$ rpki-client -vvf repo-rpki.idnic.net/repo/bd5c4715-282e-457f-b89e-041bf9110af8/0/323430303a396338303a3230303a3a2f34382d3438203d3e203538333936.roa File: 323430303a396338303a3230303a3a2f34382d3438203d3e203538333936.roa (raw, json) Hash identifier: gZN6IsaZZPJ9XhtVI/wgbUG7dHQ1llFNOV0uPk+EP3o= Subject key identifier: D5:49:34:79:5A:89:FC:ED:B6:CE:01:CA:E9:34:EE:9E:74:37:7D:15 Certificate issuer: /CN=019C4E26EEC252EA61FBB09FD856CDD057CEAD8C Certificate serial: 2F469A3C08AEAD019FB25C2A33624C031EC2EBA5 Authority key identifier: 01:9C:4E:26:EE:C2:52:EA:61:FB:B0:9F:D8:56:CD:D0:57:CE:AD:8C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/019C4E26EEC252EA61FBB09FD856CDD057CEAD8C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/bd5c4715-282e-457f-b89e-041bf9110af8/0/323430303a396338303a3230303a3a2f34382d3438203d3e203538333936.roa Signing time: Tue 23 Sep 2025 14:00:38 +0000 ROA not before: Tue 23 Sep 2025 13:55:38 +0000 ROA not after: Tue 22 Sep 2026 14:00:38 +0000 asID: 58396 IP address blocks: 2400:9c80:200::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/bd5c4715-282e-457f-b89e-041bf9110af8/0/019C4E26EEC252EA61FBB09FD856CDD057CEAD8C.crl rsync://repo-rpki.idnic.net/repo/bd5c4715-282e-457f-b89e-041bf9110af8/0/019C4E26EEC252EA61FBB09FD856CDD057CEAD8C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/019C4E26EEC252EA61FBB09FD856CDD057CEAD8C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 30 Oct 2025 04:33:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:46:9a:3c:08:ae:ad:01:9f:b2:5c:2a:33:62:4c:03:1e:c2:eb:a5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=019C4E26EEC252EA61FBB09FD856CDD057CEAD8C Validity Not Before: Sep 23 13:55:38 2025 GMT Not After : Sep 22 14:00:38 2026 GMT Subject: CN=D54934795A89FCEDB6CE01CAE934EE9E74377D15 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:f8:c4:98:b3:9e:cb:c4:df:4f:26:64:d4:26: 8a:f4:ce:97:95:8f:44:76:ce:47:6c:9c:13:d5:f3: a1:2b:1f:19:66:d1:1a:c4:93:0c:a9:6b:09:8c:7f: cd:1b:87:44:1b:02:9c:91:b9:45:90:75:6a:42:99: 7f:7d:68:f0:cb:03:13:f0:4c:d9:ad:9c:0e:f4:39: 67:e4:9e:91:95:f8:79:26:b6:a3:a6:9a:a1:eb:9b: dc:43:cf:1d:eb:ed:f7:95:14:cf:c6:29:f9:85:9e: 3b:55:c4:d6:3d:ab:11:66:9a:d1:b8:07:3f:0e:7b: 63:e8:b5:4b:91:39:b4:7d:0f:08:c3:4f:ba:3d:f1: 58:cd:b7:06:ed:95:7d:e5:87:47:f1:6f:8c:1a:23: 4f:56:5b:46:d5:52:92:c7:41:a3:30:28:4e:a3:43: 1d:89:6d:16:5a:02:47:b8:66:93:54:9f:d9:e1:1f: b0:1e:96:32:26:92:fb:49:25:0e:27:6f:11:e1:51: 6c:b7:70:91:32:c1:9f:bd:21:95:93:1f:b0:a8:1f: ad:93:80:30:f4:dd:98:48:a8:5e:36:d5:c3:fe:07: 3b:3c:06:c6:f6:8b:63:fc:68:c9:62:b7:13:73:c7: 7e:c4:c0:87:b0:46:59:06:0b:c1:e1:04:97:52:34: a2:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:49:34:79:5A:89:FC:ED:B6:CE:01:CA:E9:34:EE:9E:74:37:7D:15 X509v3 Authority Key Identifier: