$ rpki-client -vvf repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/323430343a633030303a633030343a3a2f34382d3438203d3e203137373237.roa File: 323430343a633030303a633030343a3a2f34382d3438203d3e203137373237.roa (raw, json) Hash identifier: KmMDiJDWrYBJyjGvdovYMj5K1EFuPHam2lZP69Xk05I= Subject key identifier: 12:D8:EF:E6:1C:73:60:4F:51:79:E9:5C:83:2C:12:0A:65:8D:B8:45 Certificate issuer: /CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Certificate serial: 3E8511ED335DE5E9532FE77D5CF0A88D002E43C9 Authority key identifier: F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/323430343a633030303a633030343a3a2f34382d3438203d3e203137373237.roa Signing time: Sun 31 Aug 2025 17:00:01 +0000 ROA not before: Sun 31 Aug 2025 16:55:01 +0000 ROA not after: Sun 30 Aug 2026 17:00:01 +0000 asID: 17727 IP address blocks: 2404:c000:c004::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Sep 2025 05:31:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:85:11:ed:33:5d:e5:e9:53:2f:e7:7d:5c:f0:a8:8d:00:2e:43:c9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Validity Not Before: Aug 31 16:55:01 2025 GMT Not After : Aug 30 17:00:01 2026 GMT Subject: CN=12D8EFE61C73604F5179E95C832C120A658DB845 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:b6:67:6e:c4:bb:0b:d0:a1:c4:3d:13:6b:de: f8:b9:38:68:bb:06:e1:b3:a8:6d:83:a0:3d:2e:91: 49:41:c3:be:9d:c3:93:00:3f:ec:06:e0:16:0d:ff: 9d:9f:d9:95:f4:22:ec:1f:97:ff:30:2a:86:6c:dd: 1b:f3:f3:00:2a:c1:ee:71:d7:94:ee:f0:67:d0:de: 9d:a9:5e:0a:b9:d9:72:6f:e5:27:d8:97:72:05:8b: c2:43:da:81:50:26:69:84:c6:21:45:a0:66:fa:d5: df:8c:c4:c9:92:ba:de:3e:c8:73:e8:d1:1e:67:6b: ad:12:3d:45:15:69:df:f8:55:e2:1c:ad:f2:0a:75: 7f:cf:68:b5:a6:04:87:ce:7f:45:21:97:e9:e4:e0: 9e:2e:0f:54:e8:3d:51:d1:66:97:8e:12:94:bb:9d: 8e:b6:1e:41:3e:08:66:79:ea:29:ab:fd:7e:e0:52: 75:ff:66:52:0b:ff:02:d0:4d:2e:ca:d3:ae:db:60: c2:f7:99:d0:2e:36:3c:5b:bd:98:b9:d4:b4:1d:e5: b1:90:70:1b:79:03:7c:77:6c:93:c7:6f:eb:3b:14: fe:a2:e6:9c:23:29:64:06:33:ce:e5:c4:77:c2:2e: 78:a7:bc:f3:64:6a:4b:b0:42:8c:e8:74:41:7b:6c: 38:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:D8:EF:E6:1C:73:60:4F:51:79:E9:5C:83:2C:12:0A:65:8D:B8:45 X509v3 Authority Key Identifier: keyid:F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/323430343a633030303a633030343a3a2f34382d3438203d3e203137373237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:c000:c004::/48 Signature Algorithm: sha256WithRSAEncryption c2:63:d1:79:3f:bb:77:4d:68:e6:52:7e:21:6c:4a:3b:83:f2: