$ rpki-client -vvf repo-rpki.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/323430333a653063303a3a2f34382d3438203d3e20313338303839.roa File: 323430333a653063303a3a2f34382d3438203d3e20313338303839.roa (raw, json) Hash identifier: 56yoy1pZXhES0/QXKkOUvjrn9k9A+/MhvPggVyF266U= Subject key identifier: AE:57:D2:6F:F8:61:DC:01:94:1D:C7:CE:4F:D6:6A:8F:F8:09:BF:2E Certificate issuer: /CN=7D4F0D007B60134996AC3198B9E5B71EAF70E733 Certificate serial: 6F9A90D75877B213AE496D84718E492B0C56BECE Authority key identifier: 7D:4F:0D:00:7B:60:13:49:96:AC:31:98:B9:E5:B7:1E:AF:70:E7:33 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7D4F0D007B60134996AC3198B9E5B71EAF70E733.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/323430333a653063303a3a2f34382d3438203d3e20313338303839.roa Signing time: Sat 08 Mar 2025 09:00:00 +0000 ROA not before: Sat 08 Mar 2025 08:55:00 +0000 ROA not after: Sat 07 Mar 2026 09:00:00 +0000 asID: 138089 IP address blocks: 2403:e0c0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/7D4F0D007B60134996AC3198B9E5B71EAF70E733.crl rsync://repo-rpki.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/7D4F0D007B60134996AC3198B9E5B71EAF70E733.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7D4F0D007B60134996AC3198B9E5B71EAF70E733.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Nov 2025 05:25:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:9a:90:d7:58:77:b2:13:ae:49:6d:84:71:8e:49:2b:0c:56:be:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7D4F0D007B60134996AC3198B9E5B71EAF70E733 Validity Not Before: Mar 8 08:55:00 2025 GMT Not After : Mar 7 09:00:00 2026 GMT Subject: CN=AE57D26FF861DC01941DC7CE4FD66A8FF809BF2E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:7e:98:98:75:9a:e6:e4:a6:58:bc:c3:b6:97: 5a:91:fb:cc:06:de:78:4d:bb:2d:fb:26:33:c5:80: 6e:1b:2c:32:fa:28:ea:8e:97:43:ed:77:c9:57:e6: 28:87:d9:65:64:cb:ec:e4:17:25:64:6e:73:43:2b: 3d:04:99:70:12:d9:49:a8:0a:13:12:58:e2:13:2d: 94:f8:db:37:a0:b0:11:26:3b:22:dd:e2:70:0a:ce: 74:f6:23:17:d5:6b:21:26:98:cc:2e:b5:ea:b5:74: 5f:7f:3e:f1:0b:b0:45:bc:4a:24:6b:2e:76:56:c6: 72:c6:30:dd:ee:af:20:02:6c:3d:59:65:87:8d:66: 7c:1f:90:26:97:2a:8f:91:61:f9:34:40:ea:9e:a3: de:d6:fc:15:5b:20:74:7f:4d:50:72:e8:90:38:2c: 91:56:06:47:0d:06:87:23:30:d8:fa:14:33:82:0a: 53:6a:c6:7b:34:14:40:4d:6c:a4:3d:c2:be:53:36: 31:17:c5:29:0e:81:fa:43:c9:ae:28:db:06:b9:b5: a9:0e:0f:5e:3e:eb:60:a6:c9:9f:22:40:fa:28:19: 2a:8a:b2:0a:8e:3e:18:e2:15:e4:ce:cf:20:3d:4c: af:cf:c6:52:59:0e:ac:2e:07:22:9b:8e:6b:66:f1: 2c:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:57:D2:6F:F8:61:DC:01:94:1D:C7:CE:4F:D6:6A:8F:F8:09:BF:2E X509v3 Authority Key Identifier: keyid:7D:4F:0D:00:7B:60:13:49:96:AC:31:98:B9:E5:B7:1E:AF:70:E7:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/7D4F0D007B60134996AC3198B9E5B71EAF70E733.