$ rpki-client -vvf repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/323430353a383138303a3a2f33322d3438203d3e20313335343738.roa File: 323430353a383138303a3a2f33322d3438203d3e20313335343738.roa (raw, json) Hash identifier: Pmzo1QK0/JYc4O9YwC3TsZrbkzoKE+aUT4+Ys98YMeY= Subject key identifier: 59:BF:DE:B8:AA:6C:3B:87:C8:27:B1:FE:AF:EC:9E:D7:46:88:57:66 Certificate issuer: /CN=7E2CF346D5DE840DC0EE944C918EDC5137D6998A Certificate serial: 1860BE5F84AB1EE9C82D2F3D51D9897249947CC8 Authority key identifier: 7E:2C:F3:46:D5:DE:84:0D:C0:EE:94:4C:91:8E:DC:51:37:D6:99:8A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/323430353a383138303a3a2f33322d3438203d3e20313335343738.roa Signing time: Tue 21 Oct 2025 02:00:00 +0000 ROA not before: Tue 21 Oct 2025 01:55:00 +0000 ROA not after: Tue 20 Oct 2026 02:00:00 +0000 asID: 135478 IP address blocks: 2405:8180::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.crl rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Oct 2025 15:48:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:60:be:5f:84:ab:1e:e9:c8:2d:2f:3d:51:d9:89:72:49:94:7c:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7E2CF346D5DE840DC0EE944C918EDC5137D6998A Validity Not Before: Oct 21 01:55:00 2025 GMT Not After : Oct 20 02:00:00 2026 GMT Subject: CN=59BFDEB8AA6C3B87C827B1FEAFEC9ED746885766 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:db:5f:31:64:16:d7:8a:82:58:66:8f:6d:ab: 51:fd:1e:67:47:c9:53:60:60:70:be:f8:c3:25:48: f0:83:8b:7a:76:53:71:bc:81:80:9a:e4:78:d7:b5: e7:9c:59:b9:17:85:0e:cf:0f:fb:7b:3f:a1:0c:0f: a4:62:5b:69:9d:92:84:fa:5b:06:61:d2:0f:8b:73: 4a:83:3a:ae:e4:1d:39:77:77:bb:78:aa:39:aa:f9: 46:73:2f:6a:e3:e6:00:64:57:05:e6:8a:d5:96:18: 7d:23:e2:e9:91:5d:c2:08:89:db:3a:09:4d:5c:bf: 9c:5d:77:4a:58:b3:27:02:ba:fc:28:3c:3c:26:cd: 53:7e:5c:11:ad:02:6e:88:ad:3e:f1:3f:28:99:69: 71:1c:3f:f0:01:72:c0:67:f9:aa:f9:1e:ce:47:9f: 19:01:7e:c9:52:ba:7f:9b:3b:7a:08:3e:57:a4:5f: 0a:b4:0f:f0:6c:22:e6:6f:f9:bb:6c:0f:1f:4d:b9: 22:b8:a7:e7:ef:fa:d8:6b:8c:a9:f4:f2:f8:bf:0c: db:1b:60:14:67:43:c7:e5:d6:2c:fd:9d:5b:41:ce: e5:8f:bb:54:b1:7c:96:4f:ce:67:3f:f7:0d:a0:cd: cd:7d:57:8e:9f:13:8e:ce:6f:71:48:07:5c:6b:f7: dc:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:BF:DE:B8:AA:6C:3B:87:C8:27:B1:FE:AF:EC:9E:D7:46:88:57:66 X509v3 Authority Key Identifier: keyid:7E:2C:F3:46:D5:DE:84:0D:C0:EE:94:4C:91:8E:DC:51:37:D6:99:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/323430353a383138303a3a2f33322d3438203d3e20313335343738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:8180::/32 