$ rpki-client -vvf repo-rpki.idnic.net/repo/af1c79f1-264e-423f-9e08-0b2900da6949/0/323430323a363938303a3a2f33322d3438203d3e203539323738.roa File: 323430323a363938303a3a2f33322d3438203d3e203539323738.roa (raw, json) Hash identifier: KRbdEJvKURW+VgG7P6m8/xbRP6/xVRqHAh+GE/ZxmJg= Subject key identifier: 74:BC:34:F1:06:B3:22:82:91:58:9E:7D:64:1C:4E:8B:95:E5:F4:A8 Certificate issuer: /CN=2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD Certificate serial: 29D1BF6BE367CFB28151ED6EA95FD775E5CC2CEB Authority key identifier: 2D:23:11:F5:63:DF:0A:F8:EB:EF:DA:21:87:16:26:B5:DD:78:C5:BD Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/af1c79f1-264e-423f-9e08-0b2900da6949/0/323430323a363938303a3a2f33322d3438203d3e203539323738.roa Signing time: Sat 30 Aug 2025 14:02:29 +0000 ROA not before: Sat 30 Aug 2025 13:57:29 +0000 ROA not after: Sat 29 Aug 2026 14:02:29 +0000 asID: 59278 IP address blocks: 2402:6980::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/af1c79f1-264e-423f-9e08-0b2900da6949/0/2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD.crl rsync://repo-rpki.idnic.net/repo/af1c79f1-264e-423f-9e08-0b2900da6949/0/2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Sep 2025 09:58:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:d1:bf:6b:e3:67:cf:b2:81:51:ed:6e:a9:5f:d7:75:e5:cc:2c:eb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD Validity Not Before: Aug 30 13:57:29 2025 GMT Not After : Aug 29 14:02:29 2026 GMT Subject: CN=74BC34F106B3228291589E7D641C4E8B95E5F4A8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:42:c9:b6:90:d8:78:10:1f:83:21:bb:f5:7d: 04:54:3a:68:0f:9c:dc:5c:3e:b1:d4:26:34:47:e0: cf:b4:1f:fd:d7:16:c7:09:f5:b7:1d:11:08:24:fe: 95:a5:ea:e5:6a:26:31:4c:d9:1c:7a:fc:83:0d:ff: bd:15:f7:06:d6:f9:79:0e:a7:bf:7e:de:39:f3:e6: 69:65:8c:de:c5:89:59:1f:51:c6:0b:10:74:33:59: b1:30:2a:be:40:95:ac:b7:07:97:a7:e3:ca:cf:f0: 1c:b5:fd:62:1f:bc:9c:56:e7:a4:75:5e:11:a0:a7: 2d:7b:8f:34:3b:b4:c1:62:9d:69:81:60:11:e5:0d: 50:ba:7a:44:1a:1b:3f:50:a1:b9:7e:65:5a:11:29: 51:f2:89:7f:5f:f1:81:dd:a8:a2:b0:c9:ca:8a:43: 61:24:f2:41:39:50:94:2b:69:75:b7:15:70:a2:ea: 1e:04:9a:ab:e8:36:4d:ea:80:55:1d:3b:dd:0e:77: 45:ee:b6:cf:5f:9b:13:aa:fa:65:03:87:95:7b:49: 1c:f3:b0:e3:f9:24:ab:9d:79:d0:35:40:e9:e2:07: 23:36:c7:a9:4b:9c:c1:92:4e:8a:79:91:72:00:33: 1c:16:9a:96:59:d9:7e:df:53:f7:79:ca:8f:6b:0a: 1e:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:BC:34:F1:06:B3:22:82:91:58:9E:7D:64:1C:4E:8B:95:E5:F4:A8 X509v3 Authority Key Identifier: keyid:2D:23:11:F5:63:DF:0A:F8:EB:EF:DA:21:87:16:26:B5:DD:78:C5:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/af1c79f1-264e-423f-9e08-0b2900da6949/0/2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/af1c79f1-264e-423f-9e08-0b2900da6949/0/323430323a363938303a3a2f33322d3438203d3e203539323738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:6980::/32 