$ rpki-client -vvf repo-rpki.idnic.net/repo/e5413ff4-202b-4999-b45d-73c972f10116/0/323430343a636163303a666630303a3a2f34302d3430203d3e20313339343137.roa File: 323430343a636163303a666630303a3a2f34302d3430203d3e20313339343137.roa (raw, json) Hash identifier: NL2aJR33roSrH0rfHxsWPH389zRfhX/C1lq5KI784/M= Subject key identifier: C0:78:C5:67:4F:10:9E:E8:E5:1D:B5:84:86:CB:A9:84:13:A7:59:C0 Certificate issuer: /CN=8FC4899CA3D612A45C1C1DC02A21F63372DAEDD6 Certificate serial: 36D0FE322B66B5EF311D762E1ABAF08B837A21D1 Authority key identifier: 8F:C4:89:9C:A3:D6:12:A4:5C:1C:1D:C0:2A:21:F6:33:72:DA:ED:D6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8FC4899CA3D612A45C1C1DC02A21F63372DAEDD6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e5413ff4-202b-4999-b45d-73c972f10116/0/323430343a636163303a666630303a3a2f34302d3430203d3e20313339343137.roa Signing time: Wed 10 Sep 2025 11:00:01 +0000 ROA not before: Wed 10 Sep 2025 10:55:01 +0000 ROA not after: Wed 09 Sep 2026 11:00:01 +0000 asID: 139417 IP address blocks: 2404:cac0:ff00::/40 maxlen: 40 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e5413ff4-202b-4999-b45d-73c972f10116/0/8FC4899CA3D612A45C1C1DC02A21F63372DAEDD6.crl rsync://repo-rpki.idnic.net/repo/e5413ff4-202b-4999-b45d-73c972f10116/0/8FC4899CA3D612A45C1C1DC02A21F63372DAEDD6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8FC4899CA3D612A45C1C1DC02A21F63372DAEDD6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 00:53:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:d0:fe:32:2b:66:b5:ef:31:1d:76:2e:1a:ba:f0:8b:83:7a:21:d1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC4899CA3D612A45C1C1DC02A21F63372DAEDD6 Validity Not Before: Sep 10 10:55:01 2025 GMT Not After : Sep 9 11:00:01 2026 GMT Subject: CN=C078C5674F109EE8E51DB58486CBA98413A759C0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:9b:a0:a3:c6:de:86:4f:46:7f:b7:e0:7e:bd: db:c4:30:93:41:11:ba:37:ae:1f:25:1c:b5:9c:69: e6:9a:44:94:5f:94:74:97:74:43:20:fd:24:40:38: ea:fd:4f:91:c0:d6:96:06:7c:ef:13:25:97:9a:7d: 11:a8:4d:58:5e:b1:e2:75:62:51:6f:21:1e:cf:6a: 7e:51:ce:fc:60:84:94:ca:56:99:08:db:2d:b7:7c: 69:e1:fe:f0:48:5e:8f:f3:e3:9c:4e:fe:a8:5f:74: a1:90:2b:3a:48:a4:08:28:10:1e:03:9c:ba:af:83: e9:6a:1c:e8:1f:80:30:1d:dd:cf:52:c1:87:c0:ce: 1f:69:9c:2c:01:1e:6f:40:45:d3:b8:17:29:be:c7: 7a:59:48:b5:e3:3b:cb:76:50:28:46:ea:d2:02:34: bb:02:fc:1f:0e:16:60:12:e9:ad:6c:f6:36:3b:44: 13:95:c8:ae:b9:69:3d:ae:52:32:26:cb:61:d9:be: 96:b5:7f:29:bf:26:c2:19:bb:bf:dc:39:da:05:10: da:0d:7f:ba:39:29:d7:e9:2c:8a:90:da:d8:12:9e: 14:22:cb:c5:24:06:7e:47:4c:2d:1c:75:66:a3:55: 67:c7:80:3a:ed:58:96:44:34:fe:a8:00:df:6a:30: 85:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:78:C5:67:4F:10:9E:E8:E5:1D:B5:84:86:CB:A9:84:13:A7:59:C0 X509v3 Authority Key Identifier: keyid:8F:C4:89:9C:A3:D6:12:A4:5C:1C:1D:C0:2A:21:F6:33:72:DA:ED:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e5413ff4-202b-4999-b45d-73c972f10116/0/8FC4899CA3D612A45C1C1DC02A21F63372DAEDD6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8FC4899CA3D612A45C1C1DC02A21F63372DAEDD6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e5413ff4-202b-4999-b45d-73c972f10116/0/323430343a636163303a666630303a3a2f34302d3430203d3e20313339343137.