$ rpki-client -vvf repo-rpki.idnic.net/repo/43e4177d-8093-447c-87b5-c79c8cb4c733/0/323030313a6466343a343430303a3a2f34382d3438203d3e20313333383332.roa File: 323030313a6466343a343430303a3a2f34382d3438203d3e20313333383332.roa (raw, json) Hash identifier: DYGPu1R9knVMTB6Ioiy1/sQp83HBRZI1WQg4Zdy3cp0= Subject key identifier: 8A:CA:32:66:8A:2D:7F:A2:A4:48:DB:11:2D:44:9A:6C:C1:E5:21:87 Certificate issuer: /CN=C710954C7B301C60B82BA6372CACEB81DA08F190 Certificate serial: 1408479B5DCB2602CB1944E02C617FEE16DB98DC Authority key identifier: C7:10:95:4C:7B:30:1C:60:B8:2B:A6:37:2C:AC:EB:81:DA:08:F1:90 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C710954C7B301C60B82BA6372CACEB81DA08F190.cer Subject info access: rsync://repo-rpki.idnic.net/repo/43e4177d-8093-447c-87b5-c79c8cb4c733/0/323030313a6466343a343430303a3a2f34382d3438203d3e20313333383332.roa Signing time: Fri 24 Oct 2025 01:00:00 +0000 ROA not before: Fri 24 Oct 2025 00:55:00 +0000 ROA not after: Fri 23 Oct 2026 01:00:00 +0000 asID: 133832 IP address blocks: 2001:df4:4400::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/43e4177d-8093-447c-87b5-c79c8cb4c733/0/C710954C7B301C60B82BA6372CACEB81DA08F190.crl rsync://repo-rpki.idnic.net/repo/43e4177d-8093-447c-87b5-c79c8cb4c733/0/C710954C7B301C60B82BA6372CACEB81DA08F190.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C710954C7B301C60B82BA6372CACEB81DA08F190.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 02 Nov 2025 17:25:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:08:47:9b:5d:cb:26:02:cb:19:44:e0:2c:61:7f:ee:16:db:98:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C710954C7B301C60B82BA6372CACEB81DA08F190 Validity Not Before: Oct 24 00:55:00 2025 GMT Not After : Oct 23 01:00:00 2026 GMT Subject: CN=8ACA32668A2D7FA2A448DB112D449A6CC1E52187 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:74:b7:e0:40:26:df:66:44:60:b0:5b:22:75: 87:aa:3e:0a:6f:f8:05:e4:36:e4:a9:86:03:d8:45: 45:0f:2c:ac:e4:fa:65:ff:21:fa:5c:e5:db:d9:38: 39:c3:67:bd:6f:02:b4:46:45:c0:38:05:02:cb:87: c3:6a:03:b7:a6:13:8b:d9:a9:06:ee:54:2d:cc:d3: 5d:43:fa:96:19:ef:bf:5b:c3:fe:ba:11:02:9b:be: e9:29:1d:40:68:00:00:f2:07:96:fa:d4:bc:5a:f1: fe:51:8c:49:31:93:8b:24:f7:a1:78:1b:27:ae:df: bb:9f:23:6f:49:26:3d:3a:72:1d:89:51:52:cb:33: 73:19:a3:e3:77:25:75:92:cc:5f:d5:c3:0c:02:45: 33:c8:74:77:9c:f8:77:65:e7:7a:4c:c9:c4:52:fa: 0c:1a:e5:82:4e:6e:0d:e1:cc:aa:dd:e4:6b:ce:14: 35:5d:04:59:60:01:5a:fa:cf:9b:de:16:a4:6d:05: dd:ac:3c:d1:3c:d9:0f:df:3c:ae:a9:66:41:c3:5a: 0e:4d:e6:1a:ea:db:bb:e7:b6:52:1d:34:50:fe:be: a5:7c:14:9f:bb:a8:1c:e4:ef:a3:98:19:68:8d:d9: 76:f0:74:c8:b0:00:23:6b:e5:00:a6:2b:4c:31:3a: 1e:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:CA:32:66:8A:2D:7F:A2:A4:48:DB:11:2D:44:9A:6C:C1:E5:21:87 X509v3 Authority Key Identifier: keyid:C7:10:95:4C:7B:30:1C:60:B8:2B:A6:37:2C:AC:EB:81:DA:08:F1:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/43e4177d-8093-447c-87b5-c79c8cb4c733/0/C710954C7B301C60B82BA6372CACEB81DA08F190.