$ rpki-client -vvf repo-rpki.idnic.net/repo/29c5327f-10fd-4cf0-851c-0cfcd3c3c697/0/323430353a396363303a3a2f33322d3438203d3e20313339393637.roa File: 323430353a396363303a3a2f33322d3438203d3e20313339393637.roa (raw, json) Hash identifier: M/EH2rI4ldQhZaUe9MI4EQP0BkiCCMhjU2Ci0XOya8Q= Subject key identifier: 19:6D:F8:18:79:EB:3B:B4:34:A3:E8:B7:7F:EC:4C:C8:8A:8A:E6:8D Certificate issuer: /CN=4F2904EAE66ADD5D3AC53C6ACCB92133B426DF48 Certificate serial: 795A294B44E4DD396A823F373FD0FC7D1E68CC60 Authority key identifier: 4F:29:04:EA:E6:6A:DD:5D:3A:C5:3C:6A:CC:B9:21:33:B4:26:DF:48 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4F2904EAE66ADD5D3AC53C6ACCB92133B426DF48.cer Subject info access: rsync://repo-rpki.idnic.net/repo/29c5327f-10fd-4cf0-851c-0cfcd3c3c697/0/323430353a396363303a3a2f33322d3438203d3e20313339393637.roa Signing time: Sat 06 Sep 2025 20:00:00 +0000 ROA not before: Sat 06 Sep 2025 19:55:00 +0000 ROA not after: Sat 05 Sep 2026 20:00:00 +0000 asID: 139967 IP address blocks: 2405:9cc0::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/29c5327f-10fd-4cf0-851c-0cfcd3c3c697/0/4F2904EAE66ADD5D3AC53C6ACCB92133B426DF48.crl rsync://repo-rpki.idnic.net/repo/29c5327f-10fd-4cf0-851c-0cfcd3c3c697/0/4F2904EAE66ADD5D3AC53C6ACCB92133B426DF48.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4F2904EAE66ADD5D3AC53C6ACCB92133B426DF48.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Sep 2025 01:04:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:5a:29:4b:44:e4:dd:39:6a:82:3f:37:3f:d0:fc:7d:1e:68:cc:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4F2904EAE66ADD5D3AC53C6ACCB92133B426DF48 Validity Not Before: Sep 6 19:55:00 2025 GMT Not After : Sep 5 20:00:00 2026 GMT Subject: CN=196DF81879EB3BB434A3E8B77FEC4CC88A8AE68D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:8b:79:c4:0a:f1:74:2f:8b:ec:86:0b:77:d6: 78:8b:ef:ac:fc:85:86:49:ce:ba:65:d6:a6:2a:5b: 7f:d4:ff:f7:46:54:0d:de:74:b0:6f:d2:23:80:29: 85:29:d2:23:63:0a:d9:dc:10:9b:e6:be:96:ea:85: 75:15:05:24:67:53:89:86:bd:df:39:67:eb:7e:af: 18:d0:8d:90:04:b3:15:32:a4:c6:70:7a:27:6b:71: 91:52:34:b4:0c:4e:31:e4:c0:77:d7:e5:39:90:4b: ee:28:15:88:0e:08:43:fb:0a:6f:a4:9a:2e:90:b8: c4:5e:2f:9f:e1:5e:49:59:34:19:65:37:47:c1:02: 88:e1:01:d6:81:1b:6d:95:0b:ef:79:35:1f:5e:d4: 49:66:94:a7:4f:49:1f:46:d6:3c:50:7b:84:99:6d: 7c:84:ed:95:8c:fd:7e:00:d6:06:8c:f1:7a:57:bb: 7f:7a:e5:fc:f2:66:81:c8:75:bf:8e:97:18:d8:5e: b6:63:0c:7b:35:25:bd:d1:d1:24:83:58:36:9b:f3: 3f:ba:d7:c7:31:85:7f:ff:7a:db:d5:2f:4a:1a:14: 12:6f:6b:02:ed:1b:7d:6a:66:3b:96:0d:f6:e3:b2: 6b:da:54:d7:5e:0d:4a:74:78:97:1d:a1:a8:ea:a1: 46:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:6D:F8:18:79:EB:3B:B4:34:A3:E8:B7:7F:EC:4C:C8:8A:8A:E6:8D X509v3 Authority Key Identifier: keyid:4F:29:04:EA:E6:6A:DD:5D:3A:C5:3C:6A:CC:B9:21:33:B4:26:DF:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/29c5327f-10fd-4cf0-851c-0cfcd3c3c697/0/4F2904EAE66ADD5D3AC53C6ACCB92133B426DF48.