$ rpki-client -vvf repo-rpki.idnic.net/repo/f7448c11-f8d3-457d-8e22-84887ab22a30/0/323430313a646363303a3a2f33322d3438203d3e203338313635.roa File: 323430313a646363303a3a2f33322d3438203d3e203338313635.roa (raw, json) Hash identifier: ua//fyl+QLDXzl44RUFbIHCWwv9xrZw50Z+SP2LTGOg= Subject key identifier: 58:79:DA:D7:6C:1A:51:AD:F8:41:B8:F6:8B:93:C9:F4:B3:7A:26:D0 Certificate issuer: /CN=F2C22414BF08FC08B0AEBF44FAF85A85979D1053 Certificate serial: 30909151CBA043925F187B2FD12236BB0BCE15FB Authority key identifier: F2:C2:24:14:BF:08:FC:08:B0:AE:BF:44:FA:F8:5A:85:97:9D:10:53 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F2C22414BF08FC08B0AEBF44FAF85A85979D1053.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f7448c11-f8d3-457d-8e22-84887ab22a30/0/323430313a646363303a3a2f33322d3438203d3e203338313635.roa Signing time: Wed 10 Sep 2025 22:00:01 +0000 ROA not before: Wed 10 Sep 2025 21:55:01 +0000 ROA not after: Wed 09 Sep 2026 22:00:01 +0000 asID: 38165 IP address blocks: 2401:dcc0::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f7448c11-f8d3-457d-8e22-84887ab22a30/0/F2C22414BF08FC08B0AEBF44FAF85A85979D1053.crl rsync://repo-rpki.idnic.net/repo/f7448c11-f8d3-457d-8e22-84887ab22a30/0/F2C22414BF08FC08B0AEBF44FAF85A85979D1053.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F2C22414BF08FC08B0AEBF44FAF85A85979D1053.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 19:48:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:90:91:51:cb:a0:43:92:5f:18:7b:2f:d1:22:36:bb:0b:ce:15:fb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F2C22414BF08FC08B0AEBF44FAF85A85979D1053 Validity Not Before: Sep 10 21:55:01 2025 GMT Not After : Sep 9 22:00:01 2026 GMT Subject: CN=5879DAD76C1A51ADF841B8F68B93C9F4B37A26D0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:24:84:0a:3c:65:e3:71:c8:3d:94:5e:dc:52: 9f:e9:f2:24:dc:85:ef:fc:52:41:37:2b:a4:3a:19: 7c:7d:c8:da:f4:ea:c7:f6:43:56:80:e6:4e:83:6c: 2e:58:1b:b1:de:88:ad:12:2d:ab:e5:22:9e:6d:14: ae:ee:c3:7e:6d:43:46:a3:cb:ff:a6:9d:2e:e1:f7: 58:6d:a7:39:1a:e0:94:65:c5:f7:d7:89:d6:b7:e0: aa:d0:1a:ed:cc:f0:bd:e8:d7:cf:17:50:66:40:7e: eb:67:a7:2b:92:ec:50:2f:47:03:48:03:30:a6:15: 42:17:f3:23:f7:e5:46:f0:71:6c:44:af:e7:9c:b3: 82:db:51:68:95:7c:66:8a:1a:77:1d:bc:d5:ea:62: 4a:96:6e:34:de:14:64:5a:b3:dc:5f:03:4c:54:0c: 16:a5:b1:26:2f:58:3b:75:8f:4c:c1:31:e9:c8:a1: ca:ff:2c:1e:45:1c:40:87:03:94:06:e2:dd:d8:e0: 59:77:42:e2:64:75:3c:ca:c4:4a:fc:38:b9:be:01: e8:3d:03:20:b8:90:13:ea:a5:24:39:49:d8:f1:a7: d0:d3:55:dd:26:f2:6a:24:45:7c:25:78:ec:e3:40: 4e:b7:30:b8:00:74:8e:53:f1:51:ca:e0:36:97:66: d5:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:79:DA:D7:6C:1A:51:AD:F8:41:B8:F6:8B:93:C9:F4:B3:7A:26:D0 X509v3 Authority Key Identifier: keyid:F2:C2:24:14:BF:08:FC:08:B0:AE:BF:44:FA:F8:5A:85:97:9D:10:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f7448c11-f8d3-457d-8e22-84887ab22a30/0/F2C22414BF08FC08B0AEBF44FAF85A85979D1053.