$ rpki-client -vvf repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/323430343a633030303a383030303a3a2f33332d3333203d3e203137373237.roa File: 323430343a633030303a383030303a3a2f33332d3333203d3e203137373237.roa (raw, json) Hash identifier: wXiR3OOwa79VU9VxaoUD4WQSJrA8r9NKkPcOknNeeEQ= Subject key identifier: 40:74:F2:F3:35:57:36:03:59:AA:F2:78:DE:E5:FE:88:1B:4A:D9:19 Certificate issuer: /CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Certificate serial: 4D48EB5547A978C3893E3BA184AD6B0A2EFB38FF Authority key identifier: F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/323430343a633030303a383030303a3a2f33332d3333203d3e203137373237.roa Signing time: Sun 31 Aug 2025 16:00:00 +0000 ROA not before: Sun 31 Aug 2025 15:55:00 +0000 ROA not after: Sun 30 Aug 2026 16:00:00 +0000 asID: 17727 IP address blocks: 2404:c000:8000::/33 maxlen: 33 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Sep 2025 05:31:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:48:eb:55:47:a9:78:c3:89:3e:3b:a1:84:ad:6b:0a:2e:fb:38:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Validity Not Before: Aug 31 15:55:00 2025 GMT Not After : Aug 30 16:00:00 2026 GMT Subject: CN=4074F2F33557360359AAF278DEE5FE881B4AD919 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:e5:8a:70:17:8c:4a:fe:8e:05:1d:8d:ce:5e: b0:ca:e6:46:96:37:e9:26:48:e1:76:5d:88:2b:12: 9c:9a:29:d0:b6:f1:76:60:8f:21:62:5b:f8:18:1d: ff:7c:79:3f:8c:95:fb:1e:54:eb:3a:09:b1:48:29: 22:f4:8e:d5:16:2a:b7:b7:99:58:97:9b:c8:18:d9: 07:8c:8c:c7:2b:f0:3b:a5:1d:95:49:6f:cd:de:15: 59:35:0f:bd:ac:a4:2e:fd:11:2e:c8:97:08:b9:ee: 19:1a:b0:9d:0a:36:2d:98:9b:b4:94:4c:3c:c2:c0: 94:d8:63:d6:b6:64:b9:18:1f:8e:02:db:bf:b3:c1: a1:02:23:b8:24:be:5c:86:35:8d:04:02:8c:10:7c: c3:be:aa:5d:4c:ef:40:55:99:31:35:b1:f9:dd:d4: 66:3a:85:cf:07:15:5e:97:06:33:be:4d:c0:63:fd: 27:1a:a2:2b:61:74:d4:1c:f1:f9:bd:d8:05:9a:25: 09:62:5f:e3:0d:3f:9b:68:4b:b5:94:2e:71:f6:5b: e8:8b:87:e5:06:17:87:1c:80:73:1c:5e:bd:94:7b: 94:94:0d:19:8a:bf:cf:c2:ff:96:59:1e:b1:c0:f0: aa:11:5e:73:a9:d4:21:13:45:9f:2a:e5:5b:62:43: 7a:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:74:F2:F3:35:57:36:03:59:AA:F2:78:DE:E5:FE:88:1B:4A:D9:19 X509v3 Authority Key Identifier: keyid:F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/323430343a633030303a383030303a3a2f33332d3333203d3e203137373237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:c000:8000::/33 Signature Algorithm: sha256WithRSAEncryption 4e:fc:ef:d0:91:93:76:f6:7e:d9:fa:02:20:0c:7c:45:56:5a: