$ rpki-client -vvf repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/323430363a366434303a3a2f33322d3332203d3e20313431303536.roa File: 323430363a366434303a3a2f33322d3332203d3e20313431303536.roa (raw, json) Hash identifier: gB/Q187la6gm8qsp2Yv6/zuENtxXbTAl8b+QHinNe0w= Subject key identifier: 61:94:00:CA:71:CA:B2:6C:DD:88:3A:0E:C4:DE:4A:30:24:C1:E1:14 Certificate issuer: /CN=BCA31953B92C5FC452EDA87B90CBD98E207FA337 Certificate serial: 4B76BA8506FD12354BF0BA190DB89D216D0BCB13 Authority key identifier: BC:A3:19:53:B9:2C:5F:C4:52:ED:A8:7B:90:CB:D9:8E:20:7F:A3:37 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BCA31953B92C5FC452EDA87B90CBD98E207FA337.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/323430363a366434303a3a2f33322d3332203d3e20313431303536.roa Signing time: Sat 06 Sep 2025 04:00:00 +0000 ROA not before: Sat 06 Sep 2025 03:55:00 +0000 ROA not after: Sat 05 Sep 2026 04:00:00 +0000 asID: 141056 IP address blocks: 2406:6d40::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/BCA31953B92C5FC452EDA87B90CBD98E207FA337.crl rsync://repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/BCA31953B92C5FC452EDA87B90CBD98E207FA337.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BCA31953B92C5FC452EDA87B90CBD98E207FA337.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Oct 2025 23:35:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:76:ba:85:06:fd:12:35:4b:f0:ba:19:0d:b8:9d:21:6d:0b:cb:13 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BCA31953B92C5FC452EDA87B90CBD98E207FA337 Validity Not Before: Sep 6 03:55:00 2025 GMT Not After : Sep 5 04:00:00 2026 GMT Subject: CN=619400CA71CAB26CDD883A0EC4DE4A3024C1E114 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:25:ca:27:81:90:9b:29:35:52:8f:08:83:71: fa:a6:ae:3b:c7:a9:f4:0a:e6:09:68:d3:02:7b:3a: 1d:d9:16:42:aa:f3:0b:15:cd:94:15:dc:ae:e2:c4: 5a:40:50:ff:5e:cc:77:16:8e:ea:4b:9f:88:d6:4b: 19:9d:1f:02:f8:4f:fa:a6:ce:58:ad:26:5b:38:53: a8:5a:c5:dd:9e:59:85:cb:19:58:b2:a0:68:3b:1e: b1:ac:05:ce:0b:ae:fe:0e:0b:ab:7c:67:0b:b0:c4: ab:1b:90:db:5e:e0:c6:db:ee:d8:a0:ee:c8:04:fc: 22:82:03:45:a5:2e:5b:19:6c:c4:54:44:2b:27:5a: cc:c2:41:5f:91:3f:8a:4f:a8:94:ec:f8:6c:95:cb: 52:e0:e3:78:93:11:26:30:ab:b0:e5:be:5d:fb:e9: 5c:39:14:f0:91:89:0c:3a:35:ab:1d:52:19:33:21: 01:c0:ed:a2:4b:96:dc:12:a6:8b:e5:10:c4:99:1d: d1:8b:16:ed:39:d5:b3:aa:04:b5:f9:d6:63:ef:36: f9:77:52:f5:39:39:06:bf:23:b2:dc:04:cb:c8:d7: 0f:6b:f7:55:eb:55:b3:9c:99:7c:1f:1a:87:1b:1a: ff:d7:55:cf:80:e2:a4:60:c5:eb:f9:64:76:fc:f7: 6c:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:94:00:CA:71:CA:B2:6C:DD:88:3A:0E:C4:DE:4A:30:24:C1:E1:14 X509v3 Authority Key Identifier: keyid:BC:A3:19:53:B9:2C:5F:C4:52:ED:A8:7B:90:CB:D9:8E:20:7F:A3:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/BCA31953B92C5FC452EDA87B90CBD98E207FA337.