$ rpki-client -vvf repo-rpki.idnic.net/repo/ed9ba953-8489-450e-bbdf-764571fbace7/0/323430333a623230303a3166653a3a2f34382d3438203d3e203233363731.roa File: 323430333a623230303a3166653a3a2f34382d3438203d3e203233363731.roa (raw, json) Hash identifier: 33YyvmLMqhZHlF7KJWBhAIcrQi1mJNeErJXlgE4dA9I= Subject key identifier: 23:9B:44:98:2D:B3:E8:49:CC:BF:F5:23:B2:55:D8:31:4E:CA:57:A8 Certificate issuer: /CN=47661DC42A2BCC5BCEEE73AC8ABA71B12188866F Certificate serial: 2E7AC33C26BA4254537CA2ECBDE28C415605C1B3 Authority key identifier: 47:66:1D:C4:2A:2B:CC:5B:CE:EE:73:AC:8A:BA:71:B1:21:88:86:6F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/47661DC42A2BCC5BCEEE73AC8ABA71B12188866F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ed9ba953-8489-450e-bbdf-764571fbace7/0/323430333a623230303a3166653a3a2f34382d3438203d3e203233363731.roa Signing time: Fri 12 Sep 2025 04:00:00 +0000 ROA not before: Fri 12 Sep 2025 03:55:00 +0000 ROA not after: Fri 11 Sep 2026 04:00:00 +0000 asID: 23671 IP address blocks: 2403:b200:1fe::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ed9ba953-8489-450e-bbdf-764571fbace7/0/47661DC42A2BCC5BCEEE73AC8ABA71B12188866F.crl rsync://repo-rpki.idnic.net/repo/ed9ba953-8489-450e-bbdf-764571fbace7/0/47661DC42A2BCC5BCEEE73AC8ABA71B12188866F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/47661DC42A2BCC5BCEEE73AC8ABA71B12188866F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 11:48:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:7a:c3:3c:26:ba:42:54:53:7c:a2:ec:bd:e2:8c:41:56:05:c1:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=47661DC42A2BCC5BCEEE73AC8ABA71B12188866F Validity Not Before: Sep 12 03:55:00 2025 GMT Not After : Sep 11 04:00:00 2026 GMT Subject: CN=239B44982DB3E849CCBFF523B255D8314ECA57A8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:c4:2a:1c:3e:96:35:5a:09:c2:bc:8a:3a:c4: 70:60:fd:03:ab:3d:32:ec:7b:15:e2:f7:55:46:95: 08:b8:46:cd:c6:ee:91:03:ec:37:3f:92:08:58:70: 9c:38:11:a6:50:8b:3e:6f:b0:48:b7:ce:82:19:9f: 3e:cd:7c:e0:a4:e1:b1:7a:09:1e:d3:dd:5c:d7:0b: 2a:5c:19:f8:77:31:c5:67:e9:d8:19:a2:df:2c:1a: ff:02:3e:5b:37:c0:71:20:f7:ee:3a:1e:1e:ca:22: ee:75:3f:17:49:72:f6:4d:66:1a:ed:03:30:0a:45: 02:70:c6:1f:41:fd:9e:4b:4f:50:fe:44:98:c9:04: 49:06:a8:fb:16:df:b8:ac:82:11:de:be:88:95:63: 61:1b:1a:f5:23:2c:ad:72:c6:2e:f4:e5:71:82:51: 5d:b9:86:c5:86:ac:0b:0b:24:2b:04:8a:d2:66:89: d8:6f:c0:0b:02:dc:d6:9d:a0:96:05:f2:96:f7:f6: 76:43:37:6e:4a:3a:14:e6:b6:2f:1a:5c:a5:bd:d2: 27:cf:59:65:f2:b1:13:6c:61:96:1f:98:d0:10:82: 61:d2:f7:2c:76:39:77:97:dd:b1:2c:bd:4d:2b:17: fa:08:aa:1f:c1:12:99:fe:b6:3e:c9:76:3a:71:bb: 38:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:9B:44:98:2D:B3:E8:49:CC:BF:F5:23:B2:55:D8:31:4E:CA:57:A8 X509v3 Authority Key Identifier: keyid:47:66:1D:C4:2A:2B:CC:5B:CE:EE:73:AC:8A:BA:71:B1:21:88:86:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ed9ba953-8489-450e-bbdf-764571fbace7/0/47661DC42A2BCC5BCEEE73AC8ABA71B12188866F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/47661DC42A2BCC5BCEEE73AC8ABA71B12188866F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ed9ba953-8489-450e-bbdf-764571fbace7/0/323430333a623230303a3166653a3a2f34382d3438203d3e203233363731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:b200:1fe::/48 Signature Algorithm: sha256WithRSAEncryption 3b:3e:f5:ae:dc:84:03:11:2b:b6:4a:eb:60:46:9a:ee:cf:21: fb:cc:08:66:58:90:39:10:fc:cd:19:2d:e8:dc:06:f4:e1:e0: 1b:d4:1c:db:5a:49:d1:16:2f:dd:5a:b3:0a:98:fe:20:dc:40: 93:e0:1d:f8:ae:62:fe:99:62:35:13:b8:94:f3:4f:07:df:93: 67:71:fc:a0:c1:1d:63:1c:ec:37:cc:2a:04:eb:5e:fb:06:f1: 7d:17:6c:9c:19:b5:90:cd:d4:9f:4e:4e:d0:14:b1:23:f9:66: b4:f3:b8:45:41:14:fc:f2:f0:ea:2f:a4:cd:eb:32:f0:11:3f: c2:71:f1:2a:3a:44:51:b8:ff:13:f5:23:c3:78:81:d7:28:13: 9a:86:75:9a:f4:1a:fe:54:c4:32:a1:a4:fa:01:93:2f:fc:1b: cd:8c:56:85:0d:e4:7b:50:da:6f:dd:bb:9f:9c:22:a8:30:b7: 71:b7:e8:7d:2e:94:a7:8c:0c:be:7b:16:83:2a:41:b2:79:0b: fe:f8:3f:4f:0b:16:92:55:01:d2:ca:cd:bf:bb:84:81:ba:8d: b8:5c:4a:f1:7c:3e:81:c3:41:62:af:36:6a:53:1d:52:05:52: 25:e2:24:29:fe:83:03:b3:2b:ab:7e:f5:bf:c2:b6:c6:6d:d0: 58:89:23:5a -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIULnrDPCa6QlRTfKLsveKMQVYFwbMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDc2NjFEQzQyQTJCQ0M1QkNFRUU3M0FDOEFCQTcxQjEy MTg4ODY2RjAeFw0yNTA5MTIwMzU1MDBaFw0yNjA5MTEwNDAwMDBaMDMxMTAvBgNV BAMTKDIzOUI0NDk4MkRCM0U4NDlDQ0JGRjUyM0IyNTVEODMxNEVDQTU3QTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5xCocPpY1WgnCvIo6xHBg/QOr PTLsexXi91VGlQi4Rs3G7pED7Dc/kghYcJw4EaZQiz5vsEi3zoIZnz7NfOCk4bF6 CR7T3VzXCypcGfh3McVn6dgZot8sGv8CPls3wHEg9+46Hh7KIu51PxdJcvZNZhrt AzAKRQJwxh9B/Z5LT1D+RJjJBEkGqPsW37isghHevoiVY2EbGvUjLK1yxi705XGC UV25hsWGrAsLJCsEitJmidhvwAsC3NadoJYF8pb39nZDN25KOhTmti8aXKW90ifP WWXysRNsYZYfmNAQgmHS9yx2OXeX3bEsvU0rF/oIqh/BEpn+tj7JdjpxuzjXAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUI5tEmC2z6EnMv/UjslXYMU7KV6gwHwYDVR0j BBgwFoAUR2YdxCorzFvO7nOsirpxsSGIhm8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l ZDliYTk1My04NDg5LTQ1MGUtYmJkZi03NjQ1NzFmYmFjZTcvMC80NzY2MURDNDJB MkJDQzVCQ0VFRTczQUM4QUJBNzFCMTIxODg4NjZGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDc2NjFEQzQyQTJCQ0M1QkNFRUU3M0FDOEFCQTcxQjEyMTg4 ODY2Ri5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2VkOWJhOTUzLTg0ODktNDUwZS1i YmRmLTc2NDU3MWZiYWNlNy8wLzMyMzQzMDMzM2E2MjMyMzAzMDNhMzE2NjY1M2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzIzMzM2MzczMS5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQDsgAB /jANBgkqhkiG9w0BAQsFAAOCAQEAOz71rtyEAxErtkrrYEaa7s8h+8wIZliQORD8 zRkt6NwG9OHgG9Qc21pJ0RYv3VqzCpj+INxAk+Ad+K5i/pliNRO4lPNPB9+TZ3H8 oMEdYxzsN8wqBOte+wbxfRdsnBm1kM3Un05O0BSxI/lmtPO4RUEU/PLw6i+kzesy 8BE/wnHxKjpEUbj/E/Ujw3iB1ygTmoZ1mvQa/lTEMqGk+gGTL/wbzYxWhQ3ke1Da b927n5wiqDC3cbfofS6Up4wMvnsWgypBsnkL/vg/TwsWklUB0srNv7uEgbqNuFxK 8Xw+gcNBYq82alMdUgVSJeIkKf6DA7Mrq371v8K2xm3QWIkjWg== -----END CERTIFICATE-----Generated at Mon Oct 20 19:05:01 2025 by rpki-client