$ rpki-client -vvf repo-rpki.idnic.net/repo/e0d9a296-8228-4386-8fe9-97aa3091de0d/0/323430333a386334303a3a2f33322d3438203d3e20313338303634.roa File: 323430333a386334303a3a2f33322d3438203d3e20313338303634.roa (raw, json) Hash identifier: rNCEVC57YsG1pLsfroR7lL5bhtvNw6HpUyrSsSif6rU= Subject key identifier: 57:C1:CD:CC:B7:9B:3B:38:C6:BE:98:F5:EF:D2:B7:63:14:A1:71:8C Certificate issuer: /CN=14A39FA5410EA57E0D416E032D769E52AB89CC75 Certificate serial: 21136BD4F206A988651B10E761BCD1A3328F140E Authority key identifier: 14:A3:9F:A5:41:0E:A5:7E:0D:41:6E:03:2D:76:9E:52:AB:89:CC:75 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/14A39FA5410EA57E0D416E032D769E52AB89CC75.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e0d9a296-8228-4386-8fe9-97aa3091de0d/0/323430333a386334303a3a2f33322d3438203d3e20313338303634.roa Signing time: Sat 23 Aug 2025 08:00:00 +0000 ROA not before: Sat 23 Aug 2025 07:55:00 +0000 ROA not after: Sat 22 Aug 2026 08:00:00 +0000 asID: 138064 IP address blocks: 2403:8c40::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e0d9a296-8228-4386-8fe9-97aa3091de0d/0/14A39FA5410EA57E0D416E032D769E52AB89CC75.crl rsync://repo-rpki.idnic.net/repo/e0d9a296-8228-4386-8fe9-97aa3091de0d/0/14A39FA5410EA57E0D416E032D769E52AB89CC75.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/14A39FA5410EA57E0D416E032D769E52AB89CC75.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Aug 2025 11:37:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:13:6b:d4:f2:06:a9:88:65:1b:10:e7:61:bc:d1:a3:32:8f:14:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=14A39FA5410EA57E0D416E032D769E52AB89CC75 Validity Not Before: Aug 23 07:55:00 2025 GMT Not After : Aug 22 08:00:00 2026 GMT Subject: CN=57C1CDCCB79B3B38C6BE98F5EFD2B76314A1718C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:52:16:cb:cc:d9:59:c5:73:50:ba:5c:26:57: ab:b1:02:bb:67:4f:b5:22:7c:b0:d5:85:8a:f5:2e: 3f:92:92:92:df:1c:22:76:de:22:5e:b4:20:f8:46: 60:49:ca:20:e1:1c:73:c7:05:47:72:5c:0b:d3:54: 15:3c:4f:a1:59:71:5a:34:e4:dc:6d:a0:20:7f:8d: 98:0a:97:45:a4:7c:4c:40:a2:2c:98:3d:41:75:ca: df:9b:36:91:ab:f8:3e:37:c2:0a:8d:ce:64:cc:1f: a3:9b:ee:0f:67:5e:1f:71:1e:38:45:f7:9e:b7:fe: 6f:bb:a8:38:e7:34:df:37:1a:07:2b:a6:64:91:2f: 5e:34:a2:c4:34:01:65:05:a9:46:61:ba:02:51:7c: 09:3b:98:4c:e6:57:1c:bb:da:f1:ed:75:6b:c5:78: 33:c9:d4:41:9d:76:03:93:59:18:81:c9:6c:40:6e: 9e:9d:a7:af:62:ad:d4:48:05:48:9b:6d:96:9c:25: e8:57:23:73:c4:89:3e:aa:0b:f7:f7:9f:8b:89:50: e5:02:b8:92:aa:da:bd:b9:ad:f9:94:66:98:b8:ce: 80:0c:09:e6:bc:c5:89:dc:8b:7e:76:65:7a:a4:91: c4:e5:74:e2:e4:bd:bb:d1:0e:45:e8:60:d5:1b:e6: 94:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:C1:CD:CC:B7:9B:3B:38:C6:BE:98:F5:EF:D2:B7:63:14:A1:71:8C X509v3 Authority Key Identifier: keyid:14:A3:9F:A5:41:0E:A5:7E:0D:41:6E:03:2D:76:9E:52:AB:89:CC:75 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e0d9a296-8228-4386-8fe9-97aa3091de0d/0/14A39FA5410EA57E0D416E032D769E52AB89CC75.