$ rpki-client -vvf repo-rpki.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/323430363a633634303a323a3a2f34382d3438203d3e20313431313337.roa File: 323430363a633634303a323a3a2f34382d3438203d3e20313431313337.roa (raw, json) Hash identifier: DTVsh2XoacQGQ0M4VZPcXWe9xYvlSB7Zv3KJ/YTK1Yw= Subject key identifier: 4A:70:C8:88:CB:2B:4D:3C:63:54:8F:B9:E0:43:EA:87:23:D1:7A:D8 Certificate issuer: /CN=33FD31277D728C6A6715B913D5A4795CA79CAAD9 Certificate serial: 135FE643910FBC4EFD9EBD154064FF27A72380EF Authority key identifier: 33:FD:31:27:7D:72:8C:6A:67:15:B9:13:D5:A4:79:5C:A7:9C:AA:D9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/33FD31277D728C6A6715B913D5A4795CA79CAAD9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/323430363a633634303a323a3a2f34382d3438203d3e20313431313337.roa Signing time: Fri 05 Sep 2025 01:00:02 +0000 ROA not before: Fri 05 Sep 2025 00:55:02 +0000 ROA not after: Fri 04 Sep 2026 01:00:02 +0000 asID: 141137 IP address blocks: 2406:c640:2::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/33FD31277D728C6A6715B913D5A4795CA79CAAD9.crl rsync://repo-rpki.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/33FD31277D728C6A6715B913D5A4795CA79CAAD9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/33FD31277D728C6A6715B913D5A4795CA79CAAD9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Sep 2025 20:40:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:5f:e6:43:91:0f:bc:4e:fd:9e:bd:15:40:64:ff:27:a7:23:80:ef Signature Algorithm: sha256WithRSAEncryption Issuer: CN=33FD31277D728C6A6715B913D5A4795CA79CAAD9 Validity Not Before: Sep 5 00:55:02 2025 GMT Not After : Sep 4 01:00:02 2026 GMT Subject: CN=4A70C888CB2B4D3C63548FB9E043EA8723D17AD8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:ac:eb:41:75:04:aa:6b:10:64:a9:74:5c:96: 9a:ca:cc:a7:74:40:bd:e6:ff:84:b2:c6:94:20:f2: c0:d8:a3:11:47:67:36:28:94:b9:d5:39:b9:8a:38: 4f:e5:85:b7:5b:25:c0:0f:d2:ed:7e:4d:1e:d7:12: e1:1b:55:cd:4f:41:08:9c:54:94:5b:f6:1d:1e:c2: 52:d5:dd:15:64:1a:96:81:9e:d0:74:75:73:3c:e9: b6:ca:ee:88:18:5c:f1:53:4c:0f:dd:ac:0f:69:5d: 58:30:2b:b9:7f:47:9d:39:bb:db:1a:fc:f8:df:5a: c3:ab:48:8d:7d:7d:30:13:5a:80:03:2f:b7:71:3e: 56:99:48:47:3c:f9:86:05:e1:3d:0a:49:a6:8f:f7: da:52:fa:14:a1:e4:a3:10:85:33:3d:14:dc:43:a3: 4d:31:81:c8:9f:bc:85:41:e7:bf:6f:e6:c4:9c:99: 5f:3a:83:f3:98:a6:d1:79:4c:d3:37:7a:41:b5:09: bf:70:c5:28:ad:9c:0c:18:7c:e6:c5:96:a9:55:11: 2e:75:0e:be:13:13:60:c0:61:f8:97:af:1f:31:6c: 95:12:40:5f:0a:46:18:42:52:e6:98:ba:52:20:09: 93:40:81:70:0c:47:e6:ff:0a:db:67:5c:d0:e4:f2: 43:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:70:C8:88:CB:2B:4D:3C:63:54:8F:B9:E0:43:EA:87:23:D1:7A:D8 X509v3 Authority Key Identifier: keyid:33:FD:31:27:7D:72:8C:6A:67:15:B9:13:D5:A4:79:5C:A7:9C:AA:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/33FD31277D728C6A6715B913D5A4795CA79CAAD9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/33FD31277D728C6A6715B913D5A4795CA79CAAD9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/323430363a633634303a323a3a2f34382d3438203d3e20313431313337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:c640:2::/48 Signature Algorithm: sha256WithRSAEncryption 2a:46:c1:fb:2f:dc:9f:bf:8d:31:f0:25:c1:60:fb:da:ae:93: a1:ab:09:88:70:b3:30:19:0a:b3:2c:8b:e5:ea:2e:de:86:6c: cd:15:60:70:9e:ac:97:38:2d:0c:1d:20:66:21:db:fb:36:39: ae:c0:d3:81:b4:09:aa:62:04:43:fb:34:99:bb:20:dd:0e:30: 93:0d:71:82:e0:62:1d:cd:78:1c:92:dd:0f:47:67:a1:cc:d1: 8b:02:45:2f:ec:dc:15:a6:f5:a4:34:eb:5b:da:02:9d:ba:bb: f9:8f:08:1f:3d:07:bc:75:20:7b:35:d1:59:3e:c1:ac:9d:6d: fb:52:88:ea:4f:fa:5e:02:dd:71:fd:c7:e3:ff:0f:7c:bd:d8: aa:ae:ea:6f:b8:ff:2f:4f:9b:0d:2f:69:1e:8a:74:e4:bc:a4: 52:c5:c4:53:1b:55:08:a4:04:2b:55:39:2a:b5:94:c8:7c:b2: 44:1c:f1:7c:8b:45:a7:0d:33:08:e6:10:9f:7b:74:41:d3:09: 8a:7e:75:52:47:73:c2:bb:37:bb:76:b3:4e:26:96:8e:47:10: a3:28:3b:2a:7a:ab:43:38:eb:ac:07:84:4d:06:7d:b6:0f:e9: 4d:a6:67:34:23:5b:9a:da:48:27:81:77:b6:ed:65:a2:0b:7c: 11:9e:84:df -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUE1/mQ5EPvE79nr0VQGT/J6cjgO8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzNGRDMxMjc3RDcyOEM2QTY3MTVCOTEzRDVBNDc5NUNB NzlDQUFEOTAeFw0yNTA5MDUwMDU1MDJaFw0yNjA5MDQwMTAwMDJaMDMxMTAvBgNV BAMTKDRBNzBDODg4Q0IyQjREM0M2MzU0OEZCOUUwNDNFQTg3MjNEMTdBRDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9rOtBdQSqaxBkqXRclprKzKd0 QL3m/4SyxpQg8sDYoxFHZzYolLnVObmKOE/lhbdbJcAP0u1+TR7XEuEbVc1PQQic VJRb9h0ewlLV3RVkGpaBntB0dXM86bbK7ogYXPFTTA/drA9pXVgwK7l/R505u9sa /PjfWsOrSI19fTATWoADL7dxPlaZSEc8+YYF4T0KSaaP99pS+hSh5KMQhTM9FNxD o00xgcifvIVB579v5sScmV86g/OYptF5TNM3ekG1Cb9wxSitnAwYfObFlqlVES51 Dr4TE2DAYfiXrx8xbJUSQF8KRhhCUuaYulIgCZNAgXAMR+b/CttnXNDk8kOBAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUSnDIiMsrTTxjVI+54EPqhyPRetgwHwYDVR0j BBgwFoAUM/0xJ31yjGpnFbkT1aR5XKecqtkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y NDkwMzQ1ZS0yZDU3LTQzNDktYjc4Zi1jOGIxOGE0NDI0NDUvMC8zM0ZEMzEyNzdE NzI4QzZBNjcxNUI5MTNENUE0Nzk1Q0E3OUNBQUQ5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzNGRDMxMjc3RDcyOEM2QTY3MTVCOTEzRDVBNDc5NUNBNzlD QUFEOS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI0OTAzNDVlLTJkNTctNDM0OS1i NzhmLWM4YjE4YTQ0MjQ0NS8wLzMyMzQzMDM2M2E2MzM2MzQzMDNhMzIzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTM0MzEzMTMzMzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBsZAAAIw DQYJKoZIhvcNAQELBQADggEBACpGwfsv3J+/jTHwJcFg+9quk6GrCYhwszAZCrMs i+XqLt6GbM0VYHCerJc4LQwdIGYh2/s2Oa7A04G0CapiBEP7NJm7IN0OMJMNcYLg Yh3NeByS3Q9HZ6HM0YsCRS/s3BWm9aQ061vaAp26u/mPCB89B7x1IHs10Vk+wayd bftSiOpP+l4C3XH9x+P/D3y92Kqu6m+4/y9Pmw0vaR6KdOS8pFLFxFMbVQikBCtV OSq1lMh8skQc8XyLRacNMwjmEJ97dEHTCYp+dVJHc8K7N7t2s04mlo5HEKMoOyp6 q0M466wHhE0GfbYP6U2mZzQjW5raSCeBd7btZaILfBGehN8= -----END CERTIFICATE-----Generated at Mon Sep 8 09:25:17 2025 by rpki-client