e5:e2:fe:4f:7d:42:b9:b6:72:5e:a3:17:6a:6e:8b:4c:99:bb: 17:49:f2:70:5e:53:3c:02:b3:1a:5f:af:80:8b:36:93:22:7f: d6:9a:e9:45:70:7d:68:5b:c9:e1:db:a0:60:da:0c:a6:5a:c2: f8:e2:ab:d6:ce:ff:66:d4:20:11:a5:7c:86:0e:cd:6b:03:18: 83:62:cb:1b:03:b3:1c:49:27:4a:39:30:11:08:89:67:b9:2e: 38:4c:36:cd:17:79:20:9a:b8:ef:68:0d:aa:93:45:89:0c:9c: a6:bf:2b:02:7b:c7:fd:d2:78:e5:0b:d3:a1:9e:ec:3f:d0:79: 7e:f5:2b:91:57:e4:e9:af:aa:5e:27:9d:b0:d9:2b:43:74:b7: 45:bc:2e:1d:0f:94:ef:f8:82:cc:51:8b:e6:73:27:f6:36:c6: e4:be:66:b9:3d:26:c5:c6:fc:5c:a5:de:b6:17:7d:60:ae:32: 3f:f0:0d:45:43:3e:29:34:a0:b8:90:a4:fa:5d:50:30:35:20: 80:f8:f2:60:8b:75:54:5a:6c:96:7b:de:96:e8:ab:17:ae:eb: cd:e6:ac:e7:72:99:bd:54:f1:47:30:f4:8a:2c:90:84:d1:d0: 1d:2d:11:bc -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUPoUR7TNd5elTL+d9XPCojQAuQ8kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNE NjdENjUxMTAeFw0yNTA4MzExNjU1MDFaFw0yNjA4MzAxNzAwMDFaMDMxMTAvBgNV BAMTKDEyRDhFRkU2MUM3MzYwNEY1MTc5RTk1QzgzMkMxMjBBNjU4REI4NDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDItmduxLsL0KHEPRNr3vi5OGi7 BuGzqG2DoD0ukUlBw76dw5MAP+wG4BYN/52f2ZX0Iuwfl/8wKoZs3Rvz8wAqwe5x 15Tu8GfQ3p2pXgq52XJv5SfYl3IFi8JD2oFQJmmExiFFoGb61d+MxMmSut4+yHPo 0R5na60SPUUVad/4VeIcrfIKdX/PaLWmBIfOf0Uhl+nk4J4uD1ToPVHRZpeOEpS7 nY62HkE+CGZ56imr/X7gUnX/ZlIL/wLQTS7K067bYML3mdAuNjxbvZi51LQd5bGQ cBt5A3x3bJPHb+s7FP6i5pwjKWQGM87lxHfCLninvPNkakuwQozodEF7bDipAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUEtjv5hxzYE9ReelcgywSCmWNuEUwHwYDVR0j BBgwFoAU85mhoMGP6NvaI84hdeDLI9Z9ZREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MzVmN2EyZi03MjVlLTQzOTktODY5YS00YjFmY2YyYzZhMGMvMC9GMzk5QTFBMEMx OEZFOERCREEyM0NFMjE3NUUwQ0IyM0Q2N0Q2NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNENjdE NjUxMS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYzNWY3YTJmLTcyNWUtNDM5OS04 NjlhLTRiMWZjZjJjNmEwYy8wLzMyMzQzMDM0M2E2MzMwMzAzMDNhNjMzMDMwMzQz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTM3MzczMjM3LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJATA AMAEMA0GCSqGSIb3DQEBCwUAA4IBAQDCY9F5P7t3TWjmUn4hbEo7g/Ll4v5PfUK5 tnJeoxdqbotMmbsXSfJwXlM8ArMaX6+AizaTIn/WmulFcH1oW8nh26Bg2gymWsL4 4qvWzv9m1CARpXyGDs1rAxiDYssbA7McSSdKOTARCIlnuS44TDbNF3kgmrjvaA2q k0WJDJymvysCe8f90njlC9Ohnuw/0Hl+9SuRV+Tpr6peJ52w2StDdLdFvC4dD5Tv +ILMUYvmcyf2Nsbkvma5PSbFxvxcpd62F31grjI/8A1FQz4pNKC4kKT6XVAwNSCA +PJgi3VUWmyWe96W6KsXruvN5qzncpm9VPFHMPSKLJCE0dAdLRG8 -----END CERTIFICATE-----Generated at Mon Sep 8 09:35:50 2025 by rpki-client