$ rpki-client -vvf repo-rpki.idnic.net/repo/44791b1f-6da9-400d-8b14-992aae63746c/0/323430373a646630303a313a3a2f34382d3438203d3e20313333383233.roa File: 323430373a646630303a313a3a2f34382d3438203d3e20313333383233.roa (raw, json) Hash identifier: /OpJo01cDRJlGfeBvyqLHyVTpWA1fZyMWTJSJbd+gCM= Subject key identifier: AF:1A:12:A4:3E:21:16:04:46:AD:45:7E:E6:CD:BB:B7:46:0E:28:D2 Certificate issuer: /CN=229F9618AE3F0667EC17C977F266B2BE74C81AB7 Certificate serial: 06F81EBCB0AF8882C25D1BAFE12F5CD64850F4D1 Authority key identifier: 22:9F:96:18:AE:3F:06:67:EC:17:C9:77:F2:66:B2:BE:74:C8:1A:B7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/229F9618AE3F0667EC17C977F266B2BE74C81AB7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/44791b1f-6da9-400d-8b14-992aae63746c/0/323430373a646630303a313a3a2f34382d3438203d3e20313333383233.roa Signing time: Thu 04 Sep 2025 09:00:01 +0000 ROA not before: Thu 04 Sep 2025 08:55:01 +0000 ROA not after: Thu 03 Sep 2026 09:00:01 +0000 asID: 133823 IP address blocks: 2407:df00:1::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/44791b1f-6da9-400d-8b14-992aae63746c/0/229F9618AE3F0667EC17C977F266B2BE74C81AB7.crl rsync://repo-rpki.idnic.net/repo/44791b1f-6da9-400d-8b14-992aae63746c/0/229F9618AE3F0667EC17C977F266B2BE74C81AB7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/229F9618AE3F0667EC17C977F266B2BE74C81AB7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Sep 2025 21:44:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:f8:1e:bc:b0:af:88:82:c2:5d:1b:af:e1:2f:5c:d6:48:50:f4:d1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=229F9618AE3F0667EC17C977F266B2BE74C81AB7 Validity Not Before: Sep 4 08:55:01 2025 GMT Not After : Sep 3 09:00:01 2026 GMT Subject: CN=AF1A12A43E21160446AD457EE6CDBBB7460E28D2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:70:a1:98:a2:d7:d2:05:73:05:b1:1a:6f:34: 85:84:c0:93:2d:d4:9f:3a:d6:44:5d:a3:f9:52:7b: a4:63:4c:9f:0f:9d:65:73:8a:e1:ba:10:f5:4d:e8: 68:9a:cb:ed:ee:51:dc:ad:bb:f3:8c:55:73:2c:cd: ae:3f:a2:26:30:12:28:cb:8d:8a:5c:c5:b8:2d:26: 55:44:63:04:48:29:3c:e6:13:cf:06:7a:11:5e:52: 54:df:aa:20:9b:40:7d:1a:05:12:07:98:a6:11:11: e5:c0:32:ee:2a:ff:77:82:cb:2b:11:68:78:94:bb: 63:63:74:83:ea:ff:9c:a9:a3:02:ed:0d:4b:12:76: 18:2b:a3:92:38:2a:91:ab:e9:f4:2a:1c:4b:6e:de: a3:4d:ad:e1:e7:e5:41:b3:0a:65:7f:af:87:fb:27: 19:a4:46:b9:96:d4:2c:42:3d:a7:c2:01:5c:d3:91: 38:f3:dd:8a:48:99:c6:84:96:51:aa:b8:4c:68:56: 37:64:83:86:52:1a:e3:ab:88:75:90:3e:d3:b0:7c: 7b:9f:b0:00:67:f1:dc:c5:f5:bf:73:21:61:f3:a3: 42:a6:60:15:27:8a:9e:17:25:ee:9f:8c:a5:ce:cd: 75:3a:45:ae:bc:c1:14:5b:48:ba:52:f7:4c:1a:26: 77:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:1A:12:A4:3E:21:16:04:46:AD:45:7E:E6:CD:BB:B7:46:0E:28:D2 X509v3 Authority Key Identifier: