$ rpki-client -vvf repo-rpki.idnic.net/repo/3df068bd-8e3a-4695-89ed-3b3250f875c9/0/323030313a6466343a346230303a3a2f34382d3438203d3e20313337333135.roa File: 323030313a6466343a346230303a3a2f34382d3438203d3e20313337333135.roa (raw, json) Hash identifier: vnOWOE8ANRJB3kxmh2kTgRDOD4mP6pnBNqxwGmSsQIw= Subject key identifier: 0C:DF:0B:56:D7:5D:57:B8:72:11:B0:CC:D8:7B:08:9E:3B:E5:98:CE Certificate issuer: /CN=10FC4D9D2403FC433C19BB76131325B776505E51 Certificate serial: 6C17D1D8471B20FB62BE11E9BDDFFA6B8C7911B0 Authority key identifier: 10:FC:4D:9D:24:03:FC:43:3C:19:BB:76:13:13:25:B7:76:50:5E:51 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10FC4D9D2403FC433C19BB76131325B776505E51.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3df068bd-8e3a-4695-89ed-3b3250f875c9/0/323030313a6466343a346230303a3a2f34382d3438203d3e20313337333135.roa Signing time: Wed 27 Aug 2025 17:00:01 +0000 ROA not before: Wed 27 Aug 2025 16:55:01 +0000 ROA not after: Wed 26 Aug 2026 17:00:01 +0000 asID: 137315 IP address blocks: 2001:df4:4b00::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3df068bd-8e3a-4695-89ed-3b3250f875c9/0/10FC4D9D2403FC433C19BB76131325B776505E51.crl rsync://repo-rpki.idnic.net/repo/3df068bd-8e3a-4695-89ed-3b3250f875c9/0/10FC4D9D2403FC433C19BB76131325B776505E51.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10FC4D9D2403FC433C19BB76131325B776505E51.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Sep 2025 10:23:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:17:d1:d8:47:1b:20:fb:62:be:11:e9:bd:df:fa:6b:8c:79:11:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=10FC4D9D2403FC433C19BB76131325B776505E51 Validity Not Before: Aug 27 16:55:01 2025 GMT Not After : Aug 26 17:00:01 2026 GMT Subject: CN=0CDF0B56D75D57B87211B0CCD87B089E3BE598CE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:60:bd:d2:ee:a9:dd:1e:bc:81:8e:f1:9e:f5: d3:87:5e:39:e5:c4:64:c9:18:57:17:6c:16:a7:a3: d5:37:77:ee:f5:b3:69:a7:5b:da:b1:86:59:12:f9: e6:3b:84:82:01:6b:29:cb:80:55:9f:67:76:81:8e: 99:e6:a4:64:cd:c8:be:2f:e9:1e:3b:a3:61:95:79: 48:8f:d1:c4:0a:82:d5:11:85:1c:49:9d:1d:ba:42: c9:76:87:c0:a3:bf:24:b4:91:9f:9c:ad:87:d0:3b: a2:9a:a9:0f:20:48:a3:a6:9f:07:17:93:20:69:0d: 01:be:e2:c2:6b:bf:7a:84:c2:0e:1f:8d:c9:98:87: 1b:80:6b:68:d4:2a:a1:39:2f:ab:db:dd:05:40:2d: 60:47:5d:79:4c:7e:83:58:9d:59:81:8d:fb:25:5d: 07:c4:d5:1e:3b:bf:f5:07:89:36:6b:38:62:2b:0f: a9:8e:b3:a8:a6:a4:b1:63:73:18:80:48:34:12:d8: 0e:22:18:94:52:77:10:c2:20:aa:e7:8c:c5:b7:8d: 6c:86:ef:c3:17:f3:b4:d5:33:1d:0f:10:c7:cb:a1: 6f:6e:78:18:c2:25:1f:55:35:f0:4b:b6:ff:f0:f1: 69:f3:a2:37:88:b9:02:51:ea:e4:c8:90:86:bc:38: b2:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:DF:0B:56:D7:5D:57:B8:72:11:B0:CC:D8:7B:08:9E:3B:E5:98:CE X509v3 Authority Key Identifier: keyid:10:FC:4D:9D:24:03:FC:43:3C:19:BB:76:13:13:25:B7:76:50:5E:51 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3df068bd-8e3a-4695-89ed-3b3250f875c9/0/10FC4D9D2403FC433C19BB76131325B776505E51.