$ rpki-client -vvf repo-rpki.idnic.net/repo/dc0201e3-875d-49c4-8e14-99994936d491/0/323030313a6466303a323363303a3a2f34382d3438203d3e20313437313235.roa File: 323030313a6466303a323363303a3a2f34382d3438203d3e20313437313235.roa (raw, json) Hash identifier: P2JGQjJlh0X8PPnIYvpO+iKqp7Ecvs49iVh/XO+bX5A= Subject key identifier: A0:FE:84:E0:D1:FE:42:C8:4A:71:6F:C3:ED:96:4E:A7:06:2E:13:D2 Certificate issuer: /CN=E31CBDE5C6F33DAE3CA97A011EA4F4E639FB4FF6 Certificate serial: 64F3E27E2B43BD2901F6115A502282B21BB96A5A Authority key identifier: E3:1C:BD:E5:C6:F3:3D:AE:3C:A9:7A:01:1E:A4:F4:E6:39:FB:4F:F6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E31CBDE5C6F33DAE3CA97A011EA4F4E639FB4FF6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/dc0201e3-875d-49c4-8e14-99994936d491/0/323030313a6466303a323363303a3a2f34382d3438203d3e20313437313235.roa Signing time: Sun 21 Sep 2025 10:00:01 +0000 ROA not before: Sun 21 Sep 2025 09:55:01 +0000 ROA not after: Sun 20 Sep 2026 10:00:01 +0000 asID: 147125 IP address blocks: 2001:df0:23c0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/dc0201e3-875d-49c4-8e14-99994936d491/0/E31CBDE5C6F33DAE3CA97A011EA4F4E639FB4FF6.crl rsync://repo-rpki.idnic.net/repo/dc0201e3-875d-49c4-8e14-99994936d491/0/E31CBDE5C6F33DAE3CA97A011EA4F4E639FB4FF6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E31CBDE5C6F33DAE3CA97A011EA4F4E639FB4FF6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Oct 2025 03:53:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:f3:e2:7e:2b:43:bd:29:01:f6:11:5a:50:22:82:b2:1b:b9:6a:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E31CBDE5C6F33DAE3CA97A011EA4F4E639FB4FF6 Validity Not Before: Sep 21 09:55:01 2025 GMT Not After : Sep 20 10:00:01 2026 GMT Subject: CN=A0FE84E0D1FE42C84A716FC3ED964EA7062E13D2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:ca:7d:0e:96:0e:18:2a:5c:7a:07:cb:3a:f4: 01:73:52:e9:6d:22:94:c1:ff:9b:07:c5:ae:75:7a: 8d:90:3d:52:56:c1:aa:5b:ed:91:fd:4a:27:b2:2a: 4c:8b:d2:6b:9a:17:1b:13:2d:c6:c3:b5:b5:00:d5: 8a:d6:14:6f:4d:1a:6d:99:ce:3d:e1:59:7c:df:38: 99:2c:0f:cb:ed:ce:23:39:74:7a:6a:b7:b6:69:d1: a4:74:28:97:f2:63:6b:73:a6:d3:91:b2:1a:43:c5: f6:fa:80:fb:c7:2f:25:a2:e7:31:84:58:5c:9c:a4: cb:21:1e:d4:4e:b7:65:39:46:38:05:32:33:64:4a: 15:3e:88:b7:5a:1e:02:db:5a:fe:03:7f:1d:a7:1e: 39:f1:09:b2:05:e2:6f:36:e6:01:1e:3e:65:11:c8: 73:4e:34:9f:14:bd:ee:c6:7c:b0:52:05:1e:b9:89: 93:02:7b:43:75:71:c2:4f:da:a1:8d:18:e8:18:ae: c6:d9:97:45:1f:cc:b9:8e:c8:86:27:26:20:74:14: ef:b6:92:43:aa:ce:a7:5c:2b:a4:90:c8:01:ba:94: 22:16:2a:13:0e:c1:9a:c7:60:ab:61:7c:51:61:48: c3:c7:b3:23:8c:db:6c:50:8b:a2:3c:7c:b8:18:29: 2d:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:FE:84:E0:D1:FE:42:C8:4A:71:6F:C3:ED:96:4E:A7:06:2E:13:D2 X509v3 Authority Key Identifier: keyid:E3:1C:BD:E5:C6:F3:3D:AE:3C:A9:7A:01:1E:A4:F4:E6:39:FB:4F:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/dc0201e3-875d-49c4-8e14-99994936d491/0/E31CBDE5C6F33DAE3CA97A011EA4F4E639FB4FF6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E31CBDE5C6F33DAE3CA97A011EA4F4E639FB4FF6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/dc0201e3-875d-49c4-8e14-99994936d491/0/323030313a6466303a323363303a3a2f34382d3438203d3e20313437313235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df0:23c0::/48 Signature Algorithm: sha256WithRSAEncryption 42:ae:02:c4:a6:02:ef:ec:09:53:28:d2:97:ad:75:97:0a:87: 85:8d:1e:d6:7a:c6:d6:42:11:73:ea:70:04:57:ce:66:d5:ce: 07:a8:56:73:13:6c:64:d4:35:7e:f0:a8:a4:a6:7f:98:a6:8e: d7:4f:6c:51:d5:69:ee:be:0f:dc:91:13:0d:ee:04:a9:3f:87: 34:76:fd:39:f3:12:64:b8:4f:ae:52:56:76:ed:f8:69:16:3f: 4c:e3:df:d5:f7:58:64:1b:d5:5c:e0:c6:ed:0b:6e:54:63:78: 3e:0a:1b:9c:22:e8:39:9d:c3:69:ae:f0:9f:05:2f:41:77:34: d8:77:95:39:8d:c7:4a:4e:82:56:66:b2:6a:69:47:e1:be:58: 9b:82:64:8a:77:21:83:94:4b:83:97:4e:3a:10:fa:7b:46:3f: 26:04:0b:95:0a:67:ae:b5:9e:3a:33:9d:4d:18:fb:32:ef:a4: 4e:cb:17:77:49:fa:56:7b:78:d9:16:e2:53:b6:9b:68:7a:2d: 9d:79:dc:1a:8e:fc:1a:26:1b:86:a2:77:e8:ee:de:4a:9f:60: b2:4a:86:ac:5a:3d:47:29:bf:92:4f:fe:cf:72:2d:ed:95:03: de:c9:4a:01:f9:06:a1:e5:c1:29:f4:cb:71:96:c2:74:24:24: 6e:67:d2:3e -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUZPPifitDvSkB9hFaUCKCshu5alowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTMxQ0JERTVDNkYzM0RBRTNDQTk3QTAxMUVBNEY0RTYz OUZCNEZGNjAeFw0yNTA5MjEwOTU1MDFaFw0yNjA5MjAxMDAwMDFaMDMxMTAvBgNV BAMTKEEwRkU4NEUwRDFGRTQyQzg0QTcxNkZDM0VEOTY0RUE3MDYyRTEzRDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDWyn0Olg4YKlx6B8s69AFzUult IpTB/5sHxa51eo2QPVJWwapb7ZH9SieyKkyL0muaFxsTLcbDtbUA1YrWFG9NGm2Z zj3hWXzfOJksD8vtziM5dHpqt7Zp0aR0KJfyY2tzptORshpDxfb6gPvHLyWi5zGE WFycpMshHtROt2U5RjgFMjNkShU+iLdaHgLbWv4Dfx2nHjnxCbIF4m825gEePmUR yHNONJ8Uve7GfLBSBR65iZMCe0N1ccJP2qGNGOgYrsbZl0UfzLmOyIYnJiB0FO+2 kkOqzqdcK6SQyAG6lCIWKhMOwZrHYKthfFFhSMPHsyOM22xQi6I8fLgYKS2xAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUoP6E4NH+QshKcW/D7ZZOpwYuE9IwHwYDVR0j BBgwFoAU4xy95cbzPa48qXoBHqT05jn7T/YwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k YzAyMDFlMy04NzVkLTQ5YzQtOGUxNC05OTk5NDkzNmQ0OTEvMC9FMzFDQkRFNUM2 RjMzREFFM0NBOTdBMDExRUE0RjRFNjM5RkI0RkY2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRTMxQ0JERTVDNkYzM0RBRTNDQTk3QTAxMUVBNEY0RTYzOUZC NEZGNi5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RjMDIwMWUzLTg3NWQtNDljNC04 ZTE0LTk5OTk0OTM2ZDQ5MS8wLzMyMzAzMDMxM2E2NDY2MzAzYTMyMzM2MzMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNDM3MzEzMjM1LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8CPAMA0GCSqGSIb3DQEBCwUAA4IBAQBCrgLEpgLv7AlTKNKXrXWXCoeFjR7WesbW QhFz6nAEV85m1c4HqFZzE2xk1DV+8Kikpn+Ypo7XT2xR1Wnuvg/ckRMN7gSpP4c0 dv058xJkuE+uUlZ27fhpFj9M49/V91hkG9Vc4MbtC25UY3g+ChucIug5ncNprvCf BS9BdzTYd5U5jcdKToJWZrJqaUfhvlibgmSKdyGDlEuDl046EPp7Rj8mBAuVCmeu tZ46M51NGPsy76ROyxd3SfpWe3jZFuJTtptoei2dedwajvwaJhuGonfo7t5Kn2Cy SoasWj1HKb+ST/7Pci3tlQPeyUoB+Qah5cEp9MtxlsJ0JCRuZ9I+ -----END CERTIFICATE-----Generated at Tue Oct 21 13:23:33 2025 by rpki-client