keyid:22:9F:96:18:AE:3F:06:67:EC:17:C9:77:F2:66:B2:BE:74:C8:1A:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/44791b1f-6da9-400d-8b14-992aae63746c/0/229F9618AE3F0667EC17C977F266B2BE74C81AB7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/229F9618AE3F0667EC17C977F266B2BE74C81AB7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/44791b1f-6da9-400d-8b14-992aae63746c/0/323430373a646630303a313a3a2f34382d3438203d3e20313333383233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2407:df00:1::/48 Signature Algorithm: sha256WithRSAEncryption 97:98:03:60:f5:2e:35:8c:40:33:4c:a1:8e:5e:e4:4b:72:f8: 1c:d3:3b:33:4f:3f:0c:af:fa:e6:b3:59:82:09:a5:2a:63:d1: f4:c5:50:3d:e1:78:ba:89:a6:97:6c:ec:4f:ca:d8:15:26:f3: 2a:d9:74:0c:c9:cb:05:75:da:49:2a:c2:dd:4d:3a:2f:59:d5: 03:e5:65:db:13:8f:f0:05:81:45:a9:73:7f:d4:57:d0:c3:35: 12:70:69:06:3e:81:e8:f2:e0:58:6c:e4:c0:80:a0:d4:e7:2d: b9:ad:57:fe:0b:4f:35:bd:7e:aa:6f:3c:8a:58:87:13:fa:42: b3:dc:38:aa:02:84:76:f9:93:3f:2f:a8:8a:2c:de:84:01:9a: 56:76:47:85:10:bc:7d:71:65:e1:6b:89:20:1d:6b:b9:d2:b7: be:64:42:3a:83:c4:80:20:2c:fd:07:ca:9f:97:54:fb:5a:4f: a1:f3:ce:9a:40:cd:00:e8:c6:f9:e5:10:38:30:ca:85:d8:98: ad:43:3f:ae:af:82:7c:cb:a5:3d:3f:8c:10:0a:f2:14:5e:d6: 66:79:c0:7c:01:79:f5:ca:10:ba:a7:da:3a:7d:6b:09:71:f0: 09:46:4f:35:00:eb:5c:a1:c8:26:93:7b:be:2f:90:6f:be:4b: d6:cf:e1:e7 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUBvgevLCviILCXRuv4S9c1khQ9NEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjI5Rjk2MThBRTNGMDY2N0VDMTdDOTc3RjI2NkIyQkU3 NEM4MUFCNzAeFw0yNTA5MDQwODU1MDFaFw0yNjA5MDMwOTAwMDFaMDMxMTAvBgNV BAMTKEFGMUExMkE0M0UyMTE2MDQ0NkFENDU3RUU2Q0RCQkI3NDYwRTI4RDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCacKGYotfSBXMFsRpvNIWEwJMt 1J861kRdo/lSe6RjTJ8PnWVziuG6EPVN6Giay+3uUdytu/OMVXMsza4/oiYwEijL jYpcxbgtJlVEYwRIKTzmE88GehFeUlTfqiCbQH0aBRIHmKYREeXAMu4q/3eCyysR aHiUu2NjdIPq/5ypowLtDUsSdhgro5I4KpGr6fQqHEtu3qNNreHn5UGzCmV/r4f7 JxmkRrmW1CxCPafCAVzTkTjz3YpImcaEllGquExoVjdkg4ZSGuOriHWQPtOwfHuf sABn8dzF9b9zIWHzo0KmYBUnip4XJe6fjKXOzXU6Ra68wRRbSLpS90waJnc9AgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUrxoSpD4hFgRGrUV+5s27t0YOKNIwHwYDVR0j BBgwFoAUIp+WGK4/BmfsF8l38mayvnTIGrcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 NDc5MWIxZi02ZGE5LTQwMGQtOGIxNC05OTJhYWU2Mzc0NmMvMC8yMjlGOTYxOEFF M0YwNjY3RUMxN0M5NzdGMjY2QjJCRTc0QzgxQUI3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjI5Rjk2MThBRTNGMDY2N0VDMTdDOTc3RjI2NkIyQkU3NEM4 MUFCNy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ0NzkxYjFmLTZkYTktNDAwZC04 YjE0LTk5MmFhZTYzNzQ2Yy8wLzMyMzQzMDM3M2E2NDY2MzAzMDNhMzEzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTMzMzMzODMyMzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkB98AAAEw DQYJKoZIhvcNAQELBQADggEBAJeYA2D1LjWMQDNMoY5e5Ety+BzTOzNPPwyv+uaz WYIJpSpj0fTFUD3heLqJppds7E/K2BUm8yrZdAzJywV12kkqwt1NOi9Z1QPlZdsT j/AFgUWpc3/UV9DDNRJwaQY+gejy4Fhs5MCAoNTnLbmtV/4LTzW9fqpvPIpYhxP6 QrPcOKoChHb5kz8vqIos3oQBmlZ2R4UQvH1xZeFriSAda7nSt75kQjqDxIAgLP0H yp+XVPtaT6HzzppAzQDoxvnlEDgwyoXYmK1DP66vgnzLpT0/jBAK8hRe1mZ5wHwB efXKELqn2jp9awlx8AlGTzUA61yhyCaTe74vkG++S9bP4ec= -----END CERTIFICATE-----Generated at Mon Sep 8 09:33:18 2025 by rpki-client