$ rpki-client -vvf repo-rpki.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/323430363a633634303a313a3a2f34382d3438203d3e20313431313337.roa File: 323430363a633634303a313a3a2f34382d3438203d3e20313431313337.roa (raw, json) Hash identifier: Mt5SrkBl0TnCuOW6KjiUo7KU17URT0CCUG/IFHUWPhI= Subject key identifier: B6:FF:44:F9:67:AF:12:AB:A0:29:E0:92:DA:CD:92:E6:EB:F8:38:FF Certificate issuer: /CN=33FD31277D728C6A6715B913D5A4795CA79CAAD9 Certificate serial: 6ADA7A020B3665E89A1768B0F1200E114C44A7B0 Authority key identifier: 33:FD:31:27:7D:72:8C:6A:67:15:B9:13:D5:A4:79:5C:A7:9C:AA:D9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/33FD31277D728C6A6715B913D5A4795CA79CAAD9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/323430363a633634303a313a3a2f34382d3438203d3e20313431313337.roa Signing time: Fri 05 Sep 2025 00:00:02 +0000 ROA not before: Thu 04 Sep 2025 23:55:02 +0000 ROA not after: Fri 04 Sep 2026 00:00:02 +0000 asID: 141137 IP address blocks: 2406:c640:1::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/33FD31277D728C6A6715B913D5A4795CA79CAAD9.crl rsync://repo-rpki.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/33FD31277D728C6A6715B913D5A4795CA79CAAD9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/33FD31277D728C6A6715B913D5A4795CA79CAAD9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Sep 2025 20:40:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:da:7a:02:0b:36:65:e8:9a:17:68:b0:f1:20:0e:11:4c:44:a7:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=33FD31277D728C6A6715B913D5A4795CA79CAAD9 Validity Not Before: Sep 4 23:55:02 2025 GMT Not After : Sep 4 00:00:02 2026 GMT Subject: CN=B6FF44F967AF12ABA029E092DACD92E6EBF838FF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:82:1e:b8:b9:a9:93:8e:a7:43:7c:09:1a:74: da:6d:ab:5e:c3:10:09:a6:a5:2f:a6:e5:51:79:8b: 61:d7:be:9d:bd:b5:e5:36:4e:ed:91:8e:49:04:64: f8:8b:ec:02:7b:67:69:73:61:bc:b0:88:81:2e:af: f3:40:80:67:1f:d1:59:4a:27:81:c4:a4:1b:70:6e: de:76:a9:02:7f:20:9f:30:b3:92:f8:68:b8:5c:22: 17:f0:f8:05:af:c9:e1:d7:03:a7:70:89:b7:36:47: 0e:ec:3a:8f:b6:fb:25:2a:36:15:71:52:18:1f:be: b7:d3:6a:e7:ba:46:a8:3e:86:9d:e5:66:b5:df:13: 53:15:d1:37:19:79:7a:c7:93:22:48:3f:c2:67:6d: ac:d9:ed:57:d6:b2:d1:f4:82:5e:ce:5c:f4:4f:3f: 6e:4f:5b:2b:0b:de:91:71:c7:57:2e:21:00:9f:94: 4e:7e:25:3e:44:1f:60:ca:e2:95:af:1a:eb:4d:08: dc:19:a5:8e:d9:28:c1:86:cd:56:f7:ab:5f:7d:5a: 96:83:03:4d:e7:ac:44:9f:b7:06:a6:06:ef:67:29: 09:b3:d1:b1:e0:09:24:80:68:6e:03:5b:6c:c6:0d: 50:72:d2:c9:a8:4c:1b:09:8c:d1:67:16:fa:9a:d7: f0:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:FF:44:F9:67:AF:12:AB:A0:29:E0:92:DA:CD:92:E6:EB:F8:38:FF X509v3 Authority Key Identifier: keyid:33:FD:31:27:7D:72:8C:6A:67:15:B9:13:D5:A4:79:5C:A7:9C:AA:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/33FD31277D728C6A6715B913D5A4795CA79CAAD9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/33FD31277D728C6A6715B913D5A4795CA79CAAD9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/323430363a633634303a313a3a2f34382d3438203d3e20313431313337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:c640:1::/48 Signature Algorithm: sha256WithRSAEncryption 52:05:c9:31:93:d6:5b:38:fc:9a:51:f8:bb:88:54:20:9a:c0: 80:fd:7b:53:b2:1d:6c:7a:ff:28:00:41:a0:95:92:17:f5:23: 13:de:92:c3:9e:11:9a:1d:9a:4b:bc:05:3a:50:3d:f6:c1:47: 22:a2:73:a0:21:d8:8d:59:b9:63:35:5a:df:0c:95:cb:dd:51: fe:a3:52:7b:d5:1b:8f:a7:89:f0:ac:fb:fc:d4:4a:db:4b:a1: 03:e2:f4:c9:26:8b:c1:f9:53:92:6f:1c:57:94:62:32:ff:b2: a0:f7:da:4f:e9:e1:17:d2:bd:77:a5:a7:44:99:3d:7d:c6:4f: fd:73:47:b4:45:a8:70:9b:b7:ee:f5:8d:6c:d7:86:2c:8e:fd: b7:c2:ea:e3:b2:79:f8:22:fd:64:63:b5:c0:1c:da:d3:15:6f: 08:1e:fd:3b:46:e3:19:55:33:57:92:4c:64:96:66:73:26:ab: 02:cf:f0:93:52:d4:08:ee:87:05:4a:51:c4:9c:21:7d:3d:87: 22:28:20:71:2a:f4:ca:6c:41:5c:4a:53:29:cd:f2:cc:70:5c: 15:df:19:cf:db:3f:d6:c7:e0:f4:23:83:b0:98:2c:0a:b3:b8: 7f:14:23:94:37:64:67:d7:e0:40:1c:66:7a:7e:3d:ff:27:4e: 05:b1:3c:7b -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUatp6Ags2ZeiaF2iw8SAOEUxEp7AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzNGRDMxMjc3RDcyOEM2QTY3MTVCOTEzRDVBNDc5NUNB NzlDQUFEOTAeFw0yNTA5MDQyMzU1MDJaFw0yNjA5MDQwMDAwMDJaMDMxMTAvBgNV BAMTKEI2RkY0NEY5NjdBRjEyQUJBMDI5RTA5MkRBQ0Q5MkU2RUJGODM4RkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDWgh64uamTjqdDfAkadNptq17D EAmmpS+m5VF5i2HXvp29teU2Tu2RjkkEZPiL7AJ7Z2lzYbywiIEur/NAgGcf0VlK J4HEpBtwbt52qQJ/IJ8ws5L4aLhcIhfw+AWvyeHXA6dwibc2Rw7sOo+2+yUqNhVx UhgfvrfTaue6Rqg+hp3lZrXfE1MV0TcZeXrHkyJIP8JnbazZ7VfWstH0gl7OXPRP P25PWysL3pFxx1cuIQCflE5+JT5EH2DK4pWvGutNCNwZpY7ZKMGGzVb3q199WpaD A03nrESftwamBu9nKQmz0bHgCSSAaG4DW2zGDVBy0smoTBsJjNFnFvqa1/CnAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUtv9E+WevEqugKeCS2s2S5uv4OP8wHwYDVR0j BBgwFoAUM/0xJ31yjGpnFbkT1aR5XKecqtkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y NDkwMzQ1ZS0yZDU3LTQzNDktYjc4Zi1jOGIxOGE0NDI0NDUvMC8zM0ZEMzEyNzdE NzI4QzZBNjcxNUI5MTNENUE0Nzk1Q0E3OUNBQUQ5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzNGRDMxMjc3RDcyOEM2QTY3MTVCOTEzRDVBNDc5NUNBNzlD QUFEOS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI0OTAzNDVlLTJkNTctNDM0OS1i NzhmLWM4YjE4YTQ0MjQ0NS8wLzMyMzQzMDM2M2E2MzM2MzQzMDNhMzEzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTM0MzEzMTMzMzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBsZAAAEw DQYJKoZIhvcNAQELBQADggEBAFIFyTGT1ls4/JpR+LuIVCCawID9e1OyHWx6/ygA QaCVkhf1IxPeksOeEZodmku8BTpQPfbBRyKic6Ah2I1ZuWM1Wt8MlcvdUf6jUnvV G4+nifCs+/zUSttLoQPi9Mkmi8H5U5JvHFeUYjL/sqD32k/p4RfSvXelp0SZPX3G T/1zR7RFqHCbt+71jWzXhiyO/bfC6uOyefgi/WRjtcAc2tMVbwge/TtG4xlVM1eS TGSWZnMmqwLP8JNS1AjuhwVKUcScIX09hyIoIHEq9MpsQVxKUynN8sxwXBXfGc/b P9bH4PQjg7CYLAqzuH8UI5Q3ZGfX4EAcZnp+Pf8nTgWxPHs= -----END CERTIFICATE-----Generated at Mon Sep 8 09:19:38 2025 by rpki-client