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7D4F0D007B60134996AC3198B9E5B71EAF70E733.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/323430333a653063303a3a2f34382d3438203d3e20313338303839.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:e0c0::/48 Signature Algorithm: sha256WithRSAEncryption d8:17:d3:27:d0:95:b1:e0:11:f9:ed:8e:11:a8:c7:3c:40:bc: 5b:11:c7:5d:12:8e:4e:10:a5:39:6a:e6:88:2c:2d:44:1f:30: 07:ff:3d:d1:56:85:40:03:97:d0:0e:83:e5:02:72:1e:06:b8: ee:57:64:24:2f:25:cf:61:85:e4:b8:67:67:03:58:f8:3d:a4: fb:bc:d7:0e:63:8a:80:41:c5:3b:ec:94:fa:1f:81:25:40:24: 56:99:e1:75:74:10:56:22:08:47:67:f7:87:a4:c8:f8:ae:39: e9:2b:e7:6b:18:27:a7:82:89:01:53:43:de:91:f7:e3:8c:08: bd:ea:39:dd:7f:75:40:45:55:9d:6b:a9:33:ee:a1:72:02:7b: a4:72:9b:10:3e:cc:cd:4a:8f:67:7b:c1:c9:e7:f1:2a:63:a1: 57:6a:a6:99:bf:40:4a:95:98:6c:4a:89:33:9d:51:ae:fa:8e: 84:e4:05:f5:70:13:53:39:01:5f:d2:a7:77:a7:35:32:30:80: e0:73:79:cb:47:74:06:28:86:a0:3f:77:3a:8e:d1:e4:f2:a3: 3e:b4:da:12:ab:a4:0a:f6:c6:f9:1f:4c:bc:ef:38:0b:d5:73: ac:f9:01:6e:ba:44:6b:e3:88:51:3e:20:13:34:d6:5c:d1:36: d7:ee:b8:3a -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgIUb5qQ11h3shOuSW2EcY5JKwxWvs4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0Q0RjBEMDA3QjYwMTM0OTk2QUMzMTk4QjlFNUI3MUVB RjcwRTczMzAeFw0yNTAzMDgwODU1MDBaFw0yNjAzMDcwOTAwMDBaMDMxMTAvBgNV BAMTKEFFNTdEMjZGRjg2MURDMDE5NDFEQzdDRTRGRDY2QThGRjgwOUJGMkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6fpiYdZrm5KZYvMO2l1qR+8wG 3nhNuy37JjPFgG4bLDL6KOqOl0Ptd8lX5iiH2WVky+zkFyVkbnNDKz0EmXAS2Umo ChMSWOITLZT42zegsBEmOyLd4nAKznT2IxfVayEmmMwuteq1dF9/PvELsEW8SiRr LnZWxnLGMN3uryACbD1ZZYeNZnwfkCaXKo+RYfk0QOqeo97W/BVbIHR/TVBy6JA4 LJFWBkcNBocjMNj6FDOCClNqxns0FEBNbKQ9wr5TNjEXxSkOgfpDya4o2wa5takO D14+62CmyZ8iQPooGSqKsgqOPhjiFeTOzyA9TK/PxlJZDqwuByKbjmtm8SxfAgMB AAGjggI1MIICMTAdBgNVHQ4EFgQUrlfSb/hh3AGUHcfOT9Zqj/gJvy4wHwYDVR0j BBgwFoAUfU8NAHtgE0mWrDGYueW3Hq9w5zMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YWJhNGU1OS1mYjMxLTQxYjUtODhlNy0wYjJjZWQxZjIwMWMvMC83RDRGMEQwMDdC NjAxMzQ5OTZBQzMxOThCOUU1QjcxRUFGNzBFNzMzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0Q0RjBEMDA3QjYwMTM0OTk2QUMzMTk4QjlFNUI3MUVBRjcw RTczMy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVhYmE0ZTU5LWZiMzEtNDFiNS04 OGU3LTBiMmNlZDFmMjAxYy8wLzMyMzQzMDMzM2E2NTMwNjMzMDNhM2EyZjM0Mzgy ZDM0MzgyMDNkM2UyMDMxMzMzODMwMzgzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQD4MAAADANBgkq hkiG9w0BAQsFAAOCAQEA2BfTJ9CVseAR+e2OEajHPEC8WxHHXRKOThClOWrmiCwt RB8wB/890VaFQAOX0A6D5QJyHga47ldkJC8lz2GF5LhnZwNY+D2k+7zXDmOKgEHF O+yU+h+BJUAkVpnhdXQQViIIR2f3h6TI+K456Svnaxgnp4KJAVND3pH344wIveo5 3X91QEVVnWupM+6hcgJ7pHKbED7MzUqPZ3vByefxKmOhV2qmmb9ASpWYbEqJM51R rvqOhOQF9XATUzkBX9Knd6c1MjCA4HN5y0d0BiiGoD93Oo7R5PKjPrTaEqukCvbG +R9MvO84C9VzrPkBbrpEa+OIUT4gEzTWXNE21+64Og== -----END CERTIFICATE-----Generated at Wed Nov 5 18:34:16 2025 by rpki-client