$ rpki-client -vvf repo-rpki.idnic.net/repo/b20c6d69-6290-402f-a84e-d289c6e93a73/0/323430343a636534303a3a2f34382d3438203d3e20313338383834.roa File: 323430343a636534303a3a2f34382d3438203d3e20313338383834.roa (raw, json) Hash identifier: 7RaKUkFBeMAENsKDT1lo2zKa045TKNeXWhBxokU48NQ= Subject key identifier: 77:9D:E1:24:CB:FC:38:EA:4A:3F:8C:6D:74:28:3E:35:41:BF:3B:97 Certificate issuer: /CN=88BD1AAEA16D8A24550416CDB95E232152249B3E Certificate serial: 3690E72925C2B0781C0EA7D0E4099A0487FFDD0D Authority key identifier: 88:BD:1A:AE:A1:6D:8A:24:55:04:16:CD:B9:5E:23:21:52:24:9B:3E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/88BD1AAEA16D8A24550416CDB95E232152249B3E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b20c6d69-6290-402f-a84e-d289c6e93a73/0/323430343a636534303a3a2f34382d3438203d3e20313338383834.roa Signing time: Sat 16 Aug 2025 18:00:01 +0000 ROA not before: Sat 16 Aug 2025 17:55:01 +0000 ROA not after: Sat 15 Aug 2026 18:00:01 +0000 asID: 138884 IP address blocks: 2404:ce40::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b20c6d69-6290-402f-a84e-d289c6e93a73/0/88BD1AAEA16D8A24550416CDB95E232152249B3E.crl rsync://repo-rpki.idnic.net/repo/b20c6d69-6290-402f-a84e-d289c6e93a73/0/88BD1AAEA16D8A24550416CDB95E232152249B3E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/88BD1AAEA16D8A24550416CDB95E232152249B3E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 16:49:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:90:e7:29:25:c2:b0:78:1c:0e:a7:d0:e4:09:9a:04:87:ff:dd:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=88BD1AAEA16D8A24550416CDB95E232152249B3E Validity Not Before: Aug 16 17:55:01 2025 GMT Not After : Aug 15 18:00:01 2026 GMT Subject: CN=779DE124CBFC38EA4A3F8C6D74283E3541BF3B97 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:1c:93:1a:a7:99:e2:b3:c3:3b:19:a7:b0:b8: f8:28:a7:36:cd:9c:dd:39:27:57:c1:3c:a4:5f:72: bb:dc:50:d0:b7:c5:ad:76:2a:61:e2:66:f5:9c:16: 67:36:08:86:39:19:d1:f3:9d:a5:31:6e:5e:a5:3d: 22:bd:49:2d:59:33:9e:ab:b3:a2:a0:4a:61:f0:ac: b2:91:ae:35:01:9e:86:f1:9e:87:16:2b:15:a0:13: 88:a3:3b:dd:df:c9:08:6f:b6:1f:13:56:07:af:e3: ad:f3:0e:c1:02:6b:6f:af:36:84:43:e9:8c:29:5e: 09:56:5d:8a:3e:d5:a3:0f:64:c6:b8:8c:2e:15:b4: db:7a:7c:60:74:af:af:2e:11:17:0b:ca:d8:ce:46: 20:31:2b:df:a9:79:27:cc:50:a2:fa:9b:71:9c:e5: aa:ac:8c:8b:87:3c:a9:d8:07:22:ce:a6:d0:0f:9a: eb:2b:15:eb:97:f7:00:76:c4:68:03:8d:99:e0:76: 63:e1:e2:b9:26:62:25:b5:1f:31:8d:7b:e5:71:c9: d9:61:a5:db:bb:80:9c:c2:41:c9:70:38:ca:1f:4b: c8:9f:c1:8b:df:4c:d3:28:78:26:94:9e:b4:ca:35: 64:88:a3:24:6b:cb:6f:0e:11:a7:62:63:8b:0a:49: de:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:9D:E1:24:CB:FC:38:EA:4A:3F:8C:6D:74:28:3E:35:41:BF:3B:97 X509v3 Authority Key Identifier: keyid:88:BD:1A:AE:A1:6D:8A:24:55:04:16:CD:B9:5E:23:21:52:24:9B:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b20c6d69-6290-402f-a84e-d289c6e93a73/0/88BD1AAEA16D8A24550416CDB95E232152249B3E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/88BD1AAEA16D8A24550416CDB95E232152249B3E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b20c6d69-6290-402f-a84e-d289c6e93a73/0/323430343a636534303a3a2f34382d3438203d3e20313338383834.