$ rpki-client -vvf repo-rpki.idnic.net/repo/8e693b89-4597-40b5-92b0-b299fa769afa/0/323430353a326363303a353a3a2f34382d3438203d3e20313336303739.roa File: 323430353a326363303a353a3a2f34382d3438203d3e20313336303739.roa (raw, json) Hash identifier: M4ssaOvjHsdJP6LoJpiLBv94HULBEuZfCL5oS3yxuR0= Subject key identifier: 6B:7B:F8:C3:94:B1:E3:81:17:F8:F3:6E:B2:0E:68:1C:32:8E:73:CE Certificate issuer: /CN=F3ABA8F3C2DD8925DD47BF7EA2137302A72B5837 Certificate serial: 6B68B86EF1AA20C4785AE5920E5A3DCED79523E5 Authority key identifier: F3:AB:A8:F3:C2:DD:89:25:DD:47:BF:7E:A2:13:73:02:A7:2B:58:37 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F3ABA8F3C2DD8925DD47BF7EA2137302A72B5837.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8e693b89-4597-40b5-92b0-b299fa769afa/0/323430353a326363303a353a3a2f34382d3438203d3e20313336303739.roa Signing time: Tue 15 Jul 2025 02:00:01 +0000 ROA not before: Tue 15 Jul 2025 01:55:01 +0000 ROA not after: Tue 14 Jul 2026 02:00:01 +0000 asID: 136079 IP address blocks: 2405:2cc0:5::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8e693b89-4597-40b5-92b0-b299fa769afa/0/F3ABA8F3C2DD8925DD47BF7EA2137302A72B5837.crl rsync://repo-rpki.idnic.net/repo/8e693b89-4597-40b5-92b0-b299fa769afa/0/F3ABA8F3C2DD8925DD47BF7EA2137302A72B5837.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F3ABA8F3C2DD8925DD47BF7EA2137302A72B5837.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 29 Oct 2025 18:00:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:68:b8:6e:f1:aa:20:c4:78:5a:e5:92:0e:5a:3d:ce:d7:95:23:e5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F3ABA8F3C2DD8925DD47BF7EA2137302A72B5837 Validity Not Before: Jul 15 01:55:01 2025 GMT Not After : Jul 14 02:00:01 2026 GMT Subject: CN=6B7BF8C394B1E38117F8F36EB20E681C328E73CE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:e1:d9:ae:0f:81:4a:45:3b:3b:30:f2:06:e4: 51:84:1a:58:61:1b:ec:e7:1d:c8:f3:2c:76:07:3b: 3b:ea:88:9a:a7:64:60:75:6c:7c:2f:57:c9:10:dc: d8:c9:82:16:a6:1e:ca:90:73:5b:fb:15:80:b4:84: 7f:0d:ec:dc:28:16:8f:39:99:17:fd:8f:65:61:1f: f9:d0:0d:9b:aa:05:56:70:d5:30:ea:81:58:37:57: 5e:2f:3c:47:47:b5:99:e7:38:c9:2a:12:3f:3d:86: ad:49:9d:73:0e:a0:e9:f7:3d:ad:96:0b:08:bd:cc: c0:02:25:d9:6f:93:fd:07:df:d1:0f:7c:cc:32:ff: a3:5e:f6:cd:59:20:f9:4a:63:9a:42:39:0d:2a:7c: 3b:26:ab:e3:04:14:d9:03:f7:40:47:47:2f:16:ea: 26:74:cd:78:ac:be:64:53:e5:18:3d:9b:56:a3:fc: 8e:33:80:50:a5:13:d2:d0:33:d5:27:f5:09:41:07: 5c:ab:cc:9f:6e:90:1c:ac:b1:ff:f3:cc:30:29:c1: 2c:37:ef:dc:4b:ac:78:f2:fb:ad:df:0c:5a:5f:da: a4:90:b7:d5:4c:9c:35:04:1d:ed:eb:af:cb:54:80: 84:35:9a:06:ba:f5:19:c7:fc:62:15:0f:b6:07:eb: 25:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:7B:F8:C3:94:B1:E3:81:17:F8:F3:6E:B2:0E:68:1C:32:8E:73:CE X509v3 Authority Key Identifier: keyid:F3:AB:A8:F3:C2:DD:89:25:DD:47:BF:7E:A2:13:73:02:A7:2B:58:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8e693b89-4597-40b5-92b0-b299fa769afa/0/F3ABA8F3C2DD8925DD47BF7EA2137302A72B5837.