$ rpki-client -vvf repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/323430323a626538303a383030303a3a2f33352d3335203d3e20313331373439.roa File: 323430323a626538303a383030303a3a2f33352d3335203d3e20313331373439.roa (raw, json) Hash identifier: Htx/fOPObPi6ATUBVsfJbs0qEhGzdpd2T6aHa8E9uiQ= Subject key identifier: 61:4C:CE:E5:34:95:E5:41:78:5F:07:99:D6:16:28:58:2E:BE:AF:44 Certificate issuer: /CN=10FE35B040E8A3D05E5BE9BEE4F0A636952246FF Certificate serial: 1B0BB53AFC0F6B3D80E18653A80CF791DB3F4EF3 Authority key identifier: 10:FE:35:B0:40:E8:A3:D0:5E:5B:E9:BE:E4:F0:A6:36:95:22:46:FF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/323430323a626538303a383030303a3a2f33352d3335203d3e20313331373439.roa Signing time: Mon 02 Jun 2025 01:02:40 +0000 ROA not before: Mon 02 Jun 2025 00:57:40 +0000 ROA not after: Mon 01 Jun 2026 01:02:40 +0000 asID: 131749 IP address blocks: 2402:be80:8000::/35 maxlen: 35 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.crl rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 07:08:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:0b:b5:3a:fc:0f:6b:3d:80:e1:86:53:a8:0c:f7:91:db:3f:4e:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=10FE35B040E8A3D05E5BE9BEE4F0A636952246FF Validity Not Before: Jun 2 00:57:40 2025 GMT Not After : Jun 1 01:02:40 2026 GMT Subject: CN=614CCEE53495E541785F0799D61628582EBEAF44 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:63:b4:a7:a7:de:d9:8c:d3:f8:d5:41:11:22: ee:14:52:20:7a:8e:0b:78:5f:c3:a8:bf:7f:9a:a3: 6b:04:76:d8:aa:cd:c3:f8:84:08:f4:f7:05:ae:86: e1:ad:de:9f:59:cf:ad:96:55:54:1b:88:0f:b9:21: c7:f5:8d:f2:54:60:dc:4e:85:28:d2:e2:e8:63:6b: da:d9:2c:d3:40:37:95:73:30:eb:73:49:21:8b:f3: c1:50:a9:65:7b:1a:2c:99:f2:44:bb:91:4e:30:10: 49:dd:c4:f7:1f:d7:78:a2:da:b1:ae:ee:4b:88:c7: 3f:f3:80:19:3a:fb:c9:04:3e:0e:35:b9:f5:5e:fd: 4b:83:de:e7:c6:83:35:8d:57:74:0a:2a:46:42:0a: bc:20:ec:cb:d3:87:1a:d7:1d:fd:79:8c:6b:b1:00: 7e:83:6a:89:c7:bf:56:da:a2:ac:d7:79:e2:4d:e8: 21:20:53:2a:62:66:84:b8:d1:5e:10:ad:f5:06:a1: ab:09:20:46:b5:8d:e2:f6:ab:f1:1b:61:bd:b0:86: 48:a5:1a:f6:7b:9b:df:95:b0:81:e0:76:88:de:78: 85:b4:ad:22:fb:6a:d6:47:65:28:f3:e6:b0:ee:fd: 04:17:35:6a:51:b9:a1:c6:c5:d9:71:dc:cf:5d:23: 10:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:4C:CE:E5:34:95:E5:41:78:5F:07:99:D6:16:28:58:2E:BE:AF:44 X509v3 Authority Key Identifier: keyid:10:FE:35:B0:40:E8:A3:D0:5E:5B:E9:BE:E4:F0:A6:36:95:22:46:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/323430323a626538303a383030303a3a2f33352d3335203d3e20313331373439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:be80:8000::/35 