$ rpki-client -vvf repo-rpki.idnic.net/repo/59b07a9e-62df-4808-9d2a-a6e6884bcbbb/1/323030313a6466343a343463303a3a2f34382d3438203d3e20313533313137.roa File: 323030313a6466343a343463303a3a2f34382d3438203d3e20313533313137.roa (raw, json) Hash identifier: TN7coRRv7ozdQ4MBQjtVExbapiKpR2cs6McrqrVZTKc= Subject key identifier: 40:82:4E:59:3E:A5:E1:61:8E:77:7C:FC:D4:3B:CD:EB:E9:1C:06:3D Certificate issuer: /CN=FA479894B4849679EBB9029580F04B8BD74CE048 Certificate serial: 078678CE94C6F1334757DB7AB8F25113F7A2A53E Authority key identifier: FA:47:98:94:B4:84:96:79:EB:B9:02:95:80:F0:4B:8B:D7:4C:E0:48 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FA479894B4849679EBB9029580F04B8BD74CE048.cer Subject info access: rsync://repo-rpki.idnic.net/repo/59b07a9e-62df-4808-9d2a-a6e6884bcbbb/1/323030313a6466343a343463303a3a2f34382d3438203d3e20313533313137.roa Signing time: Wed 27 Aug 2025 09:02:03 +0000 ROA not before: Wed 27 Aug 2025 08:57:03 +0000 ROA not after: Wed 26 Aug 2026 09:02:03 +0000 asID: 153117 IP address blocks: 2001:df4:44c0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/59b07a9e-62df-4808-9d2a-a6e6884bcbbb/1/FA479894B4849679EBB9029580F04B8BD74CE048.crl rsync://repo-rpki.idnic.net/repo/59b07a9e-62df-4808-9d2a-a6e6884bcbbb/1/FA479894B4849679EBB9029580F04B8BD74CE048.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FA479894B4849679EBB9029580F04B8BD74CE048.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Sep 2025 23:20:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:86:78:ce:94:c6:f1:33:47:57:db:7a:b8:f2:51:13:f7:a2:a5:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FA479894B4849679EBB9029580F04B8BD74CE048 Validity Not Before: Aug 27 08:57:03 2025 GMT Not After : Aug 26 09:02:03 2026 GMT Subject: CN=40824E593EA5E1618E777CFCD43BCDEBE91C063D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:aa:93:bd:66:e9:bf:39:d1:52:ef:be:6d:ee: e0:c5:ee:4c:23:d6:30:fa:54:91:ff:3f:a2:08:9e: ab:58:02:98:ce:39:99:d5:a5:d6:74:28:71:61:56: 8f:4d:c5:44:6e:7d:07:64:60:3d:ad:f5:a7:87:0c: 8b:2f:dd:d7:d9:95:80:1e:09:07:16:db:2a:4d:ae: 00:35:44:0b:95:76:68:59:ef:9c:1e:50:fc:b7:d1: 87:dd:51:a1:8c:09:77:2e:f9:b4:01:63:92:be:37: 59:6b:13:92:a6:3a:4c:d9:c7:f4:c4:45:e3:63:1f: 60:03:8e:82:28:61:e6:25:7e:e5:0a:3b:5e:50:b8: d7:49:c3:46:d7:87:f9:7f:ae:42:2d:4d:06:a2:24: 67:5c:de:df:ce:0d:77:56:63:95:f6:cc:b6:dd:2f: 26:80:bb:59:c0:04:87:5c:36:f2:ac:ae:b2:52:57: d0:25:98:b8:5a:5a:7f:ad:d9:ea:b7:54:39:22:c2: 98:b9:b1:f2:86:85:22:ab:0b:90:78:b4:9b:0e:79: 73:25:db:c1:41:67:b4:cb:91:91:ea:59:63:ea:9e: 14:2f:fb:8c:19:de:7f:02:44:a7:9e:6b:10:d4:46: 33:2e:8f:bd:5e:bb:87:7c:15:83:0e:15:21:33:e5: 06:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:82:4E:59:3E:A5:E1:61:8E:77:7C:FC:D4:3B:CD:EB:E9:1C:06:3D X509v3 Authority Key Identifier: keyid:FA:47:98:94:B4:84:96:79:EB:B9:02:95:80:F0:4B:8B:D7:4C:E0:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/59b07a9e-62df-4808-9d2a-a6e6884bcbbb/1/FA479894B4849679EBB9029580F04B8BD74CE048.