$ rpki-client -vvf repo-rpki.idnic.net/repo/383ed7ab-1ac9-4f42-acdd-53557ac7b3f3/0/323430363a343463303a3a2f33322d3438203d3e20313430343632.roa File: 323430363a343463303a3a2f33322d3438203d3e20313430343632.roa (raw, json) Hash identifier: LyQVOVVD0SyWAzKbbigEAOPOxnvDfTq86SNZAm/SmRY= Subject key identifier: 71:F9:78:C7:15:BC:63:4D:14:61:73:24:E3:16:6B:BF:6C:E1:65:6D Certificate issuer: /CN=EFC0FE328F7B86F9C682F4FE37360C4E3AD9942C Certificate serial: 679226B2DE7F345D075CB4F0C6049CE07D937987 Authority key identifier: EF:C0:FE:32:8F:7B:86:F9:C6:82:F4:FE:37:36:0C:4E:3A:D9:94:2C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EFC0FE328F7B86F9C682F4FE37360C4E3AD9942C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/383ed7ab-1ac9-4f42-acdd-53557ac7b3f3/0/323430363a343463303a3a2f33322d3438203d3e20313430343632.roa Signing time: Sat 30 Aug 2025 09:00:01 +0000 ROA not before: Sat 30 Aug 2025 08:55:01 +0000 ROA not after: Sat 29 Aug 2026 09:00:01 +0000 asID: 140462 IP address blocks: 2406:44c0::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/383ed7ab-1ac9-4f42-acdd-53557ac7b3f3/0/EFC0FE328F7B86F9C682F4FE37360C4E3AD9942C.crl rsync://repo-rpki.idnic.net/repo/383ed7ab-1ac9-4f42-acdd-53557ac7b3f3/0/EFC0FE328F7B86F9C682F4FE37360C4E3AD9942C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EFC0FE328F7B86F9C682F4FE37360C4E3AD9942C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 22 Sep 2025 12:27:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:92:26:b2:de:7f:34:5d:07:5c:b4:f0:c6:04:9c:e0:7d:93:79:87 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EFC0FE328F7B86F9C682F4FE37360C4E3AD9942C Validity Not Before: Aug 30 08:55:01 2025 GMT Not After : Aug 29 09:00:01 2026 GMT Subject: CN=71F978C715BC634D14617324E3166BBF6CE1656D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:b0:b4:c6:cb:2f:17:e7:23:0b:3a:8c:cc:7c: 19:db:37:2f:0f:38:d7:60:7c:37:90:b9:58:09:e8: 2e:c0:b0:d8:95:fe:8d:bf:aa:9a:c1:9c:d3:32:ff: fb:f0:10:e1:4b:e7:c4:75:9c:88:99:51:7e:2a:23: cf:89:78:db:cf:75:49:23:de:c9:31:c9:78:36:6d: ac:65:bb:23:19:c1:e0:b0:ba:48:8b:ba:98:48:e8: 13:8d:1c:00:eb:7b:66:c3:99:e5:79:4a:5b:cc:46: 0d:7b:81:1c:99:aa:7a:78:da:1b:f4:03:58:1a:66: 6c:0c:b2:1a:7e:45:c1:87:91:21:f9:76:30:d4:1e: 35:1d:ee:70:be:1b:d3:88:f2:31:aa:2b:83:76:d4: 9e:a6:e7:22:7b:b9:e5:46:83:17:9c:8b:dd:ea:7f: 4c:08:70:c1:d2:d5:82:cc:79:df:eb:d4:01:fc:5e: 11:55:44:d1:b7:cb:44:f9:93:03:cb:50:72:01:95: 1d:0c:7f:56:f8:a2:68:57:ab:bf:bd:7e:57:cb:80: 9f:99:1a:4d:02:dd:3d:26:3d:69:1c:23:c3:d0:a8: 22:e9:06:51:4e:11:62:01:a1:67:4b:02:53:19:b8: ef:38:55:96:31:9c:1b:97:31:52:70:c0:79:9f:08: 2c:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:F9:78:C7:15:BC:63:4D:14:61:73:24:E3:16:6B:BF:6C:E1:65:6D X509v3 Authority Key Identifier: keyid:EF:C0:FE:32:8F:7B:86:F9:C6:82:F4:FE:37:36:0C:4E:3A:D9:94:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/383ed7ab-1ac9-4f42-acdd-53557ac7b3f3/0/EFC0FE328F7B86F9C682F4FE37360C4E3AD9942C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EFC0FE328F7B86F9C682F4FE37360C4E3AD9942C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/383ed7ab-1ac9-4f42-acdd-53557ac7b3f3/0/323430363a343463303a3a2f33322d3438203d3e20313430343632.