$ rpki-client -vvf repo-rpki.idnic.net/repo/a6617d8c-d154-461e-bcca-b66d267cffc7/0/323430323a656538303a35363a3a2f34382d3438203d3e20313332363437.roa File: 323430323a656538303a35363a3a2f34382d3438203d3e20313332363437.roa (raw, json) Hash identifier: ILpEJfv/S+leWwxiBN0hUwFSsvpCv7zbnSPVhks28zg= Subject key identifier: 2A:51:FF:54:B1:55:6A:D6:7D:12:4F:7D:B5:9E:D7:7F:3D:E9:66:C1 Certificate issuer: /CN=EC9D9872A710FE713DC62241D587703BDF7DC1D6 Certificate serial: 43576ABFAA8954AAA8087CB535ADD118EBB2E9C8 Authority key identifier: EC:9D:98:72:A7:10:FE:71:3D:C6:22:41:D5:87:70:3B:DF:7D:C1:D6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EC9D9872A710FE713DC62241D587703BDF7DC1D6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a6617d8c-d154-461e-bcca-b66d267cffc7/0/323430323a656538303a35363a3a2f34382d3438203d3e20313332363437.roa Signing time: Mon 22 Sep 2025 06:34:49 +0000 ROA not before: Mon 22 Sep 2025 06:29:49 +0000 ROA not after: Mon 21 Sep 2026 06:34:49 +0000 asID: 132647 IP address blocks: 2402:ee80:56::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a6617d8c-d154-461e-bcca-b66d267cffc7/0/EC9D9872A710FE713DC62241D587703BDF7DC1D6.crl rsync://repo-rpki.idnic.net/repo/a6617d8c-d154-461e-bcca-b66d267cffc7/0/EC9D9872A710FE713DC62241D587703BDF7DC1D6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EC9D9872A710FE713DC62241D587703BDF7DC1D6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 06:40:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:57:6a:bf:aa:89:54:aa:a8:08:7c:b5:35:ad:d1:18:eb:b2:e9:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EC9D9872A710FE713DC62241D587703BDF7DC1D6 Validity Not Before: Sep 22 06:29:49 2025 GMT Not After : Sep 21 06:34:49 2026 GMT Subject: CN=2A51FF54B1556AD67D124F7DB59ED77F3DE966C1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:8b:b3:4d:51:c7:51:32:76:8e:d6:ec:ed:d5: 4b:8b:55:c1:e1:b4:74:bc:90:ed:60:5a:19:68:ad: c1:0f:55:bc:36:78:3f:aa:60:b2:d0:b5:8a:89:6b: fe:dc:2f:42:94:1e:1c:11:d1:fe:9e:e2:7b:72:83: 37:e0:ae:14:d9:b7:df:92:dd:66:a5:63:d6:69:0a: db:1f:29:53:5e:d7:d3:9e:ad:9f:d7:1d:5b:04:8c: fd:fa:ad:9f:cb:98:b3:6b:cb:d2:c3:36:99:d8:f9: af:51:64:92:af:35:a9:d1:91:b3:6e:a6:a9:f7:c4: 6d:ba:a7:5c:71:97:73:2d:42:4e:a2:03:f2:aa:e0: 0e:f8:4e:0f:09:9f:0c:cd:68:22:64:46:45:bc:2f: 74:68:08:72:a6:be:3f:e0:df:31:84:d7:64:48:55: 87:bb:25:f0:f6:40:0e:55:16:bc:92:b7:44:98:e5: 70:e0:60:ae:c7:94:85:4a:07:f5:1f:3e:78:34:da: d2:c2:35:0b:dd:17:3a:1b:5d:05:c1:33:63:68:ff: 76:7b:5a:a6:93:69:b2:5f:03:d1:db:3a:38:d8:64: d5:08:3a:1b:0b:de:e5:e7:d1:18:d3:9b:b0:9f:21: 72:ef:92:b5:cc:f4:70:ae:96:dc:3e:9d:12:b3:9d: d8:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:51:FF:54:B1:55:6A:D6:7D:12:4F:7D:B5:9E:D7:7F:3D:E9:66:C1 X509v3 Authority Key Identifier: