$ rpki-client -vvf repo-rpki.idnic.net/repo/c2be4f18-ceed-4f23-a0a4-e24e04d320d3/0/323030313a6466373a663130303a3a2f34382d3438203d3e20313338383731.roa File: 323030313a6466373a663130303a3a2f34382d3438203d3e20313338383731.roa (raw, json) Hash identifier: FuiFUJ35N5X1O8fWHCAi5sBlAcV4CzxxZxBuftwVNyc= Subject key identifier: 54:F2:B4:2B:F7:AF:61:02:FA:3E:B2:18:19:13:3B:BE:65:EB:E2:46 Certificate issuer: /CN=9AD8AEF8362DD03EACC7B7DEE20F5D3F6DFF5D49 Certificate serial: BAF1E5A39759A2AB42920F1B60F07FE0A31B80 Authority key identifier: 9A:D8:AE:F8:36:2D:D0:3E:AC:C7:B7:DE:E2:0F:5D:3F:6D:FF:5D:49 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9AD8AEF8362DD03EACC7B7DEE20F5D3F6DFF5D49.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c2be4f18-ceed-4f23-a0a4-e24e04d320d3/0/323030313a6466373a663130303a3a2f34382d3438203d3e20313338383731.roa Signing time: Sat 04 Oct 2025 02:00:00 +0000 ROA not before: Sat 04 Oct 2025 01:55:00 +0000 ROA not after: Sat 03 Oct 2026 02:00:00 +0000 asID: 138871 IP address blocks: 2001:df7:f100::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c2be4f18-ceed-4f23-a0a4-e24e04d320d3/0/9AD8AEF8362DD03EACC7B7DEE20F5D3F6DFF5D49.crl rsync://repo-rpki.idnic.net/repo/c2be4f18-ceed-4f23-a0a4-e24e04d320d3/0/9AD8AEF8362DD03EACC7B7DEE20F5D3F6DFF5D49.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9AD8AEF8362DD03EACC7B7DEE20F5D3F6DFF5D49.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 16:32:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: ba:f1:e5:a3:97:59:a2:ab:42:92:0f:1b:60:f0:7f:e0:a3:1b:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9AD8AEF8362DD03EACC7B7DEE20F5D3F6DFF5D49 Validity Not Before: Oct 4 01:55:00 2025 GMT Not After : Oct 3 02:00:00 2026 GMT Subject: CN=54F2B42BF7AF6102FA3EB21819133BBE65EBE246 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:fb:bb:03:f1:ef:ce:33:b0:18:ab:3a:32:5c: 30:0d:ed:ba:1d:02:3d:31:24:bf:2f:bc:a5:44:cd: 51:0d:72:ad:93:79:1f:1a:4d:c2:30:dd:6b:b1:6d: 27:74:9f:71:28:7e:56:41:49:50:9e:97:9d:d6:44: ce:89:e3:de:f8:2c:72:ff:4a:60:fc:0f:54:61:23: 53:00:ce:35:eb:26:a8:93:7b:e6:98:39:88:fc:28: b8:6a:bd:d8:43:16:07:78:74:56:7f:0f:1d:1b:51: 25:4d:14:ba:46:78:b2:d0:ac:98:97:c6:73:48:0e: 06:75:68:54:3e:80:0b:b1:9b:31:b1:38:02:da:ab: 44:09:ce:54:0d:ba:e0:aa:c5:ff:2d:d1:e1:bb:0b: 3c:4e:a0:09:ae:66:04:f0:53:d0:2d:47:ae:5a:b2: 41:ed:89:90:3a:15:62:8c:a8:1f:cd:9c:85:35:59: 01:5a:1f:80:bd:05:bb:72:bd:22:6f:1d:7e:9b:00: 6c:8b:3f:6e:03:ec:02:6d:c9:fc:b3:bc:92:c6:9c: f9:46:16:60:65:10:c3:d0:f4:64:70:4b:0a:ae:5b: 01:ae:bb:c7:fb:2a:e4:0d:34:e7:7f:b6:88:95:ca: 14:72:a0:89:e3:e4:24:88:70:bb:47:07:7a:fe:13: 8e:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:F2:B4:2B:F7:AF:61:02:FA:3E:B2:18:19:13:3B:BE:65:EB:E2:46 X509v3 Authority Key Identifier: keyid:9A:D8:AE:F8:36:2D:D0:3E:AC:C7:B7:DE:E2:0F:5D:3F:6D:FF:5D:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c2be4f18-ceed-4f23-a0a4-e24e04d320d3/0/9AD8AEF8362DD03EACC7B7DEE20F5D3F6DFF5D49.