$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a353a3a2f34382d3438203d3e203539323832.roa File: 323430303a643638303a353a3a2f34382d3438203d3e203539323832.roa (raw, json) Hash identifier: /8HKOKl3PxMMPopAmXJsDfZHfFoo7wkQ81V5TqWB1uE= Subject key identifier: 25:76:81:86:6E:62:D5:C5:22:BE:A6:27:B5:FD:C9:60:B9:7D:CA:0B Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA Certificate serial: 6D1DDC0EA22AC0C836781A111910E94FF8103E21 Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a353a3a2f34382d3438203d3e203539323832.roa Signing time: Mon 14 Jul 2025 01:41:59 +0000 ROA not before: Mon 14 Jul 2025 01:36:59 +0000 ROA not after: Mon 13 Jul 2026 01:41:59 +0000 asID: 59282 IP address blocks: 2400:d680:5::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 29 Oct 2025 18:19:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:1d:dc:0e:a2:2a:c0:c8:36:78:1a:11:19:10:e9:4f:f8:10:3e:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA Validity Not Before: Jul 14 01:36:59 2025 GMT Not After : Jul 13 01:41:59 2026 GMT Subject: CN=257681866E62D5C522BEA627B5FDC960B97DCA0B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:e1:4c:60:fe:97:3a:b5:35:fc:64:a1:06:ed: 5f:23:08:ff:9d:1d:98:ce:18:0e:cb:be:35:cd:0b: 41:d6:05:5a:1d:eb:33:1e:94:86:78:0d:b3:d9:a4: dc:65:80:d1:81:ee:f9:82:71:56:26:98:21:03:45: 94:cd:38:da:9c:f4:8d:7d:02:da:8b:dd:32:a2:f6: a8:ad:a1:3a:a5:cb:cc:5e:49:b9:68:9f:92:2a:d6: 59:23:f6:d8:9c:47:58:7f:71:74:14:43:05:0c:64: 5f:d2:88:88:44:6b:34:ea:3c:1e:a8:0e:04:06:16: 13:80:13:9a:10:ce:43:50:9b:30:90:c4:80:02:15: 56:80:63:73:e1:3e:bf:88:77:22:dc:bf:1f:c3:ae: 5b:ed:cd:c5:d6:3e:21:9b:7a:48:81:08:6d:82:e0: e4:1f:f2:d4:b5:17:f9:12:dd:94:42:85:91:9e:21: 80:f0:ab:e9:44:08:4b:de:4c:fc:4c:4e:b5:19:d7: b7:5b:37:fa:c7:b7:41:b3:0a:77:15:0a:da:2d:71: 14:c1:59:84:1e:e6:4a:39:3a:36:70:9f:3d:a3:ef: 5c:b2:50:35:2c:ec:ac:6a:79:6c:99:d0:ec:e6:7c: 72:c0:3c:9a:77:2d:de:67:21:3b:0b:e5:f6:0f:ad: 13:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:76:81:86:6E:62:D5:C5:22:BE:A6:27:B5:FD:C9:60:B9:7D:CA:0B X509v3 Authority Key Identifier: keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a353a3a2f34382d3438203d3e203539323832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:d680:5::/48 Signature Algorithm: sha256WithRSAEncryption 7c:7b:66:2b:db:21:35:93:09:79:d7:0e:15:0e:fd:ff:36:bb: 08:0c:ee:d5:84:e2:d0:ea:17:0b:5b:f2:05:2c:b9:13:27:97: 