$ rpki-client -vvf repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/323430343a633030303a3a2f33332d3333203d3e203435313437.roa File: 323430343a633030303a3a2f33332d3333203d3e203435313437.roa (raw, json) Hash identifier: +3GAuuJXIwZQz8Q7hdtuEqzQ+t2z6hIf9O4YUzPAx1Q= Subject key identifier: BB:ED:D9:AF:01:C8:3C:6D:39:2D:A4:73:33:70:2B:D1:4B:B1:1C:A0 Certificate issuer: /CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Certificate serial: 38D10D911525BBAA688E683CE5BA95362A21E985 Authority key identifier: F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/323430343a633030303a3a2f33332d3333203d3e203435313437.roa Signing time: Sun 31 Aug 2025 14:00:00 +0000 ROA not before: Sun 31 Aug 2025 13:55:00 +0000 ROA not after: Sun 30 Aug 2026 14:00:00 +0000 asID: 45147 IP address blocks: 2404:c000::/33 maxlen: 33 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Oct 2025 06:59:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:d1:0d:91:15:25:bb:aa:68:8e:68:3c:e5:ba:95:36:2a:21:e9:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Validity Not Before: Aug 31 13:55:00 2025 GMT Not After : Aug 30 14:00:00 2026 GMT Subject: CN=BBEDD9AF01C83C6D392DA47333702BD14BB11CA0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:66:8c:bd:bd:8d:f1:79:42:5e:9e:34:93:ff: 99:1b:20:9b:da:5d:c9:3a:f7:55:4e:cb:a2:e0:ca: 51:4e:5d:ae:3b:7f:7f:29:87:6e:36:11:cd:31:00: 50:2e:45:02:da:17:90:9d:b3:09:7a:2d:e1:fc:0f: b9:56:7e:11:5a:ed:fc:fe:7f:87:51:b4:57:91:08: c7:c8:4b:bd:56:89:fd:45:37:b3:51:52:5e:85:88: 21:1b:fa:42:a5:5e:d9:93:92:34:b7:72:23:2c:98: 4e:45:2b:98:29:54:ef:b7:53:7a:70:f6:f7:06:42: 34:e5:0f:0f:4d:19:b1:71:b0:7f:e0:a6:43:f2:c1: d9:ce:c3:35:7c:00:89:c9:0e:40:a7:bd:f8:ac:51: e0:d8:7c:54:e3:95:79:ac:ef:18:a4:b5:d3:83:d1: f0:2b:ef:ec:40:ca:4e:2c:2c:0a:6a:06:a3:53:83: 84:83:59:69:9a:22:57:45:81:76:b3:cc:e0:40:a0: ad:c2:66:8c:72:10:33:3d:e9:a3:3f:d1:75:11:23: 23:bf:ac:34:a3:08:86:10:6d:32:8e:48:4f:4f:ce: 07:7e:fe:e6:61:68:26:3d:f5:87:f5:fd:31:50:21: bc:df:5d:d6:0b:b5:a9:94:a4:4f:72:d8:51:0c:48: f7:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:ED:D9:AF:01:C8:3C:6D:39:2D:A4:73:33:70:2B:D1:4B:B1:1C:A0 X509v3 Authority Key Identifier: keyid:F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/323430343a633030303a3a2f33332d3333203d3e203435313437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:c000::/33 Signature Algorithm: sha256WithRSAEncryption 33:76:95:1f:87:7a:01:a4:87:e2:c3:25:2b:92:ae:7e:88:f1: 