$ rpki-client -vvf repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/323430343a633030303a633030323a3a2f34372d3437203d3e203137373237.roa File: 323430343a633030303a633030323a3a2f34372d3437203d3e203137373237.roa (raw, json) Hash identifier: sNA62m/z7qLQ3cf+CicH2BsuZKTqMSSPMryJpk/Kg60= Subject key identifier: D7:D5:42:01:21:5F:88:B2:C5:53:16:FE:25:59:01:FF:86:22:6E:CF Certificate issuer: /CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Certificate serial: 118D611EDAF3F857FCEA9A6D77B23EF7561F65BF Authority key identifier: F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/323430343a633030303a633030323a3a2f34372d3437203d3e203137373237.roa Signing time: Sun 31 Aug 2025 16:00:01 +0000 ROA not before: Sun 31 Aug 2025 15:55:01 +0000 ROA not after: Sun 30 Aug 2026 16:00:01 +0000 asID: 17727 IP address blocks: 2404:c000:c002::/47 maxlen: 47 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Sep 2025 05:31:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:8d:61:1e:da:f3:f8:57:fc:ea:9a:6d:77:b2:3e:f7:56:1f:65:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Validity Not Before: Aug 31 15:55:01 2025 GMT Not After : Aug 30 16:00:01 2026 GMT Subject: CN=D7D54201215F88B2C55316FE255901FF86226ECF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:e2:f6:65:cf:86:2e:93:98:05:bf:33:a5:3e: a6:be:07:c6:74:0d:3f:00:11:a0:6c:7b:20:09:6e: b8:1d:46:06:b7:cd:95:b0:b7:7f:1f:a1:42:de:58: 2c:04:04:01:93:e4:ff:17:01:46:f0:dd:d0:94:71: 78:c4:de:51:97:fd:b6:dd:50:48:a1:19:68:a1:1f: 54:b6:e6:0f:6f:04:14:5b:40:70:35:93:97:89:18: a7:0c:42:e1:2f:b6:2c:86:a6:3b:1f:ab:09:61:32: 78:06:59:2e:5c:fb:9c:76:71:e8:17:2a:f0:48:c4: 81:65:5b:24:a3:0e:16:24:d3:11:3f:97:be:91:37: 24:20:d3:c9:b5:76:67:a5:da:8b:a2:e9:29:ff:7c: e0:1e:b4:a7:c6:91:d1:d8:44:b2:a1:e4:81:e2:6b: 98:d7:1d:06:d0:3a:4b:ce:20:9f:d6:e7:cb:d2:ed: 82:db:6b:e2:c1:70:9a:31:41:e1:e9:9c:3f:d7:f4: 3f:b7:ed:e1:af:47:c6:52:63:3e:a0:12:ec:fb:49: 99:b8:29:d3:06:72:27:f2:9d:26:99:97:3c:4b:69: d7:c7:80:5f:f8:74:fe:d4:ce:ac:22:62:af:4c:73: 5c:d7:b3:64:e7:64:09:31:4f:15:fd:cd:91:af:df: 0e:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:D5:42:01:21:5F:88:B2:C5:53:16:FE:25:59:01:FF:86:22:6E:CF X509v3 Authority Key Identifier: keyid:F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/323430343a633030303a633030323a3a2f34372d3437203d3e203137373237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:c000:c002::/47 Signature Algorithm: sha256WithRSAEncryption 60:df:c4:ba:7a:cf:53:3a:86:29:02:8e:56:9c:37:90:ec:0c: 