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F3ABA8F3C2DD8925DD47BF7EA2137302A72B5837.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8e693b89-4597-40b5-92b0-b299fa769afa/0/323430353a326363303a353a3a2f34382d3438203d3e20313336303739.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:2cc0:5::/48 Signature Algorithm: sha256WithRSAEncryption 8f:65:61:72:97:19:ca:2c:69:0f:f9:60:0f:50:a3:c8:cc:c4: da:30:5d:14:3a:00:01:94:ce:89:d1:59:99:33:23:8d:4c:dc: 9a:3a:80:d4:46:03:4a:c9:7e:2b:63:b6:33:6d:5c:8b:50:45: 6d:16:f0:ff:59:27:56:7e:ef:06:46:11:3e:90:a9:36:70:74: 2b:8e:a5:54:3b:ec:e3:e1:21:cf:8d:82:29:37:1a:c4:23:05: a9:28:ab:4b:24:64:88:78:b4:70:ad:90:5f:60:56:58:a3:c6: b8:c1:14:43:9e:65:80:04:cb:12:4b:25:7d:3e:25:1f:62:19: 76:a2:1f:fc:db:d3:e3:da:9b:ab:a0:33:25:a0:e4:3f:ae:c6: cd:bb:6e:a3:fe:3e:ee:46:2f:96:7e:e1:43:7d:7b:7c:fc:93: 24:e3:1b:f8:fb:a2:5c:5f:7c:40:ee:7f:52:ed:9b:4f:89:f2: 8a:b6:d0:a6:9a:30:f5:43:9b:7d:57:be:25:50:3a:de:ac:af: 90:20:af:a5:cf:ae:87:8b:bf:6b:7a:df:6e:2a:67:36:ca:7d: 10:39:1d:12:f2:a6:e5:af:b0:70:f2:82:26:22:56:2e:41:74: cf:13:e7:65:b3:1b:8f:f1:53:a4:ad:20:ed:92:04:6c:76:d8: e6:5f:7d:ea -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUa2i4bvGqIMR4WuWSDlo9zteVI+UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjNBQkE4RjNDMkREODkyNURENDdCRjdFQTIxMzczMDJB NzJCNTgzNzAeFw0yNTA3MTUwMTU1MDFaFw0yNjA3MTQwMjAwMDFaMDMxMTAvBgNV BAMTKDZCN0JGOEMzOTRCMUUzODExN0Y4RjM2RUIyMEU2ODFDMzI4RTczQ0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCX4dmuD4FKRTs7MPIG5FGEGlhh G+znHcjzLHYHOzvqiJqnZGB1bHwvV8kQ3NjJghamHsqQc1v7FYC0hH8N7NwoFo85 mRf9j2VhH/nQDZuqBVZw1TDqgVg3V14vPEdHtZnnOMkqEj89hq1JnXMOoOn3Pa2W Cwi9zMACJdlvk/0H39EPfMwy/6Ne9s1ZIPlKY5pCOQ0qfDsmq+MEFNkD90BHRy8W 6iZ0zXisvmRT5Rg9m1aj/I4zgFClE9LQM9Un9QlBB1yrzJ9ukByssf/zzDApwSw3 79xLrHjy+63fDFpf2qSQt9VMnDUEHe3rr8tUgIQ1mga69RnH/GIVD7YH6yVbAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUa3v4w5Sx44EX+PNusg5oHDKOc84wHwYDVR0j BBgwFoAU86uo88LdiSXdR79+ohNzAqcrWDcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 ZTY5M2I4OS00NTk3LTQwYjUtOTJiMC1iMjk5ZmE3NjlhZmEvMC9GM0FCQThGM0My REQ4OTI1REQ0N0JGN0VBMjEzNzMwMkE3MkI1ODM3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjNBQkE4RjNDMkREODkyNURENDdCRjdFQTIxMzczMDJBNzJC NTgzNy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhlNjkzYjg5LTQ1OTctNDBiNS05 MmIwLWIyOTlmYTc2OWFmYS8wLzMyMzQzMDM1M2EzMjYzNjMzMDNhMzUzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTMzMzYzMDM3Mzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBSzAAAUw DQYJKoZIhvcNAQELBQADggEBAI9lYXKXGcosaQ/5YA9Qo8jMxNowXRQ6AAGUzonR WZkzI41M3Jo6gNRGA0rJfitjtjNtXItQRW0W8P9ZJ1Z+7wZGET6QqTZwdCuOpVQ7 7OPhIc+Ngik3GsQjBakoq0skZIh4tHCtkF9gVlijxrjBFEOeZYAEyxJLJX0+JR9i GXaiH/zb0+Pam6ugMyWg5D+uxs27bqP+Pu5GL5Z+4UN9e3z8kyTjG/j7olxffEDu f1Ltm0+J8oq20KaaMPVDm31XviVQOt6sr5Agr6XProeLv2t6324qZzbKfRA5HRLy puWvsHDygiYiVi5BdM8T52WzG4/xU6StIO2SBGx22OZffeo= -----END CERTIFICATE-----Generated at Tue Oct 28 14:08:44 2025 by rpki-client