d9:df:04:fe:ae:38:1f:b6:e6: d1:76:7a:b5:e4:ed:73:2e:91:db:18:ac:3c:d3:99: 4f:80:78:a3:b7:7d:75:53:6a:1e:02:69:b6:1a:2a: b6:a8:dd:6c:b7:cb:91:6e:53:8f:cd:17:20:07:b4: 93:91:23:c1:88:80:90:9b:a2:73:94:d1:6e:24:94: b0:be:3e:a3:32:7d:fb:73:fd:79:ba:83:02:6f:2f: 75:e8:10:2c:fc:45:1b:ba:d3:5f:d5:c7:9f:f9:7a: ad:e7:8a:f8:d2:d4:09:c8:e1:81:17:3a:25:99:11: e7:01:d3:c8:f1:81:85:20:83:f6:de:48:e9:b2:5a: c8:78:8f:e2:2d:a8:67:0d:92:f5:1b:50:d9:aa:e5: f7:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:40:CC:90:03:B2:85:85:DF:A2:8A:49:CD:CE:6C:E1:EC:74:22:9A X509v3 Authority Key Identifier: keyid:88:BD:1A:AE:A1:6D:8A:24:55:04:16:CD:B9:5E:23:21:52:24:9B:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b20c6d69-6290-402f-a84e-d289c6e93a73/0/88BD1AAEA16D8A24550416CDB95E232152249B3E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/88BD1AAEA16D8A24550416CDB95E232152249B3E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b20c6d69-6290-402f-a84e-d289c6e93a73/0/323430343a636534303a313a3a2f34382d3438203d3e20313338383834.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:ce40:1::/48 Signature Algorithm: sha256WithRSAEncryption 15:2b:89:ab:01:82:58:4f:5a:ba:5a:d4:02:6a:cf:45:da:8a: 7b:f4:52:4d:91:4b:02:d5:70:7a:86:5b:a1:ec:03:51:c1:b4: f6:91:74:26:f4:b4:74:ee:d6:5f:a3:2d:91:cb:ec:38:89:a2: c2:0d:19:ba:0d:d2:27:fe:b8:e1:45:96:6c:1d:c9:1a:4c:04: cc:89:b3:7c:bb:1c:38:85:55:c4:98:aa:73:9c:f3:10:ba:86: 09:3e:e8:69:ff:44:61:4f:36:a4:93:b5:6e:30:39:23:92:5e: 23:bb:4a:4a:6a:a5:61:3c:dc:1a:78:16:2d:04:04:81:ea:2f: 6e:0e:eb:98:0e:39:a2:00:f5:ee:9f:97:14:15:af:6f:86:6b: b7:37:4a:0e:9e:66:9c:9f:ea:dc:8c:ff:ca:9e:8f:a7:3e:3a: c1:1b:f5:68:ab:38:bc:3b:61:9b:4e:2d:cc:4e:d1:9b:32:10: f0:e3:7d:3a:98:db:79:1e:74:70:48:65:56:71:02:2d:a2:3e: 72:5f:66:06:d6:cc:4b:d9:64:4d:0b:8d:c3:e8:16:bb:e6:f8: 8c:ef:e4:e3:6f:30:9e:b3:24:fb:29:e3:18:68:c4:aa:b9:e2: 9d:d5:c1:f6:6f:69:2f:23:47:c5:52:09:91:c2:0b:65:c6:d8: 3c:45:bc:a4 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUdkgeOw3kK+ZZVX9WhygoJ25zE7wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODhCRDFBQUVBMTZEOEEyNDU1MDQxNkNEQjk1RTIzMjE1 MjI0OUIzRTAeFw0yNTA4MTYxODU1MDFaFw0yNjA4MTUxOTAwMDFaMDMxMTAvBgNV BAMTKDMwNDBDQzkwMDNCMjg1ODVERkEyOEE0OUNEQ0U2Q0UxRUM3NDIyOUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCd3GU9gxPOVyI6KpfLVYor0vIP G+x1fwSvos2hyuaKWubNVlTSnEF0MOxsROhGOg3d2Crmhfezmol6KBt8p3gOlxeC KExepEAywJck4dGWjCIULs7wK+4YJv/jyxowEzLq7NT4Ec85uMrG7fgQGtnfBP6u OB+25tF2erXk7XMukdsYrDzTmU+AeKO3fXVTah4CabYaKrao3Wy3y5FuU4/NFyAH tJORI8GIgJCbonOU0W4klLC+PqMyfftz/Xm6gwJvL3XoECz8RRu601/Vx5/5eq3n ivjS1AnI4YEXOiWZEecB08jxgYUgg/beSOmyWsh4j+ItqGcNkvUbUNmq5ffXAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUMEDMkAOyhYXfoopJzc5s4ex0IpowHwYDVR0j BBgwFoAUiL0arqFtiiRVBBbNuV4jIVIkmz4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MjBjNmQ2OS02MjkwLTQwMmYtYTg0ZS1kMjg5YzZlOTNhNzMvMC84OEJEMUFBRUEx NkQ4QTI0NTUwNDE2Q0RCOTVFMjMyMTUyMjQ5QjNFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODhCRDFBQUVBMTZEOEEyNDU1MDQxNkNEQjk1RTIzMjE1MjI0 OUIzRS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IyMGM2ZDY5LTYyOTAtNDAyZi1h ODRlLWQyODljNmU5M2E3My8wLzMyMzQzMDM0M2E2MzY1MzQzMDNhMzEzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTMzMzgzODM4MzQucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBM5AAAEw DQYJKoZIhvcNAQELBQADggEBABUriasBglhPWrpa1AJqz0Xainv0Uk2RSwLVcHqG W6HsA1HBtPaRdCb0tHTu1l+jLZHL7DiJosINGboN0if+uOFFlmwdyRpMBMyJs3y7 HDiFVcSYqnOc8xC6hgk+6Gn/RGFPNqSTtW4wOSOSXiO7SkpqpWE83Bp4Fi0EBIHq L24O65gOOaIA9e6flxQVr2+Ga7c3Sg6eZpyf6tyM/8qej6c+OsEb9WirOLw7YZtO LcxO0ZsyEPDjfTqY23kedHBIZVZxAi2iPnJfZgbWzEvZZE0LjcPoFrvm+Izv5ONv MJ6zJPsp4xhoxKq54p3VwfZvaS8jR8VSCZHCC2XG2DxFvKQ= -----END CERTIFICATE-----Generated at Sat Aug 23 16:09:02 2025 by rpki-client