$ rpki-client -vvf repo-rpki.idnic.net/repo/5ad6dcc9-1700-48eb-9099-6678f91bf44e/0/323430323a623234303a3a2f34372d3437203d3e203234313938.roa File: 323430323a623234303a3a2f34372d3437203d3e203234313938.roa (raw, json) Hash identifier: +0TglIi2p7jwKSstfwGK7HxpA9aZK4fp6xgZ4tfuSJ0= Subject key identifier: 09:46:8E:73:65:FA:BA:AC:B2:A0:22:3A:AF:6B:66:AC:87:2C:AB:34 Certificate issuer: /CN=F38DFF094E16843854EAC1403C69FD7F77809D02 Certificate serial: 3A34BFA26883D769A1807CB6F19E2A78AC5BC5DB Authority key identifier: F3:8D:FF:09:4E:16:84:38:54:EA:C1:40:3C:69:FD:7F:77:80:9D:02 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F38DFF094E16843854EAC1403C69FD7F77809D02.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5ad6dcc9-1700-48eb-9099-6678f91bf44e/0/323430323a623234303a3a2f34372d3437203d3e203234313938.roa Signing time: Thu 28 Aug 2025 10:02:27 +0000 ROA not before: Thu 28 Aug 2025 09:57:27 +0000 ROA not after: Thu 27 Aug 2026 10:02:27 +0000 asID: 24198 IP address blocks: 2402:b240::/47 maxlen: 47 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5ad6dcc9-1700-48eb-9099-6678f91bf44e/0/F38DFF094E16843854EAC1403C69FD7F77809D02.crl rsync://repo-rpki.idnic.net/repo/5ad6dcc9-1700-48eb-9099-6678f91bf44e/0/F38DFF094E16843854EAC1403C69FD7F77809D02.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F38DFF094E16843854EAC1403C69FD7F77809D02.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Sep 2025 22:46:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:34:bf:a2:68:83:d7:69:a1:80:7c:b6:f1:9e:2a:78:ac:5b:c5:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F38DFF094E16843854EAC1403C69FD7F77809D02 Validity Not Before: Aug 28 09:57:27 2025 GMT Not After : Aug 27 10:02:27 2026 GMT Subject: CN=09468E7365FABAACB2A0223AAF6B66AC872CAB34 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:6b:5b:4d:1b:11:13:5e:bf:3d:33:71:9a:0c: 48:e7:f5:27:82:0d:fc:ac:f1:03:ac:fe:08:4b:0d: 50:40:dd:48:c8:c8:cc:d8:2c:1a:5c:14:bf:a2:e6: 14:5f:dd:d3:9b:6e:95:9f:fd:33:d7:51:1c:63:5c: ab:70:dd:58:bb:51:99:4b:fd:40:83:6d:79:41:a9: 71:e6:d2:9c:8b:c7:9e:23:4f:6b:de:c2:61:e3:a2: c8:9e:b5:d4:3a:b5:43:be:39:d9:e9:d9:af:c5:9f: 79:d6:36:b4:ac:54:5a:de:c5:1e:60:95:06:63:56: 6d:00:b8:bf:10:14:5c:da:d3:a3:4d:d1:7a:19:e6: bc:80:49:40:88:71:ed:74:35:20:3f:65:59:7b:22: e7:06:d7:74:39:17:b5:c0:5c:e5:14:64:9f:18:de: d1:d7:36:53:59:97:6d:52:d4:55:ba:56:6e:24:98: 63:3c:67:63:24:68:8b:49:37:d9:4e:74:05:eb:76: cd:0d:27:87:d8:62:e5:3a:06:6b:14:bc:9e:64:9c: 8f:70:6e:94:42:db:b7:0a:43:20:90:d1:34:8c:da: da:dd:6a:45:12:df:ea:77:7c:25:21:94:2e:31:3c: df:5a:d5:9d:7f:bc:f3:2b:53:3d:51:85:a1:17:42: e1:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:46:8E:73:65:FA:BA:AC:B2:A0:22:3A:AF:6B:66:AC:87:2C:AB:34 X509v3 Authority Key Identifier: keyid:F3:8D:FF:09:4E:16:84:38:54:EA:C1:40:3C:69:FD:7F:77:80:9D:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5ad6dcc9-1700-48eb-9099-6678f91bf44e/0/F38DFF094E16843854EAC1403C69FD7F77809D02.