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/14A39FA5410EA57E0D416E032D769E52AB89CC75.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e0d9a296-8228-4386-8fe9-97aa3091de0d/0/323430333a386334303a3a2f33322d3438203d3e20313338303634.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:8c40::/32 Signature Algorithm: sha256WithRSAEncryption 35:7e:2f:50:80:f6:79:b8:5d:38:9b:9f:39:12:fb:2b:0e:6b: 72:b6:9f:e6:c1:99:4e:d2:97:23:e3:d4:34:a2:c9:29:48:6e: 47:16:d3:65:26:0c:be:f7:a7:6b:2e:22:5e:d4:24:f0:f3:86: 62:f8:8c:8a:91:96:24:0a:95:6c:12:61:d8:dc:b5:77:86:a3: 57:a9:b4:1b:93:4d:56:ca:4c:2f:f1:a5:62:c9:92:79:e5:e9: 32:4a:8d:17:7c:2d:c1:6f:b8:fa:07:43:29:5a:04:56:b2:5e: e7:2a:b6:fa:bb:34:58:1b:47:98:8a:b9:98:1b:b5:32:52:2a: 5e:31:20:e7:bc:23:b8:49:6a:2f:b4:66:a2:14:4c:e0:41:19: af:6f:30:a5:fb:62:54:9d:f1:75:77:cd:aa:47:82:e0:a1:7f: b8:f7:06:cc:2c:17:29:63:1a:d0:1c:39:4d:43:f5:45:5d:77: c5:51:35:74:eb:7b:bd:c3:18:3d:f2:27:1a:ea:65:c8:37:0d: 4d:47:84:5b:0d:ef:2c:9f:58:14:bd:89:2b:b7:15:d7:d2:8f: 6f:a6:28:ea:a1:8a:c2:b9:60:77:7d:5b:4a:84:f1:2b:8c:62: ae:3e:a6:d7:e3:e4:e8:29:6d:e6:e4:41:67:af:ef:50:76:f3: 1b:3e:03:df -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUIRNr1PIGqYhlGxDnYbzRozKPFA4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTRBMzlGQTU0MTBFQTU3RTBENDE2RTAzMkQ3NjlFNTJB Qjg5Q0M3NTAeFw0yNTA4MjMwNzU1MDBaFw0yNjA4MjIwODAwMDBaMDMxMTAvBgNV BAMTKDU3QzFDRENDQjc5QjNCMzhDNkJFOThGNUVGRDJCNzYzMTRBMTcxOEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDtUhbLzNlZxXNQulwmV6uxArtn T7UifLDVhYr1Lj+SkpLfHCJ23iJetCD4RmBJyiDhHHPHBUdyXAvTVBU8T6FZcVo0 5NxtoCB/jZgKl0WkfExAoiyYPUF1yt+bNpGr+D43wgqNzmTMH6Ob7g9nXh9xHjhF 9563/m+7qDjnNN83GgcrpmSRL140osQ0AWUFqUZhugJRfAk7mEzmVxy72vHtdWvF eDPJ1EGddgOTWRiByWxAbp6dp69irdRIBUibbZacJehXI3PEiT6qC/f3n4uJUOUC uJKq2r25rfmUZpi4zoAMCea8xYnci352ZXqkkcTldOLkvbvRDkXoYNUb5pRxAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUV8HNzLebOzjGvpj179K3YxShcYwwHwYDVR0j BBgwFoAUFKOfpUEOpX4NQW4DLXaeUquJzHUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l MGQ5YTI5Ni04MjI4LTQzODYtOGZlOS05N2FhMzA5MWRlMGQvMC8xNEEzOUZBNTQx MEVBNTdFMEQ0MTZFMDMyRDc2OUU1MkFCODlDQzc1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTRBMzlGQTU0MTBFQTU3RTBENDE2RTAzMkQ3NjlFNTJBQjg5 Q0M3NS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2UwZDlhMjk2LTgyMjgtNDM4Ni04 ZmU5LTk3YWEzMDkxZGUwZC8wLzMyMzQzMDMzM2EzODYzMzQzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMxMzMzODMwMzYzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQDjEAwDQYJKoZI hvcNAQELBQADggEBADV+L1CA9nm4XTibnzkS+ysOa3K2n+bBmU7SlyPj1DSiySlI bkcW02UmDL73p2suIl7UJPDzhmL4jIqRliQKlWwSYdjctXeGo1eptBuTTVbKTC/x pWLJknnl6TJKjRd8LcFvuPoHQylaBFayXucqtvq7NFgbR5iKuZgbtTJSKl4xIOe8 I7hJai+0ZqIUTOBBGa9vMKX7YlSd8XV3zapHguChf7j3BswsFyljGtAcOU1D9UVd d8VRNXTre73DGD3yJxrqZcg3DU1HhFsN7yyfWBS9iSu3FdfSj2+mKOqhisK5YHd9 W0qE8SuMYq4+ptfj5OgpbebkQWev71B28xs+A98= -----END CERTIFICATE-----Generated at Sat Aug 23 23:52:11 2025 by rpki-client