7e:eb:77:30:72:d8:11:bf:a9:a5:d4:c9:f3:73:99:df:66:04: ba:79:15:61:dd:1a:ea:c3:7a:55:a3:bc:9a:70:bf:74:48:43: db:a6:ea:e5:29:1a:8a:7a:00:b4:0f:f1:68:f6:b7:44:c8:18: 4f:4e:d4:3d:8c:98:dc:76:40:b9:92:5a:d0:4c:08:b4:6f:c7: 71:c9:bc:bc:8f:aa:9c:e3:a3:0d:86:ce:93:74:48:1c:30:61: 03:95:e4:21:84:4c:ba:8a:c6:38:87:bb:8b:de:91:d7:d9:c8: 2f:c3:e4:71:a0:02:60:6b:28:a3:84:d4:f8:4a:f2:7f:c6:e2: d9:26:6f:40:cb:ab:cd:c8:7c:e8:18:58:45:15:92:ab:4c:69: a0:e7:16:68:85:51:f4:ac:dd:db:b5:b2:36:5d:57:0f:5e:2b: 4d:60:e0:9f:30:68:bc:d2:0e:29:03:79:23:85:1f:18:71:1f: 02:04:3a:0a:41:ad:de:f7:00:4f:b5:9e:45:c9:f9:90:28:43: 28:57:aa:f4:e3:03:90:fa:ed:ab:5a:e4:cc:40:f0:e2:49:f2: 14:7c:6f:ac:f5:4d:68:7a:5d:ac:cc:86:50:2e:cd:08:87:a3: e4:b3:f6:d1 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUONENkRUlu6pojmg85bqVNioh6YUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNE NjdENjUxMTAeFw0yNTA4MzExMzU1MDBaFw0yNjA4MzAxNDAwMDBaMDMxMTAvBgNV BAMTKEJCRUREOUFGMDFDODNDNkQzOTJEQTQ3MzMzNzAyQkQxNEJCMTFDQTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/Zoy9vY3xeUJenjST/5kbIJva Xck691VOy6LgylFOXa47f38ph242Ec0xAFAuRQLaF5Cdswl6LeH8D7lWfhFa7fz+ f4dRtFeRCMfIS71Wif1FN7NRUl6FiCEb+kKlXtmTkjS3ciMsmE5FK5gpVO+3U3pw 9vcGQjTlDw9NGbFxsH/gpkPywdnOwzV8AInJDkCnvfisUeDYfFTjlXms7xiktdOD 0fAr7+xAyk4sLApqBqNTg4SDWWmaIldFgXazzOBAoK3CZoxyEDM96aM/0XURIyO/ rDSjCIYQbTKOSE9Pzgd+/uZhaCY99Yf1/TFQIbzfXdYLtamUpE9y2FEMSPfFAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUu+3ZrwHIPG05LaRzM3Ar0UuxHKAwHwYDVR0j BBgwFoAU85mhoMGP6NvaI84hdeDLI9Z9ZREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MzVmN2EyZi03MjVlLTQzOTktODY5YS00YjFmY2YyYzZhMGMvMC9GMzk5QTFBMEMx OEZFOERCREEyM0NFMjE3NUUwQ0IyM0Q2N0Q2NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNENjdE NjUxMS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYzNWY3YTJmLTcyNWUtNDM5OS04 NjlhLTRiMWZjZjJjNmEwYy8wLzMyMzQzMDM0M2E2MzMwMzAzMDNhM2EyZjMzMzMy ZDMzMzMyMDNkM2UyMDM0MzUzMTM0Mzcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgckBMAAADANBgkqhkiG 9w0BAQsFAAOCAQEAM3aVH4d6AaSH4sMlK5Kufojxfut3MHLYEb+ppdTJ83OZ32YE unkVYd0a6sN6VaO8mnC/dEhD26bq5SkainoAtA/xaPa3RMgYT07UPYyY3HZAuZJa 0EwItG/Hccm8vI+qnOOjDYbOk3RIHDBhA5XkIYRMuorGOIe7i96R19nIL8PkcaAC YGsoo4TU+Eryf8bi2SZvQMurzch86BhYRRWSq0xpoOcWaIVR9Kzd27WyNl1XD14r TWDgnzBovNIOKQN5I4UfGHEfAgQ6CkGt3vcAT7WeRcn5kChDKFeq9OMDkPrtq1rk zEDw4knyFHxvrPVNaHpdrMyGUC7NCIej5LP20Q== -----END CERTIFICATE-----Generated at Sun Oct 26 13:02:35 2025 by rpki-client