$ rpki-client -vvf repo-rpki.idnic.net/repo/657e89e8-53aa-44f6-b6d8-5879078bf664/0/323430363a396163303a3a2f33322d3438203d3e20313431313134.roa File: 323430363a396163303a3a2f33322d3438203d3e20313431313134.roa (raw, json) Hash identifier: I8J+VKjZlzAYUjuoXbFTNBgkY4GMxQkjdom4zb/4W0c= Subject key identifier: 53:7C:3E:44:46:B8:76:11:0A:C3:A0:83:2F:88:7C:F5:9A:BC:7E:27 Certificate issuer: /CN=52145183B5BE1A663FBC5C228102541AC61F9F86 Certificate serial: 2BEBF8353A86C7B1491B9C6AF4022CCBE83CEF93 Authority key identifier: 52:14:51:83:B5:BE:1A:66:3F:BC:5C:22:81:02:54:1A:C6:1F:9F:86 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/52145183B5BE1A663FBC5C228102541AC61F9F86.cer Subject info access: rsync://repo-rpki.idnic.net/repo/657e89e8-53aa-44f6-b6d8-5879078bf664/0/323430363a396163303a3a2f33322d3438203d3e20313431313134.roa Signing time: Wed 27 Aug 2025 11:00:01 +0000 ROA not before: Wed 27 Aug 2025 10:55:01 +0000 ROA not after: Wed 26 Aug 2026 11:00:01 +0000 asID: 141114 IP address blocks: 2406:9ac0::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/657e89e8-53aa-44f6-b6d8-5879078bf664/0/52145183B5BE1A663FBC5C228102541AC61F9F86.crl rsync://repo-rpki.idnic.net/repo/657e89e8-53aa-44f6-b6d8-5879078bf664/0/52145183B5BE1A663FBC5C228102541AC61F9F86.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/52145183B5BE1A663FBC5C228102541AC61F9F86.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Sep 2025 21:29:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:eb:f8:35:3a:86:c7:b1:49:1b:9c:6a:f4:02:2c:cb:e8:3c:ef:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=52145183B5BE1A663FBC5C228102541AC61F9F86 Validity Not Before: Aug 27 10:55:01 2025 GMT Not After : Aug 26 11:00:01 2026 GMT Subject: CN=537C3E4446B876110AC3A0832F887CF59ABC7E27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:26:b5:e9:2f:d1:3f:1e:cb:07:e8:05:f8:77: e4:c9:b7:58:84:91:61:ca:17:58:bb:25:e2:c6:48: 1b:04:c3:fc:c7:9d:8b:02:61:d1:35:be:e4:c5:1e: ee:ab:2f:b1:68:4d:cf:05:9a:06:85:a7:cb:f5:a8: 9f:f1:73:ca:a1:14:c1:10:7f:77:70:1a:c5:c0:78: c0:e0:71:a5:00:31:ec:da:c5:8c:62:32:0e:8a:66: 26:28:6c:a0:97:80:de:77:34:f2:83:a5:ed:e5:83: 76:75:17:ed:09:59:77:fc:49:43:07:1e:cd:35:97: 27:25:b8:e4:93:34:29:c2:08:c1:73:a8:52:2b:4c: cb:66:58:0e:05:d7:da:b1:af:51:28:08:3e:bd:0c: d4:78:31:e9:5a:d1:7d:fb:2c:9c:15:5c:70:05:21: c6:4c:8a:cb:cb:67:6d:49:9c:a0:cc:e0:e1:cb:17: d6:80:f8:ed:69:48:d9:56:85:32:b2:59:1c:5e:46: 2e:af:1a:1d:84:4f:eb:f5:47:aa:da:df:34:c6:51: 9a:32:44:56:c2:e8:7a:87:cc:05:98:20:53:b5:5f: 89:50:fc:8c:e0:ca:1d:72:66:6b:82:e0:13:0e:c4: ed:0a:6a:66:fd:75:e0:2c:5b:81:92:b1:12:02:d4: fe:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:7C:3E:44:46:B8:76:11:0A:C3:A0:83:2F:88:7C:F5:9A:BC:7E:27 X509v3 Authority Key Identifier: keyid:52:14:51:83:B5:BE:1A:66:3F:BC:5C:22:81:02:54:1A:C6:1F:9F:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/657e89e8-53aa-44f6-b6d8-5879078bf664/0/52145183B5BE1A663FBC5C228102541AC61F9F86.