$ rpki-client -vvf repo-rpki.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/323430363a633634303a3a2f33322d3332203d3e20313431313337.roa File: 323430363a633634303a3a2f33322d3332203d3e20313431313337.roa (raw, json) Hash identifier: 5V8TdCs3cgs+nmmoF4z5Y22rIV0qGc1uTgZVGMrslKU= Subject key identifier: 0F:A2:58:72:2B:41:BE:FD:99:3F:EA:58:CE:2C:96:AD:23:9F:EE:E0 Certificate issuer: /CN=33FD31277D728C6A6715B913D5A4795CA79CAAD9 Certificate serial: 53963C96CF515A3DA62207F791068570562628FB Authority key identifier: 33:FD:31:27:7D:72:8C:6A:67:15:B9:13:D5:A4:79:5C:A7:9C:AA:D9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/33FD31277D728C6A6715B913D5A4795CA79CAAD9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/323430363a633634303a3a2f33322d3332203d3e20313431313337.roa Signing time: Fri 05 Sep 2025 01:00:02 +0000 ROA not before: Fri 05 Sep 2025 00:55:02 +0000 ROA not after: Fri 04 Sep 2026 01:00:02 +0000 asID: 141137 IP address blocks: 2406:c640::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/33FD31277D728C6A6715B913D5A4795CA79CAAD9.crl rsync://repo-rpki.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/33FD31277D728C6A6715B913D5A4795CA79CAAD9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/33FD31277D728C6A6715B913D5A4795CA79CAAD9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Sep 2025 20:40:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:96:3c:96:cf:51:5a:3d:a6:22:07:f7:91:06:85:70:56:26:28:fb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=33FD31277D728C6A6715B913D5A4795CA79CAAD9 Validity Not Before: Sep 5 00:55:02 2025 GMT Not After : Sep 4 01:00:02 2026 GMT Subject: CN=0FA258722B41BEFD993FEA58CE2C96AD239FEEE0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:87:65:c5:0f:4f:0c:6e:27:da:a6:55:c5:46: 06:97:b2:71:1d:e7:99:e0:74:27:ed:73:1e:58:4c: c5:43:67:de:1e:fb:3c:d3:4d:32:02:28:8d:15:69: 52:5d:36:d0:e2:ec:ae:4d:20:a0:25:09:b2:83:2e: 36:99:34:b3:19:65:a6:dd:03:99:73:5f:c6:5d:f7: e7:2b:c5:95:24:4b:75:1e:9b:ad:52:38:8f:0a:43: d4:39:ce:aa:77:7d:ad:8b:8e:e7:b2:2f:9f:f4:80: d2:49:9d:a0:73:06:a4:fc:47:a0:2f:50:5c:db:a9: 5c:c0:0a:e0:8c:07:92:92:9c:9e:b3:be:1e:fd:63: 6a:90:5b:d4:4c:93:ea:aa:e9:82:7c:82:71:db:2c: 32:1b:b1:3e:6b:5d:80:7e:3d:fb:b9:ea:0d:54:86: dc:a8:bc:7d:43:7e:d6:51:89:09:cd:5a:19:d4:03: 7c:bb:76:39:48:0a:69:51:af:b4:e5:87:cc:ea:29: 4a:aa:5d:4a:64:39:d2:ad:e7:ac:26:1a:01:b8:84: d0:19:17:8d:a6:eb:9f:78:97:27:a3:81:5d:18:f2: c1:56:41:16:2a:f3:9e:b6:1f:c8:d2:07:7d:c7:d8: da:3f:29:ef:5e:c7:04:a5:82:89:b9:8b:b7:4b:fc: af:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:A2:58:72:2B:41:BE:FD:99:3F:EA:58:CE:2C:96:AD:23:9F:EE:E0 X509v3 Authority Key Identifier: