$ rpki-client -vvf repo-rpki.idnic.net/repo/52ac0ca5-5ce7-4e6e-9fff-7213ef1ef364/0/323030313a6466373a373430303a3a2f34382d3438203d3e20313336303532.roa File: 323030313a6466373a373430303a3a2f34382d3438203d3e20313336303532.roa (raw, json) Hash identifier: q884sNHCW5gx53DgOjtLJ9QZQAoxktWTxQd/7H0Tgro= Subject key identifier: 7C:BC:96:36:7A:D7:BA:A0:64:09:1F:A8:43:C2:D5:ED:4D:6D:B3:D0 Certificate issuer: /CN=AF52E716DE71EEA9353FEA92FBF72DA2106A594C Certificate serial: 5E3DEEF9CD1485463DB2B3789C6020C6E715264F Authority key identifier: AF:52:E7:16:DE:71:EE:A9:35:3F:EA:92:FB:F7:2D:A2:10:6A:59:4C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF52E716DE71EEA9353FEA92FBF72DA2106A594C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/52ac0ca5-5ce7-4e6e-9fff-7213ef1ef364/0/323030313a6466373a373430303a3a2f34382d3438203d3e20313336303532.roa Signing time: Fri 26 Sep 2025 16:00:02 +0000 ROA not before: Fri 26 Sep 2025 15:55:02 +0000 ROA not after: Fri 25 Sep 2026 16:00:02 +0000 asID: 136052 IP address blocks: 2001:df7:7400::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/52ac0ca5-5ce7-4e6e-9fff-7213ef1ef364/0/AF52E716DE71EEA9353FEA92FBF72DA2106A594C.crl rsync://repo-rpki.idnic.net/repo/52ac0ca5-5ce7-4e6e-9fff-7213ef1ef364/0/AF52E716DE71EEA9353FEA92FBF72DA2106A594C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF52E716DE71EEA9353FEA92FBF72DA2106A594C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 13:08:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:3d:ee:f9:cd:14:85:46:3d:b2:b3:78:9c:60:20:c6:e7:15:26:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AF52E716DE71EEA9353FEA92FBF72DA2106A594C Validity Not Before: Sep 26 15:55:02 2025 GMT Not After : Sep 25 16:00:02 2026 GMT Subject: CN=7CBC96367AD7BAA064091FA843C2D5ED4D6DB3D0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:89:04:e7:07:e0:b2:d9:5a:09:59:e7:d0:59: ad:27:90:b9:17:30:58:a9:77:3d:f8:cd:53:13:75: 66:7b:32:61:4b:f9:4f:6b:48:73:ed:98:48:74:5e: 8e:ec:ca:39:32:b9:b0:d3:7d:81:c5:9f:5f:78:d8: 3e:82:d8:5e:0d:93:cb:77:c6:ad:fa:54:fc:aa:73: 79:c1:e0:a7:84:1d:1a:b1:55:ff:f8:56:1e:04:0b: 8f:34:41:ab:a2:97:96:4e:4c:c8:b6:a3:2f:09:5f: da:2a:dd:3b:84:75:a1:dd:a6:7a:f2:fe:1c:d9:3f: 8e:64:ce:72:a5:ff:73:43:3d:5f:7b:69:1b:e9:dc: 14:f4:d6:4b:fc:9e:7d:4f:5a:d4:3d:48:de:ef:f5: a8:fe:26:5e:72:df:ed:81:6f:ac:bc:74:fc:66:4c: df:8e:06:1e:e7:44:06:eb:eb:ab:f7:65:69:24:65: 9d:d0:a6:b1:7b:be:e3:5c:bb:46:ca:25:77:6c:6d: 95:75:07:c7:dc:17:3e:ef:12:a8:9a:aa:e4:dc:cd: 3a:a3:91:b2:8f:0a:03:a9:14:19:e7:34:3d:05:fc: bd:39:55:cd:f4:f0:5a:a9:63:d6:54:49:cc:e0:89: c7:40:44:0b:6d:74:53:5e:60:24:c3:05:1f:98:9c: 8f:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:BC:96:36:7A:D7:BA:A0:64:09:1F:A8:43:C2:D5:ED:4D:6D:B3:D0 X509v3 Authority Key Identifier: keyid:AF:52:E7:16:DE:71:EE:A9:35:3F:EA:92:FB:F7:2D:A2:10:6A:59:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/52ac0ca5-5ce7-4e6e-9fff-7213ef1ef364/0/AF52E716DE71EEA9353FEA92FBF72DA2106A594C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF52E716DE71EEA9353FEA92FBF72DA2106A594C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/52ac0ca5-5ce7-4e6e-9fff-7213ef1ef364/0/323030313a6466373a373430303a3a2f34382d3438203d3e20313336303532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df7:7400::/48 Signature Algorithm: sha256WithRSAEncryption 10:c8:a6:2f:16:a7:9f:2a:d4:6b:4f:8e:fa:30:f4:65:6e:4d: 2f:4c:bc:3d:e1:8e:71:cc:57:65:74:25:8a:ea:86:5c:2a:ec: 71:49:bc:18:6f:76:64:26:b0:91:f8:06:f5:41:2d:de:21:95: 16:a9:d9:31:a4:6b:9f:0d:15:44:b6:ac:ea:eb:13:23:52:17: 0f:54:89:93:61:a1:c0:50:65:14:80:2c:93:c8:14:e6:d7:fc: e6:66:0e:4d:d1:30:0d:b7:d3:15:86:48:ea:4d:2d:ea:e3:a8: b5:83:31:a9:27:97:98:6f:48:9c:54:2d:47:e9:61:d6:6d:30: cb:73:50:a8:c4:67:6c:1a:5f:fc:a0:1b:bc:62:8c:45:3e:d3: ad:17:f3:cb:cc:37:67:69:d3:97:fa:39:ba:bb:bc:a1:92:b6: 9d:6c:c2:c3:d8:a8:69:2a:80:5b:f2:0b:61:cb:e3:89:2e:fa: df:0e:2e:b4:11:4c:0b:d2:10:74:56:8e:35:08:c9:6a:9e:50: a3:76:2f:c4:ef:d0:87:3a:28:65:02:e8:5b:41:91:20:f9:91: 78:2e:9c:2f:58:1d:a5:6b:73:d7:be:17:f1:45:d8:2c:b1:c4: 05:88:0c:3a:ec:d0:65:c5:87:d5:f9:dd:6f:fe:b0:fa:9d:47: 6d:0a:70:84 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUXj3u+c0UhUY9srN4nGAgxucVJk8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUY1MkU3MTZERTcxRUVBOTM1M0ZFQTkyRkJGNzJEQTIx MDZBNTk0QzAeFw0yNTA5MjYxNTU1MDJaFw0yNjA5MjUxNjAwMDJaMDMxMTAvBgNV BAMTKDdDQkM5NjM2N0FEN0JBQTA2NDA5MUZBODQzQzJENUVENEQ2REIzRDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIiQTnB+Cy2VoJWefQWa0nkLkX MFipdz34zVMTdWZ7MmFL+U9rSHPtmEh0Xo7syjkyubDTfYHFn1942D6C2F4Nk8t3 xq36VPyqc3nB4KeEHRqxVf/4Vh4EC480Qauil5ZOTMi2oy8JX9oq3TuEdaHdpnry /hzZP45kznKl/3NDPV97aRvp3BT01kv8nn1PWtQ9SN7v9aj+Jl5y3+2Bb6y8dPxm TN+OBh7nRAbr66v3ZWkkZZ3QprF7vuNcu0bKJXdsbZV1B8fcFz7vEqiaquTczTqj kbKPCgOpFBnnND0F/L05Vc308FqpY9ZUSczgicdARAttdFNeYCTDBR+YnI/9AgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUfLyWNnrXuqBkCR+oQ8LV7U1ts9AwHwYDVR0j BBgwFoAUr1LnFt5x7qk1P+qS+/ctohBqWUwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 MmFjMGNhNS01Y2U3LTRlNmUtOWZmZi03MjEzZWYxZWYzNjQvMC9BRjUyRTcxNkRF NzFFRUE5MzUzRkVBOTJGQkY3MkRBMjEwNkE1OTRDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUY1MkU3MTZERTcxRUVBOTM1M0ZFQTkyRkJGNzJEQTIxMDZB NTk0Qy5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzUyYWMwY2E1LTVjZTctNGU2ZS05 ZmZmLTcyMTNlZjFlZjM2NC8wLzMyMzAzMDMxM2E2NDY2MzczYTM3MzQzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM2MzAzNTMyLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 93QAMA0GCSqGSIb3DQEBCwUAA4IBAQAQyKYvFqefKtRrT476MPRlbk0vTLw94Y5x zFdldCWK6oZcKuxxSbwYb3ZkJrCR+Ab1QS3eIZUWqdkxpGufDRVEtqzq6xMjUhcP VImTYaHAUGUUgCyTyBTm1/zmZg5N0TANt9MVhkjqTS3q46i1gzGpJ5eYb0icVC1H 6WHWbTDLc1CoxGdsGl/8oBu8YoxFPtOtF/PLzDdnadOX+jm6u7yhkradbMLD2Khp KoBb8gthy+OJLvrfDi60EUwL0hB0Vo41CMlqnlCjdi/E79CHOihlAuhbQZEg+ZF4 LpwvWB2la3PXvhfxRdgsscQFiAw67NBlxYfV+d1v/rD6nUdtCnCE -----END CERTIFICATE-----Generated at Mon Oct 20 07:44:47 2025 by rpki-client