$ rpki-client -vvf repo-rpki.idnic.net/repo/d387e85d-b185-4334-801b-49c8c8b91844/0/323430343a663963303a3a2f33322d3332203d3e20313338383931.roa File: 323430343a663963303a3a2f33322d3332203d3e20313338383931.roa (raw, json) Hash identifier: LqgjBMUWbAVBd0ps0pwYfCeM86EBdhdZx8KSYG3ioXI= Subject key identifier: 69:71:52:14:42:B4:0E:C0:A8:52:6C:1C:01:39:C7:85:1D:98:EF:F9 Certificate issuer: /CN=CCFC496C7B175F19C9F311A3BB624A5C30B345F4 Certificate serial: 7611CF0F4CB8944C6EA73F06EB6976B38C5D2444 Authority key identifier: CC:FC:49:6C:7B:17:5F:19:C9:F3:11:A3:BB:62:4A:5C:30:B3:45:F4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CCFC496C7B175F19C9F311A3BB624A5C30B345F4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d387e85d-b185-4334-801b-49c8c8b91844/0/323430343a663963303a3a2f33322d3332203d3e20313338383931.roa Signing time: Mon 06 Oct 2025 10:00:02 +0000 ROA not before: Mon 06 Oct 2025 09:55:02 +0000 ROA not after: Mon 05 Oct 2026 10:00:02 +0000 asID: 138891 IP address blocks: 2404:f9c0::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d387e85d-b185-4334-801b-49c8c8b91844/0/CCFC496C7B175F19C9F311A3BB624A5C30B345F4.crl rsync://repo-rpki.idnic.net/repo/d387e85d-b185-4334-801b-49c8c8b91844/0/CCFC496C7B175F19C9F311A3BB624A5C30B345F4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CCFC496C7B175F19C9F311A3BB624A5C30B345F4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 18:49:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:11:cf:0f:4c:b8:94:4c:6e:a7:3f:06:eb:69:76:b3:8c:5d:24:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CCFC496C7B175F19C9F311A3BB624A5C30B345F4 Validity Not Before: Oct 6 09:55:02 2025 GMT Not After : Oct 5 10:00:02 2026 GMT Subject: CN=6971521442B40EC0A8526C1C0139C7851D98EFF9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:c6:c4:41:18:c2:d7:52:e6:0d:30:a3:bf:f1: b7:c9:40:bb:fa:54:e0:87:96:e2:21:03:0a:c7:0f: 45:da:bc:7f:6c:5a:45:b1:56:e7:03:75:cf:14:54: 80:ef:5d:07:a9:c7:9c:c7:72:0f:5d:dd:53:a9:16: 2f:6b:18:82:7d:5d:04:93:86:9d:ed:fa:c0:c4:02: 48:12:26:a1:42:69:a9:f5:4a:8f:36:6a:e5:d5:6f: 00:e7:79:da:f4:98:07:ad:b2:76:fd:23:90:ba:91: 84:02:90:c1:77:f3:29:29:16:bc:35:2b:2d:86:b3: ea:e7:9f:ab:f0:bb:b1:4a:7d:0c:25:58:41:c7:ae: 23:d2:b4:5d:97:88:3c:13:0f:89:d5:40:17:ca:e0: 3b:24:fc:94:33:4d:61:2e:74:5f:e9:38:56:c4:98: bc:98:9a:a2:eb:8c:31:d2:6f:29:c3:85:04:96:8a: 24:2a:9a:e7:07:53:b2:ff:32:f0:fb:6c:7f:9d:68: ae:aa:d3:51:54:f1:43:7e:2d:7d:cd:43:9a:4e:e1: 22:80:da:e8:63:69:a4:97:70:14:4f:b2:99:ee:25: fd:f0:5d:c7:7b:50:5a:9f:b5:7d:60:7f:83:fb:e9: 6f:9b:b6:ad:b7:9d:4f:6a:93:53:60:37:1a:01:0e: cb:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:71:52:14:42:B4:0E:C0:A8:52:6C:1C:01:39:C7:85:1D:98:EF:F9 X509v3 Authority Key Identifier: keyid:CC:FC:49:6C:7B:17:5F:19:C9:F3:11:A3:BB:62:4A:5C:30:B3:45:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d387e85d-b185-4334-801b-49c8c8b91844/0/CCFC496C7B175F19C9F311A3BB624A5C30B345F4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CCFC496C7B175F19C9F311A3BB624A5C30B345F4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d387e85d-b185-4334-801b-49c8c8b91844/0/323430343a663963303a3a2f33322d3332203d3e20313338383931.