$ rpki-client -vvf repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/323430323a653130303a3a2f33322d3438203d3e203538343835.roa File: 323430323a653130303a3a2f33322d3438203d3e203538343835.roa (raw, json) Hash identifier: JJglB/VlfiSRwxyeiN2g4JH/b5q2RqTOfEL3QFxIRWk= Subject key identifier: D7:75:A9:8C:87:94:A3:D8:C5:B2:69:84:33:28:01:B6:CB:C1:62:50 Certificate issuer: /CN=FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39 Certificate serial: 1829D2BD4D6D1254A6E4B90D98B3BC7A5E6E98A6 Authority key identifier: FA:5B:CA:98:4E:EB:AF:FD:CE:D8:41:90:C7:07:56:DB:EB:3B:FF:39 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/323430323a653130303a3a2f33322d3438203d3e203538343835.roa Signing time: Thu 04 Sep 2025 20:00:00 +0000 ROA not before: Thu 04 Sep 2025 19:55:00 +0000 ROA not after: Thu 03 Sep 2026 20:00:00 +0000 asID: 58485 IP address blocks: 2402:e100::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.crl rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Sep 2025 07:58:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:29:d2:bd:4d:6d:12:54:a6:e4:b9:0d:98:b3:bc:7a:5e:6e:98:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39 Validity Not Before: Sep 4 19:55:00 2025 GMT Not After : Sep 3 20:00:00 2026 GMT Subject: CN=D775A98C8794A3D8C5B26984332801B6CBC16250 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:df:d9:f3:e9:ee:8b:10:cb:63:29:7f:ef:53: df:60:c3:cd:f2:f0:6f:50:78:91:55:1d:17:65:32: 8c:2a:9d:c6:bb:0a:d1:d6:4c:8b:3a:a6:b5:5e:09: 9a:5c:b7:01:1a:54:70:41:1e:2d:8b:f9:9c:a3:b1: d3:20:90:62:e7:75:d7:2b:84:d1:29:80:8b:82:3d: 4a:6c:31:42:5d:ac:44:9a:4d:83:ca:e2:46:49:44: 1d:76:a8:17:f5:c2:89:eb:6e:5d:04:e4:55:57:e2: 74:d1:d6:3f:13:10:4d:1e:7e:e4:a2:2f:c9:be:fd: e7:e6:e8:e4:88:7b:f6:49:3d:4b:6b:5e:6f:57:7f: f3:e9:5d:9c:4c:9f:07:86:52:15:9b:31:97:91:1c: 4c:dc:f7:1e:f5:ce:96:6d:f5:ab:10:a2:56:d4:66: d6:9b:fc:22:95:ff:fa:e9:07:2d:c9:73:b5:29:7e: ac:ac:cd:b5:00:7e:fc:bb:30:d2:cf:38:7c:1d:85: ea:7c:50:3f:08:18:a6:3c:e5:1d:2e:ce:68:5b:d3: 61:97:d7:05:87:1b:64:42:e4:f0:5b:5a:f3:35:9a: 52:fd:19:ba:08:e1:95:46:7d:f8:46:1f:91:8b:c7: 9b:ee:42:ab:43:60:17:fc:e0:1b:a6:c5:72:46:dd: 2c:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:75:A9:8C:87:94:A3:D8:C5:B2:69:84:33:28:01:B6:CB:C1:62:50 X509v3 Authority Key Identifier: keyid:FA:5B:CA:98:4E:EB:AF:FD:CE:D8:41:90:C7:07:56:DB:EB:3B:FF:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/323430323a653130303a3a2f33322d3438203d3e203538343835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:e100::/32 Signature Algorithm: sha256WithRSAEncryption 