$ rpki-client -vvf repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a653a3a2f34382d3438203d3e203536323436.roa File: 323430343a666430303a653a3a2f34382d3438203d3e203536323436.roa (raw, json) Hash identifier: tDVx42kpKuLIe0hyvPVzdK9LCfjDKy5rnDo/PeqJEFM= Subject key identifier: 14:0A:2D:08:24:5A:E3:1D:AC:68:BC:1F:D5:19:74:4C:26:78:0F:2F Certificate issuer: /CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Certificate serial: 75F421C73131D15F621B75475B965FA886211603 Authority key identifier: AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a653a3a2f34382d3438203d3e203536323436.roa Signing time: Mon 08 Sep 2025 04:00:00 +0000 ROA not before: Mon 08 Sep 2025 03:55:00 +0000 ROA not after: Mon 07 Sep 2026 04:00:00 +0000 asID: 56246 IP address blocks: 2404:fd00:e::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Sep 2025 12:12:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:f4:21:c7:31:31:d1:5f:62:1b:75:47:5b:96:5f:a8:86:21:16:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Validity Not Before: Sep 8 03:55:00 2025 GMT Not After : Sep 7 04:00:00 2026 GMT Subject: CN=140A2D08245AE31DAC68BC1FD519744C26780F2F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:20:a6:2d:a9:e8:bd:a3:31:47:9a:8c:11:e3: 60:41:29:ff:cf:be:fe:46:ee:45:8b:42:87:53:c9: 3c:5e:19:7c:ce:f2:5d:e1:59:72:64:2c:d4:06:5b: f6:85:49:c7:52:0b:8f:19:fa:a2:0b:fa:57:2f:ba: b8:1b:1e:75:a6:f7:83:4f:67:15:b4:2f:84:d4:d8: b1:8d:df:88:d9:f9:5d:e6:3e:09:6a:3b:02:74:f7: fe:a6:5c:c3:21:a5:0b:1e:9a:98:97:b1:e3:f4:64: a3:53:a7:fc:21:71:dc:04:83:98:d2:b7:6d:97:a7: 5a:0a:e6:47:83:a2:c4:6c:8e:fc:19:b6:28:aa:af: f5:fc:1d:df:f2:81:1c:c3:4d:22:b2:a7:74:e9:af: 21:74:b2:72:50:18:ec:3f:f3:d4:a4:21:fa:f5:72: d2:96:4b:5f:db:de:a1:74:18:c3:c0:7b:69:c4:5f: 87:cf:e1:67:6e:14:0b:4b:d8:9b:95:a9:92:a1:b6: b8:31:92:66:50:7e:c3:a4:35:2d:4b:36:b6:d5:e9: 7c:6f:ed:50:e9:0b:54:3e:d5:85:2d:8e:1e:3a:43: 32:35:7d:b8:aa:b9:79:97:98:ed:19:6a:1d:c3:ca: c5:84:75:0a:23:9e:a6:f4:dd:75:62:04:59:fd:91: 63:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:0A:2D:08:24:5A:E3:1D:AC:68:BC:1F:D5:19:74:4C:26:78:0F:2F X509v3 Authority Key Identifier: keyid:AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a653a3a2f34382d3438203d3e203536323436.