$ rpki-client -vvf repo-rpki.idnic.net/repo/a6617d8c-d154-461e-bcca-b66d267cffc7/0/323430323a656538303a35383a3a2f34382d3438203d3e20313332363437.roa File: 323430323a656538303a35383a3a2f34382d3438203d3e20313332363437.roa (raw, json) Hash identifier: 95YayLBo+Z60JGd6py6XLMSdK9u7PSYjLko8lAlklJ4= Subject key identifier: 65:C4:86:0E:18:13:BF:EE:3D:C6:EA:8C:8B:F6:A9:DF:67:BA:83:6B Certificate issuer: /CN=EC9D9872A710FE713DC62241D587703BDF7DC1D6 Certificate serial: 7C8F084D2D8DFF489D125BCA2B09DB45914002 Authority key identifier: EC:9D:98:72:A7:10:FE:71:3D:C6:22:41:D5:87:70:3B:DF:7D:C1:D6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EC9D9872A710FE713DC62241D587703BDF7DC1D6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a6617d8c-d154-461e-bcca-b66d267cffc7/0/323430323a656538303a35383a3a2f34382d3438203d3e20313332363437.roa Signing time: Mon 22 Sep 2025 06:35:05 +0000 ROA not before: Mon 22 Sep 2025 06:30:05 +0000 ROA not after: Mon 21 Sep 2026 06:35:05 +0000 asID: 132647 IP address blocks: 2402:ee80:58::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a6617d8c-d154-461e-bcca-b66d267cffc7/0/EC9D9872A710FE713DC62241D587703BDF7DC1D6.crl rsync://repo-rpki.idnic.net/repo/a6617d8c-d154-461e-bcca-b66d267cffc7/0/EC9D9872A710FE713DC62241D587703BDF7DC1D6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EC9D9872A710FE713DC62241D587703BDF7DC1D6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 06:40:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:8f:08:4d:2d:8d:ff:48:9d:12:5b:ca:2b:09:db:45:91:40:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EC9D9872A710FE713DC62241D587703BDF7DC1D6 Validity Not Before: Sep 22 06:30:05 2025 GMT Not After : Sep 21 06:35:05 2026 GMT Subject: CN=65C4860E1813BFEE3DC6EA8C8BF6A9DF67BA836B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:d9:65:98:53:e2:4b:4b:2a:3a:d2:93:49:df: 41:aa:e0:cd:e0:ae:67:3e:16:17:16:f0:09:b7:7d: af:c8:84:75:b6:43:1c:61:1e:0d:f4:86:31:91:c9: 49:cb:c1:c0:8f:43:42:8a:ff:40:48:0e:cb:e6:fe: 3a:a3:3b:a6:15:9d:d5:ad:b8:73:30:b0:72:79:f7: e0:4f:d5:6a:89:da:68:08:92:e9:67:5a:23:bd:3c: 1c:3b:b9:7b:ba:7c:d9:1f:f4:7e:f8:ae:5f:c7:43: 0c:66:e7:57:61:72:b5:54:14:61:10:62:0a:a5:38: 46:45:7d:4f:c1:e2:43:8f:09:05:e2:e5:14:bd:e2: 9e:7e:ad:c8:ec:e0:da:ce:c7:d9:4a:6f:d1:9e:09: b2:01:ec:60:10:1a:ff:1a:99:2a:5f:35:81:13:00: 3b:cb:e5:0a:bb:11:f0:d0:b2:50:df:d3:8c:e6:02: 84:9c:24:f4:d4:0e:34:4f:48:58:0f:8d:5c:ac:74: 94:a0:ea:71:ba:81:f0:69:78:3d:8a:2c:c2:89:80: 50:93:37:2a:b4:4e:f8:f7:f3:0a:dc:51:80:04:f2: 7e:90:33:12:19:8a:45:1b:0d:c3:12:9b:ca:4d:36: 07:40:b0:55:e5:26:bf:f9:94:6a:61:4e:4c:13:bf: 87:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:C4:86:0E:18:13:BF:EE:3D:C6:EA:8C:8B:F6:A9:DF:67:BA:83:6B X509v3 Authority Key Identifier: keyid:EC:9D:98:72:A7:10:FE:71:3D:C6:22:41:D5:87:70:3B:DF:7D:C1:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a6617d8c-d154-461e-bcca-b66d267cffc7/0/EC9D9872A710FE713DC62241D587703BDF7DC1D6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EC9D9872A710FE713DC62241D587703BDF7DC1D6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a6617d8c-d154-461e-bcca-b66d267cffc7/0/323430323a656538303a35383a3a2f34382d3438203d3e20313332363437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:ee80:58::/48 