$ rpki-client -vvf repo-rpki.idnic.net/repo/ba89b7dd-99a7-450e-be84-b3bfc7340f1f/1/323030313a6466343a353663303a3a2f34382d3438203d3e20313533313231.roa File: 323030313a6466343a353663303a3a2f34382d3438203d3e20313533313231.roa (raw, json) Hash identifier: EZ7jR9+lQhRaaJFDwK6y0EbEgy21NUoqJfk8uRlaKvI= Subject key identifier: 8B:C8:F6:97:B3:F1:CD:F4:13:86:2C:79:F1:30:86:E4:08:A1:39:F6 Certificate issuer: /CN=6A3996AFE1138238530C2FC92B2AB675FCD218C8 Certificate serial: 4F998088E49024FF67886150A4F87AB9AC0106D8 Authority key identifier: 6A:39:96:AF:E1:13:82:38:53:0C:2F:C9:2B:2A:B6:75:FC:D2:18:C8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6A3996AFE1138238530C2FC92B2AB675FCD218C8.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ba89b7dd-99a7-450e-be84-b3bfc7340f1f/1/323030313a6466343a353663303a3a2f34382d3438203d3e20313533313231.roa Signing time: Tue 30 Sep 2025 08:00:02 +0000 ROA not before: Tue 30 Sep 2025 07:55:02 +0000 ROA not after: Tue 29 Sep 2026 08:00:02 +0000 asID: 153121 IP address blocks: 2001:df4:56c0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ba89b7dd-99a7-450e-be84-b3bfc7340f1f/1/6A3996AFE1138238530C2FC92B2AB675FCD218C8.crl rsync://repo-rpki.idnic.net/repo/ba89b7dd-99a7-450e-be84-b3bfc7340f1f/1/6A3996AFE1138238530C2FC92B2AB675FCD218C8.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6A3996AFE1138238530C2FC92B2AB675FCD218C8.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Oct 2025 20:51:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:99:80:88:e4:90:24:ff:67:88:61:50:a4:f8:7a:b9:ac:01:06:d8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6A3996AFE1138238530C2FC92B2AB675FCD218C8 Validity Not Before: Sep 30 07:55:02 2025 GMT Not After : Sep 29 08:00:02 2026 GMT Subject: CN=8BC8F697B3F1CDF413862C79F13086E408A139F6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:85:60:2c:d2:c2:b3:f0:f7:d7:1f:d0:9c:0d: a2:35:c1:af:d8:bb:eb:6a:c8:65:44:e9:96:c7:c4: 50:29:a5:a5:85:11:92:a7:8e:19:43:1c:4d:b9:b8: ac:69:90:10:41:3d:b6:32:a8:bb:fd:f1:54:db:2e: 2d:43:84:41:b5:66:de:ae:d0:32:e1:ad:83:65:c9: f6:6f:c2:c6:ec:cc:c8:fe:ff:76:a8:c7:96:80:81: b8:5e:82:35:37:e4:2e:a8:bd:cd:13:b4:1f:76:ab: 23:e9:cf:c6:f8:39:8a:68:6e:94:50:b2:21:b2:ec: 4d:79:f1:9d:18:5b:0c:47:bb:d9:2b:5e:07:4a:91: c5:e2:23:86:a0:0a:ff:fe:1d:c2:bf:02:1e:b7:be: f7:62:f0:f2:5a:90:62:75:cf:b7:c5:f1:c4:90:3b: 08:a9:c4:4f:8f:0e:a2:09:d7:f7:3f:a6:46:28:a2: a9:ce:30:75:c0:80:c8:df:a8:ff:36:bf:bd:50:37: b7:bb:bb:9b:aa:7e:40:88:89:aa:7c:e1:32:cc:7b: 32:7e:8b:21:cb:f6:e9:3c:d6:dc:db:fa:7e:54:e0: 9b:6c:d5:4e:1b:e8:43:db:9a:b2:8f:2b:f9:b5:41: 70:4a:d3:5a:4e:25:f2:11:99:48:8b:8a:19:41:d2: 91:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:C8:F6:97:B3:F1:CD:F4:13:86:2C:79:F1:30:86:E4:08:A1:39:F6 X509v3 Authority Key Identifier: keyid:6A:39:96:AF:E1:13:82:38:53:0C:2F:C9:2B:2A:B6:75:FC:D2:18:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ba89b7dd-99a7-450e-be84-b3bfc7340f1f/1/6A3996AFE1138238530C2FC92B2AB675FCD218C8.