$ rpki-client -vvf repo-rpki.idnic.net/repo/44791b1f-6da9-400d-8b14-992aae63746c/0/323430373a646630303a3a2f34382d3438203d3e203338353136.roa File: 323430373a646630303a3a2f34382d3438203d3e203338353136.roa (raw, json) Hash identifier: mKxNfIZaogpqoGD1v/HbTG1n+WMSkSPY8mtudPgnTgU= Subject key identifier: 87:9D:D0:9B:3D:7F:2C:37:EC:4A:16:7A:CA:A1:32:B0:12:29:51:2A Certificate issuer: /CN=229F9618AE3F0667EC17C977F266B2BE74C81AB7 Certificate serial: 2383D1543B12FEE51040AE2C214C0CA5587545A0 Authority key identifier: 22:9F:96:18:AE:3F:06:67:EC:17:C9:77:F2:66:B2:BE:74:C8:1A:B7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/229F9618AE3F0667EC17C977F266B2BE74C81AB7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/44791b1f-6da9-400d-8b14-992aae63746c/0/323430373a646630303a3a2f34382d3438203d3e203338353136.roa Signing time: Thu 04 Sep 2025 08:02:56 +0000 ROA not before: Thu 04 Sep 2025 07:57:56 +0000 ROA not after: Thu 03 Sep 2026 08:02:56 +0000 asID: 38516 IP address blocks: 2407:df00::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/44791b1f-6da9-400d-8b14-992aae63746c/0/229F9618AE3F0667EC17C977F266B2BE74C81AB7.crl rsync://repo-rpki.idnic.net/repo/44791b1f-6da9-400d-8b14-992aae63746c/0/229F9618AE3F0667EC17C977F266B2BE74C81AB7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/229F9618AE3F0667EC17C977F266B2BE74C81AB7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Sep 2025 21:44:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:83:d1:54:3b:12:fe:e5:10:40:ae:2c:21:4c:0c:a5:58:75:45:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=229F9618AE3F0667EC17C977F266B2BE74C81AB7 Validity Not Before: Sep 4 07:57:56 2025 GMT Not After : Sep 3 08:02:56 2026 GMT Subject: CN=879DD09B3D7F2C37EC4A167ACAA132B01229512A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:3b:e0:4d:82:c5:fe:34:40:62:e0:35:0a:4e: d4:2d:2e:fb:ea:59:8b:14:e5:23:2c:21:80:ce:04: a8:b7:d1:f1:14:36:c6:63:29:4f:d1:2c:6e:e0:01: 77:e9:c0:7f:03:e4:03:06:05:d8:09:c4:b3:a2:4f: 37:23:c3:83:c2:eb:3c:81:5d:0a:8f:04:e6:c0:ba: e7:d0:40:e4:4b:85:9f:17:ee:2b:df:91:93:a0:56: fb:6d:38:77:9a:f9:66:b9:fc:66:9f:f5:91:1a:4f: ab:9f:b8:86:76:b9:b7:a4:52:72:3b:ce:17:84:c6: 83:f9:a9:77:a2:36:b6:2a:55:2c:43:01:0c:67:6f: 64:ad:65:b5:44:a2:7f:ec:9d:ee:ed:7b:8e:bd:b1: c6:97:af:77:74:df:7a:c8:40:e8:a2:87:a0:d4:ed: ba:d4:77:3e:7a:50:9b:cd:97:c9:b5:14:86:7b:b7: 14:da:8d:97:b5:67:88:a8:79:d2:53:ee:70:f2:4f: a3:2c:23:c7:dc:06:09:0e:ce:5d:bc:0a:43:de:92: a1:e0:4b:04:99:82:96:db:12:d8:a2:16:d4:8b:d0: 33:84:90:49:65:ff:ea:18:c8:02:fb:98:e6:ee:56: 6b:bc:9d:db:bd:8d:f1:5a:3b:b9:a8:e8:62:2b:ef: 40:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:9D:D0:9B:3D:7F:2C:37:EC:4A:16:7A:CA:A1:32:B0:12:29:51:2A X509v3 Authority Key Identifier: keyid:22:9F:96:18:AE:3F:06:67:EC:17:C9:77:F2:66:B2:BE:74:C8:1A:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/44791b1f-6da9-400d-8b14-992aae63746c/0/229F9618AE3F0667EC17C977F266B2BE74C81AB7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/229F9618AE3F0667EC17C977F266B2BE74C81AB7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/44791b1f-6da9-400d-8b14-992aae63746c/0/323430373a646630303a3a2f34382d3438203d3e203338353136.