84:11:a3:a4:9f:13:2c:1d:4a:46:a9:8e:73:75:f5:00:bc:2b: bd:1b:91:48:b9:bd:4c:6d:45:c7:a9:bc:b9:65:6f:17:93:04: 49:a3:c9:c2:38:5d:c0:76:da:25:c5:83:15:35:e5:c7:87:f1: 78:a4:73:71:96:61:73:b6:f3:6b:75:cf:5b:55:95:87:a3:da: f6:52:55:7f:69:ec:11:36:8f:fa:e5:e5:b5:93:26:1c:9f:c2: 17:26:bb:e0:3f:97:b0:0f:be:5d:71:0b:26:58:ab:e4:29:2b: c4:1b:79:4d:f3:cb:1c:3b:fe:86:f7:ab:06:f3:44:75:b2:b0: 05:72:70:3c:5d:12:47:9a:15:36:94:d2:4f:67:7e:58:4a:c3: 0c:18:f6:a1:67:da:d8:66:67:39:b5:95:06:51:0a:b2:75:8a: 32:a3:eb:b8:cb:b8:27:40:95:3b:be:db:b7:17:82:8e:50:2a: 5e:b4:40:f6:87:50:2f:17:51:ca:05:6a:63:39:df:09:b3:c2: d5:d5:60:3f:a3:f4:a3:e9:e9:d4:5b:6c:df:6b:ce:8a:76:28: d0:52:fc:df -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUbR3cDqIqwMg2eBoRGRDpT/gQPiEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJG MDBFNzFBQTAeFw0yNTA3MTQwMTM2NTlaFw0yNjA3MTMwMTQxNTlaMDMxMTAvBgNV BAMTKDI1NzY4MTg2NkU2MkQ1QzUyMkJFQTYyN0I1RkRDOTYwQjk3RENBMEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDd4Uxg/pc6tTX8ZKEG7V8jCP+d HZjOGA7LvjXNC0HWBVod6zMelIZ4DbPZpNxlgNGB7vmCcVYmmCEDRZTNONqc9I19 AtqL3TKi9qitoTqly8xeSblon5Iq1lkj9ticR1h/cXQUQwUMZF/SiIhEazTqPB6o DgQGFhOAE5oQzkNQmzCQxIACFVaAY3PhPr+IdyLcvx/DrlvtzcXWPiGbekiBCG2C 4OQf8tS1F/kS3ZRChZGeIYDwq+lECEveTPxMTrUZ17dbN/rHt0GzCncVCtotcRTB WYQe5ko5OjZwnz2j71yyUDUs7KxqeWyZ0OzmfHLAPJp3Ld5nITsL5fYPrRP9AgMB AAGjggI3MIICMzAdBgNVHQ4EFgQUJXaBhm5i1cUivqYntf3JYLl9ygswHwYDVR0j BBgwFoAUY5RzzSBUp4s5+ax6gyMkYvAOcaowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h ODQ2NGE1Yi0yZmNlLTQ3ZGEtODA0Ny02OGQyYmQ2M2M5YzMvMC82Mzk0NzNDRDIw NTRBNzhCMzlGOUFDN0E4MzIzMjQ2MkYwMEU3MUFBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJGMDBF NzFBQS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4NDY0YTViLTJmY2UtNDdkYS04 MDQ3LTY4ZDJiZDYzYzljMy8wLzMyMzQzMDMwM2E2NDM2MzgzMDNhMzUzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzNTM5MzIzODMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJADWgAAFMA0G CSqGSIb3DQEBCwUAA4IBAQB8e2Yr2yE1kwl51w4VDv3/NrsIDO7VhOLQ6hcLW/IF LLkTJ5eEEaOknxMsHUpGqY5zdfUAvCu9G5FIub1MbUXHqby5ZW8XkwRJo8nCOF3A dtolxYMVNeXHh/F4pHNxlmFztvNrdc9bVZWHo9r2UlV/aewRNo/65eW1kyYcn8IX JrvgP5ewD75dcQsmWKvkKSvEG3lN88scO/6G96sG80R1srAFcnA8XRJHmhU2lNJP Z35YSsMMGPahZ9rYZmc5tZUGUQqydYoyo+u4y7gnQJU7vtu3F4KOUCpetED2h1Av F1HKBWpjOd8Js8LV1WA/o/Sj6enUW2zfa86KdijQUvzf -----END CERTIFICATE-----Generated at Mon Oct 27 17:16:26 2025 by rpki-client