$ rpki-client -vvf repo-rpki.idnic.net/repo/db8be905-f296-45d1-a879-4a4de52cb2d6/0/323430363a343534303a3a2f33322d3332203d3e20313430343634.roa File: 323430363a343534303a3a2f33322d3332203d3e20313430343634.roa (raw, json) Hash identifier: fW6me2gng7+RFAgwfv3lcoF9Ov98BB9yIZ6/btVVKsw= Subject key identifier: 13:72:E9:F5:22:78:15:C0:38:A4:BE:43:03:8D:C1:6C:BC:AA:B9:81 Certificate issuer: /CN=B2D1CBD015A419010845E6F56D8385C8647B5390 Certificate serial: 0BB02B74D233A1D8577C6158839C85EE5EB06BC4 Authority key identifier: B2:D1:CB:D0:15:A4:19:01:08:45:E6:F5:6D:83:85:C8:64:7B:53:90 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B2D1CBD015A419010845E6F56D8385C8647B5390.cer Subject info access: rsync://repo-rpki.idnic.net/repo/db8be905-f296-45d1-a879-4a4de52cb2d6/0/323430363a343534303a3a2f33322d3332203d3e20313430343634.roa Signing time: Tue 19 Aug 2025 12:00:01 +0000 ROA not before: Tue 19 Aug 2025 11:55:01 +0000 ROA not after: Tue 18 Aug 2026 12:00:01 +0000 asID: 140464 IP address blocks: 2406:4540::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/db8be905-f296-45d1-a879-4a4de52cb2d6/0/B2D1CBD015A419010845E6F56D8385C8647B5390.crl rsync://repo-rpki.idnic.net/repo/db8be905-f296-45d1-a879-4a4de52cb2d6/0/B2D1CBD015A419010845E6F56D8385C8647B5390.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B2D1CBD015A419010845E6F56D8385C8647B5390.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:43:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:b0:2b:74:d2:33:a1:d8:57:7c:61:58:83:9c:85:ee:5e:b0:6b:c4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B2D1CBD015A419010845E6F56D8385C8647B5390 Validity Not Before: Aug 19 11:55:01 2025 GMT Not After : Aug 18 12:00:01 2026 GMT Subject: CN=1372E9F5227815C038A4BE43038DC16CBCAAB981 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:af:f8:a4:5f:6a:e1:6b:5d:f6:ad:83:96:c4: b4:d7:8e:e8:fb:73:5c:af:9f:90:fa:d9:56:aa:28: 69:9f:66:73:cb:95:80:d8:be:f7:a7:b6:dc:12:80: 33:92:d2:42:92:7a:11:ee:86:91:3c:34:b9:3b:76: 45:9a:76:aa:fa:0d:5e:fc:ed:42:61:60:bf:1b:31: c6:30:d4:d5:3a:47:76:5a:30:2e:6f:e3:64:dd:99: db:12:f7:54:a4:c3:f7:21:e2:79:d2:b0:aa:9d:b8: 14:9e:e4:8d:46:4a:75:99:cb:35:93:d1:1f:a2:0d: 9b:39:2a:86:eb:a0:a1:01:14:1c:3f:2a:69:b2:31: b4:08:0c:e0:63:70:78:79:14:c1:3b:59:bf:3c:90: 9a:34:fc:34:af:fb:e5:51:35:bf:ef:10:c2:3b:22: 64:8b:c8:5c:cb:cb:0e:74:1b:a4:d0:68:d5:9c:3d: 61:d8:6f:34:24:47:5f:e0:5c:cc:a3:7e:c8:25:ca: e3:61:e6:12:2a:12:7a:9c:d0:b6:a3:45:9c:85:66: 53:7e:7a:37:d9:6b:6d:f9:6e:e1:12:44:58:3d:2e: 6e:ef:1d:66:98:f5:66:39:19:f7:6e:4e:af:78:27: 60:9e:78:82:4a:bf:af:b0:32:af:71:bd:83:bf:88: 0c:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:72:E9:F5:22:78:15:C0:38:A4:BE:43:03:8D:C1:6C:BC:AA:B9:81 X509v3 Authority Key Identifier: keyid:B2:D1:CB:D0:15:A4:19:01:08:45:E6:F5:6D:83:85:C8:64:7B:53:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/db8be905-f296-45d1-a879-4a4de52cb2d6/0/B2D1CBD015A419010845E6F56D8385C8647B5390.