$ rpki-client -vvf repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/323430343a633030303a343030343a3a2f34372d3437203d3e203535383138.roa File: 323430343a633030303a343030343a3a2f34372d3437203d3e203535383138.roa (raw, json) Hash identifier: xT4UAgwXCsWamiQXffLqBa+y1v5LzWrCisDWkKok1/s= Subject key identifier: 0F:FC:9E:C5:6A:68:DF:30:40:B0:46:A7:0E:AA:58:B9:22:BD:28:AE Certificate issuer: /CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Certificate serial: 73FC5F45CB14A0CFDA6BCB07ED131569754FDB09 Authority key identifier: F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/323430343a633030303a343030343a3a2f34372d3437203d3e203535383138.roa Signing time: Sun 31 Aug 2025 15:00:00 +0000 ROA not before: Sun 31 Aug 2025 14:55:00 +0000 ROA not after: Sun 30 Aug 2026 15:00:00 +0000 asID: 55818 IP address blocks: 2404:c000:4004::/47 maxlen: 47 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Oct 2025 06:59:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:fc:5f:45:cb:14:a0:cf:da:6b:cb:07:ed:13:15:69:75:4f:db:09 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Validity Not Before: Aug 31 14:55:00 2025 GMT Not After : Aug 30 15:00:00 2026 GMT Subject: CN=0FFC9EC56A68DF3040B046A70EAA58B922BD28AE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:53:a9:59:8c:b7:8d:e9:b2:1a:62:1b:94:1b: 7a:d4:c1:10:1c:27:b5:84:9f:da:2d:84:21:d3:ac: 6a:39:32:6a:b3:03:b5:36:f3:1c:78:c7:2c:89:92: a7:a3:f6:38:43:8b:72:73:78:09:49:5c:81:68:f6: e2:81:a7:9e:23:b0:1f:51:56:a0:cf:26:80:09:cb: cf:39:ff:b5:13:52:c4:8f:d7:77:ad:c8:e1:da:20: 4c:66:f2:7d:f2:5b:bd:52:92:82:1d:8e:d3:5a:13: f4:6b:89:82:54:53:98:ed:27:31:90:b5:cf:da:3b: 75:e5:5c:af:42:fb:d0:c3:4d:75:3f:29:4c:fd:a6: 71:6e:f9:05:bc:1f:59:76:30:5b:1a:90:83:e4:d4: cd:b6:52:a4:52:3d:1e:92:35:b1:13:95:fb:8d:ee: 01:c5:de:25:b8:90:55:3d:fd:09:98:db:59:a8:d0: a7:a3:22:5f:40:65:45:9f:ce:fc:4b:1f:16:30:2f: db:3e:29:1d:06:b3:e8:1b:d6:bd:77:b7:56:47:9a: 46:88:5e:a5:cb:b0:5b:c4:e8:08:3c:e9:e4:e1:20: a7:c1:95:0d:83:e8:85:db:36:78:c5:5b:71:45:5b: 23:77:2b:bd:88:18:30:b7:40:a8:23:c9:56:66:ea: 39:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:FC:9E:C5:6A:68:DF:30:40:B0:46:A7:0E:AA:58:B9:22:BD:28:AE X509v3 Authority Key Identifier: keyid:F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/323430343a633030303a343030343a3a2f34372d3437203d3e203535383138.