$ rpki-client -vvf repo-rpki.idnic.net/repo/7994d375-fc7d-4dc7-a1f1-e0b3a59fdf78/0/323030313a6466313a666530303a3a2f34382d3438203d3e20313431313037.roa File: 323030313a6466313a666530303a3a2f34382d3438203d3e20313431313037.roa (raw, json) Hash identifier: ArGX3GK83LFApxV4uLSs4kfPXNu12xplyTp4FBzO9Nw= Subject key identifier: CB:3A:BB:C9:B0:8E:BE:72:C3:22:EA:1C:DD:30:41:7F:4D:50:9E:1C Certificate issuer: /CN=0FA41B65D1881666013C9683E40575E68E5DC0A5 Certificate serial: 59266F2B5DDE35F0828E9978D60D538D42BFE3EC Authority key identifier: 0F:A4:1B:65:D1:88:16:66:01:3C:96:83:E4:05:75:E6:8E:5D:C0:A5 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0FA41B65D1881666013C9683E40575E68E5DC0A5.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7994d375-fc7d-4dc7-a1f1-e0b3a59fdf78/0/323030313a6466313a666530303a3a2f34382d3438203d3e20313431313037.roa Signing time: Thu 28 Aug 2025 08:00:58 +0000 ROA not before: Thu 28 Aug 2025 07:55:58 +0000 ROA not after: Thu 27 Aug 2026 08:00:58 +0000 asID: 141107 IP address blocks: 2001:df1:fe00::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7994d375-fc7d-4dc7-a1f1-e0b3a59fdf78/0/0FA41B65D1881666013C9683E40575E68E5DC0A5.crl rsync://repo-rpki.idnic.net/repo/7994d375-fc7d-4dc7-a1f1-e0b3a59fdf78/0/0FA41B65D1881666013C9683E40575E68E5DC0A5.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0FA41B65D1881666013C9683E40575E68E5DC0A5.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Sep 2025 13:26:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:26:6f:2b:5d:de:35:f0:82:8e:99:78:d6:0d:53:8d:42:bf:e3:ec Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0FA41B65D1881666013C9683E40575E68E5DC0A5 Validity Not Before: Aug 28 07:55:58 2025 GMT Not After : Aug 27 08:00:58 2026 GMT Subject: CN=CB3ABBC9B08EBE72C322EA1CDD30417F4D509E1C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:85:99:19:37:ba:42:06:95:bd:88:13:f3:b7: 5c:7e:aa:e0:a0:ee:c1:61:1a:d2:7c:db:a4:8a:f4: af:1b:67:96:22:0c:ce:6f:04:cc:a5:4c:d2:0d:a8: bf:64:54:a6:13:3f:67:91:e9:8e:c9:f6:e3:1b:a6: d9:53:42:c0:de:71:cf:c8:7d:22:0e:8a:1c:cf:6c: a9:bf:af:09:0f:8a:90:6c:c1:29:db:8a:1e:83:3b: 58:75:26:ff:bb:16:4e:71:e2:a5:ac:93:4d:aa:d1: a6:34:59:86:ee:be:c0:e1:b3:00:41:3f:7f:49:ff: f6:6a:e6:be:28:d7:22:87:b4:95:7b:e8:87:da:bc: 8a:bb:13:be:7a:c0:3a:44:2a:0e:3e:d1:10:bd:98: 20:d4:a4:6e:5c:fa:6f:ed:5b:70:ee:38:cc:b9:06: 16:a6:87:ba:25:47:b1:39:6a:94:ed:00:e5:01:86: 38:4e:11:9a:29:41:24:91:5e:90:b0:ba:05:d9:dc: f9:87:37:18:72:08:ea:7c:14:9f:0d:f7:5c:12:45: 55:36:c0:04:f6:37:4b:48:a6:f8:ae:97:c6:c1:3a: 27:82:98:99:bf:1b:19:6d:b7:71:4e:b6:3c:99:6f: 8b:67:e4:e0:c5:cd:77:45:86:e4:e0:50:39:29:2f: c1:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:3A:BB:C9:B0:8E:BE:72:C3:22:EA:1C:DD:30:41:7F:4D:50:9E:1C X509v3 Authority Key Identifier: keyid:0F:A4:1B:65:D1:88:16:66:01:3C:96:83:E4:05:75:E6:8E:5D:C0:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7994d375-fc7d-4dc7-a1f1-e0b3a59fdf78/0/0FA41B65D1881666013C9683E40575E68E5DC0A5.