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10FC4D9D2403FC433C19BB76131325B776505E51.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3df068bd-8e3a-4695-89ed-3b3250f875c9/0/323030313a6466343a346230303a3a2f34382d3438203d3e20313337333135.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df4:4b00::/48 Signature Algorithm: sha256WithRSAEncryption 89:e6:9b:a6:92:40:aa:90:63:b3:18:7e:5f:d7:04:eb:14:57: 72:66:d3:41:e1:9c:4b:92:a6:0d:b4:4f:4a:a8:66:27:e4:72: 74:ac:d7:ee:2b:c0:c6:f5:ab:2f:a0:e9:07:1b:93:e2:0e:2c: 0c:63:b2:10:59:71:05:55:d8:23:d7:c3:6d:bc:81:87:0a:ab: 63:c8:6a:c8:28:75:d3:15:38:39:14:74:6e:fb:cc:e7:ab:7b: cf:96:04:75:fe:4f:c0:93:08:b0:4a:7e:8a:89:91:12:1c:d8: 9c:d4:df:cc:33:cd:12:af:ba:7d:f8:ad:d3:6d:ea:fb:7b:95: bc:fd:c6:96:00:eb:8d:93:93:13:60:b6:ec:1e:67:10:fd:8a: 0a:cb:54:a6:41:db:74:d6:f9:81:80:ca:45:0b:73:23:ae:8f: 23:24:5d:da:6a:95:86:af:1d:cd:04:c5:87:ca:56:81:aa:9d: 18:94:46:1c:52:16:9c:81:31:8b:73:4a:47:df:4e:5c:cf:84: c2:53:d7:6c:55:b2:fc:91:e0:8e:9e:5a:2a:7d:54:cd:59:71: 86:d3:8c:27:a8:cc:30:d5:7a:57:ad:47:76:9c:42:f9:15:b2: 09:8e:ea:23:eb:d9:a0:4d:e0:86:90:ac:ce:63:29:5c:c2:4a: 1b:2b:4e:7d -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUbBfR2EcbIPtivhHpvd/6a4x5EbAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTBGQzREOUQyNDAzRkM0MzNDMTlCQjc2MTMxMzI1Qjc3 NjUwNUU1MTAeFw0yNTA4MjcxNjU1MDFaFw0yNjA4MjYxNzAwMDFaMDMxMTAvBgNV BAMTKDBDREYwQjU2RDc1RDU3Qjg3MjExQjBDQ0Q4N0IwODlFM0JFNTk4Q0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDYL3S7qndHryBjvGe9dOHXjnl xGTJGFcXbBano9U3d+71s2mnW9qxhlkS+eY7hIIBaynLgFWfZ3aBjpnmpGTNyL4v 6R47o2GVeUiP0cQKgtURhRxJnR26Qsl2h8CjvyS0kZ+crYfQO6KaqQ8gSKOmnwcX kyBpDQG+4sJrv3qEwg4fjcmYhxuAa2jUKqE5L6vb3QVALWBHXXlMfoNYnVmBjfsl XQfE1R47v/UHiTZrOGIrD6mOs6impLFjcxiASDQS2A4iGJRSdxDCIKrnjMW3jWyG 78MX87TVMx0PEMfLoW9ueBjCJR9VNfBLtv/w8WnzojeIuQJR6uTIkIa8OLK/AgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUDN8LVtddV7hyEbDM2HsInjvlmM4wHwYDVR0j BBgwFoAUEPxNnSQD/EM8Gbt2ExMlt3ZQXlEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ZGYwNjhiZC04ZTNhLTQ2OTUtODllZC0zYjMyNTBmODc1YzkvMC8xMEZDNEQ5RDI0 MDNGQzQzM0MxOUJCNzYxMzEzMjVCNzc2NTA1RTUxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTBGQzREOUQyNDAzRkM0MzNDMTlCQjc2MTMxMzI1Qjc3NjUw NUU1MS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNkZjA2OGJkLThlM2EtNDY5NS04 OWVkLTNiMzI1MGY4NzVjOS8wLzMyMzAzMDMxM2E2NDY2MzQzYTM0NjIzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM3MzMzMTM1LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 9EsAMA0GCSqGSIb3DQEBCwUAA4IBAQCJ5pumkkCqkGOzGH5f1wTrFFdyZtNB4ZxL kqYNtE9KqGYn5HJ0rNfuK8DG9asvoOkHG5PiDiwMY7IQWXEFVdgj18NtvIGHCqtj yGrIKHXTFTg5FHRu+8znq3vPlgR1/k/AkwiwSn6KiZESHNic1N/MM80Sr7p9+K3T ber7e5W8/caWAOuNk5MTYLbsHmcQ/YoKy1SmQdt01vmBgMpFC3Mjro8jJF3aapWG rx3NBMWHylaBqp0YlEYcUhacgTGLc0pH305cz4TCU9dsVbL8keCOnloqfVTNWXGG 04wnqMww1XpXrUd2nEL5FbIJjuoj69mgTeCGkKzOYylcwkobK059 -----END CERTIFICATE-----Generated at Sun Sep 7 16:57:09 2025 by rpki-client