Signature Algorithm: sha256WithRSAEncryption 0d:e8:10:73:fb:84:16:8e:87:ba:26:58:42:a5:14:b4:26:be: 34:69:d7:08:a2:9f:1f:a6:08:b9:59:0a:88:35:a9:03:b8:d5: 90:c5:68:13:bd:ac:29:57:18:23:dc:e0:13:ac:31:f9:25:46: e4:55:48:10:d5:ea:8c:88:50:3a:6e:4a:23:07:52:8e:29:e7: 45:0b:2a:11:7a:b8:d5:32:b1:90:67:ab:64:49:78:fe:33:c1: d2:32:9d:53:ef:ff:14:0e:2e:38:12:32:82:52:7d:c2:8d:4b: 72:1d:d2:f9:26:aa:89:82:82:1c:ee:cb:ea:c9:35:21:6c:c0: 3b:f9:04:11:b8:7a:47:14:56:8d:b4:fd:69:1c:11:e4:35:2a: f2:b9:c1:07:fc:db:3a:0a:b1:ee:b4:21:2a:8c:cc:a1:77:60: f4:0f:94:9c:fb:c3:46:de:46:d1:7a:94:1c:6a:97:be:b0:00: a1:38:bb:c5:bf:aa:ff:79:e5:5b:fa:2d:4d:2f:65:6d:e9:7b: 50:c8:20:15:76:84:47:3c:33:26:d4:7a:68:eb:d8:d8:6a:34: 48:3c:c2:80:b3:4c:81:ff:9b:55:ed:71:c3:ab:68:b3:02:0a: e0:e9:9f:09:6a:d0:07:b8:8e:6d:04:f9:ab:47:e4:7e:8b:f6: 95:7d:e0:33 -----BEGIN CERTIFICATE----- MIIFNDCCBBygAwIBAgIUGwu1OvwPaz2A4YZTqAz3kds/TvMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTBGRTM1QjA0MEU4QTNEMDVFNUJFOUJFRTRGMEE2MzY5 NTIyNDZGRjAeFw0yNTA2MDIwMDU3NDBaFw0yNjA2MDEwMTAyNDBaMDMxMTAvBgNV BAMTKDYxNENDRUU1MzQ5NUU1NDE3ODVGMDc5OUQ2MTYyODU4MkVCRUFGNDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNY7Snp97ZjNP41UERIu4UUiB6 jgt4X8Oov3+ao2sEdtiqzcP4hAj09wWuhuGt3p9Zz62WVVQbiA+5Icf1jfJUYNxO hSjS4uhja9rZLNNAN5VzMOtzSSGL88FQqWV7GiyZ8kS7kU4wEEndxPcf13ii2rGu 7kuIxz/zgBk6+8kEPg41ufVe/UuD3ufGgzWNV3QKKkZCCrwg7MvThxrXHf15jGux AH6DaonHv1baoqzXeeJN6CEgUypiZoS40V4QrfUGoasJIEa1jeL2q/EbYb2whkil GvZ7m9+VsIHgdojeeIW0rSL7atZHZSjz5rDu/QQXNWpRuaHGxdlx3M9dIxCrAgMB AAGjggI+MIICOjAdBgNVHQ4EFgQUYUzO5TSV5UF4XweZ1hYoWC6+r0QwHwYDVR0j BBgwFoAUEP41sEDoo9BeW+m+5PCmNpUiRv8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z MDBmNGYzNy1jN2ZiLTQ3ZDAtOGE4NS1lY2ZkMTJiOTE1ZjUvMC8xMEZFMzVCMDQw RThBM0QwNUU1QkU5QkVFNEYwQTYzNjk1MjI0NkZGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTBGRTM1QjA0MEU4QTNEMDVFNUJFOUJFRTRGMEE2MzY5NTIy NDZGRi5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzMwMGY0ZjM3LWM3ZmItNDdkMC04 YTg1LWVjZmQxMmI5MTVmNS8wLzMyMzQzMDMyM2E2MjY1MzgzMDNhMzgzMDMwMzAz YTNhMmYzMzM1MmQzMzM1MjAzZDNlMjAzMTMzMzEzNzM0Mzkucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgUk Ar6AgDANBgkqhkiG9w0BAQsFAAOCAQEADegQc/uEFo6HuiZYQqUUtCa+NGnXCKKf H6YIuVkKiDWpA7jVkMVoE72sKVcYI9zgE6wx+SVG5FVIENXqjIhQOm5KIwdSjinn RQsqEXq41TKxkGerZEl4/jPB0jKdU+//FA4uOBIyglJ9wo1Lch3S+SaqiYKCHO7L 6sk1IWzAO/kEEbh6RxRWjbT9aRwR5DUq8rnBB/zbOgqx7rQhKozMoXdg9A+UnPvD Rt5G0XqUHGqXvrAAoTi7xb+q/3nlW/otTS9lbel7UMggFXaERzwzJtR6aOvY2Go0 SDzCgLNMgf+bVe1xw6toswIK4OmfCWrQB7iObQT5q0fkfov2lX3gMw== -----END CERTIFICATE-----Generated at Fri Nov 7 14:45:09 2025 by rpki-client