$ rpki-client -vvf repo-rpki.idnic.net/repo/b20c6d69-6290-402f-a84e-d289c6e93a73/0/323430343a636534303a323a3a2f34382d3438203d3e20313338383834.roa File: 323430343a636534303a323a3a2f34382d3438203d3e20313338383834.roa (raw, json) Hash identifier: m0iy4uxEorD8+ndIDexanwH0s76m+P4rdZZH08lw8gk= Subject key identifier: 84:04:86:84:58:1E:61:80:3C:34:8E:9C:E1:6E:53:CA:E9:9F:9E:CE Certificate issuer: /CN=88BD1AAEA16D8A24550416CDB95E232152249B3E Certificate serial: 6E4DA7D6A2D254152277A99B0216D1F33C55BAD8 Authority key identifier: 88:BD:1A:AE:A1:6D:8A:24:55:04:16:CD:B9:5E:23:21:52:24:9B:3E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/88BD1AAEA16D8A24550416CDB95E232152249B3E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b20c6d69-6290-402f-a84e-d289c6e93a73/0/323430343a636534303a323a3a2f34382d3438203d3e20313338383834.roa Signing time: Sat 16 Aug 2025 18:00:01 +0000 ROA not before: Sat 16 Aug 2025 17:55:01 +0000 ROA not after: Sat 15 Aug 2026 18:00:01 +0000 asID: 138884 IP address blocks: 2404:ce40:2::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b20c6d69-6290-402f-a84e-d289c6e93a73/0/88BD1AAEA16D8A24550416CDB95E232152249B3E.crl rsync://repo-rpki.idnic.net/repo/b20c6d69-6290-402f-a84e-d289c6e93a73/0/88BD1AAEA16D8A24550416CDB95E232152249B3E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/88BD1AAEA16D8A24550416CDB95E232152249B3E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 16:49:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:4d:a7:d6:a2:d2:54:15:22:77:a9:9b:02:16:d1:f3:3c:55:ba:d8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=88BD1AAEA16D8A24550416CDB95E232152249B3E Validity Not Before: Aug 16 17:55:01 2025 GMT Not After : Aug 15 18:00:01 2026 GMT Subject: CN=84048684581E61803C348E9CE16E53CAE99F9ECE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:6a:d7:f9:06:fb:6f:a2:df:7a:21:91:9f:0c: f6:a8:bd:fb:bf:62:8d:38:fc:c6:62:bc:0a:30:05: 8f:30:d9:ee:9e:19:cd:71:e4:92:1d:3b:2d:4a:48: 23:cc:ff:4f:bb:3b:29:e2:13:23:7a:1b:51:c6:b7: 2c:f7:86:48:53:47:06:96:ad:14:d6:cd:57:f1:74: e7:1f:7b:40:09:62:c1:bd:38:25:d8:11:ed:ce:3b: 04:33:23:e1:c4:59:c5:ab:62:eb:4d:18:ce:ec:ef: b1:48:0e:fd:cd:da:c5:32:bc:f0:a8:22:cf:50:8e: fb:89:c0:e9:fe:9d:c9:4c:02:bd:19:8b:40:58:e3: 65:ba:60:b3:dc:e0:d7:e6:cb:4a:3a:68:35:0b:27: b4:52:d1:05:6a:d5:de:67:8e:d7:eb:b9:1e:6c:ff: f0:ce:82:85:da:b6:e1:c6:96:9e:dc:70:f0:7a:df: d7:41:93:57:3d:08:8d:79:24:4e:25:b8:70:21:30: b1:72:c5:e2:33:be:ac:1d:c2:67:53:06:82:50:e8: c6:2a:4e:b2:db:37:c5:0f:d9:38:f4:20:3b:7a:85: 32:2c:c6:fc:12:4e:d1:1a:63:ee:89:e0:dd:11:42: 36:f3:40:2d:51:fa:f9:a5:c7:37:2f:5c:77:9f:b9: e9:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:04:86:84:58:1E:61:80:3C:34:8E:9C:E1:6E:53:CA:E9:9F:9E:CE X509v3 Authority Key Identifier: keyid:88:BD:1A:AE:A1:6D:8A:24:55:04:16:CD:B9:5E:23:21:52:24:9B:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b20c6d69-6290-402f-a84e-d289c6e93a73/0/88BD1AAEA16D8A24550416CDB95E232152249B3E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/88BD1AAEA16D8A24550416CDB95E232152249B3E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b20c6d69-6290-402f-a84e-d289c6e93a73/0/323430343a636534303a323a3a2f34382d3438203d3e20313338383834.