$ rpki-client -vvf repo-rpki.idnic.net/repo/e5413ff4-202b-4999-b45d-73c972f10116/0/323430343a636163303a633032653a3a2f34382d3438203d3e20313339343137.roa File: 323430343a636163303a633032653a3a2f34382d3438203d3e20313339343137.roa (raw, json) Hash identifier: TBR11DrPkyQgDEOjgsvbiFDryM9x2tI6poq7H38GvyM= Subject key identifier: 5C:11:E0:75:23:6C:5E:84:51:37:E5:86:93:14:6B:D5:9F:BE:C1:78 Certificate issuer: /CN=8FC4899CA3D612A45C1C1DC02A21F63372DAEDD6 Certificate serial: 72027D0A9C529C4B9DEE902FA49550361B9B3428 Authority key identifier: 8F:C4:89:9C:A3:D6:12:A4:5C:1C:1D:C0:2A:21:F6:33:72:DA:ED:D6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8FC4899CA3D612A45C1C1DC02A21F63372DAEDD6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e5413ff4-202b-4999-b45d-73c972f10116/0/323430343a636163303a633032653a3a2f34382d3438203d3e20313339343137.roa Signing time: Mon 22 Sep 2025 04:00:01 +0000 ROA not before: Mon 22 Sep 2025 03:55:01 +0000 ROA not after: Mon 21 Sep 2026 04:00:01 +0000 asID: 139417 IP address blocks: 2404:cac0:c02e::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e5413ff4-202b-4999-b45d-73c972f10116/0/8FC4899CA3D612A45C1C1DC02A21F63372DAEDD6.crl rsync://repo-rpki.idnic.net/repo/e5413ff4-202b-4999-b45d-73c972f10116/0/8FC4899CA3D612A45C1C1DC02A21F63372DAEDD6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8FC4899CA3D612A45C1C1DC02A21F63372DAEDD6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 00:53:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:02:7d:0a:9c:52:9c:4b:9d:ee:90:2f:a4:95:50:36:1b:9b:34:28 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC4899CA3D612A45C1C1DC02A21F63372DAEDD6 Validity Not Before: Sep 22 03:55:01 2025 GMT Not After : Sep 21 04:00:01 2026 GMT Subject: CN=5C11E075236C5E845137E58693146BD59FBEC178 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:90:7a:40:c2:27:d4:cc:b9:53:b6:4f:41:e0: 9d:db:69:d8:a7:4a:d0:3f:71:66:ce:bc:e9:49:b9: c1:d2:d5:05:c2:3a:13:af:8f:9d:e9:35:df:9a:24: 5d:95:e9:07:f9:27:d4:f6:a8:98:93:26:ba:54:99: 6f:26:3b:0c:5f:61:80:71:f8:3e:9c:39:bc:57:48: f1:97:3a:90:1b:14:84:02:58:64:92:0c:99:73:0e: 96:2b:d8:a6:81:c0:a1:e5:dc:c4:b3:45:c8:7a:31: 10:87:eb:0e:6f:80:03:dc:27:6e:53:ff:2e:2a:7a: 80:45:65:07:bb:16:aa:57:c3:d5:d7:14:08:4c:02: 18:0a:aa:f5:53:78:d9:4c:b3:19:e7:b7:69:61:cd: a0:f1:7a:a9:28:23:cf:83:f6:90:85:36:b0:6c:3c: 32:bd:a3:ed:c3:7f:f4:d3:17:2e:97:1a:18:84:6e: 4c:e0:95:ce:8a:dd:2f:f1:b5:33:d7:f9:99:00:d8: 64:cc:2a:19:80:f3:01:8c:04:57:a9:81:d9:84:57: e8:80:15:71:20:e2:57:3d:91:50:ae:a3:13:86:2c: 41:bd:37:44:a0:76:22:00:aa:c2:18:c9:36:a1:ac: e7:e6:ef:29:d3:d7:ee:08:7d:a6:1c:8f:48:b1:8e: ad:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:11:E0:75:23:6C:5E:84:51:37:E5:86:93:14:6B:D5:9F:BE:C1:78 X509v3 Authority Key Identifier: keyid:8F:C4:89:9C:A3:D6:12:A4:5C:1C:1D:C0:2A:21:F6:33:72:DA:ED:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e5413ff4-202b-4999-b45d-73c972f10116/0/8FC4899CA3D612A45C1C1DC02A21F63372DAEDD6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8FC4899CA3D612A45C1C1DC02A21F63372DAEDD6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e5413ff4-202b-4999-b45d-73c972f10116/0/323430343a636163303a633032653a3a2f34382d3438203d3e20313339343137.