$ rpki-client -vvf repo-rpki.idnic.net/repo/e86e46ec-df5c-4b4d-a30e-10b2c688c2fc/0/323030313a6466363a3930303a3a2f34382d3438203d3e20313337333733.roa File: 323030313a6466363a3930303a3a2f34382d3438203d3e20313337333733.roa (raw, json) Hash identifier: RtKaOt0QVcUfg/opcNyngIYtGMAYjqUtlrzDiVJb3H0= Subject key identifier: 00:2B:D0:B9:65:B8:5B:EE:3B:B7:F7:65:FD:2D:A0:E6:39:00:B6:D9 Certificate issuer: /CN=6B647F696A9BB5C718605E8922BEF1BEE566F94E Certificate serial: 1C20FD69AB119E36E20FDF19A8299D2CDA3958FD Authority key identifier: 6B:64:7F:69:6A:9B:B5:C7:18:60:5E:89:22:BE:F1:BE:E5:66:F9:4E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B647F696A9BB5C718605E8922BEF1BEE566F94E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e86e46ec-df5c-4b4d-a30e-10b2c688c2fc/0/323030313a6466363a3930303a3a2f34382d3438203d3e20313337333733.roa Signing time: Wed 10 Sep 2025 12:10:34 +0000 ROA not before: Wed 10 Sep 2025 12:05:34 +0000 ROA not after: Wed 09 Sep 2026 12:10:34 +0000 asID: 137373 IP address blocks: 2001:df6:900::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e86e46ec-df5c-4b4d-a30e-10b2c688c2fc/0/6B647F696A9BB5C718605E8922BEF1BEE566F94E.crl rsync://repo-rpki.idnic.net/repo/e86e46ec-df5c-4b4d-a30e-10b2c688c2fc/0/6B647F696A9BB5C718605E8922BEF1BEE566F94E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B647F696A9BB5C718605E8922BEF1BEE566F94E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 22 Sep 2025 05:06:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:20:fd:69:ab:11:9e:36:e2:0f:df:19:a8:29:9d:2c:da:39:58:fd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6B647F696A9BB5C718605E8922BEF1BEE566F94E Validity Not Before: Sep 10 12:05:34 2025 GMT Not After : Sep 9 12:10:34 2026 GMT Subject: CN=002BD0B965B85BEE3BB7F765FD2DA0E63900B6D9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:33:2f:1f:f0:07:7a:45:85:ed:b1:3e:a7:6e: a9:46:48:b0:ba:54:fa:96:08:25:c7:d9:a2:c6:bf: 47:aa:4b:bf:64:23:06:28:76:51:d2:18:6b:fd:37: bf:61:96:ee:27:50:4f:77:d5:23:b1:24:ef:f7:0b: af:0f:68:8b:75:c5:0b:74:1e:54:7b:4e:c2:42:4c: 42:e8:92:6e:fa:59:be:ed:bb:ba:8c:95:10:ab:3e: a5:b8:ae:b1:17:2b:59:05:e8:1b:db:73:3f:b4:d0: e6:55:19:b0:1f:3e:3a:7c:50:5d:54:ce:91:4b:f0: e9:24:7d:51:ea:9f:6b:bd:cb:d0:b8:7f:0f:32:20: 12:25:f5:47:6b:1b:86:44:1a:f4:2d:a5:c2:ca:27: 49:7b:c0:5a:08:7d:25:f2:d8:19:9c:6d:01:d2:a3: c5:16:1b:e2:7b:c0:21:84:d1:d4:75:38:66:d8:dd: 20:38:1d:8f:43:ab:51:3a:0c:14:55:fe:0f:5e:c0: 4b:00:98:c8:2e:e1:bc:ba:0a:ce:bc:19:a9:5b:58: 8f:d7:7f:fd:c8:44:03:48:b3:4b:01:95:ca:cc:3c: 26:2a:85:11:05:5a:5d:bb:67:d2:b3:14:9f:e6:02: 06:64:bd:f5:fc:1d:66:44:15:be:13:67:38:68:4c: fe:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:2B:D0:B9:65:B8:5B:EE:3B:B7:F7:65:FD:2D:A0:E6:39:00:B6:D9 X509v3 Authority Key Identifier: keyid:6B:64:7F:69:6A:9B:B5:C7:18:60:5E:89:22:BE:F1:BE:E5:66:F9:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e86e46ec-df5c-4b4d-a30e-10b2c688c2fc/0/6B647F696A9BB5C718605E8922BEF1BEE566F94E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B647F696A9BB5C718605E8922BEF1BEE566F94E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e86e46ec-df5c-4b4d-a30e-10b2c688c2fc/0/323030313a6466363a3930303a3a2f34382d3438203d3e20313337333733.