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BCA31953B92C5FC452EDA87B90CBD98E207FA337.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/323430363a366434303a3a2f33322d3332203d3e20313431303536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:6d40::/32 Signature Algorithm: sha256WithRSAEncryption 6a:c5:e3:1c:19:96:25:3f:13:70:ff:ab:b0:24:1f:5f:9b:61: 97:5e:35:5d:1c:e2:f1:6f:05:bd:b1:c5:92:d5:e7:55:28:c9: 07:74:a2:43:ec:c6:72:2f:06:f0:b4:d0:a6:07:5b:bb:e0:8a: 27:04:2c:ad:06:a3:fb:90:9f:f4:c5:89:db:a2:18:3d:d5:b6: a3:5d:41:36:d9:be:65:95:83:44:e6:42:04:5a:e3:3f:e4:3b: d2:3d:bb:0a:80:33:ab:9d:cc:4f:8d:96:74:28:ed:eb:9f:e5: 67:62:f1:6e:e6:c1:48:f1:6d:ab:0a:c4:fd:1b:bb:ea:54:da: 76:3a:a6:73:5e:f6:60:ce:4b:e4:82:05:86:9e:31:e5:24:17: e1:0a:93:e5:2f:b6:01:a3:8d:4a:d0:7f:c4:69:11:c8:b2:07: fa:bf:52:21:10:8b:e6:a1:e9:72:bf:9f:eb:fb:90:5c:a3:82: 9f:c6:c1:44:15:6e:2d:bb:17:ac:8a:dc:0f:21:b1:40:39:c4: 47:f3:e5:1f:db:35:0d:79:c1:6c:03:80:28:ef:db:6f:c6:6e: 58:ab:dd:46:ed:d5:9c:20:b8:59:07:9c:ad:43:64:49:53:f9: 15:37:83:a8:05:a4:28:d4:7d:7c:d4:3c:a1:dc:cf:e6:73:cf: d2:e9:db:93 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUS3a6hQb9EjVL8LoZDbidIW0LyxMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkNBMzE5NTNCOTJDNUZDNDUyRURBODdCOTBDQkQ5OEUy MDdGQTMzNzAeFw0yNTA5MDYwMzU1MDBaFw0yNjA5MDUwNDAwMDBaMDMxMTAvBgNV BAMTKDYxOTQwMENBNzFDQUIyNkNERDg4M0EwRUM0REU0QTMwMjRDMUUxMTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPJcongZCbKTVSjwiDcfqmrjvH qfQK5glo0wJ7Oh3ZFkKq8wsVzZQV3K7ixFpAUP9ezHcWjupLn4jWSxmdHwL4T/qm zlitJls4U6haxd2eWYXLGViyoGg7HrGsBc4Lrv4OC6t8ZwuwxKsbkNte4Mbb7tig 7sgE/CKCA0WlLlsZbMRURCsnWszCQV+RP4pPqJTs+GyVy1Lg43iTESYwq7Dlvl37 6Vw5FPCRiQw6NasdUhkzIQHA7aJLltwSpovlEMSZHdGLFu051bOqBLX51mPvNvl3 UvU5OQa/I7LcBMvI1w9r91XrVbOcmXwfGocbGv/XVc+A4qRgxev5ZHb892x9AgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUYZQAynHKsmzdiDoOxN5KMCTB4RQwHwYDVR0j BBgwFoAUvKMZU7ksX8RS7ah7kMvZjiB/ozcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ZTJjNDgxNS1iMmRhLTRjMjAtYmMzMS01MDNhZGY0OWI0OTAvMC9CQ0EzMTk1M0I5 MkM1RkM0NTJFREE4N0I5MENCRDk4RTIwN0ZBMzM3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkNBMzE5NTNCOTJDNUZDNDUyRURBODdCOTBDQkQ5OEUyMDdG QTMzNy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNlMmM0ODE1LWIyZGEtNGMyMC1i YzMxLTUwM2FkZjQ5YjQ5MC8wLzMyMzQzMDM2M2EzNjY0MzQzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzQzMTMwMzUzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQGbUAwDQYJKoZI hvcNAQELBQADggEBAGrF4xwZliU/E3D/q7AkH1+bYZdeNV0c4vFvBb2xxZLV51Uo yQd0okPsxnIvBvC00KYHW7vgiicELK0Go/uQn/TFiduiGD3VtqNdQTbZvmWVg0Tm QgRa4z/kO9I9uwqAM6udzE+NlnQo7euf5Wdi8W7mwUjxbasKxP0bu+pU2nY6pnNe 9mDOS+SCBYaeMeUkF+EKk+UvtgGjjUrQf8RpEciyB/q/UiEQi+ah6XK/n+v7kFyj gp/GwUQVbi27F6yK3A8hsUA5xEfz5R/bNQ15wWwDgCjv22/Gblir3Ubt1ZwguFkH nK1DZElT+RU3g6gFpCjUfXzUPKHcz+Zzz9Lp25M= -----END CERTIFICATE-----Generated at Sun Oct 19 02:40:09 2025 by rpki-client