$ rpki-client -vvf repo-rpki.idnic.net/repo/ca8b54e6-1015-48eb-9bbd-51c16cd45445/0/323430313a343865303a343030313a3a2f34382d3438203d3e20313439373336.roa File: 323430313a343865303a343030313a3a2f34382d3438203d3e20313439373336.roa (raw, json) Hash identifier: RFcogeaEPWKhAE9n7Pl04rx41EdOlubzKnwCzsq//8U= Subject key identifier: 09:1F:D1:F1:0A:27:60:13:AB:D9:EA:7C:3A:66:ED:16:92:4E:8F:CE Certificate issuer: /CN=9A499585F4E18B9B36BD842B17BE3925C9A27D43 Certificate serial: 397F1D353FCCDA67D35CF47C662338D764CD7967 Authority key identifier: 9A:49:95:85:F4:E1:8B:9B:36:BD:84:2B:17:BE:39:25:C9:A2:7D:43 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A499585F4E18B9B36BD842B17BE3925C9A27D43.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ca8b54e6-1015-48eb-9bbd-51c16cd45445/0/323430313a343865303a343030313a3a2f34382d3438203d3e20313439373336.roa Signing time: Thu 18 Sep 2025 08:02:25 +0000 ROA not before: Thu 18 Sep 2025 07:57:25 +0000 ROA not after: Thu 17 Sep 2026 08:02:25 +0000 asID: 149736 IP address blocks: 2401:48e0:4001::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ca8b54e6-1015-48eb-9bbd-51c16cd45445/0/9A499585F4E18B9B36BD842B17BE3925C9A27D43.crl rsync://repo-rpki.idnic.net/repo/ca8b54e6-1015-48eb-9bbd-51c16cd45445/0/9A499585F4E18B9B36BD842B17BE3925C9A27D43.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A499585F4E18B9B36BD842B17BE3925C9A27D43.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 05:53:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:7f:1d:35:3f:cc:da:67:d3:5c:f4:7c:66:23:38:d7:64:cd:79:67 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9A499585F4E18B9B36BD842B17BE3925C9A27D43 Validity Not Before: Sep 18 07:57:25 2025 GMT Not After : Sep 17 08:02:25 2026 GMT Subject: CN=091FD1F10A276013ABD9EA7C3A66ED16924E8FCE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:3d:db:2b:16:f1:1b:7c:eb:ea:4f:51:f1:16: db:dd:bd:f9:45:c8:1e:e7:86:24:7b:43:56:82:3b: 77:9e:a3:93:c7:98:04:a2:a0:b0:6b:0e:5f:69:01: 75:bc:50:86:a9:67:cc:06:7d:c7:1c:fc:05:27:8b: ac:1c:93:68:04:bf:35:41:f4:85:cb:a8:2e:92:8a: 21:c8:4f:ab:92:b2:69:1b:03:59:ee:60:81:51:87: 69:5c:9c:fb:69:e3:1b:9e:fa:f1:4d:47:85:46:e7: a3:38:ff:ab:61:06:36:54:92:03:35:87:ee:2b:4c: 63:e3:5b:69:49:8e:e9:ae:10:65:30:21:33:c6:9d: 1c:46:2a:49:f3:44:16:1c:69:57:c4:bb:f1:68:f4: 92:b5:5e:d1:61:75:96:34:a5:34:36:a7:c2:75:f0: fc:b9:b7:32:c0:16:3b:aa:e4:79:f8:36:92:95:e4: 07:88:99:06:70:ce:4e:fa:2f:ae:2e:61:42:f8:ee: e2:e8:c6:72:87:1d:c1:56:71:a3:94:93:52:b6:08: 78:79:c8:23:d1:f6:88:8c:50:87:b8:2d:51:62:4f: 71:a5:31:a3:a8:68:98:4b:eb:c4:77:c5:d0:97:f4: 39:ae:4b:db:d1:dc:1a:ce:ab:1f:e1:ea:ea:d8:74: 0c:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:1F:D1:F1:0A:27:60:13:AB:D9:EA:7C:3A:66:ED:16:92:4E:8F:CE X509v3 Authority Key Identifier: keyid:9A:49:95:85:F4:E1:8B:9B:36:BD:84:2B:17:BE:39:25:C9:A2:7D:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ca8b54e6-1015-48eb-9bbd-51c16cd45445/0/9A499585F4E18B9B36BD842B17BE3925C9A27D43.