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:f9c0::/32 Signature Algorithm: sha256WithRSAEncryption 7d:85:35:fc:31:38:55:d3:75:5a:a4:46:b3:40:d7:45:f6:20: e3:f8:67:c3:9c:2d:ab:ae:c2:6b:9b:1f:c8:8c:a5:4a:45:1f: 6b:c6:fb:a0:bc:95:1e:93:74:92:b8:ac:98:5d:95:6e:21:a8: 96:63:aa:f0:b1:fe:bd:94:64:67:40:bb:0a:6a:eb:86:b8:d5: 51:d2:59:00:91:db:1b:9c:10:4d:fa:59:25:a8:ba:38:db:b4: f4:8a:8c:68:c3:01:72:58:90:3d:e9:39:44:0e:79:ea:fb:d4: 3e:02:e8:22:66:e5:37:7a:84:07:ce:8b:86:d5:4b:b2:b9:e5: 1a:1e:19:47:8a:26:8b:e0:aa:f2:2b:77:7b:6c:e2:98:98:23: 24:e6:ee:0f:76:88:25:5c:c2:31:90:23:37:c7:75:8c:5c:e6: 21:32:8e:61:b0:4b:d3:f6:66:f4:c0:93:7f:ba:34:bd:02:f7: ea:f1:04:7c:0f:bf:0a:5c:42:ed:8d:9b:42:73:66:2c:c5:7a: 18:9b:43:e8:44:d6:f9:7e:46:51:db:2f:56:4d:3d:43:6b:b6: a6:47:e9:ff:87:d6:35:38:c4:15:00:20:8e:97:f6:33:83:e6: 9a:15:93:fa:27:3a:fa:a6:a3:20:8d:63:b9:78:f3:1d:43:04: 83:e9:ba:49 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUdhHPD0y4lExupz8G62l2s4xdJEQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0NGQzQ5NkM3QjE3NUYxOUM5RjMxMUEzQkI2MjRBNUMz MEIzNDVGNDAeFw0yNTEwMDYwOTU1MDJaFw0yNjEwMDUxMDAwMDJaMDMxMTAvBgNV BAMTKDY5NzE1MjE0NDJCNDBFQzBBODUyNkMxQzAxMzlDNzg1MUQ5OEVGRjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDxsRBGMLXUuYNMKO/8bfJQLv6 VOCHluIhAwrHD0XavH9sWkWxVucDdc8UVIDvXQepx5zHcg9d3VOpFi9rGIJ9XQST hp3t+sDEAkgSJqFCaan1So82auXVbwDnedr0mAetsnb9I5C6kYQCkMF38ykpFrw1 Ky2Gs+rnn6vwu7FKfQwlWEHHriPStF2XiDwTD4nVQBfK4Dsk/JQzTWEudF/pOFbE mLyYmqLrjDHSbynDhQSWiiQqmucHU7L/MvD7bH+daK6q01FU8UN+LX3NQ5pO4SKA 2uhjaaSXcBRPspnuJf3wXcd7UFqftX1gf4P76W+btq23nU9qk1NgNxoBDsv1AgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUaXFSFEK0DsCoUmwcATnHhR2Y7/kwHwYDVR0j BBgwFoAUzPxJbHsXXxnJ8xGju2JKXDCzRfQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k Mzg3ZTg1ZC1iMTg1LTQzMzQtODAxYi00OWM4YzhiOTE4NDQvMC9DQ0ZDNDk2QzdC MTc1RjE5QzlGMzExQTNCQjYyNEE1QzMwQjM0NUY0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0NGQzQ5NkM3QjE3NUYxOUM5RjMxMUEzQkI2MjRBNUMzMEIz NDVGNC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QzODdlODVkLWIxODUtNDMzNC04 MDFiLTQ5YzhjOGI5MTg0NC8wLzMyMzQzMDM0M2E2NjM5NjMzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzMzODM4MzkzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQE+cAwDQYJKoZI hvcNAQELBQADggEBAH2FNfwxOFXTdVqkRrNA10X2IOP4Z8OcLauuwmubH8iMpUpF H2vG+6C8lR6TdJK4rJhdlW4hqJZjqvCx/r2UZGdAuwpq64a41VHSWQCR2xucEE36 WSWoujjbtPSKjGjDAXJYkD3pOUQOeer71D4C6CJm5Td6hAfOi4bVS7K55RoeGUeK JovgqvIrd3ts4piYIyTm7g92iCVcwjGQIzfHdYxc5iEyjmGwS9P2ZvTAk3+6NL0C 9+rxBHwPvwpcQu2Nm0JzZizFehibQ+hE1vl+RlHbL1ZNPUNrtqZH6f+H1jU4xBUA II6X9jOD5poVk/onOvqmoyCNY7l48x1DBIPpukk= -----END CERTIFICATE-----Generated at Mon Oct 20 16:53:41 2025 by rpki-client