$ rpki-client -vvf repo-rpki.idnic.net/repo/c621f753-a88e-4edf-a306-bd93d5a38fea/0/323430343a663863303a3a2f33322d3332203d3e203435333132.roa File: 323430343a663863303a3a2f33322d3332203d3e203435333132.roa (raw, json) Hash identifier: D6Aa7tj0NOx/F9ibs5muN5iB3sjvwWuGPnMRQlPmLFk= Subject key identifier: 1C:23:E7:74:82:D4:0A:40:3C:74:BF:D5:07:68:4E:10:F8:F7:BB:C8 Certificate issuer: /CN=154EE03198467B96315FDB527FB3BBCCA0BFC441 Certificate serial: 2A25B4C93B60F936F75565C2531AA3DA5536900F Authority key identifier: 15:4E:E0:31:98:46:7B:96:31:5F:DB:52:7F:B3:BB:CC:A0:BF:C4:41 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/154EE03198467B96315FDB527FB3BBCCA0BFC441.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c621f753-a88e-4edf-a306-bd93d5a38fea/0/323430343a663863303a3a2f33322d3332203d3e203435333132.roa Signing time: Thu 02 Oct 2025 05:02:26 +0000 ROA not before: Thu 02 Oct 2025 04:57:26 +0000 ROA not after: Thu 01 Oct 2026 05:02:26 +0000 asID: 45312 IP address blocks: 2404:f8c0::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c621f753-a88e-4edf-a306-bd93d5a38fea/0/154EE03198467B96315FDB527FB3BBCCA0BFC441.crl rsync://repo-rpki.idnic.net/repo/c621f753-a88e-4edf-a306-bd93d5a38fea/0/154EE03198467B96315FDB527FB3BBCCA0BFC441.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/154EE03198467B96315FDB527FB3BBCCA0BFC441.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 11:48:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:25:b4:c9:3b:60:f9:36:f7:55:65:c2:53:1a:a3:da:55:36:90:0f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=154EE03198467B96315FDB527FB3BBCCA0BFC441 Validity Not Before: Oct 2 04:57:26 2025 GMT Not After : Oct 1 05:02:26 2026 GMT Subject: CN=1C23E77482D40A403C74BFD507684E10F8F7BBC8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:8a:c0:7d:9b:46:64:58:b8:ae:71:0c:77:1d: da:eb:a8:6f:b0:d4:fb:1c:c1:d4:97:2e:df:7d:b5: 6e:64:b9:08:d4:e9:00:ea:94:90:1c:2e:66:ad:1a: be:61:a9:75:ca:12:22:9b:08:cb:c7:79:e9:c6:df: 82:ea:1d:4d:74:b9:48:09:f0:75:57:0f:a1:49:ba: 05:96:83:b0:9c:31:5f:91:8e:30:4d:cd:e2:94:3b: 0d:68:af:db:d4:ea:56:0b:ec:d7:07:06:7d:e1:24: 15:07:c7:19:94:ca:d8:30:3b:77:b7:63:ce:95:03: ea:a5:60:8c:6f:9f:bb:8c:96:18:d4:29:43:de:9e: 7c:54:d6:20:77:16:b6:7f:a2:c7:15:e9:83:9a:fd: a3:2b:c7:dd:11:f4:27:c3:fe:e8:92:2a:51:23:78: d9:3b:e9:0d:ee:22:5f:34:67:65:58:40:19:92:2d: d8:34:1a:23:d5:e3:ac:06:e3:0e:17:d3:b5:cc:af: fd:96:0b:82:0b:5b:f3:0c:42:f6:35:64:f0:06:6b: 52:8d:bb:0c:5a:1b:35:02:42:48:59:9b:90:cd:58: c8:9d:aa:c4:cc:e1:20:ce:8a:b2:a5:2d:11:68:f6: e6:3c:94:fc:95:98:36:32:35:37:f7:c1:74:e9:c7: b5:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:23:E7:74:82:D4:0A:40:3C:74:BF:D5:07:68:4E:10:F8:F7:BB:C8 X509v3 Authority Key Identifier: keyid:15:4E:E0:31:98:46:7B:96:31:5F:DB:52:7F:B3:BB:CC:A0:BF:C4:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c621f753-a88e-4edf-a306-bd93d5a38fea/0/154EE03198467B96315FDB527FB3BBCCA0BFC441.