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df6:900::/48 Signature Algorithm: sha256WithRSAEncryption 45:8a:be:26:35:ab:74:33:58:0f:40:a2:4c:82:5f:21:99:75: 40:c4:e0:19:72:a7:a4:fa:3d:a3:22:7c:39:8c:14:f0:64:8d: 9e:5e:de:b3:5f:d3:29:96:65:26:c3:a8:75:98:1e:00:c0:48: 4c:2a:40:4a:f9:48:11:c9:5f:26:7f:3d:bb:f7:d2:fb:03:d7: 60:1a:10:65:de:81:a3:06:87:d2:09:c7:c1:65:08:04:82:28: ad:84:1a:7a:17:4a:d0:a5:d3:c0:b1:d4:04:94:db:15:f5:71: cf:6c:e5:d7:ca:5f:0f:94:73:03:00:40:29:af:db:65:e1:5b: ed:a7:fa:e2:e5:4a:e8:74:6d:b6:1b:8b:de:39:4e:3a:a5:01: e8:88:c0:9a:c2:cd:6f:f6:08:13:2e:ef:64:fc:f7:ee:fa:5e: 78:6d:5a:b5:03:03:18:f7:00:c1:e6:20:bd:06:e2:ca:70:5c: b4:30:f8:21:7d:d9:24:26:fa:06:6b:1c:c2:48:3f:b3:85:43: ed:60:c1:ab:d9:11:ae:76:62:69:3d:27:e6:68:f2:dc:18:21: 03:ef:b6:01:39:96:be:c3:a5:10:dd:f1:11:38:5e:85:79:09: ef:06:97:32:20:00:b8:f9:8c:72:bb:09:e9:76:7a:be:5e:9c: c1:cb:5b:e4 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUHCD9aasRnjbiD98ZqCmdLNo5WP0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkI2NDdGNjk2QTlCQjVDNzE4NjA1RTg5MjJCRUYxQkVF NTY2Rjk0RTAeFw0yNTA5MTAxMjA1MzRaFw0yNjA5MDkxMjEwMzRaMDMxMTAvBgNV BAMTKDAwMkJEMEI5NjVCODVCRUUzQkI3Rjc2NUZEMkRBMEU2MzkwMEI2RDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDnMy8f8Ad6RYXtsT6nbqlGSLC6 VPqWCCXH2aLGv0eqS79kIwYodlHSGGv9N79hlu4nUE931SOxJO/3C68PaIt1xQt0 HlR7TsJCTELokm76Wb7tu7qMlRCrPqW4rrEXK1kF6Bvbcz+00OZVGbAfPjp8UF1U zpFL8OkkfVHqn2u9y9C4fw8yIBIl9UdrG4ZEGvQtpcLKJ0l7wFoIfSXy2BmcbQHS o8UWG+J7wCGE0dR1OGbY3SA4HY9Dq1E6DBRV/g9ewEsAmMgu4by6Cs68GalbWI/X f/3IRANIs0sBlcrMPCYqhREFWl27Z9KzFJ/mAgZkvfX8HWZEFb4TZzhoTP77AgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUACvQuWW4W+47t/dl/S2g5jkAttkwHwYDVR0j BBgwFoAUa2R/aWqbtccYYF6JIr7xvuVm+U4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l ODZlNDZlYy1kZjVjLTRiNGQtYTMwZS0xMGIyYzY4OGMyZmMvMC82QjY0N0Y2OTZB OUJCNUM3MTg2MDVFODkyMkJFRjFCRUU1NjZGOTRFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkI2NDdGNjk2QTlCQjVDNzE4NjA1RTg5MjJCRUYxQkVFNTY2 Rjk0RS5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U4NmU0NmVjLWRmNWMtNGI0ZC1h MzBlLTEwYjJjNjg4YzJmYy8wLzMyMzAzMDMxM2E2NDY2MzYzYTM5MzAzMDNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzMzNzMzMzczMy5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACABDfYJ ADANBgkqhkiG9w0BAQsFAAOCAQEARYq+JjWrdDNYD0CiTIJfIZl1QMTgGXKnpPo9 oyJ8OYwU8GSNnl7es1/TKZZlJsOodZgeAMBITCpASvlIEclfJn89u/fS+wPXYBoQ Zd6BowaH0gnHwWUIBIIorYQaehdK0KXTwLHUBJTbFfVxz2zl18pfD5RzAwBAKa/b ZeFb7af64uVK6HRtthuL3jlOOqUB6IjAmsLNb/YIEy7vZPz37vpeeG1atQMDGPcA weYgvQbiynBctDD4IX3ZJCb6Bmscwkg/s4VD7WDBq9kRrnZiaT0n5mjy3BghA++2 ATmWvsOlEN3xEThehXkJ7waXMiAAuPmMcrsJ6XZ6vl6cwctb5A== -----END CERTIFICATE-----Generated at Fri Sep 19 19:37:15 2025 by rpki-client