$ rpki-client -vvf repo-rpki.idnic.net/repo/7998d6ee-6fd7-4e2d-ae41-6939fdb153ee/0/323430353a343634303a3a2f33322d3332203d3e20313339343034.roa File: 323430353a343634303a3a2f33322d3332203d3e20313339343034.roa (raw, json) Hash identifier: zm5n3GOGREs/7wstc0BHEn5R1puxQvUBN1+zTBkXQdk= Subject key identifier: 52:85:82:79:9C:37:22:C9:72:F1:AC:EA:31:76:65:02:66:B3:49:05 Certificate issuer: /CN=03F45A130990D1072FE172E1EF64AAFAEC347834 Certificate serial: 4B8F8AA35F300F743D8E08B5F8767DF684FCFE81 Authority key identifier: 03:F4:5A:13:09:90:D1:07:2F:E1:72:E1:EF:64:AA:FA:EC:34:78:34 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/03F45A130990D1072FE172E1EF64AAFAEC347834.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7998d6ee-6fd7-4e2d-ae41-6939fdb153ee/0/323430353a343634303a3a2f33322d3332203d3e20313339343034.roa Signing time: Mon 25 Aug 2025 10:00:00 +0000 ROA not before: Mon 25 Aug 2025 09:55:00 +0000 ROA not after: Mon 24 Aug 2026 10:00:00 +0000 asID: 139404 IP address blocks: 2405:4640::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7998d6ee-6fd7-4e2d-ae41-6939fdb153ee/0/03F45A130990D1072FE172E1EF64AAFAEC347834.crl rsync://repo-rpki.idnic.net/repo/7998d6ee-6fd7-4e2d-ae41-6939fdb153ee/0/03F45A130990D1072FE172E1EF64AAFAEC347834.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/03F45A130990D1072FE172E1EF64AAFAEC347834.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Sep 2025 03:32:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:8f:8a:a3:5f:30:0f:74:3d:8e:08:b5:f8:76:7d:f6:84:fc:fe:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=03F45A130990D1072FE172E1EF64AAFAEC347834 Validity Not Before: Aug 25 09:55:00 2025 GMT Not After : Aug 24 10:00:00 2026 GMT Subject: CN=528582799C3722C972F1ACEA3176650266B34905 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:c2:72:fb:97:c5:42:84:45:4c:37:de:37:ac: 5d:dc:84:d6:1b:18:1a:8d:fb:19:da:95:1a:b9:08: 47:d0:6a:fd:31:d8:8d:87:a7:71:9d:72:05:58:98: 96:f2:a8:38:83:cc:27:31:2a:14:31:c9:06:de:ee: c0:e7:f0:a6:ce:db:a0:82:10:be:48:53:f3:87:75: f8:3b:28:38:25:ab:a0:1d:2e:3e:20:fe:2a:5a:10: 54:9f:11:18:68:56:08:a0:45:4f:b9:1b:95:20:71: 12:8f:1f:fe:3f:4d:08:83:cf:e1:9a:a4:e2:72:06: eb:03:79:08:3f:2f:f1:8f:43:46:c5:46:4e:eb:85: 96:90:13:b0:2e:53:c4:a2:3f:e9:35:35:01:cf:e4: d3:5b:bb:2b:15:6b:21:1a:3a:54:0e:d1:bd:74:71: 28:6a:fa:b5:da:0c:e5:74:92:ed:36:13:b9:5a:b5: 15:6f:74:00:cb:bb:53:fb:ad:bd:dc:be:e5:d8:bb: 14:54:1c:86:d7:64:88:e0:cf:01:57:cb:c7:c3:a9: 32:b9:65:9b:ea:30:e9:a5:b2:ae:a3:a5:6c:6f:bc: a7:f4:48:27:97:4f:05:8c:cd:9b:00:33:f1:88:ad: e9:c8:df:94:ca:4f:de:4a:66:b8:7a:3f:b9:73:96: 71:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:85:82:79:9C:37:22:C9:72:F1:AC:EA:31:76:65:02:66:B3:49:05 X509v3 Authority Key Identifier: keyid:03:F4:5A:13:09:90:D1:07:2F:E1:72:E1:EF:64:AA:FA:EC:34:78:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7998d6ee-6fd7-4e2d-ae41-6939fdb153ee/0/03F45A130990D1072FE172E1EF64AAFAEC347834.