$ rpki-client -vvf repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/323430353a616163303a383a3a2f34382d3438203d3e20313339393439.roa File: 323430353a616163303a383a3a2f34382d3438203d3e20313339393439.roa (raw, json) Hash identifier: kh7rJnX1MwqzHWcpJT5wfG/RsAXKa+L1iXSOAdgUPv8= Subject key identifier: 98:DC:67:5B:E5:49:AC:DC:0B:F7:CC:C3:7B:6F:05:A1:0F:A9:8B:48 Certificate issuer: /CN=DA8766A90851AE44D76B8563D83586F0164FE5CF Certificate serial: 792BEC36CB64D9E091C47477D6EFBAD9711237BC Authority key identifier: DA:87:66:A9:08:51:AE:44:D7:6B:85:63:D8:35:86:F0:16:4F:E5:CF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA8766A90851AE44D76B8563D83586F0164FE5CF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/323430353a616163303a383a3a2f34382d3438203d3e20313339393439.roa Signing time: Sat 20 Sep 2025 21:00:00 +0000 ROA not before: Sat 20 Sep 2025 20:55:00 +0000 ROA not after: Sat 19 Sep 2026 21:00:00 +0000 asID: 139949 IP address blocks: 2405:aac0:8::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/DA8766A90851AE44D76B8563D83586F0164FE5CF.crl rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/DA8766A90851AE44D76B8563D83586F0164FE5CF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA8766A90851AE44D76B8563D83586F0164FE5CF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 14:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:2b:ec:36:cb:64:d9:e0:91:c4:74:77:d6:ef:ba:d9:71:12:37:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DA8766A90851AE44D76B8563D83586F0164FE5CF Validity Not Before: Sep 20 20:55:00 2025 GMT Not After : Sep 19 21:00:00 2026 GMT Subject: CN=98DC675BE549ACDC0BF7CCC37B6F05A10FA98B48 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:9b:50:88:3c:5e:95:d8:86:2b:f6:d7:8c:ac: 2d:f8:6e:f7:d4:c8:84:d4:1f:66:89:93:56:e7:b3: 6a:1a:15:b0:37:fd:2d:af:df:c3:92:89:a9:92:45: ec:6b:9d:b1:55:cb:61:a5:6a:5b:48:aa:67:c8:58: f7:54:21:3d:66:d3:11:fd:3c:96:00:65:29:10:1a: 19:e4:ea:56:a6:f5:f6:b7:2c:ce:d5:de:24:af:55: d8:ae:ba:c8:d6:f3:52:08:fd:11:a8:c8:25:c9:91: 79:91:a6:2b:12:36:0d:f7:79:ca:1e:24:c1:4e:3a: 5b:7b:64:a6:bf:82:86:83:80:b1:58:31:51:7c:f2: 74:36:bc:5d:32:fc:5b:61:f6:87:18:01:e0:49:7a: 7b:b7:d3:0a:6a:4a:c7:95:16:93:67:7b:14:a6:e2: 42:11:cf:0a:de:8e:e6:79:b4:14:f5:b2:91:2a:8a: 7f:10:5b:78:e3:3a:e8:89:0e:c3:98:b3:1f:4c:64: 74:3e:ba:31:50:0d:85:f4:a4:55:ce:8f:37:7c:70: a0:e1:56:ce:a2:86:58:15:aa:24:1f:5a:cc:8b:a0: 35:ae:aa:c9:4a:3f:9d:d5:0a:61:9e:5e:48:a1:94: 3d:c3:dc:97:bf:4a:60:29:0c:ce:55:31:63:05:ca: 51:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:DC:67:5B:E5:49:AC:DC:0B:F7:CC:C3:7B:6F:05:A1:0F:A9:8B:48 X509v3 Authority Key Identifier: keyid:DA:87:66:A9:08:51:AE:44:D7:6B:85:63:D8:35:86:F0:16:4F:E5:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/DA8766A90851AE44D76B8563D83586F0164FE5CF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA8766A90851AE44D76B8563D83586F0164FE5CF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/323430353a616163303a383a3a2f34382d3438203d3e20313339393439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:aac0:8::/48 