keyid:EC:9D:98:72:A7:10:FE:71:3D:C6:22:41:D5:87:70:3B:DF:7D:C1:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a6617d8c-d154-461e-bcca-b66d267cffc7/0/EC9D9872A710FE713DC62241D587703BDF7DC1D6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EC9D9872A710FE713DC62241D587703BDF7DC1D6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a6617d8c-d154-461e-bcca-b66d267cffc7/0/323430323a656538303a35363a3a2f34382d3438203d3e20313332363437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:ee80:56::/48 Signature Algorithm: sha256WithRSAEncryption 6b:1c:c5:ef:33:59:a0:4d:64:ed:47:3b:eb:ca:48:2f:12:78: e9:5b:d6:90:44:02:9d:f9:f0:5e:20:97:af:cf:de:ba:c9:cc: d9:2b:4f:9f:5c:58:ac:f4:7c:fb:e1:cc:6a:e5:6b:c4:03:bb: cb:49:0b:87:78:46:36:cd:50:ab:22:e5:71:e7:c3:d3:84:29: fb:6f:9d:d1:6f:c2:1d:b6:de:eb:c4:9c:9d:12:ed:77:eb:55: 43:25:a4:da:8a:23:56:45:de:65:41:53:16:a9:05:57:e8:74: 8a:8c:92:fe:38:d1:4c:93:36:2f:45:6d:37:ee:23:6c:5c:8f: 09:87:02:01:b9:c8:19:19:e1:1e:75:1d:ba:f6:c0:d7:e4:eb: dc:03:ce:bb:b6:99:32:2f:24:3e:f9:81:fa:28:d6:91:b5:19: d8:a1:1a:8a:36:7a:cc:25:ac:6d:01:46:50:d5:9d:28:f0:7d: c8:50:b4:04:43:05:1f:7a:99:f0:60:91:8c:dc:9e:28:50:d3: b2:21:04:26:a4:01:92:d2:29:68:7b:35:6e:3f:9b:14:70:7d: cc:23:f3:52:3a:26:7a:2c:bc:c6:fe:fc:5a:16:c0:c1:6b:a2: 16:7b:1d:22:47:9b:6d:65:ae:52:21:af:04:48:c9:6d:bc:01: 47:1a:40:41 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUQ1dqv6qJVKqoCHy1Na3RGOuy6cgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRUM5RDk4NzJBNzEwRkU3MTNEQzYyMjQxRDU4NzcwM0JE RjdEQzFENjAeFw0yNTA5MjIwNjI5NDlaFw0yNjA5MjEwNjM0NDlaMDMxMTAvBgNV BAMTKDJBNTFGRjU0QjE1NTZBRDY3RDEyNEY3REI1OUVENzdGM0RFOTY2QzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDWi7NNUcdRMnaO1uzt1UuLVcHh tHS8kO1gWhlorcEPVbw2eD+qYLLQtYqJa/7cL0KUHhwR0f6e4ntygzfgrhTZt9+S 3WalY9ZpCtsfKVNe19OerZ/XHVsEjP36rZ/LmLNry9LDNpnY+a9RZJKvNanRkbNu pqn3xG26p1xxl3MtQk6iA/Kq4A74Tg8JnwzNaCJkRkW8L3RoCHKmvj/g3zGE12RI VYe7JfD2QA5VFrySt0SY5XDgYK7HlIVKB/UfPng02tLCNQvdFzobXQXBM2No/3Z7 WqaTabJfA9HbOjjYZNUIOhsL3uXn0RjTm7CfIXLvkrXM9HCultw+nRKzndilAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUKlH/VLFVatZ9Ek99tZ7Xfz3pZsEwHwYDVR0j BBgwFoAU7J2YcqcQ/nE9xiJB1YdwO999wdYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NjYxN2Q4Yy1kMTU0LTQ2MWUtYmNjYS1iNjZkMjY3Y2ZmYzcvMC9FQzlEOTg3MkE3 MTBGRTcxM0RDNjIyNDFENTg3NzAzQkRGN0RDMUQ2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRUM5RDk4NzJBNzEwRkU3MTNEQzYyMjQxRDU4NzcwM0JERjdE QzFENi5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E2NjE3ZDhjLWQxNTQtNDYxZS1i Y2NhLWI2NmQyNjdjZmZjNy8wLzMyMzQzMDMyM2E2NTY1MzgzMDNhMzUzNjNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzMzMjM2MzQzNy5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQC7oAA VjANBgkqhkiG9w0BAQsFAAOCAQEAaxzF7zNZoE1k7Uc768pILxJ46VvWkEQCnfnw XiCXr8/eusnM2StPn1xYrPR8++HMauVrxAO7y0kLh3hGNs1QqyLlcefD04Qp+2+d 0W/CHbbe68ScnRLtd+tVQyWk2oojVkXeZUFTFqkFV+h0ioyS/jjRTJM2L0VtN+4j bFyPCYcCAbnIGRnhHnUduvbA1+Tr3APOu7aZMi8kPvmB+ijWkbUZ2KEaijZ6zCWs bQFGUNWdKPB9yFC0BEMFH3qZ8GCRjNyeKFDTsiEEJqQBktIpaHs1bj+bFHB9zCPz Ujomeiy8xv78WhbAwWuiFnsdIkebbWWuUiGvBEjJbbwBRxpAQQ== -----END CERTIFICATE-----Generated at Sun Oct 19 19:51:18 2025 by rpki-client