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:cac0:ff00::/40 Signature Algorithm: sha256WithRSAEncryption 35:e0:97:ce:75:1e:a8:29:9f:11:a7:bb:7e:c2:e2:86:df:ea: bf:6e:4b:21:90:ac:f5:8a:b0:bb:d9:74:6a:76:c3:8b:5d:fb: af:7a:50:3b:0f:4e:0f:8f:a2:5d:34:30:5e:85:fc:c8:84:ea: 36:29:de:d4:a4:8c:5f:f3:cb:69:fe:e0:32:90:09:88:bd:e1: 02:9e:f8:a2:2c:aa:ed:b3:4b:8a:a2:48:b2:6f:3a:21:38:80: 3e:b7:86:6e:45:68:f4:bb:ce:96:cf:93:16:c4:46:39:ee:33: d1:80:5a:e5:85:68:91:7d:16:ac:6c:a1:82:19:f9:c0:21:0d: 60:e6:09:55:c3:15:aa:c1:66:60:23:dd:b8:0a:ee:8c:0e:6f: 23:6a:14:f3:ff:50:06:36:38:54:11:5a:ae:d3:2b:62:fd:d1: 7f:c4:52:7b:dd:c9:92:f3:aa:7f:2d:31:ce:ab:c0:2f:06:bd: c3:d2:09:69:c0:9e:38:8a:c6:22:8b:e4:df:0e:8b:a0:cf:ba: 3d:e3:c7:dd:87:9e:1c:28:cd:9f:38:69:13:52:d6:0a:39:2b: 0a:e1:f9:21:06:6b:24:19:81:5a:75:90:c9:f2:3d:cd:cf:54: 99:93:74:44:a8:05:a7:25:96:f5:f5:5c:f0:03:0d:88:4f:77: 77:4c:6b:b4 -----BEGIN CERTIFICATE----- MIIFNDCCBBygAwIBAgIUNtD+Mitmte8xHXYuGrrwi4N6IdEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDNDg5OUNBM0Q2MTJBNDVDMUMxREMwMkEyMUY2MzM3 MkRBRURENjAeFw0yNTA5MTAxMDU1MDFaFw0yNjA5MDkxMTAwMDFaMDMxMTAvBgNV BAMTKEMwNzhDNTY3NEYxMDlFRThFNTFEQjU4NDg2Q0JBOTg0MTNBNzU5QzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCZm6Cjxt6GT0Z/t+B+vdvEMJNB Ebo3rh8lHLWcaeaaRJRflHSXdEMg/SRAOOr9T5HA1pYGfO8TJZeafRGoTVheseJ1 YlFvIR7Pan5RzvxghJTKVpkI2y23fGnh/vBIXo/z45xO/qhfdKGQKzpIpAgoEB4D nLqvg+lqHOgfgDAd3c9SwYfAzh9pnCwBHm9ARdO4Fym+x3pZSLXjO8t2UChG6tIC NLsC/B8OFmAS6a1s9jY7RBOVyK65aT2uUjImy2HZvpa1fym/JsIZu7/cOdoFENoN f7o5KdfpLIqQ2tgSnhQiy8UkBn5HTC0cdWajVWfHgDrtWJZENP6oAN9qMIW3AgMB AAGjggI+MIICOjAdBgNVHQ4EFgQUwHjFZ08QnujlHbWEhsuphBOnWcAwHwYDVR0j BBgwFoAUj8SJnKPWEqRcHB3AKiH2M3La7dYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l NTQxM2ZmNC0yMDJiLTQ5OTktYjQ1ZC03M2M5NzJmMTAxMTYvMC84RkM0ODk5Q0Ez RDYxMkE0NUMxQzFEQzAyQTIxRjYzMzcyREFFREQ2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEZDNDg5OUNBM0Q2MTJBNDVDMUMxREMwMkEyMUY2MzM3MkRB RURENi5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U1NDEzZmY0LTIwMmItNDk5OS1i NDVkLTczYzk3MmYxMDExNi8wLzMyMzQzMDM0M2E2MzYxNjMzMDNhNjY2NjMwMzAz YTNhMmYzNDMwMmQzNDMwMjAzZDNlMjAzMTMzMzkzNDMxMzcucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgAk BMrA/zANBgkqhkiG9w0BAQsFAAOCAQEANeCXznUeqCmfEae7fsLiht/qv25LIZCs 9Yqwu9l0anbDi137r3pQOw9OD4+iXTQwXoX8yITqNine1KSMX/PLaf7gMpAJiL3h Ap74oiyq7bNLiqJIsm86ITiAPreGbkVo9LvOls+TFsRGOe4z0YBa5YVokX0WrGyh ghn5wCENYOYJVcMVqsFmYCPduArujA5vI2oU8/9QBjY4VBFartMrYv3Rf8RSe93J kvOqfy0xzqvALwa9w9IJacCeOIrGIovk3w6LoM+6PePH3YeeHCjNnzhpE1LWCjkr CuH5IQZrJBmBWnWQyfI9zc9UmZN0RKgFpyWW9fVc8AMNiE93d0xrtA== -----END CERTIFICATE-----Generated at Mon Oct 20 13:58:21 2025 by rpki-client