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:ce40::/48 Signature Algorithm: sha256WithRSAEncryption d0:87:1c:69:6d:ba:e9:b7:dc:28:1f:9f:8f:85:8a:d2:98:50: 27:5e:88:a6:77:fc:a0:50:25:b8:98:ed:8d:d7:b7:40:a4:9f: 13:68:b2:0b:8f:28:45:aa:cb:4f:d5:60:03:d5:d0:f6:00:1d: 0d:7c:49:d7:f2:39:95:d6:77:4e:41:e0:b1:d4:60:a6:35:aa: ea:6d:bc:d0:42:69:79:3c:5d:8e:3a:a0:c3:0e:77:1b:67:05: 7a:46:62:14:a3:df:60:14:f5:4f:0e:f2:3b:16:53:78:de:5f: 3b:dc:36:a0:80:d5:20:f9:ef:32:b5:6c:ba:29:d9:86:62:71: a4:6c:bb:45:24:07:8f:03:92:fe:6a:aa:7f:09:d8:cf:0a:6b: 54:ab:14:33:42:54:fa:34:ab:b4:3f:21:01:d9:7f:f4:53:81: c8:c6:42:4b:f9:75:72:2a:e3:c7:ce:ad:80:5a:0e:5d:43:83: ac:33:08:a5:d8:fb:c6:c3:94:86:30:0b:42:3c:1f:d3:c3:d8: 8c:ea:23:d8:6d:59:22:b5:dd:47:38:e3:0a:96:70:e1:ef:55: 68:e4:b0:4f:45:50:cd:14:52:89:d9:b8:bf:8c:2f:ac:59:84: 0b:89:09:d1:7d:a1:28:42:7c:80:a5:46:fc:86:e4:62:b8:cd: 93:df:32:be -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgIUNpDnKSXCsHgcDqfQ5AmaBIf/3Q0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODhCRDFBQUVBMTZEOEEyNDU1MDQxNkNEQjk1RTIzMjE1 MjI0OUIzRTAeFw0yNTA4MTYxNzU1MDFaFw0yNjA4MTUxODAwMDFaMDMxMTAvBgNV BAMTKDc3OURFMTI0Q0JGQzM4RUE0QTNGOEM2RDc0MjgzRTM1NDFCRjNCOTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+HJMap5nis8M7GaewuPgopzbN nN05J1fBPKRfcrvcUNC3xa12KmHiZvWcFmc2CIY5GdHznaUxbl6lPSK9SS1ZM56r s6KgSmHwrLKRrjUBnobxnocWKxWgE4ijO93fyQhvth8TVgev463zDsECa2+vNoRD 6YwpXglWXYo+1aMPZMa4jC4VtNt6fGB0r68uERcLytjORiAxK9+peSfMUKL6m3Gc 5aqsjIuHPKnYByLOptAPmusrFeuX9wB2xGgDjZngdmPh4rkmYiW1HzGNe+Vxydlh pdu7gJzCQclwOMofS8ifwYvfTNMoeCaUnrTKNWSIoyRry28OEadiY4sKSd7DAgMB AAGjggI1MIICMTAdBgNVHQ4EFgQUd53hJMv8OOpKP4xtdCg+NUG/O5cwHwYDVR0j BBgwFoAUiL0arqFtiiRVBBbNuV4jIVIkmz4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MjBjNmQ2OS02MjkwLTQwMmYtYTg0ZS1kMjg5YzZlOTNhNzMvMC84OEJEMUFBRUEx NkQ4QTI0NTUwNDE2Q0RCOTVFMjMyMTUyMjQ5QjNFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODhCRDFBQUVBMTZEOEEyNDU1MDQxNkNEQjk1RTIzMjE1MjI0 OUIzRS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IyMGM2ZDY5LTYyOTAtNDAyZi1h ODRlLWQyODljNmU5M2E3My8wLzMyMzQzMDM0M2E2MzY1MzQzMDNhM2EyZjM0Mzgy ZDM0MzgyMDNkM2UyMDMxMzMzODM4MzgzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQEzkAAADANBgkq hkiG9w0BAQsFAAOCAQEA0IccaW266bfcKB+fj4WK0phQJ16Ipnf8oFAluJjtjde3 QKSfE2iyC48oRarLT9VgA9XQ9gAdDXxJ1/I5ldZ3TkHgsdRgpjWq6m280EJpeTxd jjqgww53G2cFekZiFKPfYBT1Tw7yOxZTeN5fO9w2oIDVIPnvMrVsuinZhmJxpGy7 RSQHjwOS/mqqfwnYzwprVKsUM0JU+jSrtD8hAdl/9FOByMZCS/l1cirjx86tgFoO XUODrDMIpdj7xsOUhjALQjwf08PYjOoj2G1ZIrXdRzjjCpZw4e9VaOSwT0VQzRRS idm4v4wvrFmEC4kJ0X2hKEJ8gKVG/IbkYrjNk98yvg== -----END CERTIFICATE-----Generated at Sat Aug 23 16:11:55 2025 by rpki-client