$ rpki-client -vvf repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/323430343a633030303a3a2f34372d3437203d3e203435313437.roa File: 323430343a633030303a3a2f34372d3437203d3e203435313437.roa (raw, json) Hash identifier: W9FyfhUN8Q4XJ8qIWuY69FVZivhKJyKJNZdYbZfgy84= Subject key identifier: B7:A3:39:D0:3E:22:4E:50:C0:79:B1:DD:51:B5:F8:81:A7:46:B5:6A Certificate issuer: /CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Certificate serial: 0F654C01E67CA33292A0E134207097A39F33E72C Authority key identifier: F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/323430343a633030303a3a2f34372d3437203d3e203435313437.roa Signing time: Sun 31 Aug 2025 17:00:01 +0000 ROA not before: Sun 31 Aug 2025 16:55:01 +0000 ROA not after: Sun 30 Aug 2026 17:00:01 +0000 asID: 45147 IP address blocks: 2404:c000::/47 maxlen: 47 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Sep 2025 05:31:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:65:4c:01:e6:7c:a3:32:92:a0:e1:34:20:70:97:a3:9f:33:e7:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Validity Not Before: Aug 31 16:55:01 2025 GMT Not After : Aug 30 17:00:01 2026 GMT Subject: CN=B7A339D03E224E50C079B1DD51B5F881A746B56A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:10:3b:2d:03:fc:65:5f:fb:8f:ec:d5:e2:84: 34:b0:05:62:ac:75:9f:12:c8:71:56:8d:b8:12:0a: c4:bc:4e:eb:5c:0b:66:b7:de:b2:ba:57:08:39:e4: d4:7f:c2:8b:ff:c2:74:bd:a8:12:b5:ee:70:4d:6d: 52:70:29:70:a7:93:d2:02:6d:af:a0:84:1b:3d:34: 0e:ea:87:10:54:e4:b2:48:49:2e:ce:7d:37:74:8e: 14:f0:85:7d:d0:8d:a0:5e:82:a9:f6:45:76:5c:60: ef:86:bc:a2:29:f5:43:24:0b:1b:59:58:25:1e:c0: 1e:bc:55:20:d7:ff:9a:e7:1b:93:29:c7:be:5d:e8: e8:57:5d:d1:f8:af:6f:b4:2e:fe:86:5d:89:30:d3: d7:03:39:cb:ba:79:82:c6:b1:d2:7b:01:37:ef:63: 6f:89:3b:f8:e1:23:fd:8b:f4:e5:6b:a0:2a:fa:76: 31:19:1b:df:5b:11:2f:3b:10:76:00:d9:38:c5:97: 3b:c7:90:0d:62:f4:97:18:23:48:a1:26:53:ad:87: de:1c:e3:2a:f5:29:03:b4:6f:68:ff:b0:62:10:1c: e8:5d:26:3d:51:30:fe:45:e2:73:c0:96:0f:88:f1: 64:1f:77:e5:45:f4:bb:21:5f:9e:14:6a:4e:a7:0e: ec:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:A3:39:D0:3E:22:4E:50:C0:79:B1:DD:51:B5:F8:81:A7:46:B5:6A X509v3 Authority Key Identifier: keyid:F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/323430343a633030303a3a2f34372d3437203d3e203435313437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:c000::/47 Signature Algorithm: sha256WithRSAEncryption c1:9b:72:f2:03:d0:c5:37:6c:41:95:0e:b0:c5:bc:33:5c:21: 