Signature Algorithm: sha256WithRSAEncryption 9c:9a:03:16:af:e7:c5:09:a3:6c:51:0a:59:10:42:1b:b0:5c: 5d:16:ab:3d:46:0d:6d:69:1b:00:9c:4c:28:2e:e2:64:d8:bc: 2d:3f:98:9a:00:e1:3b:87:34:27:7b:cf:18:95:c2:d0:88:39: 2e:06:dc:e3:98:b2:0f:34:8f:69:3c:66:11:e8:81:21:e2:d4: 95:81:f7:22:86:6e:17:a3:9e:71:0f:82:71:17:5a:c1:cd:e3: 07:4d:33:00:22:e0:38:83:4f:ef:a3:14:4b:97:41:71:fa:4f: 00:91:0a:82:6a:bc:4b:3e:c2:e9:49:fa:b9:61:7b:97:ee:39: 47:e7:8d:04:40:fe:9a:47:2d:04:f7:cd:1f:6b:f9:69:29:87: 5f:35:df:c1:21:0b:36:c1:66:39:d8:f6:03:3f:4a:da:fa:65: d5:a0:0f:6d:5d:cc:7d:10:a9:9a:d7:e9:98:b8:ac:ae:6a:25: d0:94:e4:55:e4:73:aa:a1:f8:b7:85:63:08:28:f9:e5:5c:89: e7:5d:0c:1c:35:e1:6c:b1:93:79:4b:f1:96:15:dc:ab:74:02: 19:92:90:2f:6c:35:ab:90:c4:ed:98:e2:f6:28:ef:d8:ca:b8: db:0a:cb:06:79:02:24:a0:40:a2:20:43:a1:05:34:dc:eb:08: 8b:6e:0c:80 -----BEGIN CERTIFICATE----- MIIFMDCCBBigAwIBAgITfI8ITS2N/0idElvKKwnbRZFAAjANBgkqhkiG9w0BAQsF ADAzMTEwLwYDVQQDEyhFQzlEOTg3MkE3MTBGRTcxM0RDNjIyNDFENTg3NzAzQkRG N0RDMUQ2MB4XDTI1MDkyMjA2MzAwNVoXDTI2MDkyMTA2MzUwNVowMzExMC8GA1UE AxMoNjVDNDg2MEUxODEzQkZFRTNEQzZFQThDOEJGNkE5REY2N0JBODM2QjCCASIw DQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBALbZZZhT4ktLKjrSk0nfQargzeCu Zz4WFxbwCbd9r8iEdbZDHGEeDfSGMZHJScvBwI9DQor/QEgOy+b+OqM7phWd1a24 czCwcnn34E/VaonaaAiS6WdaI708HDu5e7p82R/0fviuX8dDDGbnV2FytVQUYRBi CqU4RkV9T8HiQ48JBeLlFL3inn6tyOzg2s7H2Upv0Z4JsgHsYBAa/xqZKl81gRMA O8vlCrsR8NCyUN/TjOYChJwk9NQONE9IWA+NXKx0lKDqcbqB8Gl4PYoswomAUJM3 KrRO+PfzCtxRgATyfpAzEhmKRRsNwxKbyk02B0CwVeUmv/mUamFOTBO/h3UCAwEA AaOCAjswggI3MB0GA1UdDgQWBBRlxIYOGBO/7j3G6oyL9qnfZ7qDazAfBgNVHSME GDAWgBTsnZhypxD+cT3GIkHVh3A7333B1jAOBgNVHQ8BAf8EBAMCB4AwgYUGA1Ud HwR+MHwweqB4oHaGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E2 NjE3ZDhjLWQxNTQtNDYxZS1iY2NhLWI2NmQyNjdjZmZjNy8wL0VDOUQ5ODcyQTcx MEZFNzEzREM2MjI0MUQ1ODc3MDNCREY3REMxRDYuY3JsMHQGCCsGAQUFBwEBBGgw ZjBkBggrBgEFBQcwAoZYcnN5bmM6Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8v SUROSUMtSUQvMi9FQzlEOTg3MkE3MTBGRTcxM0RDNjIyNDFENTg3NzAzQkRGN0RD MUQ2LmNlcjCBqAYIKwYBBQUHAQsEgZswgZgwgZUGCCsGAQUFBzALhoGIcnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYTY2MTdkOGMtZDE1NC00NjFlLWJj Y2EtYjY2ZDI2N2NmZmM3LzAvMzIzNDMwMzIzYTY1NjUzODMwM2EzNTM4M2EzYTJm MzQzODJkMzQzODIwM2QzZTIwMzEzMzMyMzYzNDM3LnJvYTAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJALugABY MA0GCSqGSIb3DQEBCwUAA4IBAQCcmgMWr+fFCaNsUQpZEEIbsFxdFqs9Rg1taRsA nEwoLuJk2LwtP5iaAOE7hzQne88YlcLQiDkuBtzjmLIPNI9pPGYR6IEh4tSVgfci hm4Xo55xD4JxF1rBzeMHTTMAIuA4g0/voxRLl0Fx+k8AkQqCarxLPsLpSfq5YXuX 7jlH540EQP6aRy0E980fa/lpKYdfNd/BIQs2wWY52PYDP0ra+mXVoA9tXcx9EKma 1+mYuKyuaiXQlORV5HOqofi3hWMIKPnlXInnXQwcNeFssZN5S/GWFdyrdAIZkpAv bDWrkMTtmOL2KO/YyrjbCssGeQIkoECiIEOhBTTc6wiLbgyA -----END CERTIFICATE-----Generated at Sun Oct 19 19:51:20 2025 by rpki-client