$ rpki-client -vvf repo-rpki.idnic.net/repo/592e07f8-1a48-4391-a6a5-8e4e39c8588a/0/323430353a633863303a3a2f33322d3332203d3e20313339393831.roa File: 323430353a633863303a3a2f33322d3332203d3e20313339393831.roa (raw, json) Hash identifier: T//zRmtqLINvFlblPvVcdCKW6AunVea7CBpb7QBQYXI= Subject key identifier: CF:0C:A0:40:75:99:66:CC:02:62:18:1F:63:58:0E:24:45:37:99:3F Certificate issuer: /CN=2AF5121CD1CFA7798CC1DD777B464369D1DEA6C1 Certificate serial: 1011978AA8A64843C9D868AF8DB57B9E3D72CF03 Authority key identifier: 2A:F5:12:1C:D1:CF:A7:79:8C:C1:DD:77:7B:46:43:69:D1:DE:A6:C1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2AF5121CD1CFA7798CC1DD777B464369D1DEA6C1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/592e07f8-1a48-4391-a6a5-8e4e39c8588a/0/323430353a633863303a3a2f33322d3332203d3e20313339393831.roa Signing time: Mon 13 Oct 2025 09:02:26 +0000 ROA not before: Mon 13 Oct 2025 08:57:26 +0000 ROA not after: Mon 12 Oct 2026 09:02:26 +0000 asID: 139981 IP address blocks: 2405:c8c0::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/592e07f8-1a48-4391-a6a5-8e4e39c8588a/0/2AF5121CD1CFA7798CC1DD777B464369D1DEA6C1.crl rsync://repo-rpki.idnic.net/repo/592e07f8-1a48-4391-a6a5-8e4e39c8588a/0/2AF5121CD1CFA7798CC1DD777B464369D1DEA6C1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2AF5121CD1CFA7798CC1DD777B464369D1DEA6C1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Nov 2025 19:55:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:11:97:8a:a8:a6:48:43:c9:d8:68:af:8d:b5:7b:9e:3d:72:cf:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2AF5121CD1CFA7798CC1DD777B464369D1DEA6C1 Validity Not Before: Oct 13 08:57:26 2025 GMT Not After : Oct 12 09:02:26 2026 GMT Subject: CN=CF0CA040759966CC0262181F63580E244537993F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:41:f2:0e:33:4f:78:34:09:f9:a7:44:63:df: 9c:cf:e4:5e:1f:83:02:ec:19:68:3a:31:bf:9b:74: c6:fa:3f:9d:a7:09:00:a1:8f:c7:30:a9:b9:7a:f6: 8a:77:96:c1:82:29:90:de:76:03:5e:b6:1f:e7:b6: 47:dd:bd:9e:df:14:c0:b8:c1:60:be:ad:51:4d:34: a8:b1:af:d2:11:fb:af:5b:1b:0d:74:27:63:56:df: 89:7a:2f:2a:9b:3b:78:2a:cb:1f:07:17:71:e6:4b: 82:07:be:55:0c:6d:b3:3b:8a:6a:c1:b2:8b:8a:e2: 08:34:8a:85:42:21:43:89:58:58:b1:1d:a8:8b:de: 52:cc:70:43:e0:9b:23:47:51:5f:91:a8:a0:73:3b: e5:26:75:b4:02:34:d5:9a:da:e3:0d:34:f4:d8:2f: 65:5a:ea:a3:14:39:a1:96:93:3b:d3:b1:5d:3a:9b: 2e:44:f3:b2:6a:63:39:16:61:b1:24:22:52:63:e2: dd:6a:87:5b:c9:b4:ec:66:ec:3f:2a:25:03:dd:d0: f5:29:70:ad:f7:00:c9:a6:6f:9e:f6:ba:29:c3:ec: 59:ca:c4:47:4d:b1:35:b2:1f:55:7c:69:10:f5:cb: d9:de:dc:05:88:47:7f:e0:05:0b:58:1d:e7:5e:47: 8e:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:0C:A0:40:75:99:66:CC:02:62:18:1F:63:58:0E:24:45:37:99:3F X509v3 Authority Key Identifier: keyid:2A:F5:12:1C:D1:CF:A7:79:8C:C1:DD:77:7B:46:43:69:D1:DE:A6:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/592e07f8-1a48-4391-a6a5-8e4e39c8588a/0/2AF5121CD1CFA7798CC1DD777B464369D1DEA6C1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2AF5121CD1CFA7798CC1DD777B464369D1DEA6C1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/592e07f8-1a48-4391-a6a5-8e4e39c8588a/0/323430353a633863303a3a2f33322d3332203d3e20313339393831.