27:7e:6d:1f:dc:de:83:af:27:d5:e1:a2:79:da:dc:8f:20:e6: 86:92:74:ef:00:64:14:6d:b3:8e:47:a6:64:8f:9e:17:84:6f: bc:a1:e5:c3:5e:47:04:32:75:56:dc:03:4e:f6:03:34:37:58: 98:fc:be:72:d1:fb:62:e4:00:10:e2:66:26:5b:c8:f9:3f:cb: 72:db:eb:0a:1c:11:9d:7e:31:09:40:ab:8b:91:d6:ec:02:1c: 15:33:e1:3b:8b:5f:b1:b5:b3:d9:d0:e8:ce:fd:6a:d8:a4:24: 22:c7:ee:b7:3d:ad:50:05:94:48:85:46:fc:f8:27:12:db:9a: dc:c9:07:7d:28:4e:08:f7:d5:d1:14:43:d2:77:ff:02:48:59: 94:00:ee:94:c0:60:e9:23:1a:74:6c:44:3a:47:b5:cb:1e:55: 8b:13:f4:19:09:f0:c9:29:11:4a:c0:3c:97:fa:36:ed:09:9c: 68:40:22:18:f6:69:f9:c2:b3:9a:ff:d1:28:15:9d:66:da:17: 3f:77:b6:2c:c6:2e:45:30:51:54:eb:9a:a0:6c:2a:f8:f3:cf: 33:ae:f6:3f:6d:af:dd:fe:da:1c:70:10:5c:81:e9:4b:0c:a0: 37:2d:a9:c7 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUD2VMAeZ8ozKSoOE0IHCXo58z5ywwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNE NjdENjUxMTAeFw0yNTA4MzExNjU1MDFaFw0yNjA4MzAxNzAwMDFaMDMxMTAvBgNV BAMTKEI3QTMzOUQwM0UyMjRFNTBDMDc5QjFERDUxQjVGODgxQTc0NkI1NkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDtEDstA/xlX/uP7NXihDSwBWKs dZ8SyHFWjbgSCsS8TutcC2a33rK6Vwg55NR/wov/wnS9qBK17nBNbVJwKXCnk9IC ba+ghBs9NA7qhxBU5LJISS7OfTd0jhTwhX3QjaBegqn2RXZcYO+GvKIp9UMkCxtZ WCUewB68VSDX/5rnG5Mpx75d6OhXXdH4r2+0Lv6GXYkw09cDOcu6eYLGsdJ7ATfv Y2+JO/jhI/2L9OVroCr6djEZG99bES87EHYA2TjFlzvHkA1i9JcYI0ihJlOth94c 4yr1KQO0b2j/sGIQHOhdJj1RMP5F4nPAlg+I8WQfd+VF9LshX54Uak6nDux7AgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUt6M50D4iTlDAebHdUbX4gadGtWowHwYDVR0j BBgwFoAU85mhoMGP6NvaI84hdeDLI9Z9ZREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MzVmN2EyZi03MjVlLTQzOTktODY5YS00YjFmY2YyYzZhMGMvMC9GMzk5QTFBMEMx OEZFOERCREEyM0NFMjE3NUUwQ0IyM0Q2N0Q2NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNENjdE NjUxMS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYzNWY3YTJmLTcyNWUtNDM5OS04 NjlhLTRiMWZjZjJjNmEwYy8wLzMyMzQzMDM0M2E2MzMwMzAzMDNhM2EyZjM0Mzcy ZDM0MzcyMDNkM2UyMDM0MzUzMTM0Mzcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwEkBMAAAAAwDQYJKoZI hvcNAQELBQADggEBAMGbcvID0MU3bEGVDrDFvDNcISd+bR/c3oOvJ9Xhonna3I8g 5oaSdO8AZBRts45HpmSPnheEb7yh5cNeRwQydVbcA072AzQ3WJj8vnLR+2LkABDi ZiZbyPk/y3Lb6wocEZ1+MQlAq4uR1uwCHBUz4TuLX7G1s9nQ6M79atikJCLH7rc9 rVAFlEiFRvz4JxLbmtzJB30oTgj31dEUQ9J3/wJIWZQA7pTAYOkjGnRsRDpHtcse VYsT9BkJ8MkpEUrAPJf6Nu0JnGhAIhj2afnCs5r/0SgVnWbaFz93tizGLkUwUVTr mqBsKvjzzzOu9j9tr93+2hxwEFyB6UsMoDctqcc= -----END CERTIFICATE-----Generated at Mon Sep 8 09:32:09 2025 by rpki-client