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:c000:4004::/47 Signature Algorithm: sha256WithRSAEncryption 82:b0:13:8f:bd:3d:cb:98:a9:82:22:90:7e:dd:c6:1c:aa:89: 70:93:d7:30:0c:0d:8d:3e:a8:3d:13:a7:0d:4c:e4:f6:b0:90: 37:b4:09:56:c6:15:c0:88:2a:d4:e5:e5:c2:c6:3d:fc:04:10: 33:dd:50:6c:d6:3c:e5:f2:3f:ef:c5:57:3a:6f:99:43:70:2c: e1:e3:fe:76:12:c5:68:c7:bb:28:03:c3:36:1d:82:34:f5:1b: f9:63:c9:2c:8e:34:03:a8:e1:bb:ab:f7:6b:fa:54:bb:a8:88: 96:e0:fb:90:6e:89:d7:76:e2:9f:ec:72:12:08:c9:d9:0a:9d: 2e:9f:64:19:b2:6c:13:a0:3d:28:32:f7:8d:25:b4:cb:27:92: 86:37:ae:03:21:cd:be:56:c8:1c:65:60:61:46:ff:15:fd:f1: 48:97:f4:b1:7f:91:5c:78:ce:80:ca:97:74:22:65:6c:70:1d: 0c:07:e2:60:7f:98:5d:2e:59:da:42:9b:bb:05:2b:93:6b:d8: e2:18:7e:f2:d6:4b:8a:df:33:36:48:9b:21:bb:6f:da:b1:49: 02:a0:a3:a9:8f:ff:a6:b8:fc:72:9d:34:58:a3:c4:08:f4:3f: fc:53:4c:9a:91:0c:bb:2f:53:3e:58:2b:ac:f7:73:b0:ae:a5: 42:13:d3:cd -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUc/xfRcsUoM/aa8sH7RMVaXVP2wkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNE NjdENjUxMTAeFw0yNTA4MzExNDU1MDBaFw0yNjA4MzAxNTAwMDBaMDMxMTAvBgNV BAMTKDBGRkM5RUM1NkE2OERGMzA0MEIwNDZBNzBFQUE1OEI5MjJCRDI4QUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCbU6lZjLeN6bIaYhuUG3rUwRAc J7WEn9othCHTrGo5MmqzA7U28xx4xyyJkqej9jhDi3JzeAlJXIFo9uKBp54jsB9R VqDPJoAJy885/7UTUsSP13etyOHaIExm8n3yW71SkoIdjtNaE/RriYJUU5jtJzGQ tc/aO3XlXK9C+9DDTXU/KUz9pnFu+QW8H1l2MFsakIPk1M22UqRSPR6SNbETlfuN 7gHF3iW4kFU9/QmY21mo0KejIl9AZUWfzvxLHxYwL9s+KR0Gs+gb1r13t1ZHmkaI XqXLsFvE6Ag86eThIKfBlQ2D6IXbNnjFW3FFWyN3K72IGDC3QKgjyVZm6jnLAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUD/yexWpo3zBAsEanDqpYuSK9KK4wHwYDVR0j BBgwFoAU85mhoMGP6NvaI84hdeDLI9Z9ZREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MzVmN2EyZi03MjVlLTQzOTktODY5YS00YjFmY2YyYzZhMGMvMC9GMzk5QTFBMEMx OEZFOERCREEyM0NFMjE3NUUwQ0IyM0Q2N0Q2NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNENjdE NjUxMS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYzNWY3YTJmLTcyNWUtNDM5OS04 NjlhLTRiMWZjZjJjNmEwYy8wLzMyMzQzMDM0M2E2MzMwMzAzMDNhMzQzMDMwMzQz YTNhMmYzNDM3MmQzNDM3MjAzZDNlMjAzNTM1MzgzMTM4LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcBJATA AEAEMA0GCSqGSIb3DQEBCwUAA4IBAQCCsBOPvT3LmKmCIpB+3cYcqolwk9cwDA2N Pqg9E6cNTOT2sJA3tAlWxhXAiCrU5eXCxj38BBAz3VBs1jzl8j/vxVc6b5lDcCzh 4/52EsVox7soA8M2HYI09Rv5Y8ksjjQDqOG7q/dr+lS7qIiW4PuQbonXduKf7HIS CMnZCp0un2QZsmwToD0oMveNJbTLJ5KGN64DIc2+VsgcZWBhRv8V/fFIl/Sxf5Fc eM6Aypd0ImVscB0MB+Jgf5hdLlnaQpu7BSuTa9jiGH7y1kuK3zM2SJshu2/asUkC oKOpj/+muPxynTRYo8QI9D/8U0yakQy7L1M+WCus93OwrqVCE9PN -----END CERTIFICATE-----Generated at Sun Oct 26 13:02:35 2025 by rpki-client