$ rpki-client -vvf repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/323430343a633030303a343030323a3a2f34372d3437203d3e203435313437.roa File: 323430343a633030303a343030323a3a2f34372d3437203d3e203435313437.roa (raw, json) Hash identifier: kkkq2NSH8CKuKQ6f2rjoaTmpQ9K5nG0japdGmT1nsKY= Subject key identifier: CC:C1:91:0E:F8:39:A2:22:12:66:C9:A5:44:B2:B3:41:45:70:AB:F2 Certificate issuer: /CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Certificate serial: 2DF6E1C77FDB27047644FAE7E9D5D9A9DB878F5C Authority key identifier: F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/323430343a633030303a343030323a3a2f34372d3437203d3e203435313437.roa Signing time: Sun 31 Aug 2025 15:00:00 +0000 ROA not before: Sun 31 Aug 2025 14:55:00 +0000 ROA not after: Sun 30 Aug 2026 15:00:00 +0000 asID: 45147 IP address blocks: 2404:c000:4002::/47 maxlen: 47 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Sep 2025 05:31:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:f6:e1:c7:7f:db:27:04:76:44:fa:e7:e9:d5:d9:a9:db:87:8f:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Validity Not Before: Aug 31 14:55:00 2025 GMT Not After : Aug 30 15:00:00 2026 GMT Subject: CN=CCC1910EF839A2221266C9A544B2B3414570ABF2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:bf:f9:aa:9d:98:ac:eb:df:d9:ef:8c:79:9d: ce:ed:6f:41:5d:b2:6f:f0:04:9c:76:2f:ba:fb:6d: dc:a0:81:8e:27:5e:52:11:16:34:ae:14:f7:c1:bc: f0:66:6d:b8:fb:02:c8:12:9e:ab:83:7a:fb:7d:de: f4:9f:04:fc:bd:38:66:ee:ac:bb:32:61:79:00:ea: 5f:14:ea:d8:98:b1:4f:af:1e:ac:d8:a4:a3:93:ad: 24:5b:32:fb:ff:d1:d5:7a:3c:90:53:0d:13:df:40: f2:9c:26:f2:79:6c:25:c9:8e:ae:21:16:0c:8f:43: fe:53:58:d3:8e:c8:ea:ea:c3:d7:04:84:ab:30:ba: 0c:e7:2c:2d:3d:05:c5:4a:23:24:39:b2:d1:60:df: 6c:0b:b7:57:4a:49:41:c6:b2:ee:04:97:c4:f9:d4: 1b:75:45:b1:67:00:86:7b:7b:6e:1b:3b:6f:98:0f: 0e:49:a9:03:6a:c3:87:be:48:94:15:3e:dd:9b:5e: ca:b3:55:da:7f:14:57:f8:8e:ee:10:e6:18:ca:ef: df:57:12:0c:13:7a:a2:26:6b:d3:fc:3c:4d:ee:c7: 81:2f:24:b7:f7:2e:0d:10:ca:cb:3c:90:c1:78:07: f9:0f:9c:01:be:84:d0:15:fd:13:d5:69:ce:e9:d1: 61:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:C1:91:0E:F8:39:A2:22:12:66:C9:A5:44:B2:B3:41:45:70:AB:F2 X509v3 Authority Key Identifier: keyid:F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/323430343a633030303a343030323a3a2f34372d3437203d3e203435313437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:c000:4002::/47 Signature Algorithm: sha256WithRSAEncryption 82:7b:4c:67:1e:2d:b1:22:88:da:89:2d:b5:56:16:55:96:2f: 