$ rpki-client -vvf repo-rpki.idnic.net/repo/a6617d8c-d154-461e-bcca-b66d267cffc7/0/323430323a656538303a3137363a3a2f34382d3438203d3e20313332363437.roa File: 323430323a656538303a3137363a3a2f34382d3438203d3e20313332363437.roa (raw, json) Hash identifier: ssoTJWcnOTneohkhAvdxsLglXradXsID6/iYQ5O+53I= Subject key identifier: 91:1C:52:19:C9:61:18:04:05:23:38:82:36:F6:46:2B:36:3B:95:7F Certificate issuer: /CN=EC9D9872A710FE713DC62241D587703BDF7DC1D6 Certificate serial: 11AD32765D285B4B2A53C7ED9B804CBFD31A42A8 Authority key identifier: EC:9D:98:72:A7:10:FE:71:3D:C6:22:41:D5:87:70:3B:DF:7D:C1:D6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EC9D9872A710FE713DC62241D587703BDF7DC1D6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a6617d8c-d154-461e-bcca-b66d267cffc7/0/323430323a656538303a3137363a3a2f34382d3438203d3e20313332363437.roa Signing time: Mon 22 Sep 2025 06:35:24 +0000 ROA not before: Mon 22 Sep 2025 06:30:24 +0000 ROA not after: Mon 21 Sep 2026 06:35:24 +0000 asID: 132647 IP address blocks: 2402:ee80:176::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a6617d8c-d154-461e-bcca-b66d267cffc7/0/EC9D9872A710FE713DC62241D587703BDF7DC1D6.crl rsync://repo-rpki.idnic.net/repo/a6617d8c-d154-461e-bcca-b66d267cffc7/0/EC9D9872A710FE713DC62241D587703BDF7DC1D6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EC9D9872A710FE713DC62241D587703BDF7DC1D6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 06:40:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:ad:32:76:5d:28:5b:4b:2a:53:c7:ed:9b:80:4c:bf:d3:1a:42:a8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EC9D9872A710FE713DC62241D587703BDF7DC1D6 Validity Not Before: Sep 22 06:30:24 2025 GMT Not After : Sep 21 06:35:24 2026 GMT Subject: CN=911C5219C96118040523388236F6462B363B957F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:01:09:95:11:00:2b:18:1c:92:80:d2:88:0b: e9:15:bf:e4:62:79:95:dd:5e:cd:5e:35:3b:eb:5e: b1:3f:36:17:d3:6d:74:7e:8a:ac:c3:7f:6c:2a:49: 4a:20:f0:d7:a0:33:43:f0:93:ee:0b:48:24:a7:15: bb:8c:cd:89:38:54:82:6b:8e:52:c1:9f:bd:99:6a: 44:10:6a:ec:b5:ef:3b:aa:b6:cd:48:04:3c:8b:e0: fd:b2:de:1a:c6:03:a2:14:88:30:1d:ab:a9:69:6a: 90:93:21:a1:f7:b2:57:11:fe:8f:36:a1:7c:94:39: 22:11:bd:8a:61:2c:b8:8b:dc:42:6e:c3:34:d0:de: 75:65:55:ed:ea:41:f0:35:9f:93:bb:6d:95:6d:f1: f9:a3:9a:1b:d3:32:ec:8f:ee:ff:f3:99:06:ef:96: a7:dd:91:15:11:e7:f4:73:40:3b:79:cc:00:89:6a: 4f:2d:11:b9:bc:77:f1:b0:d6:fe:57:c3:17:e1:fc: 6a:c7:d6:86:d5:c2:13:9d:b1:b1:16:4a:84:12:6a: 43:f2:bc:42:4e:3d:90:4a:25:55:04:fe:ad:5e:65: 18:6a:22:64:8b:50:e0:3b:a5:5f:fb:70:cf:64:fd: 24:99:fe:75:95:b2:04:2d:51:57:a2:47:32:85:9c: 0f:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:1C:52:19:C9:61:18:04:05:23:38:82:36:F6:46:2B:36:3B:95:7F X509v3 Authority Key Identifier: keyid:EC:9D:98:72:A7:10:FE:71:3D:C6:22:41:D5:87:70:3B:DF:7D:C1:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a6617d8c-d154-461e-bcca-b66d267cffc7/0/EC9D9872A710FE713DC62241D587703BDF7DC1D6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EC9D9872A710FE713DC62241D587703BDF7DC1D6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a6617d8c-d154-461e-bcca-b66d267cffc7/0/323430323a656538303a3137363a3a2f34382d3438203d3e20313332363437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:ee80:176::/48 Signature Algorithm: sha256WithRSAEncryption 84:eb:fb:3d:2a:14:64:c5:bc:b5:bf:d6:8d:55:d6:83:fc:0b: b7:4e:bf:12:0a:53:9e:69:3b:50:e3:2d:f3:a9:ed:c2:ea:54: 33:4c:d5:52:de:ca:0c:56:d4:09:92:63:56:0f:40:a2:65:1a: b7:61:21:8c:0f:e4:95:b2:4e:da:6d:0f:81:e9:36:67:a1:3c: f2:20:2b:8b:f6:5a:ad:b6:07:0f:a0:6c:86:26:10:f5:37:ae: 94:da:4f:88:19:ef:c2:47:54:c4:33:c5:01:5b:82:b7:c1:df: cc:2a:a6:33:21:1d:79:29:f9:60:b5:c4:7f:67:27:32:d6:91: 43:40:4d:e0:3c:03:11:44:0c:7f:c7:c6:42:1c:ad:06:8b:b7: 36:21:3c:23:95:f0:5e:c0:6b:d7:46:6a:ed:45:6a:d6:ed:18: 5e:36:6a:79:1a:eb:55:12:9a:9f:f3:4f:8d:a8:ef:f5:46:16: b5:ee:65:0f:56:f6:22:08:70:87:78:6c:21:49:fd:ca:86:a8: dd:c2:01:26:e2:69:8a:62:a2:43:08:53:05:fb:50:e5:5d:2d: 84:b5:21:7e:67:cf:79:59:76:5f:2e:4a:8f:ac:f1:d9:7f:90: a2:04:0c:62:61:6f:29:3a:84:d8:74:89:3b:45:11:41:82:1c: e2:54:7d:66 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUEa0ydl0oW0sqU8ftm4BMv9MaQqgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRUM5RDk4NzJBNzEwRkU3MTNEQzYyMjQxRDU4NzcwM0JE RjdEQzFENjAeFw0yNTA5MjIwNjMwMjRaFw0yNjA5MjEwNjM1MjRaMDMxMTAvBgNV BAMTKDkxMUM1MjE5Qzk2MTE4MDQwNTIzMzg4MjM2RjY0NjJCMzYzQjk1N0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFAQmVEQArGBySgNKIC+kVv+Ri eZXdXs1eNTvrXrE/NhfTbXR+iqzDf2wqSUog8NegM0Pwk+4LSCSnFbuMzYk4VIJr jlLBn72ZakQQauy17zuqts1IBDyL4P2y3hrGA6IUiDAdq6lpapCTIaH3slcR/o82 oXyUOSIRvYphLLiL3EJuwzTQ3nVlVe3qQfA1n5O7bZVt8fmjmhvTMuyP7v/zmQbv lqfdkRUR5/RzQDt5zACJak8tEbm8d/Gw1v5Xwxfh/GrH1obVwhOdsbEWSoQSakPy vEJOPZBKJVUE/q1eZRhqImSLUOA7pV/7cM9k/SSZ/nWVsgQtUVeiRzKFnA8vAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUkRxSGclhGAQFIziCNvZGKzY7lX8wHwYDVR0j BBgwFoAU7J2YcqcQ/nE9xiJB1YdwO999wdYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NjYxN2Q4Yy1kMTU0LTQ2MWUtYmNjYS1iNjZkMjY3Y2ZmYzcvMC9FQzlEOTg3MkE3 MTBGRTcxM0RDNjIyNDFENTg3NzAzQkRGN0RDMUQ2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRUM5RDk4NzJBNzEwRkU3MTNEQzYyMjQxRDU4NzcwM0JERjdE QzFENi5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E2NjE3ZDhjLWQxNTQtNDYxZS1i Y2NhLWI2NmQyNjdjZmZjNy8wLzMyMzQzMDMyM2E2NTY1MzgzMDNhMzEzNzM2M2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzMyMzYzNDM3LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJALu gAF2MA0GCSqGSIb3DQEBCwUAA4IBAQCE6/s9KhRkxby1v9aNVdaD/Au3Tr8SClOe aTtQ4y3zqe3C6lQzTNVS3soMVtQJkmNWD0CiZRq3YSGMD+SVsk7abQ+B6TZnoTzy ICuL9lqttgcPoGyGJhD1N66U2k+IGe/CR1TEM8UBW4K3wd/MKqYzIR15KflgtcR/ Zycy1pFDQE3gPAMRRAx/x8ZCHK0Gi7c2ITwjlfBewGvXRmrtRWrW7RheNmp5GutV Epqf80+NqO/1Rha17mUPVvYiCHCHeGwhSf3KhqjdwgEm4mmKYqJDCFMF+1DlXS2E tSF+Z895WXZfLkqPrPHZf5CiBAxiYW8pOoTYdIk7RRFBghziVH1m -----END CERTIFICATE-----Generated at Sun Oct 19 19:51:19 2025 by rpki-client