$ rpki-client -vvf repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/323430353a616163303a31343a3a2f34382d3438203d3e20313339393439.roa File: 323430353a616163303a31343a3a2f34382d3438203d3e20313339393439.roa (raw, json) Hash identifier: 5aUwKjxhW5F1xv+nDNzcsevQVN2X64RWQosSOI3P/lc= Subject key identifier: 5B:0C:9B:3D:B0:3E:97:EE:98:10:CF:54:C2:B0:94:0C:2B:7E:E4:3C Certificate issuer: /CN=DA8766A90851AE44D76B8563D83586F0164FE5CF Certificate serial: 665C7AC75CAD8EDEC1C56CE9A1B17FED7AE38B72 Authority key identifier: DA:87:66:A9:08:51:AE:44:D7:6B:85:63:D8:35:86:F0:16:4F:E5:CF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA8766A90851AE44D76B8563D83586F0164FE5CF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/323430353a616163303a31343a3a2f34382d3438203d3e20313339393439.roa Signing time: Mon 21 Apr 2025 18:00:00 +0000 ROA not before: Mon 21 Apr 2025 17:55:00 +0000 ROA not after: Mon 20 Apr 2026 18:00:00 +0000 asID: 139949 IP address blocks: 2405:aac0:14::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/DA8766A90851AE44D76B8563D83586F0164FE5CF.crl rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/DA8766A90851AE44D76B8563D83586F0164FE5CF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA8766A90851AE44D76B8563D83586F0164FE5CF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 14:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:5c:7a:c7:5c:ad:8e:de:c1:c5:6c:e9:a1:b1:7f:ed:7a:e3:8b:72 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DA8766A90851AE44D76B8563D83586F0164FE5CF Validity Not Before: Apr 21 17:55:00 2025 GMT Not After : Apr 20 18:00:00 2026 GMT Subject: CN=5B0C9B3DB03E97EE9810CF54C2B0940C2B7EE43C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:b0:fb:14:c9:c8:f0:40:db:8d:57:0f:2f:27: 7d:bd:e4:d9:4f:2b:34:23:59:e4:3d:6d:ad:d2:85: af:3c:96:13:ae:60:f4:bd:13:62:4e:4c:23:43:36: 49:61:8d:e4:e1:2a:86:ca:ef:33:bf:94:7c:ad:cd: 4b:19:6f:40:7b:05:da:3e:a1:7c:6b:d8:0d:d8:7a: 65:cb:fa:46:8a:51:cb:33:40:0c:44:17:67:f7:f3: 93:4a:b0:1b:23:04:32:4c:b4:13:3a:30:13:22:cd: 1f:8c:6b:ae:ed:a2:8c:ee:7d:57:59:03:cc:82:e0: 94:b6:a8:1b:ea:ff:94:ce:29:60:78:77:4f:c1:9d: b9:1d:9a:cf:cd:af:11:22:53:52:41:75:40:be:20: 75:ff:6a:45:09:ee:53:0e:3c:62:f9:c8:84:99:e2: 94:cb:6f:9a:97:13:5f:bb:5c:a2:13:34:45:8c:2d: 86:cf:bf:0d:0c:00:d9:b9:6a:b4:30:72:25:b0:47: 48:47:df:37:69:ab:81:f9:df:7c:7f:64:96:9f:9b: c9:08:81:33:c3:82:2c:fb:47:93:68:3f:b2:83:51: 34:38:d3:a3:b8:01:c2:8e:4b:16:d3:63:c0:a3:30: b3:14:a6:64:8e:4f:b3:2e:72:54:0d:a6:a6:0d:1a: f3:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:0C:9B:3D:B0:3E:97:EE:98:10:CF:54:C2:B0:94:0C:2B:7E:E4:3C X509v3 Authority Key Identifier: keyid:DA:87:66:A9:08:51:AE:44:D7:6B:85:63:D8:35:86:F0:16:4F:E5:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/DA8766A90851AE44D76B8563D83586F0164FE5CF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA8766A90851AE44D76B8563D83586F0164FE5CF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/323430353a616163303a31343a3a2f34382d3438203d3e20313339393439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:aac0:14::/48 