$ rpki-client -vvf repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/323430343a633030303a343030343a3a2f34382d3438203d3e203535383138.roa File: 323430343a633030303a343030343a3a2f34382d3438203d3e203535383138.roa (raw, json) Hash identifier: cOc09T62BtrV8db60iz8r+we6V2YqQYpN6rTUFdQ730= Subject key identifier: F7:00:1B:82:1F:EF:3C:A6:CC:28:7B:6E:91:12:92:CD:FE:3E:46:60 Certificate issuer: /CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Certificate serial: 259916C95CB8B7B865DF8D49BCBF9A14BD400661 Authority key identifier: F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/323430343a633030303a343030343a3a2f34382d3438203d3e203535383138.roa Signing time: Sun 31 Aug 2025 17:00:00 +0000 ROA not before: Sun 31 Aug 2025 16:55:00 +0000 ROA not after: Sun 30 Aug 2026 17:00:00 +0000 asID: 55818 IP address blocks: 2404:c000:4004::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Oct 2025 06:59:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:99:16:c9:5c:b8:b7:b8:65:df:8d:49:bc:bf:9a:14:bd:40:06:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Validity Not Before: Aug 31 16:55:00 2025 GMT Not After : Aug 30 17:00:00 2026 GMT Subject: CN=F7001B821FEF3CA6CC287B6E911292CDFE3E4660 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:4d:12:fa:02:ee:a2:f9:de:4e:2d:46:75:f2: dc:63:97:7b:73:a2:11:0b:46:21:8e:1f:e4:e9:28: de:1b:68:18:f2:cc:d5:bb:91:25:9b:44:5a:8a:f7: e3:0a:50:9a:62:dc:1b:e6:04:fe:da:7b:71:16:63: 3d:82:18:8d:16:c2:9a:43:63:b1:9f:0b:a3:ca:29: ca:05:04:a6:42:4a:46:d4:e7:3e:01:69:41:39:ff: a5:5d:9f:68:f4:8e:7e:d6:c8:f2:38:c3:e0:ec:85: 7c:d2:37:59:84:f3:bd:7f:c6:74:30:50:1e:cf:9b: b2:68:97:c7:af:3d:70:66:c2:d3:b9:33:2f:12:bf: c7:89:e5:14:dd:12:96:02:9d:e1:1f:c4:b8:00:d0: ef:8d:24:5f:10:65:61:0e:2c:9a:f7:4a:d1:2c:fb: 27:06:c7:e6:96:6f:58:7d:6d:96:1e:cf:cd:f6:37: 12:0e:c9:14:bb:0d:06:56:b7:35:4e:f3:4a:f8:ba: 9a:a1:23:5b:8d:59:2c:67:d2:59:68:22:ba:6b:7e: 71:f0:c7:a5:ae:72:4c:0b:4c:e0:cb:a3:4f:3b:36: 83:95:db:dd:38:76:a2:c3:ff:a2:b9:e5:68:eb:72: 05:bc:36:ff:a6:f3:a1:0a:69:2e:62:8a:a2:3f:c1: 67:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:00:1B:82:1F:EF:3C:A6:CC:28:7B:6E:91:12:92:CD:FE:3E:46:60 X509v3 Authority Key Identifier: keyid:F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/323430343a633030303a343030343a3a2f34382d3438203d3e203535383138.