$ rpki-client -vvf repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/323430353a616163303a3232323a3a2f34382d3438203d3e20313339393730.roa File: 323430353a616163303a3232323a3a2f34382d3438203d3e20313339393730.roa (raw, json) Hash identifier: /qXePrhFwCSAITrsmjF9O+fZz00IlJM5sj2Sp0A2INA= Subject key identifier: 90:E0:68:12:3A:0F:64:3A:42:07:B2:C9:3C:59:C5:A1:C0:27:2E:53 Certificate issuer: /CN=DA8766A90851AE44D76B8563D83586F0164FE5CF Certificate serial: 74B6ECD27E8A8F2E8B30983E21E6648A0EE906C2 Authority key identifier: DA:87:66:A9:08:51:AE:44:D7:6B:85:63:D8:35:86:F0:16:4F:E5:CF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA8766A90851AE44D76B8563D83586F0164FE5CF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/323430353a616163303a3232323a3a2f34382d3438203d3e20313339393730.roa Signing time: Mon 07 Jul 2025 05:02:50 +0000 ROA not before: Mon 07 Jul 2025 04:57:50 +0000 ROA not after: Mon 06 Jul 2026 05:02:50 +0000 asID: 139970 IP address blocks: 2405:aac0:222::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/DA8766A90851AE44D76B8563D83586F0164FE5CF.crl rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/DA8766A90851AE44D76B8563D83586F0164FE5CF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA8766A90851AE44D76B8563D83586F0164FE5CF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 29 Oct 2025 16:07:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:b6:ec:d2:7e:8a:8f:2e:8b:30:98:3e:21:e6:64:8a:0e:e9:06:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DA8766A90851AE44D76B8563D83586F0164FE5CF Validity Not Before: Jul 7 04:57:50 2025 GMT Not After : Jul 6 05:02:50 2026 GMT Subject: CN=90E068123A0F643A4207B2C93C59C5A1C0272E53 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:e4:ce:7e:3f:57:f6:8d:87:99:16:a3:9b:55: 16:08:e3:76:2d:0f:3e:3c:77:96:1e:2e:a1:64:5e: d8:b2:d9:1f:2e:b1:4c:69:d0:01:fd:7d:b7:6c:9f: bd:13:16:cc:d1:3b:34:40:64:cb:26:9a:15:43:d0: a9:03:f9:d2:59:d8:3c:6b:ac:5c:9b:73:87:ad:e7: 2a:5c:4f:f8:ec:4f:72:60:21:0c:ce:e3:12:a9:b8: 46:8b:7c:9d:91:8f:53:12:6f:f8:15:57:f2:a7:9b: 74:77:63:fc:bb:6c:2d:4b:08:08:cb:69:7d:66:26: e2:10:6b:13:69:0c:49:89:44:95:75:4f:fb:88:ea: c0:87:8e:a1:96:01:ea:b0:95:06:f5:2f:29:e0:b7: 9f:4f:12:d2:c4:f9:99:6b:22:6d:ad:bb:02:8a:f6: 58:50:52:2c:ba:ca:13:e3:9b:aa:37:53:07:9a:e2: c1:b0:73:2e:43:98:30:37:45:82:2d:a4:d3:ab:c2: f4:09:c4:8f:9b:33:03:23:69:b2:d9:25:82:9b:fe: 76:eb:0c:81:e4:ab:78:f2:72:21:ad:10:2c:e9:1c: f0:1c:2f:b4:a9:b7:27:2c:b2:61:8b:50:0f:72:25: 1d:ae:ed:1a:aa:98:78:10:53:5a:23:1c:f1:cb:19: 58:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:E0:68:12:3A:0F:64:3A:42:07:B2:C9:3C:59:C5:A1:C0:27:2E:53 X509v3 Authority Key Identifier: keyid:DA:87:66:A9:08:51:AE:44:D7:6B:85:63:D8:35:86:F0:16:4F:E5:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/DA8766A90851AE44D76B8563D83586F0164FE5CF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA8766A90851AE44D76B8563D83586F0164FE5CF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/323430353a616163303a3232323a3a2f34382d3438203d3e20313339393730.