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B2D1CBD015A419010845E6F56D8385C8647B5390.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/db8be905-f296-45d1-a879-4a4de52cb2d6/0/323430363a343534303a3a2f33322d3332203d3e20313430343634.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:4540::/32 Signature Algorithm: sha256WithRSAEncryption 3b:b7:ca:52:37:12:3c:ae:f9:d2:bb:54:3d:fc:3f:97:62:43: 11:ea:3b:cb:5d:d7:2f:33:7a:a0:28:14:84:c6:e0:0b:83:53: 41:20:6a:b4:04:09:0a:60:eb:7d:18:90:4a:2d:2e:e8:f1:b1: 68:50:d1:f0:6c:cf:45:b1:cc:4e:fb:7e:7c:99:f3:7e:eb:b9: 0f:f5:47:7a:2d:ca:94:a0:33:74:1c:34:47:76:ae:1d:d9:7e: b7:57:d3:f8:1b:6c:f4:81:da:b8:94:86:30:52:03:30:23:43: 8f:e0:c8:3f:32:c1:5c:c4:c3:46:e6:09:3e:39:a9:ea:34:76: 15:e6:cf:4e:87:e0:42:9d:ab:fd:05:fb:d8:a6:fc:ce:3d:3d: f8:e2:5b:fd:58:5e:b0:3a:e8:a5:8b:09:ab:54:bc:6f:d2:d9: db:52:05:73:7c:3d:ac:7f:9a:c2:d1:2e:97:53:26:89:3e:71: d5:6a:f0:c7:bb:7d:b4:25:26:4d:84:b5:f4:b1:ad:95:f4:62: 34:5b:ec:27:40:55:b5:fe:6c:ba:a2:96:97:ff:69:83:ef:45: 0a:f1:c7:9d:3c:4d:a4:43:c6:e3:a9:dd:c9:fd:a4:bd:ba:ce: f7:33:58:f4:39:dd:b2:e1:bc:1b:bd:4b:77:0c:55:7e:19:b3: 68:73:a0:e5 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUC7ArdNIzodhXfGFYg5yF7l6wa8QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjJEMUNCRDAxNUE0MTkwMTA4NDVFNkY1NkQ4Mzg1Qzg2 NDdCNTM5MDAeFw0yNTA4MTkxMTU1MDFaFw0yNjA4MTgxMjAwMDFaMDMxMTAvBgNV BAMTKDEzNzJFOUY1MjI3ODE1QzAzOEE0QkU0MzAzOERDMTZDQkNBQUI5ODEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDsr/ikX2rha132rYOWxLTXjuj7 c1yvn5D62VaqKGmfZnPLlYDYvventtwSgDOS0kKSehHuhpE8NLk7dkWadqr6DV78 7UJhYL8bMcYw1NU6R3ZaMC5v42TdmdsS91Skw/ch4nnSsKqduBSe5I1GSnWZyzWT 0R+iDZs5KobroKEBFBw/KmmyMbQIDOBjcHh5FME7Wb88kJo0/DSv++VRNb/vEMI7 ImSLyFzLyw50G6TQaNWcPWHYbzQkR1/gXMyjfsglyuNh5hIqEnqc0LajRZyFZlN+ ejfZa235buESRFg9Lm7vHWaY9WY5GfduTq94J2CeeIJKv6+wMq9xvYO/iAxVAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUE3Lp9SJ4FcA4pL5DA43BbLyquYEwHwYDVR0j BBgwFoAUstHL0BWkGQEIReb1bYOFyGR7U5AwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k YjhiZTkwNS1mMjk2LTQ1ZDEtYTg3OS00YTRkZTUyY2IyZDYvMC9CMkQxQ0JEMDE1 QTQxOTAxMDg0NUU2RjU2RDgzODVDODY0N0I1MzkwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjJEMUNCRDAxNUE0MTkwMTA4NDVFNkY1NkQ4Mzg1Qzg2NDdC NTM5MC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RiOGJlOTA1LWYyOTYtNDVkMS1h ODc5LTRhNGRlNTJjYjJkNi8wLzMyMzQzMDM2M2EzNDM1MzQzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzQzMDM0MzYzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQGRUAwDQYJKoZI hvcNAQELBQADggEBADu3ylI3Ejyu+dK7VD38P5diQxHqO8td1y8zeqAoFITG4AuD U0EgarQECQpg630YkEotLujxsWhQ0fBsz0WxzE77fnyZ837ruQ/1R3otypSgM3Qc NEd2rh3ZfrdX0/gbbPSB2riUhjBSAzAjQ4/gyD8ywVzEw0bmCT45qeo0dhXmz06H 4EKdq/0F+9im/M49PfjiW/1YXrA66KWLCatUvG/S2dtSBXN8Pax/msLRLpdTJok+ cdVq8Me7fbQlJk2EtfSxrZX0YjRb7CdAVbX+bLqilpf/aYPvRQrxx508TaRDxuOp 3cn9pL26zvczWPQ53bLhvBu9S3cMVX4Zs2hzoOU= -----END CERTIFICATE-----Generated at Sat Aug 23 13:37:07 2025 by rpki-client