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A499585F4E18B9B36BD842B17BE3925C9A27D43.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ca8b54e6-1015-48eb-9bbd-51c16cd45445/0/323430313a343865303a343030313a3a2f34382d3438203d3e20313439373336.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:48e0:4001::/48 Signature Algorithm: sha256WithRSAEncryption 3d:88:ac:b4:0a:81:64:3f:0c:1c:5e:d7:1f:1f:d4:aa:2a:a1: 93:a8:56:b4:1f:b9:ed:f7:fa:61:45:5a:47:7b:25:4a:fe:5d: 59:24:0d:77:9a:bc:f5:15:41:0d:0e:92:2b:f9:de:31:a3:5c: 3f:6e:e5:64:92:f3:35:a8:70:4e:8b:f9:f4:18:d0:e5:b3:dd: 21:f5:91:3f:c1:55:4d:7c:d5:2e:e9:5c:04:71:2b:fb:9e:05: a4:a2:2d:06:fd:42:fe:db:75:69:c8:2a:c4:06:e2:34:a2:71: b5:49:d3:02:cb:ae:85:1a:88:9d:91:90:a7:92:6d:54:eb:92: c7:2a:aa:6d:72:9b:e7:8a:10:45:b8:71:fd:6c:3f:cc:6c:8e: 8d:8d:d5:1f:90:75:c2:04:96:f3:b0:25:d2:c8:13:14:01:c1: 77:e8:79:a9:b7:ab:00:3e:ca:fd:38:f8:0b:15:79:76:b1:44: bf:45:c7:d8:fa:86:ca:21:6a:c5:a4:07:e7:c0:71:ee:be:69: b9:f7:98:57:6c:65:11:0a:a1:ae:83:a6:d4:7e:a0:22:b2:7c: 0e:96:f2:63:fa:c6:6f:b2:54:d3:a7:73:f1:f5:c5:85:91:3a: 9b:ba:8c:0f:04:9f:8d:8b:1d:5e:41:76:cc:4b:ff:f7:26:63: 2b:5f:30:fe -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUOX8dNT/M2mfTXPR8ZiM412TNeWcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUE0OTk1ODVGNEUxOEI5QjM2QkQ4NDJCMTdCRTM5MjVD OUEyN0Q0MzAeFw0yNTA5MTgwNzU3MjVaFw0yNjA5MTcwODAyMjVaMDMxMTAvBgNV BAMTKDA5MUZEMUYxMEEyNzYwMTNBQkQ5RUE3QzNBNjZFRDE2OTI0RThGQ0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQChPdsrFvEbfOvqT1HxFtvdvflF yB7nhiR7Q1aCO3eeo5PHmASioLBrDl9pAXW8UIapZ8wGfccc/AUni6wck2gEvzVB 9IXLqC6SiiHIT6uSsmkbA1nuYIFRh2lcnPtp4xue+vFNR4VG56M4/6thBjZUkgM1 h+4rTGPjW2lJjumuEGUwITPGnRxGKknzRBYcaVfEu/Fo9JK1XtFhdZY0pTQ2p8J1 8Py5tzLAFjuq5Hn4NpKV5AeImQZwzk76L64uYUL47uLoxnKHHcFWcaOUk1K2CHh5 yCPR9oiMUIe4LVFiT3GlMaOoaJhL68R3xdCX9DmuS9vR3BrOqx/h6urYdAyPAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUCR/R8QonYBOr2ep8OmbtFpJOj84wHwYDVR0j BBgwFoAUmkmVhfThi5s2vYQrF745JcmifUMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j YThiNTRlNi0xMDE1LTQ4ZWItOWJiZC01MWMxNmNkNDU0NDUvMC85QTQ5OTU4NUY0 RTE4QjlCMzZCRDg0MkIxN0JFMzkyNUM5QTI3RDQzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUE0OTk1ODVGNEUxOEI5QjM2QkQ4NDJCMTdCRTM5MjVDOUEy N0Q0My5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NhOGI1NGU2LTEwMTUtNDhlYi05 YmJkLTUxYzE2Y2Q0NTQ0NS8wLzMyMzQzMDMxM2EzNDM4NjUzMDNhMzQzMDMwMzEz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTM0MzkzNzMzMzYucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk AUjgQAEwDQYJKoZIhvcNAQELBQADggEBAD2IrLQKgWQ/DBxe1x8f1KoqoZOoVrQf ue33+mFFWkd7JUr+XVkkDXeavPUVQQ0Okiv53jGjXD9u5WSS8zWocE6L+fQY0OWz 3SH1kT/BVU181S7pXARxK/ueBaSiLQb9Qv7bdWnIKsQG4jSicbVJ0wLLroUaiJ2R kKeSbVTrkscqqm1ym+eKEEW4cf1sP8xsjo2N1R+QdcIElvOwJdLIExQBwXfoeam3 qwA+yv04+AsVeXaxRL9Fx9j6hsohasWkB+fAce6+abn3mFdsZREKoa6DptR+oCKy fA6W8mP6xm+yVNOnc/H1xYWROpu6jA8En42LHV5BdsxL//cmYytfMP4= -----END CERTIFICATE-----Generated at Mon Oct 20 13:55:06 2025 by rpki-client