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2407:df00::/48 Signature Algorithm: sha256WithRSAEncryption d9:41:cc:6e:b5:1f:02:9a:92:11:88:46:5c:53:5a:41:20:19: 85:94:48:dc:7d:5e:fa:6d:4a:a1:81:f7:53:7c:e9:c0:03:3e: e9:e2:d0:18:3c:20:2d:26:14:83:f8:b3:f0:ce:c3:e4:25:46: 7c:2a:58:74:46:6f:7d:22:0c:bf:cf:b2:93:10:0f:f7:06:3c: 7c:fd:00:4e:56:29:30:44:62:1d:66:fc:b2:7b:50:ef:79:36: c9:e4:b3:84:25:9d:de:1a:68:69:93:9f:3a:71:40:6c:63:04: b5:d2:a7:5a:cd:39:37:21:3b:bf:92:79:54:d7:45:8c:ad:43: 8f:2a:33:e9:82:46:04:74:95:1c:14:3c:13:91:14:15:fe:06: 71:ca:b7:38:b4:0b:ce:47:b3:a1:76:6a:1b:f4:ba:80:e3:1a: d6:a6:f0:8b:29:c0:0c:18:0a:48:01:4c:14:1f:49:73:fe:d0: 0f:28:1a:46:0b:ec:ef:4a:85:0f:14:93:3e:6e:14:cc:0a:11: 82:34:d8:b0:e8:00:49:c3:4e:66:14:39:2d:18:b4:0f:18:c8: 2c:ff:f1:e5:b8:9f:23:a3:b4:1c:55:84:d0:00:48:9e:c3:c8: c2:da:d5:e8:ba:8a:64:b3:b8:a6:aa:d4:20:29:93:58:9c:94: 49:87:4f:bf -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUI4PRVDsS/uUQQK4sIUwMpVh1RaAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjI5Rjk2MThBRTNGMDY2N0VDMTdDOTc3RjI2NkIyQkU3 NEM4MUFCNzAeFw0yNTA5MDQwNzU3NTZaFw0yNjA5MDMwODAyNTZaMDMxMTAvBgNV BAMTKDg3OUREMDlCM0Q3RjJDMzdFQzRBMTY3QUNBQTEzMkIwMTIyOTUxMkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDaO+BNgsX+NEBi4DUKTtQtLvvq WYsU5SMsIYDOBKi30fEUNsZjKU/RLG7gAXfpwH8D5AMGBdgJxLOiTzcjw4PC6zyB XQqPBObAuufQQORLhZ8X7ivfkZOgVvttOHea+Wa5/Gaf9ZEaT6ufuIZ2ubekUnI7 zheExoP5qXeiNrYqVSxDAQxnb2StZbVEon/sne7te469scaXr3d033rIQOiih6DU 7brUdz56UJvNl8m1FIZ7txTajZe1Z4ioedJT7nDyT6MsI8fcBgkOzl28CkPekqHg SwSZgpbbEtiiFtSL0DOEkEll/+oYyAL7mObuVmu8ndu9jfFaO7mo6GIr70A7AgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUh53Qmz1/LDfsShZ6yqEysBIpUSowHwYDVR0j BBgwFoAUIp+WGK4/BmfsF8l38mayvnTIGrcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 NDc5MWIxZi02ZGE5LTQwMGQtOGIxNC05OTJhYWU2Mzc0NmMvMC8yMjlGOTYxOEFF M0YwNjY3RUMxN0M5NzdGMjY2QjJCRTc0QzgxQUI3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjI5Rjk2MThBRTNGMDY2N0VDMTdDOTc3RjI2NkIyQkU3NEM4 MUFCNy5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ0NzkxYjFmLTZkYTktNDAwZC04 YjE0LTk5MmFhZTYzNzQ2Yy8wLzMyMzQzMDM3M2E2NDY2MzAzMDNhM2EyZjM0Mzgy ZDM0MzgyMDNkM2UyMDMzMzgzNTMxMzYucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkB98AAAAwDQYJKoZI hvcNAQELBQADggEBANlBzG61HwKakhGIRlxTWkEgGYWUSNx9XvptSqGB91N86cAD Puni0Bg8IC0mFIP4s/DOw+QlRnwqWHRGb30iDL/PspMQD/cGPHz9AE5WKTBEYh1m /LJ7UO95Nsnks4Qlnd4aaGmTnzpxQGxjBLXSp1rNOTchO7+SeVTXRYytQ48qM+mC RgR0lRwUPBORFBX+BnHKtzi0C85Hs6F2ahv0uoDjGtam8IspwAwYCkgBTBQfSXP+ 0A8oGkYL7O9KhQ8Ukz5uFMwKEYI02LDoAEnDTmYUOS0YtA8YyCz/8eW4nyOjtBxV hNAASJ7DyMLa1ei6imSzuKaq1CApk1iclEmHT78= -----END CERTIFICATE-----Generated at Mon Sep 8 10:31:33 2025 by rpki-client