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:44c0::/32 Signature Algorithm: sha256WithRSAEncryption 7c:f5:3e:96:e1:8a:15:26:b2:09:d6:7b:cc:30:67:87:d1:b4: 83:cd:64:a1:fd:59:99:92:a6:42:f3:65:c5:3d:c8:9e:bc:b1: 3e:0e:1c:21:51:dd:44:b0:b7:c1:69:81:2c:cd:1b:3c:7d:37: 93:1a:90:2a:8d:6f:98:fa:57:13:13:d9:d0:ab:15:11:c2:d2: 88:42:f3:d3:62:82:99:36:5c:a8:84:e5:fd:f4:81:58:c3:6f: 3c:c3:d8:26:c0:9b:03:a8:be:2f:3f:22:f0:54:fd:0d:24:ae: 2a:98:5e:55:e7:0b:7c:64:73:5e:43:b3:24:db:c5:f6:32:0d: 1a:aa:4f:07:5e:cc:88:a0:88:c7:8b:bc:e9:60:c6:79:54:94: 14:24:d5:09:ec:41:e9:0d:f8:ee:3c:77:f9:c0:61:c0:b6:3e: 69:44:0a:d9:22:dc:b2:d8:75:43:19:31:90:3b:86:36:39:ce: b4:b3:64:3f:e5:6b:3e:69:c5:65:ed:13:aa:80:a3:a2:20:04: 2f:ed:73:cf:b5:e2:24:14:34:cd:ec:c0:25:24:3a:f5:52:f4: d1:30:1c:93:bb:38:06:c7:7e:4f:8f:25:51:85:ce:fc:3a:f7: ff:e6:ec:c0:9d:bb:cb:ab:f5:45:88:2e:5d:db:c9:47:b5:d2: 10:1e:d4:a9 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUZ5Imst5/NF0HXLTwxgSc4H2TeYcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRUZDMEZFMzI4RjdCODZGOUM2ODJGNEZFMzczNjBDNEUz QUQ5OTQyQzAeFw0yNTA4MzAwODU1MDFaFw0yNjA4MjkwOTAwMDFaMDMxMTAvBgNV BAMTKDcxRjk3OEM3MTVCQzYzNEQxNDYxNzMyNEUzMTY2QkJGNkNFMTY1NkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrsLTGyy8X5yMLOozMfBnbNy8P ONdgfDeQuVgJ6C7AsNiV/o2/qprBnNMy//vwEOFL58R1nIiZUX4qI8+JeNvPdUkj 3skxyXg2baxluyMZweCwukiLuphI6BONHADre2bDmeV5SlvMRg17gRyZqnp42hv0 A1gaZmwMshp+RcGHkSH5djDUHjUd7nC+G9OI8jGqK4N21J6m5yJ7ueVGgxeci93q f0wIcMHS1YLMed/r1AH8XhFVRNG3y0T5kwPLUHIBlR0Mf1b4omhXq7+9flfLgJ+Z Gk0C3T0mPWkcI8PQqCLpBlFOEWIBoWdLAlMZuO84VZYxnBuXMVJwwHmfCCw5AgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUcfl4xxW8Y00UYXMk4xZrv2zhZW0wHwYDVR0j BBgwFoAU78D+Mo97hvnGgvT+NzYMTjrZlCwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ODNlZDdhYi0xYWM5LTRmNDItYWNkZC01MzU1N2FjN2IzZjMvMC9FRkMwRkUzMjhG N0I4NkY5QzY4MkY0RkUzNzM2MEM0RTNBRDk5NDJDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRUZDMEZFMzI4RjdCODZGOUM2ODJGNEZFMzczNjBDNEUzQUQ5 OTQyQy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzM4M2VkN2FiLTFhYzktNGY0Mi1h Y2RkLTUzNTU3YWM3YjNmMy8wLzMyMzQzMDM2M2EzNDM0NjMzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMxMzQzMDM0MzYzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQGRMAwDQYJKoZI hvcNAQELBQADggEBAHz1PpbhihUmsgnWe8wwZ4fRtIPNZKH9WZmSpkLzZcU9yJ68 sT4OHCFR3USwt8FpgSzNGzx9N5MakCqNb5j6VxMT2dCrFRHC0ohC89Nigpk2XKiE 5f30gVjDbzzD2CbAmwOovi8/IvBU/Q0kriqYXlXnC3xkc15DsyTbxfYyDRqqTwde zIigiMeLvOlgxnlUlBQk1QnsQekN+O48d/nAYcC2PmlECtki3LLYdUMZMZA7hjY5 zrSzZD/laz5pxWXtE6qAo6IgBC/tc8+14iQUNM3swCUkOvVS9NEwHJO7OAbHfk+P JVGFzvw69//m7MCdu8ur9UWILl3byUe10hAe1Kk= -----END CERTIFICATE-----Generated at Fri Sep 19 09:39:04 2025 by rpki-client