2c:26:32:56:ef:1a:6b:38:96:e7:d1:d2:da:7a:06:c3:4c:34: 95:a2:e7:de:27:9e:50:c7:e4:25:85:88:e0:87:bf:31:cd:c4: 25:4e:11:f1:89:d3:9f:c2:58:3c:d1:5f:0a:92:16:3a:51:be: cf:48:9a:11:7a:c5:a8:31:53:97:78:3b:8b:8c:e2:f2:dd:3a: 5e:f5:dc:6d:9e:f3:a8:77:a8:d2:cd:6c:63:d1:94:79:2a:b1: 20:f3:5b:c2:6e:68:46:86:07:c7:1f:2e:8a:d1:de:5d:07:4b: 8f:fc:24:af:ea:8f:a3:fc:ee:03:49:b2:9d:b2:f3:0b:f5:24: ad:4b:36:46:df:09:fe:b0:3d:b2:37:e8:49:90:e3:71:44:fc: f7:33:0d:b6:69:b8:38:00:a0:d5:c4:04:d4:38:3f:52:e5:67: 7a:07:7c:3e:17:fe:a5:12:7c:c6:10:1d:45:78:e4:d9:7b:03: 40:b0:68:0d:13:0f:cf:88:19:bc:20:fa:3b:77:df:8b:7d:3b: c9:83:c5:68:d4:71:c4:27:0e:8a:3d:b9:9d:81:cd:83:37:c6: 12:bb:36:6d:a4:87:07:e7:33:d6:f4:b5:d2:26:4e:cd:da:2a: 26:a5:39:33:ae:cb:0e:d4:85:8a:b3:92:79:c1:6b:28:bc:ed: 24:b6:02:09 -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUGCnSvU1tElSm5LkNmLO8el5umKYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkE1QkNBOTg0RUVCQUZGRENFRDg0MTkwQzcwNzU2REJF QjNCRkYzOTAeFw0yNTA5MDQxOTU1MDBaFw0yNjA5MDMyMDAwMDBaMDMxMTAvBgNV BAMTKEQ3NzVBOThDODc5NEEzRDhDNUIyNjk4NDMzMjgwMUI2Q0JDMTYyNTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/39nz6e6LEMtjKX/vU99gw83y 8G9QeJFVHRdlMowqnca7CtHWTIs6prVeCZpctwEaVHBBHi2L+ZyjsdMgkGLnddcr hNEpgIuCPUpsMUJdrESaTYPK4kZJRB12qBf1wonrbl0E5FVX4nTR1j8TEE0efuSi L8m+/efm6OSIe/ZJPUtrXm9Xf/PpXZxMnweGUhWbMZeRHEzc9x71zpZt9asQolbU Ztab/CKV//rpBy3Jc7UpfqyszbUAfvy7MNLPOHwdhep8UD8IGKY85R0uzmhb02GX 1wWHG2RC5PBbWvM1mlL9GboI4ZVGffhGH5GLx5vuQqtDYBf84BumxXJG3SyRAgMB AAGjggIxMIICLTAdBgNVHQ4EFgQU13WpjIeUo9jFsmmEMygBtsvBYlAwHwYDVR0j BBgwFoAU+lvKmE7rr/3O2EGQxwdW2+s7/zkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZWU0N2JiZi1iYTg0LTQ0OGYtOTYyYi0yYWFmNWM3ZGQ2OGQvMC9GQTVCQ0E5ODRF RUJBRkZEQ0VEODQxOTBDNzA3NTZEQkVCM0JGRjM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkE1QkNBOTg0RUVCQUZGRENFRDg0MTkwQzcwNzU2REJFQjNC RkYzOS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJlZTQ3YmJmLWJhODQtNDQ4Zi05 NjJiLTJhYWY1YzdkZDY4ZC8wLzMyMzQzMDMyM2E2NTMxMzAzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDM1MzgzNDM4MzUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkAuEAMA0GCSqGSIb3 DQEBCwUAA4IBAQAsJjJW7xprOJbn0dLaegbDTDSVoufeJ55Qx+QlhYjgh78xzcQl ThHxidOfwlg80V8KkhY6Ub7PSJoResWoMVOXeDuLjOLy3Tpe9dxtnvOod6jSzWxj 0ZR5KrEg81vCbmhGhgfHHy6K0d5dB0uP/CSv6o+j/O4DSbKdsvML9SStSzZG3wn+ sD2yN+hJkONxRPz3Mw22abg4AKDVxATUOD9S5Wd6B3w+F/6lEnzGEB1FeOTZewNA sGgNEw/PiBm8IPo7d9+LfTvJg8Vo1HHEJw6KPbmdgc2DN8YSuzZtpIcH5zPW9LXS Jk7N2iompTkzrssO1IWKs5J5wWsovO0ktgIJ -----END CERTIFICATE-----Generated at Mon Sep 8 10:21:06 2025 by rpki-client