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6A3996AFE1138238530C2FC92B2AB675FCD218C8.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ba89b7dd-99a7-450e-be84-b3bfc7340f1f/1/323030313a6466343a353663303a3a2f34382d3438203d3e20313533313231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df4:56c0::/48 Signature Algorithm: sha256WithRSAEncryption 4f:04:18:ea:2c:54:23:f0:4d:ea:44:d1:89:e1:28:b6:a5:34: c9:d9:0b:b0:ce:8a:35:a7:1c:b8:67:1f:1c:40:61:04:c9:70: 43:79:a1:13:3f:7f:c4:2f:cf:db:38:5b:99:9d:37:7a:d3:07: be:63:88:e6:63:82:89:e1:40:41:c9:fb:9a:2d:b2:e8:67:4b: a3:c4:ba:b7:27:3c:75:87:ba:9e:c6:6d:30:34:86:a4:4d:ad: 24:59:b0:ea:20:00:9f:95:58:bc:33:0f:c7:c1:35:1b:7f:28: 52:12:4f:be:ad:72:3a:6f:6e:cd:ce:0b:1a:1c:a4:67:3e:89: bb:d1:2d:fc:30:c9:eb:30:5a:2b:c8:07:1c:95:8f:39:65:cb: 93:f4:1c:dd:19:44:32:e4:eb:99:27:62:05:c7:5b:31:a2:cd: c0:9f:32:a5:da:fd:c8:09:5c:9d:8a:34:0f:34:e6:0b:d4:7b: 19:f0:a3:1b:b4:c1:b3:a7:de:09:fe:38:9e:60:bc:eb:c0:25: ed:a0:08:17:ef:26:14:31:91:36:2d:1d:a3:12:57:fd:53:fe: cc:6d:92:99:d2:9e:0c:ec:f4:6c:aa:98:af:ea:f7:0d:49:97: d3:77:cc:d5:ce:fb:54:df:2a:b3:53:fc:4d:96:2a:60:bc:91: bc:bd:aa:c7 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUT5mAiOSQJP9niGFQpPh6uawBBtgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkEzOTk2QUZFMTEzODIzODUzMEMyRkM5MkIyQUI2NzVG Q0QyMThDODAeFw0yNTA5MzAwNzU1MDJaFw0yNjA5MjkwODAwMDJaMDMxMTAvBgNV BAMTKDhCQzhGNjk3QjNGMUNERjQxMzg2MkM3OUYxMzA4NkU0MDhBMTM5RjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQhWAs0sKz8PfXH9CcDaI1wa/Y u+tqyGVE6ZbHxFAppaWFEZKnjhlDHE25uKxpkBBBPbYyqLv98VTbLi1DhEG1Zt6u 0DLhrYNlyfZvwsbszMj+/3aox5aAgbhegjU35C6ovc0TtB92qyPpz8b4OYpobpRQ siGy7E158Z0YWwxHu9krXgdKkcXiI4agCv/+HcK/Ah63vvdi8PJakGJ1z7fF8cSQ OwipxE+PDqIJ1/c/pkYooqnOMHXAgMjfqP82v71QN7e7u5uqfkCIiap84TLMezJ+ iyHL9uk81tzb+n5U4Jts1U4b6EPbmrKPK/m1QXBK01pOJfIRmUiLihlB0pFXAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUi8j2l7PxzfQThix58TCG5AihOfYwHwYDVR0j BBgwFoAUajmWr+ETgjhTDC/JKyq2dfzSGMgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i YTg5YjdkZC05OWE3LTQ1MGUtYmU4NC1iM2JmYzczNDBmMWYvMS82QTM5OTZBRkUx MTM4MjM4NTMwQzJGQzkyQjJBQjY3NUZDRDIxOEM4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkEzOTk2QUZFMTEzODIzODUzMEMyRkM5MkIyQUI2NzVGQ0Qy MThDOC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2JhODliN2RkLTk5YTctNDUwZS1i ZTg0LWIzYmZjNzM0MGYxZi8xLzMyMzAzMDMxM2E2NDY2MzQzYTM1MzY2MzMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNTMzMzEzMjMxLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 9FbAMA0GCSqGSIb3DQEBCwUAA4IBAQBPBBjqLFQj8E3qRNGJ4Si2pTTJ2Quwzoo1 pxy4Zx8cQGEEyXBDeaETP3/EL8/bOFuZnTd60we+Y4jmY4KJ4UBByfuaLbLoZ0uj xLq3Jzx1h7qexm0wNIakTa0kWbDqIACflVi8Mw/HwTUbfyhSEk++rXI6b27Nzgsa HKRnPom70S38MMnrMForyAcclY85ZcuT9BzdGUQy5OuZJ2IFx1sxos3AnzKl2v3I CVydijQPNOYL1HsZ8KMbtMGzp94J/jieYLzrwCXtoAgX7yYUMZE2LR2jElf9U/7M bZKZ0p4M7PRsqpiv6vcNSZfTd8zVzvtU3yqzU/xNlipgvJG8varH -----END CERTIFICATE-----Generated at Mon Oct 20 15:50:27 2025 by rpki-client