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:ce40:2::/48 Signature Algorithm: sha256WithRSAEncryption aa:a9:f0:9a:da:82:f3:51:52:1c:a1:fd:46:32:37:ca:58:e8: 2a:e3:6e:ed:11:16:e5:cc:6e:62:3a:b1:cf:37:49:22:ae:98: c1:c6:43:27:2d:68:07:84:c4:0d:eb:bd:40:ac:25:0c:af:14: e3:a5:2a:26:76:f9:80:83:c8:46:06:2e:21:1d:e8:38:f0:9a: de:29:f8:7b:cf:ad:c7:bc:fd:35:e4:c5:8d:8c:b8:9d:d7:ab: de:01:3c:30:24:7a:a0:41:4b:31:f7:9f:47:04:f5:ca:da:ef: 29:fc:72:91:1e:10:2e:3c:c6:c9:ef:c3:3e:e1:ae:82:6d:6f: e1:f0:6d:0c:e9:1b:6e:ee:94:f9:8a:19:26:30:8e:6b:92:df: bb:34:b6:1e:4a:e9:6d:a5:61:88:06:80:80:15:0f:82:53:17: af:c7:5f:ab:fa:68:45:81:5a:41:66:64:17:54:42:1d:18:3a: f2:7e:92:fc:58:10:a5:38:61:4a:ee:2c:38:0b:e4:76:9c:97: 4e:97:46:4f:e4:58:e1:fb:09:a8:4d:82:3e:96:ee:8a:ec:13: 7b:17:5b:34:b8:7d:bd:d2:a9:bc:73:dd:3f:94:86:6e:11:59: 91:e5:b0:70:92:0b:f0:87:bd:2d:dc:c9:c2:af:f5:e7:20:26: 51:49:3a:1e -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUbk2n1qLSVBUid6mbAhbR8zxVutgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODhCRDFBQUVBMTZEOEEyNDU1MDQxNkNEQjk1RTIzMjE1 MjI0OUIzRTAeFw0yNTA4MTYxNzU1MDFaFw0yNjA4MTUxODAwMDFaMDMxMTAvBgNV BAMTKDg0MDQ4Njg0NTgxRTYxODAzQzM0OEU5Q0UxNkU1M0NBRTk5RjlFQ0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJatf5Bvtvot96IZGfDPaovfu/ Yo04/MZivAowBY8w2e6eGc1x5JIdOy1KSCPM/0+7OyniEyN6G1HGtyz3hkhTRwaW rRTWzVfxdOcfe0AJYsG9OCXYEe3OOwQzI+HEWcWrYutNGM7s77FIDv3N2sUyvPCo Is9QjvuJwOn+nclMAr0Zi0BY42W6YLPc4Nfmy0o6aDULJ7RS0QVq1d5njtfruR5s //DOgoXatuHGlp7ccPB639dBk1c9CI15JE4luHAhMLFyxeIzvqwdwmdTBoJQ6MYq TrLbN8UP2Tj0IDt6hTIsxvwSTtEaY+6J4N0RQjbzQC1R+vmlxzcvXHefuekHAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUhASGhFgeYYA8NI6c4W5Tyumfns4wHwYDVR0j BBgwFoAUiL0arqFtiiRVBBbNuV4jIVIkmz4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MjBjNmQ2OS02MjkwLTQwMmYtYTg0ZS1kMjg5YzZlOTNhNzMvMC84OEJEMUFBRUEx NkQ4QTI0NTUwNDE2Q0RCOTVFMjMyMTUyMjQ5QjNFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODhCRDFBQUVBMTZEOEEyNDU1MDQxNkNEQjk1RTIzMjE1MjI0 OUIzRS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IyMGM2ZDY5LTYyOTAtNDAyZi1h ODRlLWQyODljNmU5M2E3My8wLzMyMzQzMDM0M2E2MzY1MzQzMDNhMzIzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTMzMzgzODM4MzQucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBM5AAAIw DQYJKoZIhvcNAQELBQADggEBAKqp8JragvNRUhyh/UYyN8pY6Crjbu0RFuXMbmI6 sc83SSKumMHGQyctaAeExA3rvUCsJQyvFOOlKiZ2+YCDyEYGLiEd6Djwmt4p+HvP rce8/TXkxY2MuJ3Xq94BPDAkeqBBSzH3n0cE9cra7yn8cpEeEC48xsnvwz7hroJt b+HwbQzpG27ulPmKGSYwjmuS37s0th5K6W2lYYgGgIAVD4JTF6/HX6v6aEWBWkFm ZBdUQh0YOvJ+kvxYEKU4YUruLDgL5Hacl06XRk/kWOH7CahNgj6W7orsE3sXWzS4 fb3Sqbxz3T+Uhm4RWZHlsHCSC/CHvS3cycKv9ecgJlFJOh4= -----END CERTIFICATE-----Generated at Sat Aug 23 16:11:15 2025 by rpki-client