$ rpki-client -vvf repo-rpki.idnic.net/repo/e5413ff4-202b-4999-b45d-73c972f10116/0/323430343a636163303a626162653a3a2f34382d3438203d3e20313339343137.roa File: 323430343a636163303a626162653a3a2f34382d3438203d3e20313339343137.roa (raw, json) Hash identifier: ZZvd3DR6EuZwjhunUnqDOW5iI+a8OxR4MhiwHS29Yuo= Subject key identifier: A9:E4:42:DD:AA:62:52:74:2F:0A:05:B0:CE:BE:B4:97:8E:22:86:75 Certificate issuer: /CN=8FC4899CA3D612A45C1C1DC02A21F63372DAEDD6 Certificate serial: 2469A37B98F47D8215FA2C601CC6A2D826389B7A Authority key identifier: 8F:C4:89:9C:A3:D6:12:A4:5C:1C:1D:C0:2A:21:F6:33:72:DA:ED:D6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8FC4899CA3D612A45C1C1DC02A21F63372DAEDD6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e5413ff4-202b-4999-b45d-73c972f10116/0/323430343a636163303a626162653a3a2f34382d3438203d3e20313339343137.roa Signing time: Fri 12 Sep 2025 04:02:24 +0000 ROA not before: Fri 12 Sep 2025 03:57:24 +0000 ROA not after: Fri 11 Sep 2026 04:02:24 +0000 asID: 139417 IP address blocks: 2404:cac0:babe::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e5413ff4-202b-4999-b45d-73c972f10116/0/8FC4899CA3D612A45C1C1DC02A21F63372DAEDD6.crl rsync://repo-rpki.idnic.net/repo/e5413ff4-202b-4999-b45d-73c972f10116/0/8FC4899CA3D612A45C1C1DC02A21F63372DAEDD6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8FC4899CA3D612A45C1C1DC02A21F63372DAEDD6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 00:53:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:69:a3:7b:98:f4:7d:82:15:fa:2c:60:1c:c6:a2:d8:26:38:9b:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC4899CA3D612A45C1C1DC02A21F63372DAEDD6 Validity Not Before: Sep 12 03:57:24 2025 GMT Not After : Sep 11 04:02:24 2026 GMT Subject: CN=A9E442DDAA6252742F0A05B0CEBEB4978E228675 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:d4:5e:f8:ad:8d:2e:1a:e7:96:3e:fd:b2:95: 23:01:a9:cf:d2:aa:87:57:4e:8e:3e:28:d2:d0:4e: a3:ab:cc:2b:94:67:5b:dc:fc:f4:e4:90:d9:c5:f4: 0e:39:77:11:d0:67:bf:ac:19:b4:7d:a8:6a:b4:4d: b5:64:0d:88:64:a9:2e:fd:94:67:6e:15:42:31:34: 0f:db:ff:10:de:90:b2:18:56:6f:e8:c7:10:55:a9: f4:07:fc:fc:b5:6c:00:66:48:23:87:d1:ea:3b:07: e5:89:f7:3a:f1:0f:f2:80:4f:3a:e3:d4:da:c9:bb: 1b:1d:8e:e6:08:83:da:43:20:97:66:05:83:f6:1d: 83:86:5c:18:cf:b1:86:ac:49:d7:c8:c1:fd:40:19: 36:47:00:56:85:d8:0f:cc:79:09:75:f4:d4:d5:95: 66:ec:f5:b8:c8:35:0f:22:1e:cb:12:32:4e:4c:eb: 57:ac:41:51:e6:67:83:40:01:4d:78:59:6a:11:e7: 52:7c:15:d0:44:b7:46:49:78:d1:28:5e:5b:3e:ba: c4:45:c0:2d:a8:ef:48:49:1b:a0:e8:04:99:66:38: 5a:50:ab:93:f5:0d:6e:46:ee:2c:72:56:6c:41:33: 53:18:37:fb:77:3b:8c:a7:1f:01:dc:74:8a:32:95: b1:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:E4:42:DD:AA:62:52:74:2F:0A:05:B0:CE:BE:B4:97:8E:22:86:75 X509v3 Authority Key Identifier: keyid:8F:C4:89:9C:A3:D6:12:A4:5C:1C:1D:C0:2A:21:F6:33:72:DA:ED:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e5413ff4-202b-4999-b45d-73c972f10116/0/8FC4899CA3D612A45C1C1DC02A21F63372DAEDD6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8FC4899CA3D612A45C1C1DC02A21F63372DAEDD6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e5413ff4-202b-4999-b45d-73c972f10116/0/323430343a636163303a626162653a3a2f34382d3438203d3e20313339343137.