$ rpki-client -vvf repo-rpki.idnic.net/repo/b6ed0584-ac2d-4664-bc11-d026ddbfaf7c/0/323030313a6466343a646638303a3a2f34382d3438203d3e20313431303730.roa File: 323030313a6466343a646638303a3a2f34382d3438203d3e20313431303730.roa (raw, json) Hash identifier: pmzgckCGAS5Ljr2SgdcTD9JmH8nize0p1NnNdSRs+P0= Subject key identifier: 3B:09:39:5F:41:E8:46:8A:F1:28:81:0C:82:8D:87:46:B6:B3:A3:2D Certificate issuer: /CN=03832B38693F0F23EF49480775A2493B9E3F7FA0 Certificate serial: 5A19962DF7BB32DFAC7B777ABDC390917934C81D Authority key identifier: 03:83:2B:38:69:3F:0F:23:EF:49:48:07:75:A2:49:3B:9E:3F:7F:A0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/03832B38693F0F23EF49480775A2493B9E3F7FA0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b6ed0584-ac2d-4664-bc11-d026ddbfaf7c/0/323030313a6466343a646638303a3a2f34382d3438203d3e20313431303730.roa Signing time: Thu 18 Sep 2025 04:03:32 +0000 ROA not before: Thu 18 Sep 2025 03:58:32 +0000 ROA not after: Thu 17 Sep 2026 04:03:32 +0000 asID: 141070 IP address blocks: 2001:df4:df80::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b6ed0584-ac2d-4664-bc11-d026ddbfaf7c/0/03832B38693F0F23EF49480775A2493B9E3F7FA0.crl rsync://repo-rpki.idnic.net/repo/b6ed0584-ac2d-4664-bc11-d026ddbfaf7c/0/03832B38693F0F23EF49480775A2493B9E3F7FA0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/03832B38693F0F23EF49480775A2493B9E3F7FA0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 05:38:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:19:96:2d:f7:bb:32:df:ac:7b:77:7a:bd:c3:90:91:79:34:c8:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=03832B38693F0F23EF49480775A2493B9E3F7FA0 Validity Not Before: Sep 18 03:58:32 2025 GMT Not After : Sep 17 04:03:32 2026 GMT Subject: CN=3B09395F41E8468AF128810C828D8746B6B3A32D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:76:14:68:8c:e6:ef:9e:5d:e3:cb:1b:4a:78: 0a:e4:cd:42:f2:91:77:65:35:20:a3:91:ca:82:57: 61:20:38:25:7c:52:f4:60:b3:31:49:36:ff:a5:4c: 95:82:5e:19:07:2a:59:43:23:1b:11:6f:9b:5f:42: 4d:ce:8e:90:26:b1:d1:e8:72:30:9c:38:6f:21:bd: f1:04:f2:88:ef:b9:64:8f:e9:69:3f:ab:7a:f2:c5: cc:12:9b:27:bb:12:29:bf:e7:80:46:52:6f:22:65: 6f:45:75:76:43:25:e7:be:da:08:27:51:69:00:40: 1c:3a:9f:a7:86:3c:1c:2d:b6:a1:a6:9d:aa:02:17: 8e:d8:6c:1e:e4:87:f0:a4:93:46:7e:44:7b:2e:dc: 9e:30:60:ff:c2:98:3a:5c:70:a6:79:47:c6:cf:16: dc:44:9b:3a:b8:01:59:cc:28:68:f7:4d:09:08:75: ed:5a:1d:9e:6c:65:0a:36:70:59:91:99:80:de:ad: e6:b4:6e:ed:98:da:83:5f:12:10:19:45:a2:2d:9b: 41:3a:ce:8e:a6:94:c3:60:26:e1:0b:62:b5:ff:68: 9a:4d:f7:47:cd:9a:09:a8:ad:4f:79:08:88:a6:11: 9e:31:0f:d5:06:38:e6:4c:29:ce:26:f5:94:47:4f: c4:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:09:39:5F:41:E8:46:8A:F1:28:81:0C:82:8D:87:46:B6:B3:A3:2D X509v3 Authority Key Identifier: keyid:03:83:2B:38:69:3F:0F:23:EF:49:48:07:75:A2:49:3B:9E:3F:7F:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b6ed0584-ac2d-4664-bc11-d026ddbfaf7c/0/03832B38693F0F23EF49480775A2493B9E3F7FA0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/03832B38693F0F23EF49480775A2493B9E3F7FA0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b6ed0584-ac2d-4664-bc11-d026ddbfaf7c/0/323030313a6466343a646638303a3a2f34382d3438203d3e20313431303730.