$ rpki-client -vvf repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/323430343a633030303a3a2f33322d3332203d3e203435313437.roa File: 323430343a633030303a3a2f33322d3332203d3e203435313437.roa (raw, json) Hash identifier: zhqIjLa4+K0H6F47Jz4pa453J3EHj4DJalnOkGpiujQ= Subject key identifier: FD:E1:87:9E:F6:7E:1A:33:81:0C:17:75:A3:C3:EE:49:61:E6:13:AD Certificate issuer: /CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Certificate serial: 62ADED4313B4024DF6B1084FB9C2190FD988900B Authority key identifier: F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/323430343a633030303a3a2f33322d3332203d3e203435313437.roa Signing time: Sun 31 Aug 2025 17:00:00 +0000 ROA not before: Sun 31 Aug 2025 16:55:00 +0000 ROA not after: Sun 30 Aug 2026 17:00:00 +0000 asID: 45147 IP address blocks: 2404:c000::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Sep 2025 05:31:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:ad:ed:43:13:b4:02:4d:f6:b1:08:4f:b9:c2:19:0f:d9:88:90:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Validity Not Before: Aug 31 16:55:00 2025 GMT Not After : Aug 30 17:00:00 2026 GMT Subject: CN=FDE1879EF67E1A33810C1775A3C3EE4961E613AD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:25:9b:c6:49:40:da:e1:59:3f:37:11:f3:85: b6:4e:42:3e:db:18:6c:ae:dc:9a:d1:57:5e:68:6f: 96:b0:4a:8f:1e:1b:91:d2:1e:8d:cc:47:15:9f:92: 8e:1b:28:c7:67:77:66:ec:3e:bb:14:f2:3a:fe:19: 11:5c:e6:81:fc:a0:4b:8e:bc:64:cf:da:75:95:74: 05:e5:87:fd:14:c0:c3:a5:20:90:9f:c2:1e:4d:39: 66:09:b0:d3:6c:6d:74:ec:8b:97:92:7c:2d:67:24: 5e:5c:c4:84:b4:93:01:0a:1e:c6:20:b3:25:bb:88: 90:01:fe:30:3b:63:2c:1c:31:a4:56:ae:c0:1d:6a: bf:ba:ea:d4:35:63:1b:29:d9:cc:41:2f:25:18:e8: 61:8b:e4:45:cc:a5:67:2e:af:b9:10:51:62:c4:9e: 07:63:f0:5a:ff:07:f3:8f:b3:a2:26:f5:f6:9c:4c: 96:47:38:9f:f3:67:60:41:82:b4:88:80:a8:ac:62: 2e:e0:fc:44:45:b1:18:c9:6b:2f:b0:5f:35:18:54: ef:11:60:6b:a4:6d:be:ef:a3:9a:c4:92:a2:c9:77: 57:6a:39:2e:b1:48:0f:76:cc:b1:21:29:f6:5c:53: 1d:5d:e2:0c:0e:5c:08:ad:fe:97:0f:42:c4:c2:f4: 0d:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:E1:87:9E:F6:7E:1A:33:81:0C:17:75:A3:C3:EE:49:61:E6:13:AD X509v3 Authority Key Identifier: keyid:F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/323430343a633030303a3a2f33322d3332203d3e203435313437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:c000::/32 Signature Algorithm: sha256WithRSAEncryption 2a:fc:13:d3:34:64:d9:da:9a:71:3f:9c:43:dc:ef:27:cf:c9: 