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9AD8AEF8362DD03EACC7B7DEE20F5D3F6DFF5D49.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c2be4f18-ceed-4f23-a0a4-e24e04d320d3/0/323030313a6466373a663130303a3a2f34382d3438203d3e20313338383731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df7:f100::/48 Signature Algorithm: sha256WithRSAEncryption 65:57:f1:df:40:a1:1c:02:f4:7d:b1:72:b1:41:0c:73:61:6a: b0:7c:31:e2:0b:44:c3:2a:09:14:5a:29:41:03:62:ab:26:3c: 1e:f6:ee:16:a9:34:ea:2b:ab:2f:f1:03:9b:75:2b:fc:69:85: 10:3a:bd:df:35:2b:c6:71:a5:41:da:74:85:27:5f:c0:59:7c: a7:a0:d5:41:16:c1:f6:60:7f:bb:c4:ef:2e:4c:5b:56:97:01: fc:23:c6:22:7c:0e:a3:ae:57:92:1f:62:9f:96:83:f0:81:c7: ef:08:a9:dc:56:42:e4:29:db:e9:f0:26:b5:98:f2:cf:77:5f: 89:38:91:e5:fb:68:18:27:82:c5:dc:98:95:1e:c2:88:cb:19: 59:00:0f:5b:81:ac:e7:0b:2b:56:19:71:11:0d:8d:08:bd:b6: d3:2b:e1:d9:ca:8d:f2:bf:1d:7f:84:d1:25:80:83:dd:ff:34: 74:2c:a6:a5:c1:a1:99:3c:5c:7d:1e:36:74:18:81:7e:05:8b: 4c:38:a0:91:31:61:5b:48:80:24:a1:26:57:58:ec:80:94:59: b2:a1:a6:3e:0c:41:d6:f4:60:3e:c7:17:bf:32:1b:13:35:1b: f5:95:fe:9a:e2:71:ad:a3:ca:ad:ec:22:d5:9f:1c:d3:2a:d6: 66:0c:7d:58 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUALrx5aOXWaKrQpIPG2Dwf+CjG4AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUFEOEFFRjgzNjJERDAzRUFDQzdCN0RFRTIwRjVEM0Y2 REZGNUQ0OTAeFw0yNTEwMDQwMTU1MDBaFw0yNjEwMDMwMjAwMDBaMDMxMTAvBgNV BAMTKDU0RjJCNDJCRjdBRjYxMDJGQTNFQjIxODE5MTMzQkJFNjVFQkUyNDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDX+7sD8e/OM7AYqzoyXDAN7bod Aj0xJL8vvKVEzVENcq2TeR8aTcIw3WuxbSd0n3EoflZBSVCel53WRM6J4974LHL/ SmD8D1RhI1MAzjXrJqiTe+aYOYj8KLhqvdhDFgd4dFZ/Dx0bUSVNFLpGeLLQrJiX xnNIDgZ1aFQ+gAuxmzGxOALaq0QJzlQNuuCqxf8t0eG7CzxOoAmuZgTwU9AtR65a skHtiZA6FWKMqB/NnIU1WQFaH4C9BbtyvSJvHX6bAGyLP24D7AJtyfyzvJLGnPlG FmBlEMPQ9GRwSwquWwGuu8f7KuQNNOd/toiVyhRyoInj5CSIcLtHB3r+E46XAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUVPK0K/evYQL6PrIYGRM7vmXr4kYwHwYDVR0j BBgwFoAUmtiu+DYt0D6sx7fe4g9dP23/XUkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j MmJlNGYxOC1jZWVkLTRmMjMtYTBhNC1lMjRlMDRkMzIwZDMvMC85QUQ4QUVGODM2 MkREMDNFQUNDN0I3REVFMjBGNUQzRjZERkY1RDQ5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUFEOEFFRjgzNjJERDAzRUFDQzdCN0RFRTIwRjVEM0Y2REZG NUQ0OS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2MyYmU0ZjE4LWNlZWQtNGYyMy1h MGE0LWUyNGUwNGQzMjBkMy8wLzMyMzAzMDMxM2E2NDY2MzczYTY2MzEzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM4MzgzNzMxLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 9/EAMA0GCSqGSIb3DQEBCwUAA4IBAQBlV/HfQKEcAvR9sXKxQQxzYWqwfDHiC0TD KgkUWilBA2KrJjwe9u4WqTTqK6sv8QObdSv8aYUQOr3fNSvGcaVB2nSFJ1/AWXyn oNVBFsH2YH+7xO8uTFtWlwH8I8YifA6jrleSH2KfloPwgcfvCKncVkLkKdvp8Ca1 mPLPd1+JOJHl+2gYJ4LF3JiVHsKIyxlZAA9bgaznCytWGXERDY0IvbbTK+HZyo3y vx1/hNElgIPd/zR0LKalwaGZPFx9HjZ0GIF+BYtMOKCRMWFbSIAkoSZXWOyAlFmy oaY+DEHW9GA+xxe/MhsTNRv1lf6a4nGto8qt7CLVnxzTKtZmDH1Y -----END CERTIFICATE-----Generated at Mon Oct 20 20:36:40 2025 by rpki-client