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df4:df80::/48 Signature Algorithm: sha256WithRSAEncryption c0:1a:a2:d1:90:c1:d3:54:92:29:5f:64:ab:89:60:a8:8d:38: 1a:fa:e5:42:97:60:84:8f:c0:92:c8:77:7a:82:a5:03:3d:b5: dd:3d:82:df:3d:78:59:e8:75:1c:93:9e:a9:24:1f:a3:04:d8: cf:f4:ed:2d:3d:51:28:2d:67:b1:59:40:c6:3d:54:50:c5:39: 53:3e:b8:b5:24:bd:d6:4f:42:db:aa:e1:1d:49:e3:09:91:fd: ee:f7:51:c0:b2:4c:ee:a9:64:1d:b0:a1:e7:b2:05:37:2f:c1: 61:d4:12:7e:7b:66:c7:de:a8:9f:92:79:34:6f:12:70:86:97: 72:ab:7c:cf:6c:ba:a4:46:66:b1:62:7c:9e:42:8c:20:0a:d4: 80:ae:df:e2:bf:5c:1a:3f:ba:b3:93:9e:73:c6:b1:d1:b6:e1: 31:79:b7:c9:90:7f:4f:7c:3b:b9:8f:38:9f:7b:17:d7:ff:61: 55:68:d5:75:fd:65:9d:e1:56:2b:81:00:1e:8f:30:c3:6f:29: d6:46:94:20:cc:41:fb:07:69:b6:15:1e:cf:c6:7c:69:50:33: 61:62:0f:77:98:4b:5c:a7:0a:4d:20:30:89:4b:02:f7:56:75: 96:10:5d:bf:80:ed:d8:98:9b:ee:67:ad:a1:21:f3:77:b1:30: 12:e9:b1:3f -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUWhmWLfe7Mt+se3d6vcOQkXk0yB0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDM4MzJCMzg2OTNGMEYyM0VGNDk0ODA3NzVBMjQ5M0I5 RTNGN0ZBMDAeFw0yNTA5MTgwMzU4MzJaFw0yNjA5MTcwNDAzMzJaMDMxMTAvBgNV BAMTKDNCMDkzOTVGNDFFODQ2OEFGMTI4ODEwQzgyOEQ4NzQ2QjZCM0EzMkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpdhRojObvnl3jyxtKeArkzULy kXdlNSCjkcqCV2EgOCV8UvRgszFJNv+lTJWCXhkHKllDIxsRb5tfQk3OjpAmsdHo cjCcOG8hvfEE8ojvuWSP6Wk/q3ryxcwSmye7Eim/54BGUm8iZW9FdXZDJee+2ggn UWkAQBw6n6eGPBwttqGmnaoCF47YbB7kh/Ckk0Z+RHsu3J4wYP/CmDpccKZ5R8bP FtxEmzq4AVnMKGj3TQkIde1aHZ5sZQo2cFmRmYDerea0bu2Y2oNfEhAZRaItm0E6 zo6mlMNgJuELYrX/aJpN90fNmgmorU95CIimEZ4xD9UGOOZMKc4m9ZRHT8QrAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUOwk5X0HoRorxKIEMgo2HRrazoy0wHwYDVR0j BBgwFoAUA4MrOGk/DyPvSUgHdaJJO54/f6AwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i NmVkMDU4NC1hYzJkLTQ2NjQtYmMxMS1kMDI2ZGRiZmFmN2MvMC8wMzgzMkIzODY5 M0YwRjIzRUY0OTQ4MDc3NUEyNDkzQjlFM0Y3RkEwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDM4MzJCMzg2OTNGMEYyM0VGNDk0ODA3NzVBMjQ5M0I5RTNG N0ZBMC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I2ZWQwNTg0LWFjMmQtNDY2NC1i YzExLWQwMjZkZGJmYWY3Yy8wLzMyMzAzMDMxM2E2NDY2MzQzYTY0NjYzODMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNDMxMzAzNzMwLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 9N+AMA0GCSqGSIb3DQEBCwUAA4IBAQDAGqLRkMHTVJIpX2SriWCojTga+uVCl2CE j8CSyHd6gqUDPbXdPYLfPXhZ6HUck56pJB+jBNjP9O0tPVEoLWexWUDGPVRQxTlT Pri1JL3WT0LbquEdSeMJkf3u91HAskzuqWQdsKHnsgU3L8Fh1BJ+e2bH3qifknk0 bxJwhpdyq3zPbLqkRmaxYnyeQowgCtSArt/iv1waP7qzk55zxrHRtuExebfJkH9P fDu5jzifexfX/2FVaNV1/WWd4VYrgQAejzDDbynWRpQgzEH7B2m2FR7PxnxpUDNh Yg93mEtcpwpNIDCJSwL3VnWWEF2/gO3YmJvuZ62hIfN3sTAS6bE/ -----END CERTIFICATE-----Generated at Mon Oct 20 15:32:59 2025 by rpki-client