6a:97:85:39:98:a7:ca:73:bd:61:81:84:bd:e8:ee:5c:18:18: 35:6e:d9:a9:6b:3d:e7:84:95:df:e6:ff:13:dd:b6:84:cc:04: 7a:3e:03:cc:9e:17:2c:e3:86:91:e7:d7:9d:b2:c7:80:8c:f3: ee:38:2c:2b:d8:e9:ba:d4:ef:40:3b:d2:d6:97:6e:34:a5:43: 21:2a:c8:a4:ce:8f:7d:c9:4c:16:77:e5:9a:90:8f:3a:70:fa: f4:4f:d7:31:7b:21:6b:5f:f0:01:42:29:75:7f:36:62:e6:61: 1d:eb:2e:96:7d:30:c8:38:10:52:49:f4:2d:e5:8e:32:4d:08: 59:06:d1:9f:5c:92:4c:3f:7f:6d:47:ca:9b:b1:32:4f:5f:88: 45:f9:28:e7:65:5e:a4:ef:2d:d5:1b:37:e3:c8:64:bf:00:00: f6:93:9d:d8:73:60:b8:0b:96:be:5a:f1:83:06:9a:70:8b:05: 23:e8:26:97:27:56:3a:f1:7c:09:43:d6:08:f5:ff:52:ef:74: 7f:b2:41:a1:6d:8e:8c:74:9c:4a:54:10:03:08:7b:c9:96:13: b3:c3:02:9c:24:5d:3c:c7:81:46:1f:cd:fd:8e:d8:7d:35:8c: fa:92:06:b4 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIULfbhx3/bJwR2RPrn6dXZqduHj1wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNE NjdENjUxMTAeFw0yNTA4MzExNDU1MDBaFw0yNjA4MzAxNTAwMDBaMDMxMTAvBgNV BAMTKENDQzE5MTBFRjgzOUEyMjIxMjY2QzlBNTQ0QjJCMzQxNDU3MEFCRjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEv/mqnZis69/Z74x5nc7tb0Fd sm/wBJx2L7r7bdyggY4nXlIRFjSuFPfBvPBmbbj7AsgSnquDevt93vSfBPy9OGbu rLsyYXkA6l8U6tiYsU+vHqzYpKOTrSRbMvv/0dV6PJBTDRPfQPKcJvJ5bCXJjq4h FgyPQ/5TWNOOyOrqw9cEhKswugznLC09BcVKIyQ5stFg32wLt1dKSUHGsu4El8T5 1Bt1RbFnAIZ7e24bO2+YDw5JqQNqw4e+SJQVPt2bXsqzVdp/FFf4ju4Q5hjK799X EgwTeqIma9P8PE3ux4EvJLf3Lg0Qyss8kMF4B/kPnAG+hNAV/RPVac7p0WHJAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUzMGRDvg5oiISZsmlRLKzQUVwq/IwHwYDVR0j BBgwFoAU85mhoMGP6NvaI84hdeDLI9Z9ZREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MzVmN2EyZi03MjVlLTQzOTktODY5YS00YjFmY2YyYzZhMGMvMC9GMzk5QTFBMEMx OEZFOERCREEyM0NFMjE3NUUwQ0IyM0Q2N0Q2NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNENjdE NjUxMS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYzNWY3YTJmLTcyNWUtNDM5OS04 NjlhLTRiMWZjZjJjNmEwYy8wLzMyMzQzMDM0M2E2MzMwMzAzMDNhMzQzMDMwMzIz YTNhMmYzNDM3MmQzNDM3MjAzZDNlMjAzNDM1MzEzNDM3LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcBJATA AEACMA0GCSqGSIb3DQEBCwUAA4IBAQCCe0xnHi2xIojaiS21VhZVli9ql4U5mKfK c71hgYS96O5cGBg1btmpaz3nhJXf5v8T3baEzAR6PgPMnhcs44aR59edsseAjPPu OCwr2Om61O9AO9LWl240pUMhKsikzo99yUwWd+WakI86cPr0T9cxeyFrX/ABQil1 fzZi5mEd6y6WfTDIOBBSSfQt5Y4yTQhZBtGfXJJMP39tR8qbsTJPX4hF+SjnZV6k 7y3VGzfjyGS/AAD2k53Yc2C4C5a+WvGDBppwiwUj6CaXJ1Y68XwJQ9YI9f9S73R/ skGhbY6MdJxKVBADCHvJlhOzwwKcJF08x4FGH839jth9NYz6kga0 -----END CERTIFICATE-----Generated at Mon Sep 8 12:32:40 2025 by rpki-client