$ rpki-client -vvf repo-rpki.idnic.net/repo/1ca292b2-4ae4-41df-887a-c172c3e1ae73/0/323030313a6466303a353463303a3a2f34382d3438203d3e20313439333437.roa File: 323030313a6466303a353463303a3a2f34382d3438203d3e20313439333437.roa (raw, json) Hash identifier: DAb3p6A+GCIjwCXpDIF2kcbvOKbS93Svvisaez6N1FE= Subject key identifier: E7:C3:D6:66:B9:6C:8E:0D:AC:9B:1E:10:6D:5B:BC:26:E1:AA:ED:90 Certificate issuer: /CN=139934661CE07BEBBFA824F7225502B15AE8B653 Certificate serial: 1BD160B1D59950B9122C3EF2FB5F6E37A8C5C71F Authority key identifier: 13:99:34:66:1C:E0:7B:EB:BF:A8:24:F7:22:55:02:B1:5A:E8:B6:53 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/139934661CE07BEBBFA824F7225502B15AE8B653.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1ca292b2-4ae4-41df-887a-c172c3e1ae73/0/323030313a6466303a353463303a3a2f34382d3438203d3e20313439333437.roa Signing time: Sat 15 Nov 2025 09:00:01 +0000 ROA not before: Sat 15 Nov 2025 08:55:01 +0000 ROA not after: Sat 14 Nov 2026 09:00:01 +0000 asID: 149347 IP address blocks: 2001:df0:54c0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1ca292b2-4ae4-41df-887a-c172c3e1ae73/0/139934661CE07BEBBFA824F7225502B15AE8B653.crl rsync://repo-rpki.idnic.net/repo/1ca292b2-4ae4-41df-887a-c172c3e1ae73/0/139934661CE07BEBBFA824F7225502B15AE8B653.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/139934661CE07BEBBFA824F7225502B15AE8B653.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 18 Nov 2025 09:55:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:d1:60:b1:d5:99:50:b9:12:2c:3e:f2:fb:5f:6e:37:a8:c5:c7:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=139934661CE07BEBBFA824F7225502B15AE8B653 Validity Not Before: Nov 15 08:55:01 2025 GMT Not After : Nov 14 09:00:01 2026 GMT Subject: CN=E7C3D666B96C8E0DAC9B1E106D5BBC26E1AAED90 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:99:ff:a8:c4:5d:8e:bf:0f:66:9a:d4:53:fc: 80:4c:78:7a:16:4f:0f:bd:a8:4c:d7:e3:66:99:34: a2:3f:43:51:ca:96:6d:1c:4e:de:65:c2:97:71:55: 3c:e1:3d:f0:82:7f:f0:b6:20:34:3c:e2:b5:cc:6a: f8:6e:b3:24:4b:95:83:44:10:22:3c:a9:b8:23:48: 27:18:00:7b:96:64:5f:0f:94:2e:ca:13:a7:81:fb: 0d:4d:f8:f0:62:c9:1b:52:76:bc:38:8a:b0:39:a5: 1b:77:6a:7e:cd:10:03:9d:a7:2d:de:80:34:0d:f5: 44:36:2b:66:4a:9a:ae:5d:89:a5:9a:c4:93:d0:67: 19:60:55:e4:98:8d:e0:e2:12:9c:8e:6c:2f:a1:3d: dc:89:2f:04:14:ec:a5:db:e1:78:82:91:ab:dc:f1: b5:72:2a:46:ac:d4:ad:bd:9d:88:be:83:2e:4c:f0: 0c:16:e6:48:69:43:c8:94:88:85:83:40:aa:43:58: 53:89:9c:af:8f:59:c0:32:67:7e:f7:01:53:6d:7a: c3:01:ec:21:7e:6f:c7:e1:03:dd:15:80:c6:7c:92: 89:73:f6:bb:8d:6c:20:e0:a2:bc:ac:da:3b:84:c1: d8:db:83:b1:5f:2f:45:b8:0b:48:f9:ac:96:e6:4e: bd:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:C3:D6:66:B9:6C:8E:0D:AC:9B:1E:10:6D:5B:BC:26:E1:AA:ED:90 X509v3 Authority Key Identifier: keyid:13:99:34:66:1C:E0:7B:EB:BF:A8:24:F7:22:55:02:B1:5A:E8:B6:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1ca292b2-4ae4-41df-887a-c172c3e1ae73/0/139934661CE07BEBBFA824F7225502B15AE8B653.