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FA479894B4849679EBB9029580F04B8BD74CE048.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/59b07a9e-62df-4808-9d2a-a6e6884bcbbb/1/323030313a6466343a343463303a3a2f34382d3438203d3e20313533313137.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df4:44c0::/48 Signature Algorithm: sha256WithRSAEncryption 50:71:5b:55:40:12:70:08:1d:b3:d7:e6:83:fa:74:70:01:b6: f4:83:9c:91:f0:19:48:1d:d1:3d:ff:d2:bf:35:2e:91:a7:8c: 00:7d:04:7c:bd:f2:a5:14:9f:e7:aa:c8:3a:31:12:e9:da:f0: 28:98:67:25:4d:eb:67:9d:7f:cf:1d:e5:fc:6f:f6:05:a5:4d: 3e:4e:10:02:a0:1a:34:68:ed:21:4c:c0:f5:e4:7f:de:2d:a0: 99:c8:ea:69:36:23:7e:68:7f:af:aa:a8:fc:d9:25:af:6f:5d: bb:43:89:f0:e1:1e:f4:2e:87:10:67:59:3c:aa:4f:50:3f:68: 8e:1b:73:56:4f:06:6d:77:86:d2:ec:c2:a6:b4:c0:06:cf:25: ad:3d:b7:e5:e4:49:7a:de:c9:c5:2b:c7:4a:7e:ea:9a:b9:07: 23:9f:2c:0e:ef:39:f5:e9:a1:fc:bf:36:9e:ac:06:91:6c:56: 1a:83:41:75:7e:b1:f6:af:d8:43:c7:69:8a:fc:95:58:c9:e5: 5f:59:40:bd:38:b0:00:6e:89:dc:4a:8d:83:d0:19:60:f5:21: 79:1d:18:b7:38:31:a6:9e:2f:4f:8c:94:e9:78:88:86:ed:c5: cf:b9:8f:66:cc:71:9f:5d:f9:94:50:03:c4:aa:01:b8:e1:97: f9:9d:d0:dd -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUB4Z4zpTG8TNHV9t6uPJRE/eipT4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkE0Nzk4OTRCNDg0OTY3OUVCQjkwMjk1ODBGMDRCOEJE NzRDRTA0ODAeFw0yNTA4MjcwODU3MDNaFw0yNjA4MjYwOTAyMDNaMDMxMTAvBgNV BAMTKDQwODI0RTU5M0VBNUUxNjE4RTc3N0NGQ0Q0M0JDREVCRTkxQzA2M0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCgqpO9Zum/OdFS775t7uDF7kwj 1jD6VJH/P6IInqtYApjOOZnVpdZ0KHFhVo9NxURufQdkYD2t9aeHDIsv3dfZlYAe CQcW2ypNrgA1RAuVdmhZ75weUPy30YfdUaGMCXcu+bQBY5K+N1lrE5KmOkzZx/TE ReNjH2ADjoIoYeYlfuUKO15QuNdJw0bXh/l/rkItTQaiJGdc3t/ODXdWY5X2zLbd LyaAu1nABIdcNvKsrrJSV9AlmLhaWn+t2eq3VDkiwpi5sfKGhSKrC5B4tJsOeXMl 28FBZ7TLkZHqWWPqnhQv+4wZ3n8CRKeeaxDURjMuj71eu4d8FYMOFSEz5QaDAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUQIJOWT6l4WGOd3z81DvN6+kcBj0wHwYDVR0j BBgwFoAU+keYlLSElnnruQKVgPBLi9dM4EgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 OWIwN2E5ZS02MmRmLTQ4MDgtOWQyYS1hNmU2ODg0YmNiYmIvMS9GQTQ3OTg5NEI0 ODQ5Njc5RUJCOTAyOTU4MEYwNEI4QkQ3NENFMDQ4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkE0Nzk4OTRCNDg0OTY3OUVCQjkwMjk1ODBGMDRCOEJENzRD RTA0OC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU5YjA3YTllLTYyZGYtNDgwOC05 ZDJhLWE2ZTY4ODRiY2JiYi8xLzMyMzAzMDMxM2E2NDY2MzQzYTM0MzQ2MzMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNTMzMzEzMTM3LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 9ETAMA0GCSqGSIb3DQEBCwUAA4IBAQBQcVtVQBJwCB2z1+aD+nRwAbb0g5yR8BlI HdE9/9K/NS6Rp4wAfQR8vfKlFJ/nqsg6MRLp2vAomGclTetnnX/PHeX8b/YFpU0+ ThACoBo0aO0hTMD15H/eLaCZyOppNiN+aH+vqqj82SWvb127Q4nw4R70LocQZ1k8 qk9QP2iOG3NWTwZtd4bS7MKmtMAGzyWtPbfl5El63snFK8dKfuqauQcjnywO7zn1 6aH8vzaerAaRbFYag0F1frH2r9hDx2mK/JVYyeVfWUC9OLAAboncSo2D0Blg9SF5 HRi3ODGmni9PjJTpeIiG7cXPuY9mzHGfXfmUUAPEqgG44Zf5ndDd -----END CERTIFICATE-----Generated at Mon Sep 8 12:34:51 2025 by rpki-client