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:aac0:222::/48 Signature Algorithm: sha256WithRSAEncryption 78:84:06:f3:b2:8d:0d:38:a4:e4:c1:24:d1:89:96:1a:c3:e0: 3b:f3:39:ae:b0:56:ff:c1:c8:d5:68:f7:ac:94:f3:a7:16:04: f8:9a:fc:d5:04:75:dc:cd:8c:54:53:3b:51:a7:4b:90:30:da: cb:03:15:65:8a:a4:cd:c6:a7:ee:cc:05:d5:31:40:27:c1:73: 28:04:5c:13:81:61:1e:34:23:20:77:12:bd:9a:d2:76:c7:0a: 9e:9c:a0:1e:a5:93:66:86:74:2b:ba:d7:ad:fd:1b:29:57:6a: 66:9b:66:f9:a5:21:53:c4:6f:81:f4:d1:ac:ca:f4:fd:89:4f: 8d:08:2b:f0:58:19:7d:73:c8:65:58:0c:c9:62:c0:0c:c0:39: 7b:09:77:c1:21:4c:f3:f3:93:f2:33:8f:85:dc:aa:03:0e:9c: d9:b6:89:4c:04:53:06:94:55:92:0a:c9:40:5a:fc:0e:b1:da: 03:35:91:25:4e:a4:c2:85:64:eb:0c:2a:36:8c:07:44:6b:b8: 93:2f:00:0d:b1:e5:41:29:2d:61:0e:f5:0f:7e:1d:9c:97:74: 1b:1d:58:f2:dc:1d:a7:18:74:ad:cc:a3:35:33:24:97:0b:b1: 2a:58:52:e2:66:04:1c:b5:45:a5:6b:a6:12:a1:23:c3:4a:94: c1:da:71:e7 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUdLbs0n6Kjy6LMJg+IeZkig7pBsIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREE4NzY2QTkwODUxQUU0NEQ3NkI4NTYzRDgzNTg2RjAx NjRGRTVDRjAeFw0yNTA3MDcwNDU3NTBaFw0yNjA3MDYwNTAyNTBaMDMxMTAvBgNV BAMTKDkwRTA2ODEyM0EwRjY0M0E0MjA3QjJDOTNDNTlDNUExQzAyNzJFNTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCx5M5+P1f2jYeZFqObVRYI43Yt Dz48d5YeLqFkXtiy2R8usUxp0AH9fbdsn70TFszROzRAZMsmmhVD0KkD+dJZ2Dxr rFybc4et5ypcT/jsT3JgIQzO4xKpuEaLfJ2Rj1MSb/gVV/Knm3R3Y/y7bC1LCAjL aX1mJuIQaxNpDEmJRJV1T/uI6sCHjqGWAeqwlQb1Lyngt59PEtLE+ZlrIm2tuwKK 9lhQUiy6yhPjm6o3Uwea4sGwcy5DmDA3RYItpNOrwvQJxI+bMwMjabLZJYKb/nbr DIHkq3jyciGtECzpHPAcL7SptycssmGLUA9yJR2u7RqqmHgQU1ojHPHLGVjPAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUkOBoEjoPZDpCB7LJPFnFocAnLlMwHwYDVR0j BBgwFoAU2odmqQhRrkTXa4Vj2DWG8BZP5c8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ZGVkYzAzMy1jZDRkLTQ2MjAtOTM3Mi1lNmUwMzlmYzA2YjkvMC9EQTg3NjZBOTA4 NTFBRTQ0RDc2Qjg1NjNEODM1ODZGMDE2NEZFNUNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREE4NzY2QTkwODUxQUU0NEQ3NkI4NTYzRDgzNTg2RjAxNjRG RTVDRi5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNkZWRjMDMzLWNkNGQtNDYyMC05 MzcyLWU2ZTAzOWZjMDZiOS8wLzMyMzQzMDM1M2E2MTYxNjMzMDNhMzIzMjMyM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM5MzkzNzMwLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAWq wAIiMA0GCSqGSIb3DQEBCwUAA4IBAQB4hAbzso0NOKTkwSTRiZYaw+A78zmusFb/ wcjVaPeslPOnFgT4mvzVBHXczYxUUztRp0uQMNrLAxVliqTNxqfuzAXVMUAnwXMo BFwTgWEeNCMgdxK9mtJ2xwqenKAepZNmhnQrutet/RspV2pmm2b5pSFTxG+B9NGs yvT9iU+NCCvwWBl9c8hlWAzJYsAMwDl7CXfBIUzz85PyM4+F3KoDDpzZtolMBFMG lFWSCslAWvwOsdoDNZElTqTChWTrDCo2jAdEa7iTLwANseVBKS1hDvUPfh2cl3Qb HVjy3B2nGHStzKM1MySXC7EqWFLiZgQctUWla6YSoSPDSpTB2nHn -----END CERTIFICATE-----Generated at Tue Oct 28 06:23:11 2025 by rpki-client