$ rpki-client -vvf repo-rpki.idnic.net/repo/f0e4ca54-857b-4f68-ab5f-0d8c472e6c92/0/323030313a6466353a333930303a3a2f34382d3438203d3e203138333531.roa File: 323030313a6466353a333930303a3a2f34382d3438203d3e203138333531.roa (raw, json) Hash identifier: EBR+p3PkcTAiMYCAgv6PbSayq0bFAGHJD99zgOmEdFk= Subject key identifier: 89:C7:89:4D:D1:15:29:F5:B3:D2:B6:90:D0:7E:63:85:96:73:10:09 Certificate issuer: /CN=78578588503A7F091F1D7CD7B16BDC9E55055889 Certificate serial: 0C5B9B45B39593A35806FB16C305E3EE9111426C Authority key identifier: 78:57:85:88:50:3A:7F:09:1F:1D:7C:D7:B1:6B:DC:9E:55:05:58:89 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/78578588503A7F091F1D7CD7B16BDC9E55055889.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f0e4ca54-857b-4f68-ab5f-0d8c472e6c92/0/323030313a6466353a333930303a3a2f34382d3438203d3e203138333531.roa Signing time: Thu 02 Oct 2025 03:05:29 +0000 ROA not before: Thu 02 Oct 2025 03:00:29 +0000 ROA not after: Thu 01 Oct 2026 03:05:29 +0000 asID: 18351 IP address blocks: 2001:df5:3900::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f0e4ca54-857b-4f68-ab5f-0d8c472e6c92/0/78578588503A7F091F1D7CD7B16BDC9E55055889.crl rsync://repo-rpki.idnic.net/repo/f0e4ca54-857b-4f68-ab5f-0d8c472e6c92/0/78578588503A7F091F1D7CD7B16BDC9E55055889.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/78578588503A7F091F1D7CD7B16BDC9E55055889.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 19:27:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:5b:9b:45:b3:95:93:a3:58:06:fb:16:c3:05:e3:ee:91:11:42:6c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=78578588503A7F091F1D7CD7B16BDC9E55055889 Validity Not Before: Oct 2 03:00:29 2025 GMT Not After : Oct 1 03:05:29 2026 GMT Subject: CN=89C7894DD11529F5B3D2B690D07E638596731009 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:ec:58:b5:a8:4b:25:48:ca:06:42:fa:83:44: a3:1e:cf:2f:cc:cb:9d:bd:39:96:81:31:b7:6c:b3: ee:ec:53:cf:54:ee:94:48:7a:cd:bc:13:42:17:0c: 62:ba:ad:97:a7:6d:d8:58:8e:e7:82:db:6f:86:0a: 9b:ad:9a:03:71:9a:5d:5e:d2:db:46:6e:82:cc:59: dd:bd:d9:29:5e:1a:d6:02:e6:d5:3f:30:b5:b6:fb: 36:13:77:c9:4b:18:61:f9:63:96:60:1a:bb:63:e7: b7:c6:27:6e:0a:e5:81:21:84:e5:91:84:66:51:bd: ad:7d:08:86:9e:81:96:15:d7:51:8e:a9:45:97:42: e4:c3:86:da:37:bd:53:15:2d:38:3e:33:2c:46:14: cd:61:ec:bf:a1:da:33:b2:9e:7e:98:38:6e:90:fc: fc:da:c0:e6:2c:18:55:d6:42:9a:5c:5f:7e:0b:d9: 59:30:8b:07:7d:74:a7:6b:30:ca:65:59:e1:91:af: 47:09:ae:f2:f9:24:39:61:35:41:9b:14:a4:dd:a0: 1b:18:9b:f4:dd:8a:90:01:de:3a:c6:d2:e0:8f:56: 85:b9:f2:43:68:d2:a4:e6:e1:49:2e:4a:90:f5:4d: 8b:d7:60:af:85:94:dd:95:72:08:11:fd:0e:84:82: 65:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:C7:89:4D:D1:15:29:F5:B3:D2:B6:90:D0:7E:63:85:96:73:10:09 X509v3 Authority Key Identifier: keyid:78:57:85:88:50:3A:7F:09:1F:1D:7C:D7:B1:6B:DC:9E:55:05:58:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f0e4ca54-857b-4f68-ab5f-0d8c472e6c92/0/78578588503A7F091F1D7CD7B16BDC9E55055889.