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C710954C7B301C60B82BA6372CACEB81DA08F190.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/43e4177d-8093-447c-87b5-c79c8cb4c733/0/323030313a6466343a343430303a3a2f34382d3438203d3e20313333383332.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df4:4400::/48 Signature Algorithm: sha256WithRSAEncryption 99:8d:89:4f:98:77:4d:a0:67:ec:09:25:7c:20:22:da:78:75: 43:de:96:76:19:4e:33:fc:0d:dd:16:75:42:9b:52:e1:a6:4f: 9e:cc:4b:ba:8c:2c:32:56:c4:68:99:09:14:c3:83:75:4d:25: bd:e3:8e:b3:84:7a:cd:e8:c8:c3:8d:1b:3d:14:8a:0f:29:34: a1:e8:cf:e0:19:0f:96:aa:cc:bd:74:9f:7c:dd:0b:66:80:c6: bf:d3:b4:27:de:01:07:3d:f6:7e:b0:1e:43:a4:20:e7:a4:63: 4a:a7:21:2c:16:24:35:93:b2:05:f4:7f:81:63:76:bb:4f:57: 89:2c:17:29:c1:47:36:b3:76:8e:a6:a4:89:00:aa:4f:6a:14: 9a:c5:f0:f1:cb:1e:08:3b:cd:77:42:28:8b:f4:67:17:0e:0b: 05:54:29:62:74:c3:cd:86:74:9c:a2:6e:9e:37:a8:cb:12:5c: c0:aa:60:ef:ef:10:01:fa:46:2c:b3:16:66:5f:d7:9f:56:4d: 52:66:2e:c7:31:0b:df:ae:62:7e:f6:e3:6c:8d:d5:14:a8:e9: 6f:1e:77:12:ff:8d:10:08:dd:13:53:1f:03:20:df:8b:b0:f6: 22:dc:b0:30:2e:20:bf:ce:b2:ea:24:e9:6e:48:fa:9c:1f:d4: 78:82:ae:c7 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUFAhHm13LJgLLGUTgLGF/7hbbmNwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzcxMDk1NEM3QjMwMUM2MEI4MkJBNjM3MkNBQ0VCODFE QTA4RjE5MDAeFw0yNTEwMjQwMDU1MDBaFw0yNjEwMjMwMTAwMDBaMDMxMTAvBgNV BAMTKDhBQ0EzMjY2OEEyRDdGQTJBNDQ4REIxMTJENDQ5QTZDQzFFNTIxODcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtdLfgQCbfZkRgsFsidYeqPgpv +AXkNuSphgPYRUUPLKzk+mX/Ifpc5dvZODnDZ71vArRGRcA4BQLLh8NqA7emE4vZ qQbuVC3M011D+pYZ779bw/66EQKbvukpHUBoAADyB5b61Lxa8f5RjEkxk4sk96F4 Gyeu37ufI29JJj06ch2JUVLLM3MZo+N3JXWSzF/VwwwCRTPIdHec+Hdl53pMycRS +gwa5YJObg3hzKrd5GvOFDVdBFlgAVr6z5veFqRtBd2sPNE82Q/fPK6pZkHDWg5N 5hrq27vntlIdNFD+vqV8FJ+7qBzk76OYGWiN2XbwdMiwACNr5QCmK0wxOh7/AgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUisoyZootf6KkSNsRLUSabMHlIYcwHwYDVR0j BBgwFoAUxxCVTHswHGC4K6Y3LKzrgdoI8ZAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 M2U0MTc3ZC04MDkzLTQ0N2MtODdiNS1jNzljOGNiNGM3MzMvMC9DNzEwOTU0QzdC MzAxQzYwQjgyQkE2MzcyQ0FDRUI4MURBMDhGMTkwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzcxMDk1NEM3QjMwMUM2MEI4MkJBNjM3MkNBQ0VCODFEQTA4 RjE5MC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQzZTQxNzdkLTgwOTMtNDQ3Yy04 N2I1LWM3OWM4Y2I0YzczMy8wLzMyMzAzMDMxM2E2NDY2MzQzYTM0MzQzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzMzMzgzMzMyLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 9EQAMA0GCSqGSIb3DQEBCwUAA4IBAQCZjYlPmHdNoGfsCSV8ICLaeHVD3pZ2GU4z /A3dFnVCm1Lhpk+ezEu6jCwyVsRomQkUw4N1TSW9446zhHrN6MjDjRs9FIoPKTSh 6M/gGQ+Wqsy9dJ983QtmgMa/07Qn3gEHPfZ+sB5DpCDnpGNKpyEsFiQ1k7IF9H+B Y3a7T1eJLBcpwUc2s3aOpqSJAKpPahSaxfDxyx4IO813QiiL9GcXDgsFVClidMPN hnScom6eN6jLElzAqmDv7xAB+kYssxZmX9efVk1SZi7HMQvfrmJ+9uNsjdUUqOlv HncS/40QCN0TUx8DIN+LsPYi3LAwLiC/zrLqJOluSPqcH9R4gq7H -----END CERTIFICATE-----Generated at Sat Nov 1 12:31:13 2025 by rpki-client