$ rpki-client -vvf repo-rpki.idnic.net/repo/186b3889-6966-45ef-9073-ad14011ac3b2/0/323430333a623930303a3a2f33322d3332203d3e2034333832.roa File: 323430333a623930303a3a2f33322d3332203d3e2034333832.roa (raw, json) Hash identifier: JWHfZ6w+iObuBrwQGbo/6Xd2nLZuo2KPm5ntS1O1mZA= Subject key identifier: F2:DD:8E:42:43:30:5D:49:06:F3:D8:D6:FE:58:D6:AA:E8:AF:6E:8F Certificate issuer: /CN=012D2F59937FDBE65095B9EB4971D9D31EFDA93C Certificate serial: 54D98CF7122743995AB9C48031620A5965A02E5A Authority key identifier: 01:2D:2F:59:93:7F:DB:E6:50:95:B9:EB:49:71:D9:D3:1E:FD:A9:3C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/012D2F59937FDBE65095B9EB4971D9D31EFDA93C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/186b3889-6966-45ef-9073-ad14011ac3b2/0/323430333a623930303a3a2f33322d3332203d3e2034333832.roa Signing time: Wed 23 Jul 2025 13:00:01 +0000 ROA not before: Wed 23 Jul 2025 12:55:01 +0000 ROA not after: Wed 22 Jul 2026 13:00:01 +0000 asID: 4382 IP address blocks: 2403:b900::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/186b3889-6966-45ef-9073-ad14011ac3b2/0/012D2F59937FDBE65095B9EB4971D9D31EFDA93C.crl rsync://repo-rpki.idnic.net/repo/186b3889-6966-45ef-9073-ad14011ac3b2/0/012D2F59937FDBE65095B9EB4971D9D31EFDA93C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/012D2F59937FDBE65095B9EB4971D9D31EFDA93C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 29 Oct 2025 13:45:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:d9:8c:f7:12:27:43:99:5a:b9:c4:80:31:62:0a:59:65:a0:2e:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=012D2F59937FDBE65095B9EB4971D9D31EFDA93C Validity Not Before: Jul 23 12:55:01 2025 GMT Not After : Jul 22 13:00:01 2026 GMT Subject: CN=F2DD8E4243305D4906F3D8D6FE58D6AAE8AF6E8F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:91:35:40:f8:eb:96:5e:80:e8:33:fd:53:76: 82:9e:60:23:ab:48:4e:6e:8a:8f:5d:6c:ff:8a:1b: 16:35:22:dd:d6:85:3e:62:89:93:c3:a1:4a:4d:dc: e5:d8:3a:f2:08:ec:3c:ac:df:b1:c4:4d:38:9b:50: c2:bf:e1:af:6f:c2:f5:d4:76:bf:34:ec:78:4a:8f: 93:1b:84:8a:ec:38:6d:84:f6:d1:31:fe:87:5a:23: 6a:00:e2:9a:d4:b3:a1:cb:a4:2e:78:c2:c7:2a:24: 8c:e8:2e:7b:dc:0d:09:78:44:45:a1:0c:15:b4:ae: 17:71:45:27:f1:ed:0e:17:51:54:9e:3b:36:17:a8: 9a:d7:7d:8f:16:ce:56:51:97:93:a3:68:2a:d1:fe: ba:9b:4a:af:bb:53:76:22:54:34:09:f6:cf:1a:23: d3:20:0d:d1:00:d1:c0:df:8f:96:72:ae:9f:36:04: 14:81:f0:9a:aa:1d:79:6c:fe:cc:a8:a3:73:ff:8f: aa:63:ee:b7:3e:47:4a:3d:bb:1e:33:17:2b:b0:df: e1:08:a4:c2:22:4d:ae:2d:96:db:6c:ac:85:eb:25: 00:d0:5d:62:59:df:c4:ee:7c:4f:8d:83:53:4d:16: ee:9b:77:e1:25:f4:62:e5:c0:6f:bf:0b:14:46:b5: cb:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:DD:8E:42:43:30:5D:49:06:F3:D8:D6:FE:58:D6:AA:E8:AF:6E:8F X509v3 Authority Key Identifier: keyid:01:2D:2F:59:93:7F:DB:E6:50:95:B9:EB:49:71:D9:D3:1E:FD:A9:3C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/186b3889-6966-45ef-9073-ad14011ac3b2/0/012D2F59937FDBE65095B9EB4971D9D31EFDA93C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/012D2F59937FDBE65095B9EB4971D9D31EFDA93C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/186b3889-6966-45ef-9073-ad14011ac3b2/0/323430333a623930303a3a2f33322d3332203d3e2034333832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:b900::/32 Signature Algorithm: sha256WithRSAEncryption 6f:35:2d:de:f4:b3:15:6c:ae:14:2f:a1:a8:8b:ac:12:cc:ec: 8f:b3:2a:09:87:31:bf:25:9e:c0:b1:81:61:9a:df:bc:4e:bb: 0f:2a:a3:fa:39:0a:e0:9d:ad:0e:e8:58:de:35:9a:f0:ab:7f: 9f:c6:be:67:8e:91:6e:84:5d:ed:38:06:de:88:10:92:dd:55: 8b:bc:99:b8:15:31:d4:74:9f:b1:52:b2:b3:12:47:ae:eb:43: 45:86:09:ea:1f:51:fe:55:2e:4a:ee:d6:24:26:d6:50:9c:6e: fe:28:85:22:16:76:4b:cf:58:e5:a8:05:37:62:83:af:e0:cc: b9:fd:f7:44:37:ac:17:2e:83:e8:35:a2:42:0c:ba:cf:0f:71: 50:23:41:b0:b4:44:81:3a:cf:2a:c4:c3:fc:89:36:c5:18:8a: b8:74:71:d5:e9:4f:6f:40:b7:a9:3a:8d:38:10:02:a8:a4:57: 5e:a8:72:10:f5:9a:27:43:9e:b6:84:00:0a:ef:4c:7f:ae:b2: 2c:61:99:d0:cc:35:6a:10:d8:c4:5e:45:ca:0f:8a:aa:8c:9b: 34:94:38:da:2a:a4:97:84:42:f5:e2:86:3d:f9:f6:e9:a3:6a: 37:30:d0:6b:84:7a:5c:97:eb:2f:19:0b:14:ca:70:58:6a:6f: 8d:63:32:9d -----BEGIN CERTIFICATE----- MIIFJDCCBAygAwIBAgIUVNmM9xInQ5laucSAMWIKWWWgLlowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDEyRDJGNTk5MzdGREJFNjUwOTVCOUVCNDk3MUQ5RDMx RUZEQTkzQzAeFw0yNTA3MjMxMjU1MDFaFw0yNjA3MjIxMzAwMDFaMDMxMTAvBgNV BAMTKEYyREQ4RTQyNDMzMDVENDkwNkYzRDhENkZFNThENkFBRThBRjZFOEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8kTVA+OuWXoDoM/1TdoKeYCOr SE5uio9dbP+KGxY1It3WhT5iiZPDoUpN3OXYOvII7Dys37HETTibUMK/4a9vwvXU dr807HhKj5MbhIrsOG2E9tEx/odaI2oA4prUs6HLpC54wscqJIzoLnvcDQl4REWh DBW0rhdxRSfx7Q4XUVSeOzYXqJrXfY8WzlZRl5OjaCrR/rqbSq+7U3YiVDQJ9s8a I9MgDdEA0cDfj5Zyrp82BBSB8JqqHXls/syoo3P/j6pj7rc+R0o9ux4zFyuw3+EI pMIiTa4tlttsrIXrJQDQXWJZ38TufE+Ng1NNFu6bd+El9GLlwG+/CxRGtcsFAgMB AAGjggIuMIICKjAdBgNVHQ4EFgQU8t2OQkMwXUkG89jW/ljWquivbo8wHwYDVR0j BBgwFoAUAS0vWZN/2+ZQlbnrSXHZ0x79qTwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ODZiMzg4OS02OTY2LTQ1ZWYtOTA3My1hZDE0MDExYWMzYjIvMC8wMTJEMkY1OTkz N0ZEQkU2NTA5NUI5RUI0OTcxRDlEMzFFRkRBOTNDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDEyRDJGNTk5MzdGREJFNjUwOTVCOUVCNDk3MUQ5RDMxRUZE QTkzQy5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMTg2YjM4ODktNjk2Ni00NWVmLTkw NzMtYWQxNDAxMWFjM2IyLzAvMzIzNDMwMzMzYTYyMzkzMDMwM2EzYTJmMzMzMjJk MzMzMjIwM2QzZTIwMzQzMzM4MzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkA7kAMA0GCSqGSIb3DQEB CwUAA4IBAQBvNS3e9LMVbK4UL6Goi6wSzOyPsyoJhzG/JZ7AsYFhmt+8TrsPKqP6 OQrgna0O6FjeNZrwq3+fxr5njpFuhF3tOAbeiBCS3VWLvJm4FTHUdJ+xUrKzEkeu 60NFhgnqH1H+VS5K7tYkJtZQnG7+KIUiFnZLz1jlqAU3YoOv4My5/fdEN6wXLoPo NaJCDLrPD3FQI0GwtESBOs8qxMP8iTbFGIq4dHHV6U9vQLepOo04EAKopFdeqHIQ 9ZonQ562hAAK70x/rrIsYZnQzDVqENjEXkXKD4qqjJs0lDjaKqSXhEL14oY9+fbp o2o3MNBrhHpcl+svGQsUynBYam+NYzKd -----END CERTIFICATE-----Generated at Tue Oct 28 00:37:56 2025 by rpki-client