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F2C22414BF08FC08B0AEBF44FAF85A85979D1053.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f7448c11-f8d3-457d-8e22-84887ab22a30/0/323430313a646363303a3a2f33322d3438203d3e203338313635.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:dcc0::/32 Signature Algorithm: sha256WithRSAEncryption 7f:25:37:d3:7c:c3:64:2e:aa:3e:2d:eb:f4:a4:57:49:db:dc: b5:35:59:e4:30:ac:e1:2c:61:b6:9a:5c:34:9c:4e:05:f1:eb: 47:3b:f2:23:95:4c:a9:ad:a3:db:62:0b:43:a3:01:88:de:63: 35:5b:f2:34:b9:fd:34:e5:88:8a:97:af:8d:19:00:b2:d7:ca: a6:78:26:e6:ef:30:29:41:a5:d4:6f:a8:fa:00:e7:f2:d0:f9: a0:17:25:ff:a8:59:be:34:6b:07:08:ba:6e:6c:c1:3d:df:cb: b6:17:69:3f:70:a7:66:64:bc:b5:52:51:51:11:63:01:98:f0: 58:b4:87:df:67:98:0c:f8:a1:93:3e:6f:62:02:98:2d:a9:99: 4a:48:39:72:a3:5d:1b:ad:ce:7e:17:53:36:ae:8b:9f:88:6f: 1b:58:0b:0f:84:3d:5b:c2:3d:f4:bd:3d:be:f4:9d:6c:77:8f: 1e:57:9d:bf:e0:fc:cf:c4:20:4d:fc:63:96:14:cc:c9:18:79: 90:80:b4:d6:bc:57:b6:de:8f:77:f1:df:93:55:a8:12:40:6c: 3c:1d:04:38:9f:1f:19:f4:56:24:b4:04:ee:3f:18:c2:62:1e: 1a:c3:58:a6:ed:70:ed:5a:48:09:d7:fc:24:55:46:02:48:82: 70:38:fc:b2 -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUMJCRUcugQ5JfGHsv0SI2uwvOFfswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjJDMjI0MTRCRjA4RkMwOEIwQUVCRjQ0RkFGODVBODU5 NzlEMTA1MzAeFw0yNTA5MTAyMTU1MDFaFw0yNjA5MDkyMjAwMDFaMDMxMTAvBgNV BAMTKDU4NzlEQUQ3NkMxQTUxQURGODQxQjhGNjhCOTNDOUY0QjM3QTI2RDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVJIQKPGXjccg9lF7cUp/p8iTc he/8UkE3K6Q6GXx9yNr06sf2Q1aA5k6DbC5YG7HeiK0SLavlIp5tFK7uw35tQ0aj y/+mnS7h91htpzka4JRlxffXida34KrQGu3M8L3o188XUGZAfutnpyuS7FAvRwNI AzCmFUIX8yP35UbwcWxEr+ecs4LbUWiVfGaKGncdvNXqYkqWbjTeFGRas9xfA0xU DBalsSYvWDt1j0zBMenIocr/LB5FHECHA5QG4t3Y4Fl3QuJkdTzKxEr8OLm+Aeg9 AyC4kBPqpSQ5Sdjxp9DTVd0m8mokRXwleOzjQE63MLgAdI5T8VHK4DaXZtWfAgMB AAGjggIxMIICLTAdBgNVHQ4EFgQUWHna12waUa34Qbj2i5PJ9LN6JtAwHwYDVR0j BBgwFoAU8sIkFL8I/Aiwrr9E+vhahZedEFMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m NzQ0OGMxMS1mOGQzLTQ1N2QtOGUyMi04NDg4N2FiMjJhMzAvMC9GMkMyMjQxNEJG MDhGQzA4QjBBRUJGNDRGQUY4NUE4NTk3OUQxMDUzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjJDMjI0MTRCRjA4RkMwOEIwQUVCRjQ0RkFGODVBODU5NzlE MTA1My5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Y3NDQ4YzExLWY4ZDMtNDU3ZC04 ZTIyLTg0ODg3YWIyMmEzMC8wLzMyMzQzMDMxM2E2NDYzNjMzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMzMzgzMTM2MzUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkAdzAMA0GCSqGSIb3 DQEBCwUAA4IBAQB/JTfTfMNkLqo+Lev0pFdJ29y1NVnkMKzhLGG2mlw0nE4F8etH O/IjlUypraPbYgtDowGI3mM1W/I0uf005YiKl6+NGQCy18qmeCbm7zApQaXUb6j6 AOfy0PmgFyX/qFm+NGsHCLpubME938u2F2k/cKdmZLy1UlFREWMBmPBYtIffZ5gM +KGTPm9iApgtqZlKSDlyo10brc5+F1M2roufiG8bWAsPhD1bwj30vT2+9J1sd48e V52/4PzPxCBN/GOWFMzJGHmQgLTWvFe23o938d+TVagSQGw8HQQ4nx8Z9FYktATu PxjCYh4aw1im7XDtWkgJ1/wkVUYCSIJwOPyy -----END CERTIFICATE-----Generated at Mon Oct 20 15:33:19 2025 by rpki-client