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:cac0:babe::/48 Signature Algorithm: sha256WithRSAEncryption 26:22:32:9c:38:a3:d9:cb:ab:94:05:f3:4c:70:50:f4:7c:29: 8f:d5:bc:a1:e9:86:37:0f:84:02:b5:29:17:84:29:3a:9c:dd: 93:f6:c6:0e:cd:97:c5:ca:aa:7d:c5:2b:da:35:5e:3e:3f:f9: dc:9d:84:d1:73:69:ba:58:53:8b:32:26:37:bb:cd:e6:e9:af: 24:40:d3:9c:53:76:85:49:cb:65:ba:38:1d:01:7e:68:f3:38: 71:35:5c:38:2c:0c:29:f8:d2:6e:18:ad:23:88:29:a9:1c:f5: 2e:f7:7b:ed:30:27:f3:82:8f:49:45:b8:d9:75:ff:a0:52:ca: e1:f9:0d:db:e7:a1:d6:cc:51:ab:a6:9a:7e:cc:86:43:f7:c5: d2:a7:82:14:f6:7d:95:56:bb:bd:69:a4:ba:fb:03:f5:52:7a: 2f:9e:24:1e:f8:72:6b:35:aa:36:24:90:66:d9:ca:4d:d4:26: 41:53:c9:71:9b:e6:28:ed:a9:9b:c7:e5:30:2b:b1:67:be:8b: 0f:ab:a0:e2:14:84:25:a2:66:85:22:ab:ef:a7:65:91:1a:94: 97:a6:72:e5:7e:59:e2:b6:05:a0:e1:04:67:a3:7a:72:45:5a: 77:2b:f7:95:42:ee:e1:5d:73:95:10:d6:17:14:47:6b:4c:91: 8c:66:55:be -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUJGmje5j0fYIV+ixgHMai2CY4m3owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDNDg5OUNBM0Q2MTJBNDVDMUMxREMwMkEyMUY2MzM3 MkRBRURENjAeFw0yNTA5MTIwMzU3MjRaFw0yNjA5MTEwNDAyMjRaMDMxMTAvBgNV BAMTKEE5RTQ0MkREQUE2MjUyNzQyRjBBMDVCMENFQkVCNDk3OEUyMjg2NzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC41F74rY0uGueWPv2ylSMBqc/S qodXTo4+KNLQTqOrzCuUZ1vc/PTkkNnF9A45dxHQZ7+sGbR9qGq0TbVkDYhkqS79 lGduFUIxNA/b/xDekLIYVm/oxxBVqfQH/Py1bABmSCOH0eo7B+WJ9zrxD/KATzrj 1NrJuxsdjuYIg9pDIJdmBYP2HYOGXBjPsYasSdfIwf1AGTZHAFaF2A/MeQl19NTV lWbs9bjINQ8iHssSMk5M61esQVHmZ4NAAU14WWoR51J8FdBEt0ZJeNEoXls+usRF wC2o70hJG6DoBJlmOFpQq5P1DW5G7ixyVmxBM1MYN/t3O4ynHwHcdIoylbEdAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUqeRC3apiUnQvCgWwzr60l44ihnUwHwYDVR0j BBgwFoAUj8SJnKPWEqRcHB3AKiH2M3La7dYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l NTQxM2ZmNC0yMDJiLTQ5OTktYjQ1ZC03M2M5NzJmMTAxMTYvMC84RkM0ODk5Q0Ez RDYxMkE0NUMxQzFEQzAyQTIxRjYzMzcyREFFREQ2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEZDNDg5OUNBM0Q2MTJBNDVDMUMxREMwMkEyMUY2MzM3MkRB RURENi5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U1NDEzZmY0LTIwMmItNDk5OS1i NDVkLTczYzk3MmYxMDExNi8wLzMyMzQzMDM0M2E2MzYxNjMzMDNhNjI2MTYyNjUz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTMzMzkzNDMxMzcucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk BMrAur4wDQYJKoZIhvcNAQELBQADggEBACYiMpw4o9nLq5QF80xwUPR8KY/VvKHp hjcPhAK1KReEKTqc3ZP2xg7Nl8XKqn3FK9o1Xj4/+dydhNFzabpYU4syJje7zebp ryRA05xTdoVJy2W6OB0BfmjzOHE1XDgsDCn40m4YrSOIKakc9S73e+0wJ/OCj0lF uNl1/6BSyuH5DdvnodbMUaummn7MhkP3xdKnghT2fZVWu71ppLr7A/VSei+eJB74 cms1qjYkkGbZyk3UJkFTyXGb5ijtqZvH5TArsWe+iw+roOIUhCWiZoUiq++nZZEa lJemcuV+WeK2BaDhBGejenJFWncr95VC7uFdc5UQ1hcUR2tMkYxmVb4= -----END CERTIFICATE-----Generated at Mon Oct 20 16:47:57 2025 by rpki-client