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:cac0:c02e::/48 Signature Algorithm: sha256WithRSAEncryption 2d:14:9c:47:ab:08:ce:56:d3:e1:d5:ef:a7:33:14:ca:e9:6b: ed:82:80:0b:52:43:2c:23:47:2d:1e:cf:9b:0a:11:77:3b:a7: af:8a:f1:2d:61:5d:12:f4:55:e0:eb:e6:0c:d2:41:1e:1e:38: 41:04:da:90:c2:81:c1:e5:f9:2e:05:60:be:bf:9e:54:7f:95: 94:24:9f:4d:b5:75:f0:ed:87:10:52:0f:e8:1d:1b:f2:3e:90: 9b:0f:42:e4:23:74:d6:92:a1:09:8e:96:14:9d:4d:ae:e7:43: 05:92:11:d4:e8:9b:fe:50:bf:1e:97:f4:cf:88:c2:18:5b:35: 25:8b:ae:5b:25:c2:0e:e8:6e:24:eb:61:89:71:56:45:60:b3: 12:a2:5f:ff:e0:01:f1:06:fe:b2:4b:f9:9a:a7:11:6b:fb:c0: e6:e0:05:23:af:b9:f1:dc:a1:04:f1:47:ce:79:fd:7d:ca:51: f6:ca:59:35:db:5f:1f:e7:df:e1:2c:bd:c7:98:54:6d:19:de: 8a:a0:a6:85:32:14:1f:f6:13:96:dc:68:02:1a:62:0b:01:cd: 43:8b:5b:d4:7c:5e:de:bc:f0:0b:60:0a:c5:6f:c4:64:40:03: 5c:57:93:7c:b6:5a:8e:83:ca:d1:0d:a1:7c:9d:dc:ff:b3:b3: a5:c0:33:8a -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUcgJ9CpxSnEud7pAvpJVQNhubNCgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDNDg5OUNBM0Q2MTJBNDVDMUMxREMwMkEyMUY2MzM3 MkRBRURENjAeFw0yNTA5MjIwMzU1MDFaFw0yNjA5MjEwNDAwMDFaMDMxMTAvBgNV BAMTKDVDMTFFMDc1MjM2QzVFODQ1MTM3RTU4NjkzMTQ2QkQ1OUZCRUMxNzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZkHpAwifUzLlTtk9B4J3badin StA/cWbOvOlJucHS1QXCOhOvj53pNd+aJF2V6Qf5J9T2qJiTJrpUmW8mOwxfYYBx +D6cObxXSPGXOpAbFIQCWGSSDJlzDpYr2KaBwKHl3MSzRch6MRCH6w5vgAPcJ25T /y4qeoBFZQe7FqpXw9XXFAhMAhgKqvVTeNlMsxnnt2lhzaDxeqkoI8+D9pCFNrBs PDK9o+3Df/TTFy6XGhiEbkzglc6K3S/xtTPX+ZkA2GTMKhmA8wGMBFepgdmEV+iA FXEg4lc9kVCuoxOGLEG9N0SgdiIAqsIYyTahrOfm7ynT1+4IfaYcj0ixjq1zAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUXBHgdSNsXoRRN+WGkxRr1Z++wXgwHwYDVR0j BBgwFoAUj8SJnKPWEqRcHB3AKiH2M3La7dYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l NTQxM2ZmNC0yMDJiLTQ5OTktYjQ1ZC03M2M5NzJmMTAxMTYvMC84RkM0ODk5Q0Ez RDYxMkE0NUMxQzFEQzAyQTIxRjYzMzcyREFFREQ2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEZDNDg5OUNBM0Q2MTJBNDVDMUMxREMwMkEyMUY2MzM3MkRB RURENi5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U1NDEzZmY0LTIwMmItNDk5OS1i NDVkLTczYzk3MmYxMDExNi8wLzMyMzQzMDM0M2E2MzYxNjMzMDNhNjMzMDMyNjUz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTMzMzkzNDMxMzcucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk BMrAwC4wDQYJKoZIhvcNAQELBQADggEBAC0UnEerCM5W0+HV76czFMrpa+2CgAtS QywjRy0ez5sKEXc7p6+K8S1hXRL0VeDr5gzSQR4eOEEE2pDCgcHl+S4FYL6/nlR/ lZQkn021dfDthxBSD+gdG/I+kJsPQuQjdNaSoQmOlhSdTa7nQwWSEdTom/5Qvx6X 9M+IwhhbNSWLrlslwg7obiTrYYlxVkVgsxKiX//gAfEG/rJL+ZqnEWv7wObgBSOv ufHcoQTxR855/X3KUfbKWTXbXx/n3+EsvceYVG0Z3oqgpoUyFB/2E5bcaAIaYgsB zUOLW9R8Xt688AtgCsVvxGRAA1xXk3y2Wo6DytENoXyd3P+zs6XAM4o= -----END CERTIFICATE-----Generated at Tue Oct 21 00:07:16 2025 by rpki-client