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/78578588503A7F091F1D7CD7B16BDC9E55055889.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f0e4ca54-857b-4f68-ab5f-0d8c472e6c92/0/323030313a6466353a333930303a3a2f34382d3438203d3e203138333531.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df5:3900::/48 Signature Algorithm: sha256WithRSAEncryption b4:43:7e:d7:ae:8f:28:e9:d5:3f:b6:b7:f7:b8:74:4a:f4:2a: 62:6d:6c:fe:4e:3c:90:40:57:37:dc:a4:3e:41:e5:fb:52:95: 91:c4:5c:a3:15:0c:44:b9:15:2a:4e:04:0f:52:97:be:61:07: 5a:a8:d3:6e:e9:93:13:c8:e3:00:ff:af:8e:5c:75:ca:4f:18: 2b:4d:90:51:2c:f8:9b:01:17:6c:c2:c7:58:d2:aa:cf:42:9e: 88:32:63:63:73:fd:c6:ff:21:28:0f:18:cf:f2:c7:2f:49:06: 10:18:72:4d:10:f9:86:4b:97:e3:2c:01:5e:8b:c7:fc:ff:89: 01:43:72:33:56:fc:2b:aa:7f:c8:70:9e:5c:4f:b7:80:f7:68: 6c:f2:a0:e8:63:dc:b3:45:4e:b7:14:95:85:81:af:76:a4:e7: 1e:90:06:cc:7e:b2:c1:ad:13:2e:f3:51:97:0e:b3:a4:1d:cc: be:e2:05:0a:21:3f:18:3d:d1:a7:2e:c1:0c:08:11:bd:98:9d: dd:4b:7c:2d:ef:6b:64:f8:99:ec:23:f7:de:d5:41:c5:e6:55: 93:0c:57:71:9b:cc:d9:2a:a1:af:30:f0:3c:03:de:60:36:b3: 46:d7:9c:06:55:f0:f6:b8:15:70:47:aa:e4:1f:e1:91:22:a6: a5:50:bf:6a -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUDFubRbOVk6NYBvsWwwXj7pERQmwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzg1Nzg1ODg1MDNBN0YwOTFGMUQ3Q0Q3QjE2QkRDOUU1 NTA1NTg4OTAeFw0yNTEwMDIwMzAwMjlaFw0yNjEwMDEwMzA1MjlaMDMxMTAvBgNV BAMTKDg5Qzc4OTRERDExNTI5RjVCM0QyQjY5MEQwN0U2Mzg1OTY3MzEwMDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDg7Fi1qEslSMoGQvqDRKMezy/M y529OZaBMbdss+7sU89U7pRIes28E0IXDGK6rZenbdhYjueC22+GCputmgNxml1e 0ttGboLMWd292SleGtYC5tU/MLW2+zYTd8lLGGH5Y5ZgGrtj57fGJ24K5YEhhOWR hGZRva19CIaegZYV11GOqUWXQuTDhto3vVMVLTg+MyxGFM1h7L+h2jOynn6YOG6Q /PzawOYsGFXWQppcX34L2Vkwiwd9dKdrMMplWeGRr0cJrvL5JDlhNUGbFKTdoBsY m/TdipAB3jrG0uCPVoW58kNo0qTm4UkuSpD1TYvXYK+FlN2VcggR/Q6EgmUtAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUiceJTdEVKfWz0raQ0H5jhZZzEAkwHwYDVR0j BBgwFoAUeFeFiFA6fwkfHXzXsWvcnlUFWIkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MGU0Y2E1NC04NTdiLTRmNjgtYWI1Zi0wZDhjNDcyZTZjOTIvMC83ODU3ODU4ODUw M0E3RjA5MUYxRDdDRDdCMTZCREM5RTU1MDU1ODg5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzg1Nzg1ODg1MDNBN0YwOTFGMUQ3Q0Q3QjE2QkRDOUU1NTA1 NTg4OS5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YwZTRjYTU0LTg1N2ItNGY2OC1h YjVmLTBkOGM0NzJlNmM5Mi8wLzMyMzAzMDMxM2E2NDY2MzUzYTMzMzkzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzODMzMzUzMS5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACABDfU5 ADANBgkqhkiG9w0BAQsFAAOCAQEAtEN+166PKOnVP7a397h0SvQqYm1s/k48kEBX N9ykPkHl+1KVkcRcoxUMRLkVKk4ED1KXvmEHWqjTbumTE8jjAP+vjlx1yk8YK02Q USz4mwEXbMLHWNKqz0KeiDJjY3P9xv8hKA8Yz/LHL0kGEBhyTRD5hkuX4ywBXovH /P+JAUNyM1b8K6p/yHCeXE+3gPdobPKg6GPcs0VOtxSVhYGvdqTnHpAGzH6ywa0T LvNRlw6zpB3MvuIFCiE/GD3Rpy7BDAgRvZid3Ut8Le9rZPiZ7CP33tVBxeZVkwxX cZvM2SqhrzDwPAPeYDazRtecBlXw9rgVcEeq5B/hkSKmpVC/ag== -----END CERTIFICATE-----Generated at Mon Oct 20 20:40:07 2025 by rpki-client