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/139934661CE07BEBBFA824F7225502B15AE8B653.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1ca292b2-4ae4-41df-887a-c172c3e1ae73/0/323030313a6466303a353463303a3a2f34382d3438203d3e20313439333437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df0:54c0::/48 Signature Algorithm: sha256WithRSAEncryption 48:22:a3:36:85:3e:d9:79:08:b7:4c:dd:bd:ce:fe:8f:0e:2b: 8d:2e:c2:9f:0f:67:cb:39:98:0a:d4:d5:bf:06:06:8a:d1:51: 2b:4a:ae:bb:96:8b:74:a5:ff:c9:9b:91:1a:10:ea:0f:69:28: 5e:d4:66:77:e6:74:cc:dc:eb:96:df:49:d4:cc:0b:39:59:6d: e3:2a:90:c6:10:bb:4b:b5:25:40:89:9c:a9:b3:bb:6a:57:40: 65:f2:d4:cf:89:46:a0:d5:11:78:03:fc:96:39:da:a5:3e:78: fa:ef:a3:bd:a3:16:41:ce:ed:a0:16:bc:6c:0a:a6:9d:52:85: da:58:6b:58:53:8b:37:3b:0d:98:b3:76:75:0d:7a:0f:1e:05: 4b:af:65:15:35:e5:7d:80:48:82:a8:cf:c3:f5:22:f6:5c:80: 8f:58:0e:8c:e8:88:26:00:20:17:f9:06:76:16:67:2c:66:0b: 4d:3d:73:42:cb:5d:8f:f7:4a:4b:70:de:f8:0a:e6:2b:63:cb: 27:71:e9:83:cc:4d:61:2a:ff:70:d6:8f:4d:3d:ba:94:c9:75: 54:81:8b:dc:f1:63:f8:60:bf:7b:cf:2a:38:96:95:cd:4a:ef: 13:19:09:d5:68:bc:5e:73:eb:dc:04:4f:9a:4f:01:1a:04:20: 59:05:de:53 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUG9FgsdWZULkSLD7y+19uN6jFxx8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTM5OTM0NjYxQ0UwN0JFQkJGQTgyNEY3MjI1NTAyQjE1 QUU4QjY1MzAeFw0yNTExMTUwODU1MDFaFw0yNjExMTQwOTAwMDFaMDMxMTAvBgNV BAMTKEU3QzNENjY2Qjk2QzhFMERBQzlCMUUxMDZENUJCQzI2RTFBQUVEOTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOmf+oxF2Ovw9mmtRT/IBMeHoW Tw+9qEzX42aZNKI/Q1HKlm0cTt5lwpdxVTzhPfCCf/C2IDQ84rXMavhusyRLlYNE ECI8qbgjSCcYAHuWZF8PlC7KE6eB+w1N+PBiyRtSdrw4irA5pRt3an7NEAOdpy3e gDQN9UQ2K2ZKmq5diaWaxJPQZxlgVeSYjeDiEpyObC+hPdyJLwQU7KXb4XiCkavc 8bVyKkas1K29nYi+gy5M8AwW5khpQ8iUiIWDQKpDWFOJnK+PWcAyZ373AVNtesMB 7CF+b8fhA90VgMZ8kolz9ruNbCDgorys2juEwdjbg7FfL0W4C0j5rJbmTr0hAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQU58PWZrlsjg2smx4QbVu8JuGq7ZAwHwYDVR0j BBgwFoAUE5k0Zhzge+u/qCT3IlUCsVrotlMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x Y2EyOTJiMi00YWU0LTQxZGYtODg3YS1jMTcyYzNlMWFlNzMvMC8xMzk5MzQ2NjFD RTA3QkVCQkZBODI0RjcyMjU1MDJCMTVBRThCNjUzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTM5OTM0NjYxQ0UwN0JFQkJGQTgyNEY3MjI1NTAyQjE1QUU4 QjY1My5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFjYTI5MmIyLTRhZTQtNDFkZi04 ODdhLWMxNzJjM2UxYWU3My8wLzMyMzAzMDMxM2E2NDY2MzAzYTM1MzQ2MzMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNDM5MzMzNDM3LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8FTAMA0GCSqGSIb3DQEBCwUAA4IBAQBIIqM2hT7ZeQi3TN29zv6PDiuNLsKfD2fL OZgK1NW/BgaK0VErSq67lot0pf/Jm5EaEOoPaShe1GZ35nTM3OuW30nUzAs5WW3j KpDGELtLtSVAiZyps7tqV0Bl8tTPiUag1RF4A/yWOdqlPnj676O9oxZBzu2gFrxs CqadUoXaWGtYU4s3Ow2Ys3Z1DXoPHgVLr2UVNeV9gEiCqM/D9SL2XICPWA6M6Igm ACAX+QZ2FmcsZgtNPXNCy12P90pLcN74CuYrY8sncemDzE1hKv9w1o9NPbqUyXVU gYvc8WP4YL97zyo4lpXNSu8TGQnVaLxec+vcBE+aTwEaBCBZBd5T -----END CERTIFICATE-----Generated at Sat Nov 15 11:55:24 2025 by rpki-client