$ rpki-client -vvf repo-rpki.idnic.net/repo/8e693b89-4597-40b5-92b0-b299fa769afa/0/323430353a326363303a363a3a2f34382d3438203d3e20313336303739.roa File: 323430353a326363303a363a3a2f34382d3438203d3e20313336303739.roa (raw, json) Hash identifier: /ri40FDmSZx726w/lEZ1lnE+M3llFsHw0OIkUDVqH2Y= Subject key identifier: A3:0F:0B:D9:B9:78:4E:A0:D7:E3:2A:AB:88:AF:80:1D:A4:95:12:5C Certificate issuer: /CN=F3ABA8F3C2DD8925DD47BF7EA2137302A72B5837 Certificate serial: 2BCC3D6B4A16734823F36E796FE05BED09E69612 Authority key identifier: F3:AB:A8:F3:C2:DD:89:25:DD:47:BF:7E:A2:13:73:02:A7:2B:58:37 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F3ABA8F3C2DD8925DD47BF7EA2137302A72B5837.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8e693b89-4597-40b5-92b0-b299fa769afa/0/323430353a326363303a363a3a2f34382d3438203d3e20313336303739.roa Signing time: Tue 15 Jul 2025 02:00:01 +0000 ROA not before: Tue 15 Jul 2025 01:55:01 +0000 ROA not after: Tue 14 Jul 2026 02:00:01 +0000 asID: 136079 IP address blocks: 2405:2cc0:6::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8e693b89-4597-40b5-92b0-b299fa769afa/0/F3ABA8F3C2DD8925DD47BF7EA2137302A72B5837.crl rsync://repo-rpki.idnic.net/repo/8e693b89-4597-40b5-92b0-b299fa769afa/0/F3ABA8F3C2DD8925DD47BF7EA2137302A72B5837.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F3ABA8F3C2DD8925DD47BF7EA2137302A72B5837.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 29 Oct 2025 18:00:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:cc:3d:6b:4a:16:73:48:23:f3:6e:79:6f:e0:5b:ed:09:e6:96:12 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F3ABA8F3C2DD8925DD47BF7EA2137302A72B5837 Validity Not Before: Jul 15 01:55:01 2025 GMT Not After : Jul 14 02:00:01 2026 GMT Subject: CN=A30F0BD9B9784EA0D7E32AAB88AF801DA495125C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:69:2f:60:8a:31:ef:e6:f2:e4:47:35:6a:c8: 14:59:3b:88:23:bb:97:86:70:4d:ae:b8:95:00:a0: ee:e7:ed:29:cf:95:e2:b4:39:6e:e7:14:59:07:6e: 53:f8:09:22:85:3a:81:17:05:cf:63:67:b5:22:f4: 1b:b2:f7:69:a4:f9:8a:8e:36:9e:dd:fc:df:dc:ea: 75:2a:c9:a1:1b:0a:32:0a:c3:bb:ca:02:eb:ca:9f: 15:b3:fd:fa:d2:dd:4a:5b:46:ac:71:f6:90:37:a7: d8:68:80:32:6b:9a:f6:2c:fe:c8:49:a5:12:6e:f3: 8b:8c:ff:01:68:e5:15:14:1d:64:23:16:39:3c:87: 65:2e:c9:9f:2e:43:a0:5e:b3:3f:d7:39:06:0c:e4: 25:02:b5:13:6a:6c:47:c0:ce:b5:09:e1:82:7f:46: a4:c2:db:1f:4d:43:20:f8:03:73:e9:17:cf:ec:20: d6:a5:4a:46:33:ed:d2:f5:c3:6c:58:cc:57:a8:7a: 03:37:a1:d1:7e:c2:f8:34:d7:f5:83:eb:80:01:c1: 8a:ab:ed:ab:26:ad:1b:bb:00:32:67:b7:9f:24:ec: f4:8d:a3:20:11:75:ef:7f:c9:10:e3:21:8d:4b:3c: 14:cb:42:c4:c1:5c:b6:a7:8c:7e:7b:a3:8f:40:11: 4e:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:0F:0B:D9:B9:78:4E:A0:D7:E3:2A:AB:88:AF:80:1D:A4:95:12:5C X509v3 Authority Key Identifier: keyid:F3:AB:A8:F3:C2:DD:89:25:DD:47:BF:7E:A2:13:73:02:A7:2B:58:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8e693b89-4597-40b5-92b0-b299fa769afa/0/F3ABA8F3C2DD8925DD47BF7EA2137302A72B5837.