Signature Algorithm: sha256WithRSAEncryption 4a:71:8e:aa:b7:e2:4c:b5:47:86:b7:32:9c:bd:fc:22:fd:05: 19:50:40:aa:59:7c:de:a5:b3:84:ea:3a:3a:57:5f:16:9b:36: 4a:c2:fa:15:47:c4:0c:d7:a4:2c:60:5e:d1:60:e3:82:f0:1c: f2:11:a6:e0:09:db:5f:5f:83:4d:f8:1a:dc:11:1d:09:88:1c: 19:4a:b9:0c:38:59:e5:36:45:7c:2d:68:eb:51:0f:f0:e2:5a: 75:6a:63:92:f1:c7:d4:cc:8f:fb:4e:d9:05:9c:c8:12:e5:77: 5e:02:0a:b3:46:4f:4b:d4:a5:06:3c:d2:7d:c8:e2:aa:cd:b4: e9:e3:6f:ca:d8:1b:75:eb:b5:21:4b:cc:52:58:46:d8:ed:9c: de:05:54:9e:4e:d7:71:f4:2e:48:72:d3:aa:db:2b:51:89:d7: 4a:b4:ad:4e:36:28:44:ff:22:21:43:85:ca:2f:ba:42:d6:e6: ac:76:cd:71:66:ec:e4:24:94:2d:fd:14:e5:e1:07:c0:a9:e1: e2:ea:8b:8b:88:52:94:c2:22:75:86:1c:ea:a7:cf:02:2c:39: 8f:36:05:47:fd:09:57:92:19:39:77:c8:3f:82:7c:eb:34:90: f6:5f:2d:ce:60:9e:d7:32:19:f4:8a:14:81:2c:50:5c:96:62: f5:07:67:f0 -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUKdG/a+Nnz7KBUe1uqV/XdeXMLOswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkQyMzExRjU2M0RGMEFGOEVCRUZEQTIxODcxNjI2QjVE RDc4QzVCRDAeFw0yNTA4MzAxMzU3MjlaFw0yNjA4MjkxNDAyMjlaMDMxMTAvBgNV BAMTKDc0QkMzNEYxMDZCMzIyODI5MTU4OUU3RDY0MUM0RThCOTVFNUY0QTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQQsm2kNh4EB+DIbv1fQRUOmgP nNxcPrHUJjRH4M+0H/3XFscJ9bcdEQgk/pWl6uVqJjFM2Rx6/IMN/70V9wbW+XkO p79+3jnz5mlljN7FiVkfUcYLEHQzWbEwKr5Alay3B5en48rP8By1/WIfvJxW56R1 XhGgpy17jzQ7tMFinWmBYBHlDVC6ekQaGz9Qobl+ZVoRKVHyiX9f8YHdqKKwycqK Q2Ek8kE5UJQraXW3FXCi6h4EmqvoNk3qgFUdO90Od0Xuts9fmxOq+mUDh5V7SRzz sOP5JKudedA1QOniByM2x6lLnMGSTop5kXIAMxwWmpZZ2X7fU/d5yo9rCh5hAgMB AAGjggIxMIICLTAdBgNVHQ4EFgQUdLw08QazIoKRWJ59ZBxOi5Xl9KgwHwYDVR0j BBgwFoAULSMR9WPfCvjr79ohhxYmtd14xb0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h ZjFjNzlmMS0yNjRlLTQyM2YtOWUwOC0wYjI5MDBkYTY5NDkvMC8yRDIzMTFGNTYz REYwQUY4RUJFRkRBMjE4NzE2MjZCNURENzhDNUJELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkQyMzExRjU2M0RGMEFGOEVCRUZEQTIxODcxNjI2QjVERDc4 QzVCRC5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FmMWM3OWYxLTI2NGUtNDIzZi05 ZTA4LTBiMjkwMGRhNjk0OS8wLzMyMzQzMDMyM2EzNjM5MzgzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDM1MzkzMjM3Mzgucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkAmmAMA0GCSqGSIb3 DQEBCwUAA4IBAQBKcY6qt+JMtUeGtzKcvfwi/QUZUECqWXzepbOE6jo6V18WmzZK wvoVR8QM16QsYF7RYOOC8BzyEabgCdtfX4NN+BrcER0JiBwZSrkMOFnlNkV8LWjr UQ/w4lp1amOS8cfUzI/7TtkFnMgS5XdeAgqzRk9L1KUGPNJ9yOKqzbTp42/K2Bt1 67UhS8xSWEbY7ZzeBVSeTtdx9C5IctOq2ytRiddKtK1ONihE/yIhQ4XKL7pC1uas ds1xZuzkJJQt/RTl4QfAqeHi6ouLiFKUwiJ1hhzqp88CLDmPNgVH/QlXkhk5d8g/ gnzrNJD2Xy3OYJ7XMhn0ihSBLFBclmL1B2fw -----END CERTIFICATE-----Generated at Mon Sep 8 10:30:49 2025 by rpki-client