88:5e:df:9c:c0:aa:19:9f:bd:d8:b6:16:f9:0e:fc:ec:2f:59: 06:f0:fa:f1:43:44:f0:a5:ce:2b:73:1c:ca:24:4e:27:20:0b: c0:58:2c:95:ad:44:3c:66:5b:d4:ef:93:1f:36:1a:cb:b9:3c: 81:4c:5c:53:5a:b4:58:21:35:0f:77:3b:ed:b0:a7:6a:ea:18: 1a:13:7b:75:0f:74:2e:e5:41:a8:17:a6:d5:b5:d9:d2:fe:d4: 06:99:48:a5:0c:b4:f1:d1:6c:e3:35:f6:29:92:fd:76:32:14: 62:71:d3:46:4b:3c:b2:69:39:f3:04:0b:51:86:de:84:10:5b: 49:0e:73:7d:fa:21:6f:49:5f:b7:3b:04:33:d2:6b:9c:cc:4d: ef:37:1e:38:b0:68:96:c3:c0:8f:43:5c:00:88:ae:ec:44:c0: 64:97:cb:59:0b:69:5a:7a:a0:e1:ad:c6:c0:e8:e0:37:9e:61: 31:ec:04:b7:89:a3:41:1c:21:e1:f1:69:ff:5c:24:19:0d:ce: 38:a2:2d:0c:26:65:06:28:43:53:ed:48:4e:f7:04:ac:13:ee: 57:bf:69:c1:5c:b5:c8:7d:85:a5:59:b5:b7:c5:13:0f:af:22: 5f:97:29:e9 -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUYq3tQxO0Ak32sQhPucIZD9mIkAswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNE NjdENjUxMTAeFw0yNTA4MzExNjU1MDBaFw0yNjA4MzAxNzAwMDBaMDMxMTAvBgNV BAMTKEZERTE4NzlFRjY3RTFBMzM4MTBDMTc3NUEzQzNFRTQ5NjFFNjEzQUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDqJZvGSUDa4Vk/NxHzhbZOQj7b GGyu3JrRV15ob5awSo8eG5HSHo3MRxWfko4bKMdnd2bsPrsU8jr+GRFc5oH8oEuO vGTP2nWVdAXlh/0UwMOlIJCfwh5NOWYJsNNsbXTsi5eSfC1nJF5cxIS0kwEKHsYg syW7iJAB/jA7YywcMaRWrsAdar+66tQ1Yxsp2cxBLyUY6GGL5EXMpWcur7kQUWLE ngdj8Fr/B/OPs6Im9facTJZHOJ/zZ2BBgrSIgKisYi7g/ERFsRjJay+wXzUYVO8R YGukbb7vo5rEkqLJd1dqOS6xSA92zLEhKfZcUx1d4gwOXAit/pcPQsTC9A2ZAgMB AAGjggIxMIICLTAdBgNVHQ4EFgQU/eGHnvZ+GjOBDBd1o8PuSWHmE60wHwYDVR0j BBgwFoAU85mhoMGP6NvaI84hdeDLI9Z9ZREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MzVmN2EyZi03MjVlLTQzOTktODY5YS00YjFmY2YyYzZhMGMvMC9GMzk5QTFBMEMx OEZFOERCREEyM0NFMjE3NUUwQ0IyM0Q2N0Q2NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNENjdE NjUxMS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYzNWY3YTJmLTcyNWUtNDM5OS04 NjlhLTRiMWZjZjJjNmEwYy8wLzMyMzQzMDM0M2E2MzMwMzAzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDM0MzUzMTM0Mzcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkBMAAMA0GCSqGSIb3 DQEBCwUAA4IBAQAq/BPTNGTZ2ppxP5xD3O8nz8mIXt+cwKoZn73Ythb5DvzsL1kG 8PrxQ0Twpc4rcxzKJE4nIAvAWCyVrUQ8ZlvU75MfNhrLuTyBTFxTWrRYITUPdzvt sKdq6hgaE3t1D3Qu5UGoF6bVtdnS/tQGmUilDLTx0WzjNfYpkv12MhRicdNGSzyy aTnzBAtRht6EEFtJDnN9+iFvSV+3OwQz0muczE3vNx44sGiWw8CPQ1wAiK7sRMBk l8tZC2laeqDhrcbA6OA3nmEx7AS3iaNBHCHh8Wn/XCQZDc44oi0MJmUGKENT7UhO 9wSsE+5Xv2nBXLXIfYWlWbW3xRMPryJflynp -----END CERTIFICATE-----Generated at Mon Sep 8 09:33:26 2025 by rpki-client