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F3ABA8F3C2DD8925DD47BF7EA2137302A72B5837.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8e693b89-4597-40b5-92b0-b299fa769afa/0/323430353a326363303a363a3a2f34382d3438203d3e20313336303739.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:2cc0:6::/48 Signature Algorithm: sha256WithRSAEncryption 02:e7:1a:f2:e6:93:af:fd:8b:51:38:6c:84:cc:56:df:cd:d4: bd:74:14:65:86:7d:ad:d5:65:f3:f6:06:88:26:bf:91:cf:db: 15:a4:0b:26:d7:9e:c2:48:b2:63:fa:3d:44:7c:29:dc:2c:15: f9:23:47:d3:75:e7:09:44:ac:ea:4a:79:2b:3d:74:3d:84:5e: 9e:57:08:2b:56:bb:68:d5:37:51:e4:53:8c:e0:26:01:11:b9: 5d:76:42:06:d7:95:2a:72:78:e0:34:a0:38:e2:07:44:7b:32: 00:9b:df:34:af:27:bc:7f:5b:40:98:28:7f:4c:da:fe:ee:2a: aa:9b:99:f2:c8:f9:35:88:b3:de:eb:4d:67:f7:b1:e7:59:4a: cb:f6:3c:4f:10:80:40:a2:ea:44:5b:1a:91:4d:f3:eb:c7:b7: 9f:36:e4:75:4e:e4:ef:fb:91:96:b6:32:79:d1:28:cc:60:22: 60:f1:b0:5a:b8:82:96:e7:75:4b:a2:9b:71:da:d0:74:b9:73: b7:c0:d8:18:73:46:e8:26:cc:92:f2:37:8c:2d:41:dd:96:af: bb:0e:ac:af:56:1c:67:c2:34:b7:9e:5b:37:72:45:a9:b6:79: 5d:5e:c0:5c:0c:52:f0:17:50:e7:e5:b1:30:4f:89:28:b8:72: bf:cf:e9:7e -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUK8w9a0oWc0gj8255b+Bb7QnmlhIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjNBQkE4RjNDMkREODkyNURENDdCRjdFQTIxMzczMDJB NzJCNTgzNzAeFw0yNTA3MTUwMTU1MDFaFw0yNjA3MTQwMjAwMDFaMDMxMTAvBgNV BAMTKEEzMEYwQkQ5Qjk3ODRFQTBEN0UzMkFBQjg4QUY4MDFEQTQ5NTEyNUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/aS9gijHv5vLkRzVqyBRZO4gj u5eGcE2uuJUAoO7n7SnPleK0OW7nFFkHblP4CSKFOoEXBc9jZ7Ui9Buy92mk+YqO Np7d/N/c6nUqyaEbCjIKw7vKAuvKnxWz/frS3UpbRqxx9pA3p9hogDJrmvYs/shJ pRJu84uM/wFo5RUUHWQjFjk8h2UuyZ8uQ6Besz/XOQYM5CUCtRNqbEfAzrUJ4YJ/ RqTC2x9NQyD4A3PpF8/sINalSkYz7dL1w2xYzFeoegM3odF+wvg01/WD64ABwYqr 7asmrRu7ADJnt58k7PSNoyARde9/yRDjIY1LPBTLQsTBXLanjH57o49AEU5nAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUow8L2bl4TqDX4yqriK+AHaSVElwwHwYDVR0j BBgwFoAU86uo88LdiSXdR79+ohNzAqcrWDcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 ZTY5M2I4OS00NTk3LTQwYjUtOTJiMC1iMjk5ZmE3NjlhZmEvMC9GM0FCQThGM0My REQ4OTI1REQ0N0JGN0VBMjEzNzMwMkE3MkI1ODM3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjNBQkE4RjNDMkREODkyNURENDdCRjdFQTIxMzczMDJBNzJC NTgzNy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhlNjkzYjg5LTQ1OTctNDBiNS05 MmIwLWIyOTlmYTc2OWFmYS8wLzMyMzQzMDM1M2EzMjYzNjMzMDNhMzYzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTMzMzYzMDM3Mzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBSzAAAYw DQYJKoZIhvcNAQELBQADggEBAALnGvLmk6/9i1E4bITMVt/N1L10FGWGfa3VZfP2 Bogmv5HP2xWkCybXnsJIsmP6PUR8KdwsFfkjR9N15wlErOpKeSs9dD2EXp5XCCtW u2jVN1HkU4zgJgERuV12QgbXlSpyeOA0oDjiB0R7MgCb3zSvJ7x/W0CYKH9M2v7u KqqbmfLI+TWIs97rTWf3sedZSsv2PE8QgECi6kRbGpFN8+vHt5825HVO5O/7kZa2 MnnRKMxgImDxsFq4gpbndUuim3Ha0HS5c7fA2BhzRugmzJLyN4wtQd2Wr7sOrK9W HGfCNLeeWzdyRam2eV1ewFwMUvAXUOflsTBPiSi4cr/P6X4= -----END CERTIFICATE-----Generated at Tue Oct 28 14:08:43 2025 by rpki-client