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:c000:4004::/48 Signature Algorithm: sha256WithRSAEncryption 48:89:4c:02:ac:66:3e:bf:de:a1:21:56:88:d5:c8:90:40:f2: 90:c0:7c:9e:09:92:8a:a7:9b:a7:65:17:dc:3d:e4:11:12:d1: 0c:f9:1c:8e:03:8c:10:71:96:c5:9c:c7:b0:3b:49:62:30:6d: 01:22:31:3e:0e:1e:32:e2:1f:21:39:93:a7:d8:a6:2f:9f:67: ca:dc:0a:ca:9c:05:45:dd:4e:0d:14:6d:26:7d:79:9e:72:fd: f6:e1:43:ee:46:63:b0:b6:7b:9b:56:83:4e:a6:c5:8a:b6:af: 4a:34:89:6e:2d:8f:c6:a4:d9:9f:72:4f:df:04:f7:b9:7f:31: ec:08:36:ec:65:d4:de:74:85:32:e1:67:87:2e:d7:23:dc:8b: a5:76:60:c1:7e:58:d4:95:9a:41:ff:89:b9:97:a6:d0:1a:88: 79:c8:27:d2:b2:eb:09:51:6c:e8:03:db:0b:bd:73:fe:9d:57: 54:d2:e3:9f:c1:3e:66:db:92:94:cd:18:f1:45:e9:7b:66:cf: cf:96:d0:39:62:84:31:3a:f3:d0:55:75:c2:e6:bc:92:63:f3: f9:65:d8:fb:4c:c9:7a:11:5a:25:ff:a7:ed:ab:5e:9d:18:4d: 68:bd:64:e1:95:d9:dd:6c:27:39:cc:52:8f:59:49:f1:40:63: e4:39:18:ae -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUJZkWyVy4t7hl341JvL+aFL1ABmEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNE NjdENjUxMTAeFw0yNTA4MzExNjU1MDBaFw0yNjA4MzAxNzAwMDBaMDMxMTAvBgNV BAMTKEY3MDAxQjgyMUZFRjNDQTZDQzI4N0I2RTkxMTI5MkNERkUzRTQ2NjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPTRL6Au6i+d5OLUZ18txjl3tz ohELRiGOH+TpKN4baBjyzNW7kSWbRFqK9+MKUJpi3BvmBP7ae3EWYz2CGI0WwppD Y7GfC6PKKcoFBKZCSkbU5z4BaUE5/6Vdn2j0jn7WyPI4w+DshXzSN1mE871/xnQw UB7Pm7Jol8evPXBmwtO5My8Sv8eJ5RTdEpYCneEfxLgA0O+NJF8QZWEOLJr3StEs +ycGx+aWb1h9bZYez832NxIOyRS7DQZWtzVO80r4upqhI1uNWSxn0lloIrprfnHw x6WuckwLTODLo087NoOV2904dqLD/6K55WjrcgW8Nv+m86EKaS5iiqI/wWflAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQU9wAbgh/vPKbMKHtukRKSzf4+RmAwHwYDVR0j BBgwFoAU85mhoMGP6NvaI84hdeDLI9Z9ZREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MzVmN2EyZi03MjVlLTQzOTktODY5YS00YjFmY2YyYzZhMGMvMC9GMzk5QTFBMEMx OEZFOERCREEyM0NFMjE3NUUwQ0IyM0Q2N0Q2NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNENjdE NjUxMS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYzNWY3YTJmLTcyNWUtNDM5OS04 NjlhLTRiMWZjZjJjNmEwYy8wLzMyMzQzMDM0M2E2MzMwMzAzMDNhMzQzMDMwMzQz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzNTM1MzgzMTM4LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJATA AEAEMA0GCSqGSIb3DQEBCwUAA4IBAQBIiUwCrGY+v96hIVaI1ciQQPKQwHyeCZKK p5unZRfcPeQREtEM+RyOA4wQcZbFnMewO0liMG0BIjE+Dh4y4h8hOZOn2KYvn2fK 3ArKnAVF3U4NFG0mfXmecv324UPuRmOwtnubVoNOpsWKtq9KNIluLY/GpNmfck/f BPe5fzHsCDbsZdTedIUy4WeHLtcj3IuldmDBfljUlZpB/4m5l6bQGoh5yCfSsusJ UWzoA9sLvXP+nVdU0uOfwT5m25KUzRjxRel7Zs/PltA5YoQxOvPQVXXC5rySY/P5 Zdj7TMl6EVol/6ftq16dGE1ovWThldndbCc5zFKPWUnxQGPkORiu -----END CERTIFICATE-----Generated at Sun Oct 26 13:02:35 2025 by rpki-client