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/154EE03198467B96315FDB527FB3BBCCA0BFC441.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c621f753-a88e-4edf-a306-bd93d5a38fea/0/323430343a663863303a3a2f33322d3332203d3e203435333132.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:f8c0::/32 Signature Algorithm: sha256WithRSAEncryption 17:7c:fa:00:9a:26:15:63:dd:20:40:a4:81:8e:36:1a:d5:d7: 06:07:53:38:0c:39:31:2e:1b:f0:ce:b0:67:62:07:5b:aa:31: 5c:ea:f4:e0:64:18:9b:8d:4c:90:bf:d0:ce:e9:1b:15:ba:e5: fa:48:c8:b5:01:67:0c:7b:71:6b:1a:fb:a2:47:61:d1:9b:3f: 21:df:cd:28:d9:48:bd:db:fc:47:f7:90:d2:f8:e0:a0:ad:94: 37:67:e8:0a:86:17:8a:f6:00:7f:ae:06:e6:a2:27:8b:28:38: 43:c2:be:f2:e4:53:cf:a1:24:db:8c:64:65:ed:4a:d2:96:78: 62:6b:be:27:e3:eb:22:59:a6:c3:5e:d3:42:15:81:da:bc:6b: 5e:c3:f9:d5:6d:55:a2:e9:67:14:e9:90:23:a2:e8:de:56:9b: ac:7a:27:51:58:0e:91:49:1c:00:2a:45:20:ef:3b:e4:8d:d0: fc:e7:cf:79:f2:4a:7b:0c:fd:13:46:2b:ca:73:27:6a:dc:d2: 6f:00:f3:22:3d:64:95:fc:dd:19:e1:88:cf:80:42:72:aa:7e: bf:00:95:78:74:4a:f9:34:73:7c:0c:f8:fe:3c:4e:26:7d:2c: 94:d0:8b:f3:b4:76:3c:e2:e6:86:2f:54:8c:d1:eb:a5:89:6a: 66:7f:52:07 -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUKiW0yTtg+Tb3VWXCUxqj2lU2kA8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTU0RUUwMzE5ODQ2N0I5NjMxNUZEQjUyN0ZCM0JCQ0NB MEJGQzQ0MTAeFw0yNTEwMDIwNDU3MjZaFw0yNjEwMDEwNTAyMjZaMDMxMTAvBgNV BAMTKDFDMjNFNzc0ODJENDBBNDAzQzc0QkZENTA3Njg0RTEwRjhGN0JCQzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQChisB9m0ZkWLiucQx3HdrrqG+w 1PscwdSXLt99tW5kuQjU6QDqlJAcLmatGr5hqXXKEiKbCMvHeenG34LqHU10uUgJ 8HVXD6FJugWWg7CcMV+RjjBNzeKUOw1or9vU6lYL7NcHBn3hJBUHxxmUytgwO3e3 Y86VA+qlYIxvn7uMlhjUKUPennxU1iB3FrZ/oscV6YOa/aMrx90R9CfD/uiSKlEj eNk76Q3uIl80Z2VYQBmSLdg0GiPV46wG4w4X07XMr/2WC4ILW/MMQvY1ZPAGa1KN uwxaGzUCQkhZm5DNWMidqsTM4SDOirKlLRFo9uY8lPyVmDYyNTf3wXTpx7UtAgMB AAGjggIxMIICLTAdBgNVHQ4EFgQUHCPndILUCkA8dL/VB2hOEPj3u8gwHwYDVR0j BBgwFoAUFU7gMZhGe5YxX9tSf7O7zKC/xEEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j NjIxZjc1My1hODhlLTRlZGYtYTMwNi1iZDkzZDVhMzhmZWEvMC8xNTRFRTAzMTk4 NDY3Qjk2MzE1RkRCNTI3RkIzQkJDQ0EwQkZDNDQxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTU0RUUwMzE5ODQ2N0I5NjMxNUZEQjUyN0ZCM0JCQ0NBMEJG QzQ0MS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M2MjFmNzUzLWE4OGUtNGVkZi1h MzA2LWJkOTNkNWEzOGZlYS8wLzMyMzQzMDM0M2E2NjM4NjMzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDM0MzUzMzMxMzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkBPjAMA0GCSqGSIb3 DQEBCwUAA4IBAQAXfPoAmiYVY90gQKSBjjYa1dcGB1M4DDkxLhvwzrBnYgdbqjFc 6vTgZBibjUyQv9DO6RsVuuX6SMi1AWcMe3FrGvuiR2HRmz8h380o2Ui92/xH95DS +OCgrZQ3Z+gKhheK9gB/rgbmoieLKDhDwr7y5FPPoSTbjGRl7UrSlnhia74n4+si WabDXtNCFYHavGtew/nVbVWi6WcU6ZAjoujeVpuseidRWA6RSRwAKkUg7zvkjdD8 58958kp7DP0TRivKcydq3NJvAPMiPWSV/N0Z4YjPgEJyqn6/AJV4dEr5NHN8DPj+ PE4mfSyU0IvztHY84uaGL1SM0euliWpmf1IH -----END CERTIFICATE-----Generated at Mon Oct 20 15:29:12 2025 by rpki-client