90:d1:89:c3:1f:db:97:82:37:0a:fe:46:87:7d:97:09:67:8a: 81:33:48:2a:d9:82:e1:bf:91:a4:37:78:e1:48:98:a5:0a:d1: 1f:48:2f:0d:9f:e1:9e:44:cd:78:54:07:97:96:89:ad:fc:46: 92:d8:2c:ed:ed:f5:c9:b0:ad:68:b5:b5:41:bb:27:90:86:d4: c7:c4:9f:a9:f2:d7:b8:2f:6e:08:19:8e:35:d3:1c:d2:de:53: b4:c3:ca:b2:fc:ca:cf:7e:a6:73:3e:2d:97:22:15:8e:7b:c7: 59:bb:bf:90:be:f6:83:ee:fa:c0:21:03:54:5a:4f:38:ea:f9: 46:10:c2:af:78:86:c4:0a:f3:a3:51:ff:3d:a8:93:00:fc:61: 48:66:f9:27:d5:f6:9e:a7:fa:da:0b:6f:2c:80:d7:71:f1:24: ea:4d:80:7c:a1:20:e0:48:fa:a6:b2:f7:ff:79:b6:79:0e:80: 36:ea:64:30:04:6c:2f:23:0d:69:2b:4b:86:08:05:08:8b:31: bf:b4:d3:6d:ce:df:a3:73:06:e9:d6:90:4f:5c:2e:ef:2e:28: d1:2b:3b:f9:92:b7:12:e1:4e:cd:1a:d7:ea:e1:82:2c:1e:27: f1:f8:fc:9c -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUEY1hHtrz+Ff86pptd7I+91YfZb8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNE NjdENjUxMTAeFw0yNTA4MzExNTU1MDFaFw0yNjA4MzAxNjAwMDFaMDMxMTAvBgNV BAMTKEQ3RDU0MjAxMjE1Rjg4QjJDNTUzMTZGRTI1NTkwMUZGODYyMjZFQ0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDA4vZlz4Yuk5gFvzOlPqa+B8Z0 DT8AEaBseyAJbrgdRga3zZWwt38foULeWCwEBAGT5P8XAUbw3dCUcXjE3lGX/bbd UEihGWihH1S25g9vBBRbQHA1k5eJGKcMQuEvtiyGpjsfqwlhMngGWS5c+5x2cegX KvBIxIFlWySjDhYk0xE/l76RNyQg08m1dmel2oui6Sn/fOAetKfGkdHYRLKh5IHi a5jXHQbQOkvOIJ/W58vS7YLba+LBcJoxQeHpnD/X9D+37eGvR8ZSYz6gEuz7SZm4 KdMGcifynSaZlzxLadfHgF/4dP7UzqwiYq9Mc1zXs2TnZAkxTxX9zZGv3w4rAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQU19VCASFfiLLFUxb+JVkB/4Yibs8wHwYDVR0j BBgwFoAU85mhoMGP6NvaI84hdeDLI9Z9ZREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MzVmN2EyZi03MjVlLTQzOTktODY5YS00YjFmY2YyYzZhMGMvMC9GMzk5QTFBMEMx OEZFOERCREEyM0NFMjE3NUUwQ0IyM0Q2N0Q2NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNENjdE NjUxMS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYzNWY3YTJmLTcyNWUtNDM5OS04 NjlhLTRiMWZjZjJjNmEwYy8wLzMyMzQzMDM0M2E2MzMwMzAzMDNhNjMzMDMwMzIz YTNhMmYzNDM3MmQzNDM3MjAzZDNlMjAzMTM3MzczMjM3LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcBJATA AMACMA0GCSqGSIb3DQEBCwUAA4IBAQBg38S6es9TOoYpAo5WnDeQ7AyQ0YnDH9uX gjcK/kaHfZcJZ4qBM0gq2YLhv5GkN3jhSJilCtEfSC8Nn+GeRM14VAeXlomt/EaS 2Czt7fXJsK1otbVBuyeQhtTHxJ+p8te4L24IGY410xzS3lO0w8qy/MrPfqZzPi2X IhWOe8dZu7+QvvaD7vrAIQNUWk846vlGEMKveIbECvOjUf89qJMA/GFIZvkn1fae p/raC28sgNdx8STqTYB8oSDgSPqmsvf/ebZ5DoA26mQwBGwvIw1pK0uGCAUIizG/ tNNtzt+jcwbp1pBPXC7vLijRKzv5krcS4U7NGtfq4YIsHifx+Pyc -----END CERTIFICATE-----Generated at Mon Sep 8 09:33:38 2025 by rpki-client