$ rpki-client -vvf repo-rpki.idnic.net/repo/0000b0c2-7efd-4278-98e4-d4f7c273eec2/0/323030313a6466323a666534303a3a2f34382d3438203d3e20313531353836.roa File: 323030313a6466323a666534303a3a2f34382d3438203d3e20313531353836.roa (raw, json) Hash identifier: L1QXmmmYL7avongM7Z18LqYgTBveJl41ce19oTEBc90= Subject key identifier: 52:22:80:0A:9F:80:43:55:7A:9A:24:3A:D4:59:E0:93:CB:BE:51:AD Certificate issuer: /CN=7825A9C30D5AEA4144740E9B12A3C0BC60E73499 Certificate serial: 1469A5325BBF1BFDB4801EB4AAFA649832D35440 Authority key identifier: 78:25:A9:C3:0D:5A:EA:41:44:74:0E:9B:12:A3:C0:BC:60:E7:34:99 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7825A9C30D5AEA4144740E9B12A3C0BC60E73499.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0000b0c2-7efd-4278-98e4-d4f7c273eec2/0/323030313a6466323a666534303a3a2f34382d3438203d3e20313531353836.roa Signing time: Thu 04 Sep 2025 14:00:02 +0000 ROA not before: Thu 04 Sep 2025 13:55:02 +0000 ROA not after: Thu 03 Sep 2026 14:00:02 +0000 asID: 151586 IP address blocks: 2001:df2:fe40::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0000b0c2-7efd-4278-98e4-d4f7c273eec2/0/7825A9C30D5AEA4144740E9B12A3C0BC60E73499.crl rsync://repo-rpki.idnic.net/repo/0000b0c2-7efd-4278-98e4-d4f7c273eec2/0/7825A9C30D5AEA4144740E9B12A3C0BC60E73499.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7825A9C30D5AEA4144740E9B12A3C0BC60E73499.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Oct 2025 10:57:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:69:a5:32:5b:bf:1b:fd:b4:80:1e:b4:aa:fa:64:98:32:d3:54:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7825A9C30D5AEA4144740E9B12A3C0BC60E73499 Validity Not Before: Sep 4 13:55:02 2025 GMT Not After : Sep 3 14:00:02 2026 GMT Subject: CN=5222800A9F8043557A9A243AD459E093CBBE51AD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:a3:68:fc:ea:09:73:c4:c7:ff:79:f5:87:cd: 72:6a:7d:38:22:4b:be:b6:6a:5f:58:a1:8a:18:07: 05:14:ba:28:76:0a:9f:65:e2:4d:b3:d7:19:31:55: f5:c9:83:c8:a8:ec:a8:82:c7:5d:fb:af:42:9b:45: 5f:48:50:b5:f5:42:5d:ea:4c:96:98:a2:3d:8d:9a: 73:f1:03:5f:34:67:78:e1:a3:2d:a4:05:06:8e:57: ce:20:20:74:49:74:ea:40:35:1e:fb:6a:2a:c5:d4: a9:c2:7b:67:54:fb:bb:0d:d1:bd:84:51:7f:0d:dd: f6:4e:2b:70:04:47:4e:20:01:6f:bd:2c:73:be:1b: 59:3b:c7:0c:be:3e:5f:2f:f9:5f:e8:3f:fa:22:13: 84:b2:a9:49:26:4e:92:19:2a:35:bc:90:d1:ea:ae: 76:e2:82:90:b1:87:76:fe:ff:c9:a5:e8:c9:f7:af: a2:cb:ac:d2:a5:70:ae:e6:c7:b3:4f:68:82:46:ef: 5d:7c:12:05:9e:49:29:68:6f:16:a6:32:75:34:48: 91:52:b0:9d:e1:46:a5:29:9d:79:ca:4b:40:9b:a7: 2d:dd:f5:88:fa:6d:95:7a:b4:24:ab:99:55:7d:06: f5:77:ee:a9:6b:ba:01:ae:01:eb:60:96:25:ee:69: 88:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:22:80:0A:9F:80:43:55:7A:9A:24:3A:D4:59:E0:93:CB:BE:51:AD X509v3 Authority Key Identifier: keyid:78:25:A9:C3:0D:5A:EA:41:44:74:0E:9B:12:A3:C0:BC:60:E7:34:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0000b0c2-7efd-4278-98e4-d4f7c273eec2/0/7825A9C30D5AEA4144740E9B12A3C0BC60E73499.