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:fd00:e::/48 Signature Algorithm: sha256WithRSAEncryption 6a:69:b2:d5:b0:59:83:a3:9f:70:38:f9:d6:b2:34:a9:1c:f8: 63:09:b0:f9:48:01:d6:ad:ef:6c:24:f2:4e:7c:a1:a0:b0:ec: c3:c6:cb:0b:37:89:e5:60:46:6e:69:59:ef:8f:50:f2:44:53: 1b:61:72:48:db:1f:a4:41:ba:0d:ce:5a:22:c8:6d:d6:5b:b1: 11:56:06:59:b5:9b:8b:8d:99:bc:bd:2d:9c:ea:34:c7:aa:46: d6:8f:de:79:fd:84:1f:5e:28:0d:67:dc:0f:b0:eb:50:bf:82: 46:b8:c3:b4:f5:ca:4e:71:1f:54:6e:5e:8d:b9:ca:85:e0:49: 9f:4d:16:6d:b4:2d:08:38:00:43:91:39:f5:7b:b4:9a:0f:b8: 77:05:43:b8:31:07:b0:90:cc:62:b9:60:37:1c:87:29:e5:80: 63:49:3f:b1:6b:e3:c1:a6:ff:a3:01:9f:46:8e:5d:6e:65:01: 5e:46:1f:39:0c:e5:a5:18:ec:af:a9:19:e7:84:c4:fa:8a:b4: 05:78:d7:75:3f:67:c5:d4:ec:e0:8c:a3:de:35:a7:91:c8:b1: 0f:17:60:54:87:b5:c2:3d:13:b3:57:18:9a:66:66:1a:37:78: 9b:82:dd:bd:02:de:db:3d:de:18:20:9f:d1:83:a4:ae:a4:d8: 42:ae:e4:af -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUdfQhxzEx0V9iG3VHW5ZfqIYhFgMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FF NEQ1RkRFNjAeFw0yNTA5MDgwMzU1MDBaFw0yNjA5MDcwNDAwMDBaMDMxMTAvBgNV BAMTKDE0MEEyRDA4MjQ1QUUzMURBQzY4QkMxRkQ1MTk3NDRDMjY3ODBGMkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDUIKYtqei9ozFHmowR42BBKf/P vv5G7kWLQodTyTxeGXzO8l3hWXJkLNQGW/aFScdSC48Z+qIL+lcvurgbHnWm94NP ZxW0L4TU2LGN34jZ+V3mPglqOwJ09/6mXMMhpQsempiXseP0ZKNTp/whcdwEg5jS t22Xp1oK5keDosRsjvwZtiiqr/X8Hd/ygRzDTSKyp3TpryF0snJQGOw/89SkIfr1 ctKWS1/b3qF0GMPAe2nEX4fP4WduFAtL2JuVqZKhtrgxkmZQfsOkNS1LNrbV6Xxv 7VDpC1Q+1YUtjh46QzI1fbiquXmXmO0Zah3DysWEdQojnqb03XViBFn9kWPzAgMB AAGjggI3MIICMzAdBgNVHQ4EFgQUFAotCCRa4x2saLwf1Rl0TCZ4Dy8wHwYDVR0j BBgwFoAUr0tY1LFlMLn2kZ2/T1PcOuTV/eYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZDIyN2RiZS00YTFjLTQwYjAtOTRhNi03OTNiZGJkYTM3NzcvMC9BRjRCNThENEIx NjUzMEI5RjY5MTlEQkY0RjUzREMzQUU0RDVGREU2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FFNEQ1 RkRFNi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVkMjI3ZGJlLTRhMWMtNDBiMC05 NGE2LTc5M2JkYmRhMzc3Ny8wLzMyMzQzMDM0M2E2NjY0MzAzMDNhNjUzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzNTM2MzIzNDM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAT9AAAOMA0G CSqGSIb3DQEBCwUAA4IBAQBqabLVsFmDo59wOPnWsjSpHPhjCbD5SAHWre9sJPJO fKGgsOzDxssLN4nlYEZuaVnvj1DyRFMbYXJI2x+kQboNzloiyG3WW7ERVgZZtZuL jZm8vS2c6jTHqkbWj955/YQfXigNZ9wPsOtQv4JGuMO09cpOcR9Ubl6NucqF4Emf TRZttC0IOABDkTn1e7SaD7h3BUO4MQewkMxiuWA3HIcp5YBjST+xa+PBpv+jAZ9G jl1uZQFeRh85DOWlGOyvqRnnhMT6irQFeNd1P2fF1OzgjKPeNaeRyLEPF2BUh7XC PROzVxiaZmYaN3ibgt29At7bPd4YIJ/Rg6SupNhCruSv -----END CERTIFICATE-----Generated at Mon Sep 8 09:33:49 2025 by rpki-client