keyid:33:FD:31:27:7D:72:8C:6A:67:15:B9:13:D5:A4:79:5C:A7:9C:AA:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/33FD31277D728C6A6715B913D5A4795CA79CAAD9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/33FD31277D728C6A6715B913D5A4795CA79CAAD9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/323430363a633634303a3a2f33322d3332203d3e20313431313337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:c640::/32 Signature Algorithm: sha256WithRSAEncryption 61:74:ee:92:88:66:9d:20:63:b3:f9:2a:8b:c1:87:db:c7:30: 34:5d:8a:d6:ba:31:56:16:ab:6e:19:8d:a2:9d:d5:a2:06:1e: 65:a0:46:5a:dc:ad:c5:3a:92:20:d1:70:cc:ed:b9:f2:57:20: 3d:ec:de:6a:4f:2d:8c:b8:7e:26:38:ac:a7:62:d7:01:3c:20: 68:98:33:45:a8:08:fa:f3:bb:d5:5e:23:e3:47:8e:22:9e:63: 47:39:02:97:60:a7:12:45:82:49:a8:c8:4a:1d:ee:21:19:12: 68:dc:2f:65:d2:ed:6b:d3:8e:50:20:e4:1d:77:cb:54:9c:49: e5:36:61:86:98:08:6c:08:0e:57:d1:fa:52:ff:3c:39:d7:0f: 31:5d:cf:13:dd:dc:49:86:80:aa:88:c9:86:66:89:05:3b:ee: dd:61:45:ac:6f:12:be:14:a6:2d:81:e4:97:d8:ac:25:16:e5: 38:3b:bd:03:58:3c:12:4b:71:b4:3c:12:11:d3:d3:b0:28:54: 8a:e0:aa:d4:eb:bf:13:0c:f4:ad:46:02:7e:ba:a5:52:7a:6f: 8c:ca:37:51:36:af:ef:82:39:02:fb:bf:07:f7:9d:42:d3:cc: ca:ae:8e:7f:6b:73:cc:05:c5:08:ca:d0:31:78:98:86:5e:6d: 63:5f:8c:e8 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUU5Y8ls9RWj2mIgf3kQaFcFYmKPswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzNGRDMxMjc3RDcyOEM2QTY3MTVCOTEzRDVBNDc5NUNB NzlDQUFEOTAeFw0yNTA5MDUwMDU1MDJaFw0yNjA5MDQwMTAwMDJaMDMxMTAvBgNV BAMTKDBGQTI1ODcyMkI0MUJFRkQ5OTNGRUE1OENFMkM5NkFEMjM5RkVFRTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCah2XFD08MbifaplXFRgaXsnEd 55ngdCftcx5YTMVDZ94e+zzTTTICKI0VaVJdNtDi7K5NIKAlCbKDLjaZNLMZZabd A5lzX8Zd9+crxZUkS3Uem61SOI8KQ9Q5zqp3fa2LjueyL5/0gNJJnaBzBqT8R6Av UFzbqVzACuCMB5KSnJ6zvh79Y2qQW9RMk+qq6YJ8gnHbLDIbsT5rXYB+Pfu56g1U htyovH1DftZRiQnNWhnUA3y7djlICmlRr7Tlh8zqKUqqXUpkOdKt56wmGgG4hNAZ F42m6594lyejgV0Y8sFWQRYq8562H8jSB33H2No/Ke9exwSlgom5i7dL/K/xAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUD6JYcitBvv2ZP+pYziyWrSOf7uAwHwYDVR0j BBgwFoAUM/0xJ31yjGpnFbkT1aR5XKecqtkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y NDkwMzQ1ZS0yZDU3LTQzNDktYjc4Zi1jOGIxOGE0NDI0NDUvMC8zM0ZEMzEyNzdE NzI4QzZBNjcxNUI5MTNENUE0Nzk1Q0E3OUNBQUQ5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzNGRDMxMjc3RDcyOEM2QTY3MTVCOTEzRDVBNDc5NUNBNzlD QUFEOS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI0OTAzNDVlLTJkNTctNDM0OS1i NzhmLWM4YjE4YTQ0MjQ0NS8wLzMyMzQzMDM2M2E2MzM2MzQzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzQzMTMxMzMzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQGxkAwDQYJKoZI hvcNAQELBQADggEBAGF07pKIZp0gY7P5KovBh9vHMDRdita6MVYWq24ZjaKd1aIG HmWgRlrcrcU6kiDRcMztufJXID3s3mpPLYy4fiY4rKdi1wE8IGiYM0WoCPrzu9Ve I+NHjiKeY0c5ApdgpxJFgkmoyEod7iEZEmjcL2XS7WvTjlAg5B13y1ScSeU2YYaY CGwIDlfR+lL/PDnXDzFdzxPd3EmGgKqIyYZmiQU77t1hRaxvEr4Upi2B5JfYrCUW 5Tg7vQNYPBJLcbQ8EhHT07AoVIrgqtTrvxMM9K1GAn66pVJ6b4zKN1E2r++COQL7 vwf3nULTzMqujn9rc8wFxQjK0DF4mIZebWNfjOg= -----END CERTIFICATE-----Generated at Mon Sep 8 09:25:15 2025 by rpki-client