d3:e5:4a:23:c5:b0:d5:48:7e:d4:70:8d:39:59:44:e6:78:c6: b8:9b:2b:86:06:70:59:ab:46:75:32:c4:88:d0:99:09:9c:40: 58:62:8d:fd:f9:95:54:e5:03:46:6e:47:53:42:1b:e3:71:b6: ab:ac:2d:cb:35:04:23:f2:4d:29:50:88:e2:e9:8a:b4:31:0b: 1f:5f:78:f1:64:93:ab:4a:94:a6:cd:ec:34:6a:ac:d6:7f:9a: 31:1c:a8:18:8e:89:f2:93:c6:01:75:42:e6:5a:d7:4c:f8:7e: 74:2b:a1:f1:63:4b:ae:f6:11:ce:5b:af:e2:a2:54:8c:02:cf: 69:e0:47:88:b5:ae:be:af:f7:e5:38:f8:31:28:ef:70:1d:7c: 08:96:db:70:0f:17:0a:2a:e4:f7:61:a3:11:1e:69:8a:b9:9a: eb:3f:1a:e0:44:e2:a2:b6:90:0f:55:c1:e4:d3:d9:89:eb:0d: 2d:54:10:27:2d:44:de:fd:f6:09:08:80:f8:18:2f:d3:91:99: 8a:63:dd:bc:21:f0:3d:0c:68:c5:7f:02:8d:77:30:e8:ee:49: c2:9d:a4:b2:7f:84:e5:52:4c:08:31:15:b0:6f:12:aa:9e:0b: dc:39:e2:63 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUTUjrVUepeMOJPjuhhK1rCi77OP8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNE NjdENjUxMTAeFw0yNTA4MzExNTU1MDBaFw0yNjA4MzAxNjAwMDBaMDMxMTAvBgNV BAMTKDQwNzRGMkYzMzU1NzM2MDM1OUFBRjI3OERFRTVGRTg4MUI0QUQ5MTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCr5YpwF4xK/o4FHY3OXrDK5kaW N+kmSOF2XYgrEpyaKdC28XZgjyFiW/gYHf98eT+MlfseVOs6CbFIKSL0jtUWKre3 mViXm8gY2QeMjMcr8DulHZVJb83eFVk1D72spC79ES7Ilwi57hkasJ0KNi2Ym7SU TDzCwJTYY9a2ZLkYH44C27+zwaECI7gkvlyGNY0EAowQfMO+ql1M70BVmTE1sfnd 1GY6hc8HFV6XBjO+TcBj/ScaoithdNQc8fm92AWaJQliX+MNP5toS7WULnH2W+iL h+UGF4ccgHMcXr2Ue5SUDRmKv8/C/5ZZHrHA8KoRXnOp1CETRZ8q5VtiQ3qTAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUQHTy8zVXNgNZqvJ43uX+iBtK2RkwHwYDVR0j BBgwFoAU85mhoMGP6NvaI84hdeDLI9Z9ZREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MzVmN2EyZi03MjVlLTQzOTktODY5YS00YjFmY2YyYzZhMGMvMC9GMzk5QTFBMEMx OEZFOERCREEyM0NFMjE3NUUwQ0IyM0Q2N0Q2NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNENjdE NjUxMS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYzNWY3YTJmLTcyNWUtNDM5OS04 NjlhLTRiMWZjZjJjNmEwYy8wLzMyMzQzMDM0M2E2MzMwMzAzMDNhMzgzMDMwMzAz YTNhMmYzMzMzMmQzMzMzMjAzZDNlMjAzMTM3MzczMjM3LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYHJATA AIAwDQYJKoZIhvcNAQELBQADggEBAE7879CRk3b2ftn6AiAMfEVWWtPlSiPFsNVI ftRwjTlZROZ4xribK4YGcFmrRnUyxIjQmQmcQFhijf35lVTlA0ZuR1NCG+Nxtqus Lcs1BCPyTSlQiOLpirQxCx9fePFkk6tKlKbN7DRqrNZ/mjEcqBiOifKTxgF1QuZa 10z4fnQrofFjS672Ec5br+KiVIwCz2ngR4i1rr6v9+U4+DEo73AdfAiW23APFwoq 5PdhoxEeaYq5mus/GuBE4qK2kA9VweTT2YnrDS1UECctRN799gkIgPgYL9ORmYpj 3bwh8D0MaMV/Ao13MOjuScKdpLJ/hOVSTAgxFbBvEqqeC9w54mM= -----END CERTIFICATE-----Generated at Mon Sep 8 09:38:44 2025 by rpki-client