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/03F45A130990D1072FE172E1EF64AAFAEC347834.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7998d6ee-6fd7-4e2d-ae41-6939fdb153ee/0/323430353a343634303a3a2f33322d3332203d3e20313339343034.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:4640::/32 Signature Algorithm: sha256WithRSAEncryption 40:e9:03:7a:59:a4:92:5f:b9:35:df:cc:69:fc:b5:0e:99:77: cc:96:df:10:a1:67:d1:65:cd:52:4d:2c:84:63:ef:ef:be:04: a0:8c:0e:61:67:ea:f9:0e:03:b0:0a:ff:b3:b1:f1:56:eb:af: 54:ce:e8:d8:4e:2f:11:da:6f:4a:8f:3e:7e:87:1f:bf:2f:b5: 01:8f:f0:41:33:a7:dc:0b:39:75:91:1d:9f:42:3e:59:7d:30: 89:67:4d:a6:b7:e4:11:36:c2:5a:73:19:29:c4:78:85:aa:f0: 93:bb:00:71:dc:7e:a6:ae:f1:b4:33:3e:04:27:63:2f:9d:dd: 3c:bf:b9:f0:b4:05:83:26:eb:b6:0e:2d:b1:51:49:bf:4f:09: d8:77:5b:f2:59:c6:5b:56:1a:f4:83:a6:ae:43:3f:f9:95:a5: dd:9c:d9:32:5f:2b:76:51:b2:cc:36:ab:2e:e8:7f:b6:bb:9f: 6c:38:04:69:ea:57:3c:32:fc:75:b9:aa:cf:af:52:72:41:65: 61:4b:17:58:2a:46:a8:ee:28:77:73:4a:35:66:05:4b:4f:e6: a5:af:cf:09:b8:2a:13:bf:b1:42:6d:38:62:c7:d7:c0:69:12: 10:05:3b:6e:b4:c1:71:35:89:b9:8a:21:d6:b9:e2:6e:94:14: e5:79:88:c6 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUS4+Ko18wD3Q9jgi1+HZ99oT8/oEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDNGNDVBMTMwOTkwRDEwNzJGRTE3MkUxRUY2NEFBRkFF QzM0NzgzNDAeFw0yNTA4MjUwOTU1MDBaFw0yNjA4MjQxMDAwMDBaMDMxMTAvBgNV BAMTKDUyODU4Mjc5OUMzNzIyQzk3MkYxQUNFQTMxNzY2NTAyNjZCMzQ5MDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSwnL7l8VChEVMN943rF3chNYb GBqN+xnalRq5CEfQav0x2I2Hp3GdcgVYmJbyqDiDzCcxKhQxyQbe7sDn8KbO26CC EL5IU/OHdfg7KDglq6AdLj4g/ipaEFSfERhoVgigRU+5G5UgcRKPH/4/TQiDz+Ga pOJyBusDeQg/L/GPQ0bFRk7rhZaQE7AuU8SiP+k1NQHP5NNbuysVayEaOlQO0b10 cShq+rXaDOV0ku02E7latRVvdADLu1P7rb3cvuXYuxRUHIbXZIjgzwFXy8fDqTK5 ZZvqMOmlsq6jpWxvvKf0SCeXTwWMzZsAM/GIrenI35TKT95KZrh6P7lzlnFrAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUUoWCeZw3Isly8azqMXZlAmazSQUwHwYDVR0j BBgwFoAUA/RaEwmQ0Qcv4XLh72Sq+uw0eDQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 OTk4ZDZlZS02ZmQ3LTRlMmQtYWU0MS02OTM5ZmRiMTUzZWUvMC8wM0Y0NUExMzA5 OTBEMTA3MkZFMTcyRTFFRjY0QUFGQUVDMzQ3ODM0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDNGNDVBMTMwOTkwRDEwNzJGRTE3MkUxRUY2NEFBRkFFQzM0 NzgzNC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzc5OThkNmVlLTZmZDctNGUyZC1h ZTQxLTY5MzlmZGIxNTNlZS8wLzMyMzQzMDM1M2EzNDM2MzQzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzMzOTM0MzAzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQFRkAwDQYJKoZI hvcNAQELBQADggEBAEDpA3pZpJJfuTXfzGn8tQ6Zd8yW3xChZ9FlzVJNLIRj7+++ BKCMDmFn6vkOA7AK/7Ox8Vbrr1TO6NhOLxHab0qPPn6HH78vtQGP8EEzp9wLOXWR HZ9CPll9MIlnTaa35BE2wlpzGSnEeIWq8JO7AHHcfqau8bQzPgQnYy+d3Ty/ufC0 BYMm67YOLbFRSb9PCdh3W/JZxltWGvSDpq5DP/mVpd2c2TJfK3ZRssw2qy7of7a7 n2w4BGnqVzwy/HW5qs+vUnJBZWFLF1gqRqjuKHdzSjVmBUtP5qWvzwm4KhO/sUJt OGLH18BpEhAFO260wXE1ibmKIda54m6UFOV5iMY= -----END CERTIFICATE-----Generated at Sun Sep 7 15:37:20 2025 by rpki-client