keyid:01:9C:4E:26:EE:C2:52:EA:61:FB:B0:9F:D8:56:CD:D0:57:CE:AD:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/bd5c4715-282e-457f-b89e-041bf9110af8/0/019C4E26EEC252EA61FBB09FD856CDD057CEAD8C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/019C4E26EEC252EA61FBB09FD856CDD057CEAD8C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/bd5c4715-282e-457f-b89e-041bf9110af8/0/323430303a396338303a3230303a3a2f34382d3438203d3e203538333936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:9c80:200::/48 Signature Algorithm: sha256WithRSAEncryption 62:93:23:22:c3:91:8f:7f:fb:9c:05:b5:2a:39:b4:f1:16:52: 79:2d:40:6c:4a:04:eb:19:bd:aa:0d:09:cf:d1:5b:92:df:af: 93:27:95:ea:29:b8:80:19:1b:bd:09:31:ec:74:ba:bb:87:d0: fa:24:0d:1c:64:9e:3c:a5:59:57:a3:98:67:20:7b:d1:b3:a7: 0d:b0:4e:d4:ee:5b:6b:99:8e:fa:90:40:7f:78:40:51:a5:c4: 89:ca:81:79:b1:ae:db:d3:f7:16:0f:cd:b1:85:6d:60:93:06: 56:79:44:e7:88:70:fc:7f:24:a4:2d:43:61:12:1f:2b:36:a1: 1c:ff:2f:6f:e1:24:f2:8f:4f:25:a1:42:2f:41:1f:47:be:94: 22:c8:5e:e5:d7:25:b1:bd:58:a4:46:d2:b7:2f:d6:2a:fa:65: 70:9c:f4:cb:73:7e:65:c4:48:f9:f7:35:88:6c:20:f1:09:d0: cd:51:b1:39:d3:37:be:61:b4:d0:54:c7:2f:dd:2f:31:db:3b: 7b:f5:03:ec:79:97:0f:3b:03:1a:5b:8a:62:e1:5f:ff:6f:9b: 01:97:52:d4:ae:76:1f:cc:d5:61:a2:3a:ac:67:25:0d:52:48: ec:6b:1f:6c:2d:43:f9:67:f4:02:52:6e:48:fe:ba:9c:d5:81: c6:c2:ec:1a -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUL0aaPAiurQGfslwqM2JMAx7C66UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDE5QzRFMjZFRUMyNTJFQTYxRkJCMDlGRDg1NkNERDA1 N0NFQUQ4QzAeFw0yNTA5MjMxMzU1MzhaFw0yNjA5MjIxNDAwMzhaMDMxMTAvBgNV BAMTKEQ1NDkzNDc5NUE4OUZDRURCNkNFMDFDQUU5MzRFRTlFNzQzNzdEMTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCs+MSYs57LxN9PJmTUJor0zpeV j0R2zkdsnBPV86ErHxlm0RrEkwypawmMf80bh0QbApyRuUWQdWpCmX99aPDLAxPw TNmtnA70OWfknpGV+HkmtqOmmqHrm9xDzx3r7feVFM/GKfmFnjtVxNY9qxFmmtG4 Bz8Oe2PotUuRObR9DwjDT7o98VjNtwbtlX3lh0fxb4waI09WW0bVUpLHQaMwKE6j Qx2JbRZaAke4ZpNUn9nhH7AeljImkvtJJQ4nbxHhUWy3cJEywZ+9IZWTH7CoH62T gDD03ZhIqF421cP+Bzs8Bsb2i2P8aMlitxNzx37EwIewRlkGC8HhBJdSNKL9AgMB AAGjggI7MIICNzAdBgNVHQ4EFgQU1Uk0eVqJ/O22zgHK6TTunnQ3fRUwHwYDVR0j BBgwFoAUAZxOJu7CUuph+7Cf2FbN0FfOrYwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i ZDVjNDcxNS0yODJlLTQ1N2YtYjg5ZS0wNDFiZjkxMTBhZjgvMC8wMTlDNEUyNkVF QzI1MkVBNjFGQkIwOUZEODU2Q0REMDU3Q0VBRDhDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDE5QzRFMjZFRUMyNTJFQTYxRkJCMDlGRDg1NkNERDA1N0NF QUQ4Qy5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2JkNWM0NzE1LTI4MmUtNDU3Zi1i ODllLTA0MWJmOTExMGFmOC8wLzMyMzQzMDMwM2EzOTYzMzgzMDNhMzIzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzUzODMzMzkzNi5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQAnIAC ADANBgkqhkiG9w0BAQsFAAOCAQEAYpMjIsORj3/7nAW1Kjm08RZSeS1AbEoE6xm9 qg0Jz9Fbkt+vkyeV6im4gBkbvQkx7HS6u4fQ+iQNHGSePKVZV6OYZyB70bOnDbBO 1O5ba5mO+pBAf3hAUaXEicqBebGu29P3Fg/NsYVtYJMGVnlE54hw/H8kpC1DYRIf KzahHP8vb+Ek8o9PJaFCL0EfR76UIshe5dclsb1YpEbSty/WKvplcJz0y3N+ZcRI +fc1iGwg8QnQzVGxOdM3vmG00FTHL90vMds7e/UD7HmXDzsDGluKYuFf/2+bAZdS 1K52H8zVYaI6rGclDVJI7GsfbC1D+Wf0AlJuSP66nNWBxsLsGg== -----END CERTIFICATE-----Generated at Tue Oct 28 13:40:20 2025 by rpki-client