$ rpki-client -vvf repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/323430343a633030303a323a3a2f34382d3438203d3e203435313437.roa File: 323430343a633030303a323a3a2f34382d3438203d3e203435313437.roa (raw, json) Hash identifier: 9HQn/64fqqqSxuxj52by6oY8QLLWgSuZJgQ6f6JE+mQ= Subject key identifier: FA:0F:6F:1D:B4:68:5C:95:EA:51:42:EC:1E:74:54:26:53:3D:64:2C Certificate issuer: /CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Certificate serial: 2CE1E07D97BF105237F837477658901171C4F082 Authority key identifier: F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/323430343a633030303a323a3a2f34382d3438203d3e203435313437.roa Signing time: Sun 31 Aug 2025 14:00:00 +0000 ROA not before: Sun 31 Aug 2025 13:55:00 +0000 ROA not after: Sun 30 Aug 2026 14:00:00 +0000 asID: 45147 IP address blocks: 2404:c000:2::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Oct 2025 06:59:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:e1:e0:7d:97:bf:10:52:37:f8:37:47:76:58:90:11:71:c4:f0:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Validity Not Before: Aug 31 13:55:00 2025 GMT Not After : Aug 30 14:00:00 2026 GMT Subject: CN=FA0F6F1DB4685C95EA5142EC1E745426533D642C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:cb:fa:28:4c:c0:06:37:94:0a:19:5f:17:35: d9:c8:53:74:7c:82:1a:76:0f:62:41:d1:12:5c:26: 1f:d7:0b:de:e9:9e:69:b5:f2:a4:9c:12:a6:87:cd: 7a:08:c1:e5:0e:e4:7c:dd:e6:91:26:77:ac:f2:26: 50:61:e3:39:9e:18:18:34:8b:7a:31:cc:f7:e4:43: f2:08:25:8c:83:37:98:e7:ff:12:96:83:69:44:81: d8:7f:f7:31:b3:ae:8b:c3:f1:f2:4b:3c:3d:0c:73: 74:1a:20:5d:e4:1a:b9:5d:9f:fa:c0:69:8b:55:a8: 1d:96:14:2a:6c:27:ac:df:7f:13:ec:48:6b:6a:93: ab:51:0b:6b:d7:75:33:36:79:b1:e6:5f:ec:56:dc: ce:ab:5d:76:2f:31:eb:3c:c7:39:30:62:16:5f:a9: 20:74:81:2a:6c:50:a8:7d:aa:49:56:6d:93:6b:a2: 63:00:83:39:0b:07:7a:20:16:eb:43:12:8c:44:9f: 08:8b:fc:e6:27:92:bd:32:ca:bb:d7:a1:0a:08:73: 5b:fd:f0:de:1a:32:ec:3f:2b:7f:37:6f:95:b2:bf: 85:7d:28:cb:8e:10:42:c5:59:67:af:34:57:92:18: 60:6d:35:cc:07:97:a8:72:31:4d:bf:8d:09:a7:38: 37:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:0F:6F:1D:B4:68:5C:95:EA:51:42:EC:1E:74:54:26:53:3D:64:2C X509v3 Authority Key Identifier: keyid:F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/323430343a633030303a323a3a2f34382d3438203d3e203435313437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:c000:2::/48 Signature Algorithm: sha256WithRSAEncryption 10:3e:cb:1a:c2:37:4a:e6:64:15:95:99:12:19:7a:62:d7:13: e0:a1:fa:f2:e9:1d:83:88:c8:00:08:db:07:c6:2c:0c:66:14: ed:25:74:81:d4:8d:25:05:9c:b6:3f:a9:8e:1a:27:a4:83:22: 6c:57:c8:e3:c8:6b:4c:b3:bb:b6:f2:59:c1:77:e3:a6:76:cf: b7:32:ee:c3:18:c8:a4:a5:08:67:a4:d7:08:67:47:0d:32:cf: bf:e3:fd:7c:61:7c:02:c6:a4:91:c1:2e:1c:0b:34:91:69:ce: d4:ff:1d:f6:60:00:88:eb:49:50:02:e2:e9:ee:05:d4:dc:7a: 55:4c:67:39:86:ef:b0:64:d4:7f:5e:4d:d7:39:8f:7f:2c:3e: fc:e9:38:e9:aa:b8:41:8f:55:b4:36:34:ae:31:69:63:18:9e: 5e:0b:75:e4:2e:4a:70:3b:56:5b:05:ac:eb:c9:af:12:04:42: b6:f9:c7:f9:2a:f8:e2:0a:b3:5a:91:88:74:2f:67:79:91:29: 34:be:0d:73:96:93:7e:04:34:d9:f4:5a:50:2f:51:83:8c:bd: fe:df:ea:08:5f:7f:a5:9d:b8:6c:fa:5f:b6:16:bb:6a:73:8f: 0f:19:c5:17:26:82:87:c8:92:61:52:db:3c:a3:a7:ee:15:5d: a9:e4:cc:bc -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIULOHgfZe/EFI3+DdHdliQEXHE8IIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNE NjdENjUxMTAeFw0yNTA4MzExMzU1MDBaFw0yNjA4MzAxNDAwMDBaMDMxMTAvBgNV BAMTKEZBMEY2RjFEQjQ2ODVDOTVFQTUxNDJFQzFFNzQ1NDI2NTMzRDY0MkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDWy/ooTMAGN5QKGV8XNdnIU3R8 ghp2D2JB0RJcJh/XC97pnmm18qScEqaHzXoIweUO5Hzd5pEmd6zyJlBh4zmeGBg0 i3oxzPfkQ/IIJYyDN5jn/xKWg2lEgdh/9zGzrovD8fJLPD0Mc3QaIF3kGrldn/rA aYtVqB2WFCpsJ6zffxPsSGtqk6tRC2vXdTM2ebHmX+xW3M6rXXYvMes8xzkwYhZf qSB0gSpsUKh9qklWbZNromMAgzkLB3ogFutDEoxEnwiL/OYnkr0yyrvXoQoIc1v9 8N4aMuw/K383b5Wyv4V9KMuOEELFWWevNFeSGGBtNcwHl6hyMU2/jQmnODffAgMB AAGjggI3MIICMzAdBgNVHQ4EFgQU+g9vHbRoXJXqUULsHnRUJlM9ZCwwHwYDVR0j BBgwFoAU85mhoMGP6NvaI84hdeDLI9Z9ZREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MzVmN2EyZi03MjVlLTQzOTktODY5YS00YjFmY2YyYzZhMGMvMC9GMzk5QTFBMEMx OEZFOERCREEyM0NFMjE3NUUwQ0IyM0Q2N0Q2NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNENjdE NjUxMS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYzNWY3YTJmLTcyNWUtNDM5OS04 NjlhLTRiMWZjZjJjNmEwYy8wLzMyMzQzMDM0M2E2MzMwMzAzMDNhMzIzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzNDM1MzEzNDM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJATAAAACMA0G CSqGSIb3DQEBCwUAA4IBAQAQPssawjdK5mQVlZkSGXpi1xPgofry6R2DiMgACNsH xiwMZhTtJXSB1I0lBZy2P6mOGiekgyJsV8jjyGtMs7u28lnBd+Omds+3Mu7DGMik pQhnpNcIZ0cNMs+/4/18YXwCxqSRwS4cCzSRac7U/x32YACI60lQAuLp7gXU3HpV TGc5hu+wZNR/Xk3XOY9/LD786TjpqrhBj1W0NjSuMWljGJ5eC3XkLkpwO1ZbBazr ya8SBEK2+cf5KvjiCrNakYh0L2d5kSk0vg1zlpN+BDTZ9FpQL1GDjL3+3+oIX3+l nbhs+l+2Frtqc48PGcUXJoKHyJJhUts8o6fuFV2p5My8 -----END CERTIFICATE-----Generated at Sun Oct 26 13:03:45 2025 by rpki-client