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:c8c0::/32 Signature Algorithm: sha256WithRSAEncryption 12:8f:41:3b:89:f1:fc:55:db:f5:97:ae:4b:b8:70:f1:5b:39: 84:a0:86:7f:d1:f4:92:c1:bc:fd:cc:76:9e:97:66:78:51:15: 66:65:30:3d:b4:a6:db:83:47:d1:a4:70:b5:47:1b:4e:25:5b: 88:4c:ea:db:c6:84:51:0d:9b:2d:a0:40:10:63:63:68:b4:1c: 7b:7c:74:ff:af:63:00:55:65:b8:66:59:e2:99:24:5f:01:3b: d5:4a:00:0d:b0:7c:a4:93:09:83:5e:56:9a:03:f1:b4:2a:62: b9:36:b6:17:7d:0b:64:10:18:3b:b8:fe:ac:26:3a:fd:f8:d6: 2d:50:60:11:9b:86:1a:47:cd:b8:e8:30:8f:15:37:c8:98:a4: 92:f2:ac:8e:d6:2b:04:f1:f2:31:57:8c:40:e5:ad:87:ba:d5: 0d:7d:05:34:2c:c7:f4:54:b7:41:1f:5c:a4:4a:c0:7d:07:b7: cc:e1:ef:44:39:4f:1e:5e:1b:0d:fe:99:6a:5e:7d:9b:17:e4: c1:e9:8c:40:0c:14:c0:40:5a:5c:27:9b:48:3e:21:69:d7:da: 5b:cc:bb:ca:b9:9e:e1:71:28:77:24:27:ff:32:79:c4:7b:62: 2d:30:bc:a0:95:0a:e1:ec:45:49:5c:9b:89:93:49:81:17:66: ed:7a:5c:da -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUEBGXiqimSEPJ2GivjbV7nj1yzwMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkFGNTEyMUNEMUNGQTc3OThDQzFERDc3N0I0NjQzNjlE MURFQTZDMTAeFw0yNTEwMTMwODU3MjZaFw0yNjEwMTIwOTAyMjZaMDMxMTAvBgNV BAMTKENGMENBMDQwNzU5OTY2Q0MwMjYyMTgxRjYzNTgwRTI0NDUzNzk5M0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVQfIOM094NAn5p0Rj35zP5F4f gwLsGWg6Mb+bdMb6P52nCQChj8cwqbl69op3lsGCKZDedgNeth/ntkfdvZ7fFMC4 wWC+rVFNNKixr9IR+69bGw10J2NW34l6LyqbO3gqyx8HF3HmS4IHvlUMbbM7imrB souK4gg0ioVCIUOJWFixHaiL3lLMcEPgmyNHUV+RqKBzO+UmdbQCNNWa2uMNNPTY L2Va6qMUOaGWkzvTsV06my5E87JqYzkWYbEkIlJj4t1qh1vJtOxm7D8qJQPd0PUp cK33AMmmb572uinD7FnKxEdNsTWyH1V8aRD1y9ne3AWIR3/gBQtYHedeR45FAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUzwygQHWZZswCYhgfY1gOJEU3mT8wHwYDVR0j BBgwFoAUKvUSHNHPp3mMwd13e0ZDadHepsEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 OTJlMDdmOC0xYTQ4LTQzOTEtYTZhNS04ZTRlMzljODU4OGEvMC8yQUY1MTIxQ0Qx Q0ZBNzc5OENDMURENzc3QjQ2NDM2OUQxREVBNkMxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkFGNTEyMUNEMUNGQTc3OThDQzFERDc3N0I0NjQzNjlEMURF QTZDMS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU5MmUwN2Y4LTFhNDgtNDM5MS1h NmE1LThlNGUzOWM4NTg4YS8wLzMyMzQzMDM1M2E2MzM4NjMzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzMzOTM5MzgzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQFyMAwDQYJKoZI hvcNAQELBQADggEBABKPQTuJ8fxV2/WXrku4cPFbOYSghn/R9JLBvP3Mdp6XZnhR FWZlMD20ptuDR9GkcLVHG04lW4hM6tvGhFENmy2gQBBjY2i0HHt8dP+vYwBVZbhm WeKZJF8BO9VKAA2wfKSTCYNeVpoD8bQqYrk2thd9C2QQGDu4/qwmOv341i1QYBGb hhpHzbjoMI8VN8iYpJLyrI7WKwTx8jFXjEDlrYe61Q19BTQsx/RUt0EfXKRKwH0H t8zh70Q5Tx5eGw3+mWpefZsX5MHpjEAMFMBAWlwnm0g+IWnX2lvMu8q5nuFxKHck J/8yecR7Yi0wvKCVCuHsRUlcm4mTSYEXZu16XNo= -----END CERTIFICATE-----Generated at Mon Nov 3 06:47:16 2025 by rpki-client