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/52145183B5BE1A663FBC5C228102541AC61F9F86.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/657e89e8-53aa-44f6-b6d8-5879078bf664/0/323430363a396163303a3a2f33322d3438203d3e20313431313134.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:9ac0::/32 Signature Algorithm: sha256WithRSAEncryption 46:02:6b:79:ee:eb:81:7b:b0:d4:ee:d7:2d:3d:0d:35:02:ca: 81:2a:cf:92:d3:8b:31:e7:f1:a5:d3:da:f5:11:85:4c:ac:f2: 57:47:6a:6a:a8:91:46:fa:63:57:09:7b:7f:90:7d:e1:62:19: 97:c1:48:cb:cd:29:60:d4:21:11:33:c4:cd:25:d6:8b:c2:c3: 58:38:b7:77:9b:5a:b2:0d:43:e1:55:58:ba:5d:c7:8c:19:b7: 18:10:b4:cd:57:05:5c:d7:10:51:04:a3:47:d3:14:c8:e6:98: 9b:ba:7d:75:aa:e5:5d:9b:12:a7:39:f4:7d:57:0c:15:a5:2e: 31:37:03:08:f1:1d:14:ef:b9:47:43:04:c8:71:14:bf:4b:61: 06:fa:ca:21:44:9e:cc:52:dd:00:e4:f7:64:03:b6:bf:74:44: 0f:bf:51:ce:69:c0:32:30:17:e0:c6:d4:78:21:c3:e2:e9:94: 9c:1c:d0:83:c7:f3:94:be:1e:3d:bb:4d:3b:c8:2a:87:5e:e6: ca:75:0c:3c:a8:8e:d6:04:1c:af:7e:a1:4d:18:dd:3d:0d:b1: b5:a6:a7:33:55:65:f5:6f:e8:7e:b9:54:1c:e5:0c:3c:79:aa: cf:1b:3c:b5:84:7f:b2:66:ab:65:54:75:f8:4c:c2:2d:92:3f: 1c:4d:9e:db -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUK+v4NTqGx7FJG5xq9AIsy+g875MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTIxNDUxODNCNUJFMUE2NjNGQkM1QzIyODEwMjU0MUFD NjFGOUY4NjAeFw0yNTA4MjcxMDU1MDFaFw0yNjA4MjYxMTAwMDFaMDMxMTAvBgNV BAMTKDUzN0MzRTQ0NDZCODc2MTEwQUMzQTA4MzJGODg3Q0Y1OUFCQzdFMjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCJrXpL9E/HssH6AX4d+TJt1iE kWHKF1i7JeLGSBsEw/zHnYsCYdE1vuTFHu6rL7FoTc8FmgaFp8v1qJ/xc8qhFMEQ f3dwGsXAeMDgcaUAMezaxYxiMg6KZiYobKCXgN53NPKDpe3lg3Z1F+0JWXf8SUMH Hs01lycluOSTNCnCCMFzqFIrTMtmWA4F19qxr1EoCD69DNR4Mela0X37LJwVXHAF IcZMisvLZ21JnKDM4OHLF9aA+O1pSNlWhTKyWRxeRi6vGh2ET+v1R6ra3zTGUZoy RFbC6HqHzAWYIFO1X4lQ/Izgyh1yZmuC4BMOxO0Kamb9deAsW4GSsRIC1P71AgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUU3w+REa4dhEKw6CDL4h89Zq8ficwHwYDVR0j BBgwFoAUUhRRg7W+GmY/vFwigQJUGsYfn4YwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 NTdlODllOC01M2FhLTQ0ZjYtYjZkOC01ODc5MDc4YmY2NjQvMC81MjE0NTE4M0I1 QkUxQTY2M0ZCQzVDMjI4MTAyNTQxQUM2MUY5Rjg2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTIxNDUxODNCNUJFMUE2NjNGQkM1QzIyODEwMjU0MUFDNjFG OUY4Ni5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY1N2U4OWU4LTUzYWEtNDRmNi1i NmQ4LTU4NzkwNzhiZjY2NC8wLzMyMzQzMDM2M2EzOTYxNjMzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMxMzQzMTMxMzEzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQGmsAwDQYJKoZI hvcNAQELBQADggEBAEYCa3nu64F7sNTu1y09DTUCyoEqz5LTizHn8aXT2vURhUys 8ldHamqokUb6Y1cJe3+QfeFiGZfBSMvNKWDUIREzxM0l1ovCw1g4t3ebWrINQ+FV WLpdx4wZtxgQtM1XBVzXEFEEo0fTFMjmmJu6fXWq5V2bEqc59H1XDBWlLjE3Awjx HRTvuUdDBMhxFL9LYQb6yiFEnsxS3QDk92QDtr90RA+/Uc5pwDIwF+DG1Hghw+Lp lJwc0IPH85S+Hj27TTvIKode5sp1DDyojtYEHK9+oU0Y3T0NsbWmpzNVZfVv6H65 VBzlDDx5qs8bPLWEf7Jmq2VUdfhMwi2SPxxNnts= -----END CERTIFICATE-----Generated at Mon Sep 8 03:04:33 2025 by rpki-client