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0FA41B65D1881666013C9683E40575E68E5DC0A5.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7994d375-fc7d-4dc7-a1f1-e0b3a59fdf78/0/323030313a6466313a666530303a3a2f34382d3438203d3e20313431313037.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df1:fe00::/48 Signature Algorithm: sha256WithRSAEncryption 51:04:64:0e:58:8c:b9:05:6d:52:ed:0c:2c:1b:fb:76:76:90: ca:e3:b1:67:0e:76:fa:c1:40:a6:3c:24:0e:ce:0b:c2:99:e2: 91:2d:87:f8:68:ea:34:68:40:7d:a4:3a:71:7a:31:a5:46:9a: 79:27:d2:a7:c7:4b:55:f6:3c:ce:d4:20:f2:4e:57:e2:38:90: 6a:4a:b1:5d:4f:6d:0d:ca:ec:11:07:15:c2:07:b5:e9:f4:cd: 3a:33:3c:05:d6:09:23:9e:36:d7:bc:26:7e:02:6c:e4:0a:85: 19:9d:2f:d8:e9:42:f9:7a:ad:c6:8d:d8:8f:90:37:ec:83:d6: 34:1a:ff:98:3e:d9:3f:a0:e0:92:18:7f:af:a9:b6:3b:d0:72: 75:eb:69:8a:87:b4:f0:00:6c:91:cd:d2:b9:09:7f:45:8f:b3: d1:d7:dc:85:77:d6:65:f6:ab:d8:7b:78:ba:88:f5:2b:53:43: 69:4d:18:18:47:25:d8:ed:5c:28:7e:fc:d3:af:fd:46:e5:ec: 49:6e:b9:96:0d:e5:c4:55:45:76:cb:a1:ff:85:5e:3f:22:1c: 41:04:bf:ff:87:8e:bc:97:1c:ce:b8:6d:75:07:b4:1d:81:19: 69:30:17:ab:df:6b:76:5c:95:de:b6:d8:d9:99:b4:44:ea:90: c5:7f:db:7d -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUWSZvK13eNfCCjpl41g1TjUK/4+wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEZBNDFCNjVEMTg4MTY2NjAxM0M5NjgzRTQwNTc1RTY4 RTVEQzBBNTAeFw0yNTA4MjgwNzU1NThaFw0yNjA4MjcwODAwNThaMDMxMTAvBgNV BAMTKENCM0FCQkM5QjA4RUJFNzJDMzIyRUExQ0REMzA0MTdGNEQ1MDlFMUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNhZkZN7pCBpW9iBPzt1x+quCg 7sFhGtJ826SK9K8bZ5YiDM5vBMylTNINqL9kVKYTP2eR6Y7J9uMbptlTQsDecc/I fSIOihzPbKm/rwkPipBswSnbih6DO1h1Jv+7Fk5x4qWsk02q0aY0WYbuvsDhswBB P39J//Zq5r4o1yKHtJV76IfavIq7E756wDpEKg4+0RC9mCDUpG5c+m/tW3DuOMy5 Bhamh7olR7E5apTtAOUBhjhOEZopQSSRXpCwugXZ3PmHNxhyCOp8FJ8N91wSRVU2 wAT2N0tIpviul8bBOieCmJm/Gxltt3FOtjyZb4tn5ODFzXdFhuTgUDkpL8FRAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUyzq7ybCOvnLDIuoc3TBBf01QnhwwHwYDVR0j BBgwFoAUD6QbZdGIFmYBPJaD5AV15o5dwKUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 OTk0ZDM3NS1mYzdkLTRkYzctYTFmMS1lMGIzYTU5ZmRmNzgvMC8wRkE0MUI2NUQx ODgxNjY2MDEzQzk2ODNFNDA1NzVFNjhFNURDMEE1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMEZBNDFCNjVEMTg4MTY2NjAxM0M5NjgzRTQwNTc1RTY4RTVE QzBBNS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzc5OTRkMzc1LWZjN2QtNGRjNy1h MWYxLWUwYjNhNTlmZGY3OC8wLzMyMzAzMDMxM2E2NDY2MzEzYTY2NjUzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNDMxMzEzMDM3LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8f4AMA0GCSqGSIb3DQEBCwUAA4IBAQBRBGQOWIy5BW1S7QwsG/t2dpDK47FnDnb6 wUCmPCQOzgvCmeKRLYf4aOo0aEB9pDpxejGlRpp5J9Knx0tV9jzO1CDyTlfiOJBq SrFdT20NyuwRBxXCB7Xp9M06MzwF1gkjnjbXvCZ+AmzkCoUZnS/Y6UL5eq3GjdiP kDfsg9Y0Gv+YPtk/oOCSGH+vqbY70HJ162mKh7TwAGyRzdK5CX9Fj7PR19yFd9Zl 9qvYe3i6iPUrU0NpTRgYRyXY7VwofvzTr/1G5exJbrmWDeXEVUV2y6H/hV4/IhxB BL//h468lxzOuG11B7QdgRlpMBer32t2XJXettjZmbRE6pDFf9t9 -----END CERTIFICATE-----Generated at Sun Sep 7 16:24:42 2025 by rpki-client