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7825A9C30D5AEA4144740E9B12A3C0BC60E73499.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0000b0c2-7efd-4278-98e4-d4f7c273eec2/0/323030313a6466323a666534303a3a2f34382d3438203d3e20313531353836.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df2:fe40::/48 Signature Algorithm: sha256WithRSAEncryption 77:ff:e1:0e:42:ea:e0:3c:2f:6f:e4:5c:0f:55:7b:5b:e9:71: 42:fb:31:c9:26:75:43:77:6c:11:fe:6a:ac:54:16:31:f8:2a: 85:21:ea:15:c3:cd:53:53:d9:f6:d8:8d:f9:53:05:8d:56:a8: f5:f1:a3:c6:23:81:6c:ce:74:61:51:43:69:ac:48:22:e9:7b: 67:5a:f5:b9:50:5d:47:31:a1:d8:cb:4a:ef:a4:f2:4c:06:54: 78:48:8c:b9:a9:63:a4:5f:ce:95:bf:b7:cb:47:98:da:a0:fb: 2c:85:49:5d:b3:ea:bf:40:c6:09:5d:28:a5:26:45:e6:48:2f: fd:9f:a0:6f:e4:d3:9c:31:79:04:13:10:69:f5:6a:bf:18:6c: 0b:2a:46:27:08:22:8d:bc:99:ae:a4:ac:15:a2:d2:0a:a7:78: 1a:b5:61:61:70:ad:47:93:52:35:2f:e3:69:e6:ae:a9:8c:12: 2f:ef:14:41:e4:b1:4f:08:f2:b0:33:f5:e5:42:d8:1b:94:c4: f6:68:66:f1:37:5d:98:a0:b8:b8:99:75:01:70:c9:23:4f:6d: f8:06:3d:fb:15:77:24:76:11:da:c4:61:27:bd:af:8e:93:39: 4d:07:77:66:d8:4e:8e:48:4a:2e:e3:f3:4d:08:62:88:d5:80: 99:77:52:91 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUFGmlMlu/G/20gB60qvpkmDLTVEAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzgyNUE5QzMwRDVBRUE0MTQ0NzQwRTlCMTJBM0MwQkM2 MEU3MzQ5OTAeFw0yNTA5MDQxMzU1MDJaFw0yNjA5MDMxNDAwMDJaMDMxMTAvBgNV BAMTKDUyMjI4MDBBOUY4MDQzNTU3QTlBMjQzQUQ0NTlFMDkzQ0JCRTUxQUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMo2j86glzxMf/efWHzXJqfTgi S762al9YoYoYBwUUuih2Cp9l4k2z1xkxVfXJg8io7KiCx137r0KbRV9IULX1Ql3q TJaYoj2NmnPxA180Z3jhoy2kBQaOV84gIHRJdOpANR77airF1KnCe2dU+7sN0b2E UX8N3fZOK3AER04gAW+9LHO+G1k7xwy+Pl8v+V/oP/oiE4SyqUkmTpIZKjW8kNHq rnbigpCxh3b+/8ml6Mn3r6LLrNKlcK7mx7NPaIJG7118EgWeSSlobxamMnU0SJFS sJ3hRqUpnXnKS0Cbpy3d9Yj6bZV6tCSrmVV9BvV37qlrugGuAetgliXuaYg/AgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUUiKACp+AQ1V6miQ61Fngk8u+Ua0wHwYDVR0j BBgwFoAUeCWpww1a6kFEdA6bEqPAvGDnNJkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w MDAwYjBjMi03ZWZkLTQyNzgtOThlNC1kNGY3YzI3M2VlYzIvMC83ODI1QTlDMzBE NUFFQTQxNDQ3NDBFOUIxMkEzQzBCQzYwRTczNDk5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzgyNUE5QzMwRDVBRUE0MTQ0NzQwRTlCMTJBM0MwQkM2MEU3 MzQ5OS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzAwMDBiMGMyLTdlZmQtNDI3OC05 OGU0LWQ0ZjdjMjczZWVjMi8wLzMyMzAzMDMxM2E2NDY2MzIzYTY2NjUzNDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNTMxMzUzODM2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8v5AMA0GCSqGSIb3DQEBCwUAA4IBAQB3/+EOQurgPC9v5FwPVXtb6XFC+zHJJnVD d2wR/mqsVBYx+CqFIeoVw81TU9n22I35UwWNVqj18aPGI4FsznRhUUNprEgi6Xtn WvW5UF1HMaHYy0rvpPJMBlR4SIy5qWOkX86Vv7fLR5jaoPsshUlds+q/QMYJXSil JkXmSC/9n6Bv5NOcMXkEExBp9Wq/GGwLKkYnCCKNvJmupKwVotIKp3gatWFhcK1H k1I1L+Np5q6pjBIv7xRB5LFPCPKwM/XlQtgblMT2aGbxN12YoLi4mXUBcMkjT234 Bj37FXckdhHaxGEnva+OkzlNB3dm2E6OSEou4/NNCGKI1YCZd1KR -----END CERTIFICATE-----Generated at Sun Oct 19 20:46:19 2025 by rpki-client