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4F2904EAE66ADD5D3AC53C6ACCB92133B426DF48.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/29c5327f-10fd-4cf0-851c-0cfcd3c3c697/0/323430353a396363303a3a2f33322d3438203d3e20313339393637.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:9cc0::/32 Signature Algorithm: sha256WithRSAEncryption 03:05:4f:7e:58:f7:2a:4c:61:43:bc:e1:d9:c4:3a:fb:62:df: 63:50:ed:61:75:ca:1a:6b:bf:6a:ed:03:f9:b9:ad:78:5d:85: 3a:86:ae:03:2a:33:2f:f9:6c:c6:e8:66:8b:00:30:b9:70:52: 94:6d:a6:9f:ac:00:54:29:37:dc:cd:70:45:21:b5:b4:e6:05: dd:2e:de:2d:ed:d0:27:a8:55:d6:ab:6e:45:f6:f8:8b:35:4c: f3:d3:0c:07:11:28:8b:44:21:9f:aa:59:18:3e:d4:ec:b7:21: 2b:8b:f4:bf:c3:9c:81:f8:ef:24:7a:76:4f:e8:31:13:4d:5a: 8e:b8:87:7b:72:5b:9f:eb:fc:2a:82:bf:c4:5f:0a:e9:2b:16: 1c:e9:d0:61:0d:79:cb:7d:e5:5b:46:b3:67:89:66:91:39:bb: 04:ad:3b:10:cb:fa:1a:db:a1:37:78:ee:32:d3:e1:c6:e9:c9: b4:bb:d8:4d:03:1d:9f:24:17:68:19:70:c1:86:61:65:fe:ef: 2e:39:eb:ef:bd:d3:92:c3:62:3d:c6:d5:84:57:e8:c7:7a:0e: 47:75:26:76:49:b1:56:65:dd:a9:da:7e:bc:20:d6:c2:5b:15: dd:c2:c4:cd:cc:33:b9:9f:a0:cc:d7:85:09:f7:6a:b8:d7:4c: 89:f9:f6:33 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUeVopS0Tk3Tlqgj83P9D8fR5ozGAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEYyOTA0RUFFNjZBREQ1RDNBQzUzQzZBQ0NCOTIxMzNC NDI2REY0ODAeFw0yNTA5MDYxOTU1MDBaFw0yNjA5MDUyMDAwMDBaMDMxMTAvBgNV BAMTKDE5NkRGODE4NzlFQjNCQjQzNEEzRThCNzdGRUM0Q0M4OEE4QUU2OEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDvi3nECvF0L4vshgt31niL76z8 hYZJzrpl1qYqW3/U//dGVA3edLBv0iOAKYUp0iNjCtncEJvmvpbqhXUVBSRnU4mG vd85Z+t+rxjQjZAEsxUypMZweidrcZFSNLQMTjHkwHfX5TmQS+4oFYgOCEP7Cm+k mi6QuMReL5/hXklZNBllN0fBAojhAdaBG22VC+95NR9e1ElmlKdPSR9G1jxQe4SZ bXyE7ZWM/X4A1gaM8XpXu3965fzyZoHIdb+OlxjYXrZjDHs1Jb3R0SSDWDab8z+6 18cxhX//etvVL0oaFBJvawLtG31qZjuWDfbjsmvaVNdeDUp0eJcdoajqoUb/AgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUGW34GHnrO7Q0o+i3f+xMyIqK5o0wHwYDVR0j BBgwFoAUTykE6uZq3V06xTxqzLkhM7Qm30gwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y OWM1MzI3Zi0xMGZkLTRjZjAtODUxYy0wY2ZjZDNjM2M2OTcvMC80RjI5MDRFQUU2 NkFERDVEM0FDNTNDNkFDQ0I5MjEzM0I0MjZERjQ4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEYyOTA0RUFFNjZBREQ1RDNBQzUzQzZBQ0NCOTIxMzNCNDI2 REY0OC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI5YzUzMjdmLTEwZmQtNGNmMC04 NTFjLTBjZmNkM2MzYzY5Ny8wLzMyMzQzMDM1M2EzOTYzNjMzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMxMzMzOTM5MzYzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQFnMAwDQYJKoZI hvcNAQELBQADggEBAAMFT35Y9ypMYUO84dnEOvti32NQ7WF1yhprv2rtA/m5rXhd hTqGrgMqMy/5bMboZosAMLlwUpRtpp+sAFQpN9zNcEUhtbTmBd0u3i3t0CeoVdar bkX2+Is1TPPTDAcRKItEIZ+qWRg+1Oy3ISuL9L/DnIH47yR6dk/oMRNNWo64h3ty W5/r/CqCv8RfCukrFhzp0GENect95VtGs2eJZpE5uwStOxDL+hrboTd47jLT4cbp ybS72E0DHZ8kF2gZcMGGYWX+7y456++905LDYj3G1YRX6Md6Dkd1JnZJsVZl3ana frwg1sJbFd3CxM3MM7mfoMzXhQn3arjXTIn59jM= -----END CERTIFICATE-----Generated at Mon Sep 8 09:56:52 2025 by rpki-client