Signature Algorithm: sha256WithRSAEncryption 92:3c:b8:3e:87:cc:6a:3b:60:33:0c:56:40:77:ca:3f:da:3f: 47:c7:5b:b1:c0:d0:7c:51:6d:3e:2e:87:71:ee:f2:b0:ea:4b: 7f:3d:06:c3:02:b2:1b:a2:fc:75:db:63:36:00:1a:da:56:15: 52:93:8f:97:6c:29:09:7d:80:24:a8:46:21:0f:ca:5f:1a:1c: 0c:1c:f5:49:a3:63:c6:13:ec:e4:10:a0:b9:25:8c:9c:48:7d: 2a:2f:af:40:33:56:89:2d:54:cb:03:40:e4:f0:8b:3e:fa:0f: df:7a:e9:e7:ce:b3:d6:47:ba:b7:02:b5:91:c4:7e:97:46:6c: 8d:18:03:7e:17:4c:15:2a:9f:3e:bc:33:0e:9a:cb:4e:06:2a: bb:75:eb:93:f7:a1:3d:08:a0:78:ea:c1:22:a7:38:11:82:cb: fd:5b:e3:00:c2:f6:9c:5f:9a:92:50:34:bb:63:c4:94:a5:b4: 31:c4:f7:5d:38:7e:41:a2:3c:d3:e1:85:e9:d2:ed:20:20:3f: b0:62:03:a5:96:87:7f:2c:d1:5f:d0:6e:e0:cf:f9:4c:e7:2e: 1b:f7:7e:ea:d4:00:29:cd:d1:5b:33:5e:72:15:32:98:ce:b4: ad:e3:c9:a7:c9:0c:61:a2:1d:4d:7b:0f:4d:64:3a:c9:01:95: 2a:5f:07:90 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUZlx6x1ytjt7BxWzpobF/7Xrji3IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREE4NzY2QTkwODUxQUU0NEQ3NkI4NTYzRDgzNTg2RjAx NjRGRTVDRjAeFw0yNTA0MjExNzU1MDBaFw0yNjA0MjAxODAwMDBaMDMxMTAvBgNV BAMTKDVCMEM5QjNEQjAzRTk3RUU5ODEwQ0Y1NEMyQjA5NDBDMkI3RUU0M0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDdsPsUycjwQNuNVw8vJ3295NlP KzQjWeQ9ba3Sha88lhOuYPS9E2JOTCNDNklhjeThKobK7zO/lHytzUsZb0B7Bdo+ oXxr2A3YemXL+kaKUcszQAxEF2f385NKsBsjBDJMtBM6MBMizR+Ma67toozufVdZ A8yC4JS2qBvq/5TOKWB4d0/Bnbkdms/NrxEiU1JBdUC+IHX/akUJ7lMOPGL5yISZ 4pTLb5qXE1+7XKITNEWMLYbPvw0MANm5arQwciWwR0hH3zdpq4H533x/ZJafm8kI gTPDgiz7R5NoP7KDUTQ406O4AcKOSxbTY8CjMLMUpmSOT7MuclQNpqYNGvNxAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUWwybPbA+l+6YEM9UwrCUDCt+5DwwHwYDVR0j BBgwFoAU2odmqQhRrkTXa4Vj2DWG8BZP5c8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ZGVkYzAzMy1jZDRkLTQ2MjAtOTM3Mi1lNmUwMzlmYzA2YjkvMC9EQTg3NjZBOTA4 NTFBRTQ0RDc2Qjg1NjNEODM1ODZGMDE2NEZFNUNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREE4NzY2QTkwODUxQUU0NEQ3NkI4NTYzRDgzNTg2RjAxNjRG RTVDRi5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNkZWRjMDMzLWNkNGQtNDYyMC05 MzcyLWU2ZTAzOWZjMDZiOS8wLzMyMzQzMDM1M2E2MTYxNjMzMDNhMzEzNDNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzMzOTM5MzQzOS5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQFqsAA FDANBgkqhkiG9w0BAQsFAAOCAQEAkjy4PofMajtgMwxWQHfKP9o/R8dbscDQfFFt Pi6Hce7ysOpLfz0GwwKyG6L8ddtjNgAa2lYVUpOPl2wpCX2AJKhGIQ/KXxocDBz1 SaNjxhPs5BCguSWMnEh9Ki+vQDNWiS1UywNA5PCLPvoP33rp586z1ke6twK1kcR+ l0ZsjRgDfhdMFSqfPrwzDprLTgYqu3Xrk/ehPQigeOrBIqc4EYLL/VvjAML2nF+a klA0u2PElKW0McT3XTh+QaI80+GF6dLtICA/sGIDpZaHfyzRX9Bu4M/5TOcuG/d+ 6tQAKc3RWzNechUymM60rePJp8kMYaIdTXsPTWQ6yQGVKl8HkA== -----END CERTIFICATE-----Generated at Sat Oct 25 18:37:47 2025 by rpki-client