Signature Algorithm: sha256WithRSAEncryption 7f:84:f2:11:a5:c5:94:33:47:73:9d:8b:29:1e:2d:fa:45:9c: 17:a0:f7:ca:4a:91:0b:b5:a1:b2:d4:6b:4b:cf:5f:63:c7:82: 0e:7e:81:01:91:fc:39:15:76:c7:93:7a:30:ee:73:03:a1:d9: ca:3e:07:b7:83:ad:43:8b:1c:ea:3f:f4:98:b8:f0:b1:55:78: 93:34:b4:b8:61:a4:17:a8:0d:dc:ba:9d:c9:1c:bc:81:9a:5b: 95:38:5d:4d:6b:20:bb:39:a7:6b:ef:d4:3c:bb:f1:e1:ff:1b: da:b4:ee:13:a6:43:75:7e:28:3e:5e:5f:1b:be:c4:7f:c0:63: b7:6d:91:fc:e9:d8:f2:47:e1:ab:26:0e:b1:22:3e:16:94:f0: d5:69:d6:d7:4d:3c:85:d8:a3:43:4d:52:30:df:5b:89:21:39: 60:34:bd:3d:31:ff:07:e1:26:20:1a:72:39:d1:a4:12:ad:52: 9c:dc:52:73:89:5c:42:b0:4a:bd:0b:c7:ff:1a:82:6f:8d:21: 65:92:e2:68:46:ec:e9:5f:c1:bc:5a:3c:d6:d7:f4:83:a2:58: 42:e4:0d:1b:5d:45:c5:f3:69:0b:28:5c:34:c4:bc:7c:6a:b8: e1:f3:f9:f1:ad:da:d9:50:85:75:84:78:cd:af:27:35:2a:3c: ae:23:39:30 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUeSvsNstk2eCRxHR31u+62XESN7wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREE4NzY2QTkwODUxQUU0NEQ3NkI4NTYzRDgzNTg2RjAx NjRGRTVDRjAeFw0yNTA5MjAyMDU1MDBaFw0yNjA5MTkyMTAwMDBaMDMxMTAvBgNV BAMTKDk4REM2NzVCRTU0OUFDREMwQkY3Q0NDMzdCNkYwNUExMEZBOThCNDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/m1CIPF6V2IYr9teMrC34bvfU yITUH2aJk1bns2oaFbA3/S2v38OSiamSRexrnbFVy2GlaltIqmfIWPdUIT1m0xH9 PJYAZSkQGhnk6lam9fa3LM7V3iSvVdiuusjW81II/RGoyCXJkXmRpisSNg33ecoe JMFOOlt7ZKa/goaDgLFYMVF88nQ2vF0y/Fth9ocYAeBJenu30wpqSseVFpNnexSm 4kIRzwrejuZ5tBT1spEqin8QW3jjOuiJDsOYsx9MZHQ+ujFQDYX0pFXOjzd8cKDh Vs6ihlgVqiQfWsyLoDWuqslKP53VCmGeXkihlD3D3Je/SmApDM5VMWMFylFNAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUmNxnW+VJrNwL98zDe28FoQ+pi0gwHwYDVR0j BBgwFoAU2odmqQhRrkTXa4Vj2DWG8BZP5c8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ZGVkYzAzMy1jZDRkLTQ2MjAtOTM3Mi1lNmUwMzlmYzA2YjkvMC9EQTg3NjZBOTA4 NTFBRTQ0RDc2Qjg1NjNEODM1ODZGMDE2NEZFNUNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREE4NzY2QTkwODUxQUU0NEQ3NkI4NTYzRDgzNTg2RjAxNjRG RTVDRi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNkZWRjMDMzLWNkNGQtNDYyMC05 MzcyLWU2ZTAzOWZjMDZiOS8wLzMyMzQzMDM1M2E2MTYxNjMzMDNhMzgzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTMzMzkzOTM0Mzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBarAAAgw DQYJKoZIhvcNAQELBQADggEBAH+E8hGlxZQzR3OdiykeLfpFnBeg98pKkQu1obLU a0vPX2PHgg5+gQGR/DkVdseTejDucwOh2co+B7eDrUOLHOo/9Ji48LFVeJM0tLhh pBeoDdy6nckcvIGaW5U4XU1rILs5p2vv1Dy78eH/G9q07hOmQ3V+KD5eXxu+xH/A Y7dtkfzp2PJH4asmDrEiPhaU8NVp1tdNPIXYo0NNUjDfW4khOWA0vT0x/wfhJiAa cjnRpBKtUpzcUnOJXEKwSr0Lx/8agm+NIWWS4mhG7OlfwbxaPNbX9IOiWELkDRtd RcXzaQsoXDTEvHxquOHz+fGt2tlQhXWEeM2vJzUqPK4jOTA= -----END CERTIFICATE-----Generated at Sat Oct 25 18:37:47 2025 by rpki-client