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F38DFF094E16843854EAC1403C69FD7F77809D02.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5ad6dcc9-1700-48eb-9099-6678f91bf44e/0/323430323a623234303a3a2f34372d3437203d3e203234313938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:b240::/47 Signature Algorithm: sha256WithRSAEncryption 30:85:4e:7a:2a:d6:40:25:ec:15:86:e0:b7:53:e3:e7:fb:74: a9:8e:c1:73:87:c4:a9:c2:0f:25:7b:76:b9:c4:c0:80:2c:cb: 69:dc:e4:1c:11:a5:56:93:50:09:c8:4b:ef:cf:60:9c:cf:5c: 0b:f9:a7:93:0b:c2:a2:fd:c4:5a:fd:ac:9b:10:a8:52:5c:56: 62:cb:20:3b:fa:a3:89:74:ee:b6:e1:66:bd:19:f6:05:27:99: d6:41:12:86:cb:49:4d:2b:c4:77:05:97:cf:65:fa:63:22:f5: 89:d5:7d:bd:a5:87:cb:53:9e:95:68:1c:d6:3a:ff:a2:a4:45: 31:56:c2:6d:85:fc:0d:f9:86:f5:14:1a:63:05:74:f4:e3:de: 8d:9c:77:8d:16:6d:4d:58:7d:bd:47:8d:8a:2c:da:ca:f8:61: 45:71:99:cf:4b:ac:b0:21:13:9b:59:48:b5:79:1e:0c:fd:71: 9b:c8:2e:68:99:ca:61:1f:2d:80:62:d4:81:4e:8c:fd:a5:2f: ab:1e:15:b2:6f:14:9c:91:75:92:2d:cc:69:68:51:9f:18:ac: 61:23:b8:1f:65:62:a8:ab:d9:e9:9b:e1:23:49:26:ee:71:a9: 68:fc:34:85:d4:6b:1b:ab:b4:d2:44:d9:e0:6a:52:cb:87:93: 68:f7:49:1b -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUOjS/omiD12mhgHy28Z4qeKxbxdswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM4REZGMDk0RTE2ODQzODU0RUFDMTQwM0M2OUZEN0Y3 NzgwOUQwMjAeFw0yNTA4MjgwOTU3MjdaFw0yNjA4MjcxMDAyMjdaMDMxMTAvBgNV BAMTKDA5NDY4RTczNjVGQUJBQUNCMkEwMjIzQUFGNkI2NkFDODcyQ0FCMzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHa1tNGxETXr89M3GaDEjn9SeC Dfys8QOs/ghLDVBA3UjIyMzYLBpcFL+i5hRf3dObbpWf/TPXURxjXKtw3Vi7UZlL /UCDbXlBqXHm0pyLx54jT2vewmHjosietdQ6tUO+Odnp2a/Fn3nWNrSsVFrexR5g lQZjVm0AuL8QFFza06NN0XoZ5ryASUCIce10NSA/ZVl7IucG13Q5F7XAXOUUZJ8Y 3tHXNlNZl21S1FW6Vm4kmGM8Z2MkaItJN9lOdAXrds0NJ4fYYuU6BmsUvJ5knI9w bpRC27cKQyCQ0TSM2trdakUS3+p3fCUhlC4xPN9a1Z1/vPMrUz1RhaEXQuHDAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUCUaOc2X6uqyyoCI6r2tmrIcsqzQwHwYDVR0j BBgwFoAU843/CU4WhDhU6sFAPGn9f3eAnQIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YWQ2ZGNjOS0xNzAwLTQ4ZWItOTA5OS02Njc4ZjkxYmY0NGUvMC9GMzhERkYwOTRF MTY4NDM4NTRFQUMxNDAzQzY5RkQ3Rjc3ODA5RDAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjM4REZGMDk0RTE2ODQzODU0RUFDMTQwM0M2OUZEN0Y3Nzgw OUQwMi5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVhZDZkY2M5LTE3MDAtNDhlYi05 MDk5LTY2NzhmOTFiZjQ0ZS8wLzMyMzQzMDMyM2E2MjMyMzQzMDNhM2EyZjM0Mzcy ZDM0MzcyMDNkM2UyMDMyMzQzMTM5Mzgucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwEkArJAAAAwDQYJKoZI hvcNAQELBQADggEBADCFTnoq1kAl7BWG4LdT4+f7dKmOwXOHxKnCDyV7drnEwIAs y2nc5BwRpVaTUAnIS+/PYJzPXAv5p5MLwqL9xFr9rJsQqFJcVmLLIDv6o4l07rbh Zr0Z9gUnmdZBEobLSU0rxHcFl89l+mMi9YnVfb2lh8tTnpVoHNY6/6KkRTFWwm2F /A35hvUUGmMFdPTj3o2cd40WbU1Yfb1HjYos2sr4YUVxmc9LrLAhE5tZSLV5Hgz9 cZvILmiZymEfLYBi1IFOjP2lL6seFbJvFJyRdZItzGloUZ8YrGEjuB9lYqir2emb 4SNJJu5xqWj8NIXUaxurtNJE2eBqUsuHk2j3SRs= -----END CERTIFICATE-----Generated at Mon Sep 8 13:56:53 2025 by rpki-client