Signature Algorithm: sha256WithRSAEncryption 9c:2b:fc:ed:83:84:1a:1d:17:03:78:8e:84:72:6b:79:c6:c8: 8e:32:73:17:84:55:c0:09:70:02:2a:55:e0:ea:07:3e:da:81: 84:b7:d8:cb:b8:d8:cd:7e:b7:c6:0c:4c:11:e9:9f:cd:22:1e: c7:68:8f:fa:73:93:38:12:65:2b:08:a0:3d:3e:18:c4:6a:2c: 82:d8:a8:09:25:aa:7a:67:41:07:86:4f:ea:f1:3e:13:12:6d: 97:92:9e:b3:e0:c2:76:59:b9:60:0f:31:2a:c0:a4:bb:70:89: e1:5e:cf:8e:77:63:85:43:f9:58:4e:01:c2:7d:4f:85:28:fb: 5f:b3:d3:45:5b:da:bb:4d:87:4f:be:db:d8:92:1e:88:76:08: 29:f6:7c:89:f1:b0:9e:c2:1f:b8:02:f8:69:ad:c9:5d:af:7b: da:96:2b:54:51:47:70:26:41:ee:a8:37:9e:11:20:9d:1d:45: 75:60:05:66:f1:a9:85:ea:50:36:be:1c:b5:0e:a0:04:ea:ba: 98:0b:1b:23:e9:d2:c6:f4:5e:a6:8d:a7:1d:e7:a7:0e:fb:34: e2:70:c4:9c:b7:60:15:3a:7c:d4:da:d8:b7:b1:6f:16:a6:6d: 1c:a3:05:fd:9c:e6:98:07:9c:74:a1:87:32:3e:af:9a:24:08: c0:8b:d7:13 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUGGC+X4SrHunILS89UdmJckmUfMgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0UyQ0YzNDZENURFODQwREMwRUU5NDRDOTE4RURDNTEz N0Q2OTk4QTAeFw0yNTEwMjEwMTU1MDBaFw0yNjEwMjAwMjAwMDBaMDMxMTAvBgNV BAMTKDU5QkZERUI4QUE2QzNCODdDODI3QjFGRUFGRUM5RUQ3NDY4ODU3NjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCc218xZBbXioJYZo9tq1H9HmdH yVNgYHC++MMlSPCDi3p2U3G8gYCa5HjXteecWbkXhQ7PD/t7P6EMD6RiW2mdkoT6 WwZh0g+Lc0qDOq7kHTl3d7t4qjmq+UZzL2rj5gBkVwXmitWWGH0j4umRXcIIids6 CU1cv5xdd0pYsycCuvwoPDwmzVN+XBGtAm6IrT7xPyiZaXEcP/ABcsBn+ar5Hs5H nxkBfslSun+bO3oIPlekXwq0D/BsIuZv+btsDx9NuSK4p+fv+thrjKn08vi/DNsb YBRnQ8fl1iz9nVtBzuWPu1SxfJZPzmc/9w2gzc19V46fE47Ob3FIB1xr99x3AgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUWb/euKpsO4fIJ7H+r+ye10aIV2YwHwYDVR0j BBgwFoAUfizzRtXehA3A7pRMkY7cUTfWmYowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l YTcwMjcyNi1iMmM2LTQ2ZmMtODI5Ny0yZGJkZWM2ZDZkNWQvMC83RTJDRjM0NkQ1 REU4NDBEQzBFRTk0NEM5MThFREM1MTM3RDY5OThBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0UyQ0YzNDZENURFODQwREMwRUU5NDRDOTE4RURDNTEzN0Q2 OTk4QS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2VhNzAyNzI2LWIyYzYtNDZmYy04 Mjk3LTJkYmRlYzZkNmQ1ZC8wLzMyMzQzMDM1M2EzODMxMzgzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMxMzMzNTM0MzczOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQFgYAwDQYJKoZI hvcNAQELBQADggEBAJwr/O2DhBodFwN4joRya3nGyI4ycxeEVcAJcAIqVeDqBz7a gYS32Mu42M1+t8YMTBHpn80iHsdoj/pzkzgSZSsIoD0+GMRqLILYqAklqnpnQQeG T+rxPhMSbZeSnrPgwnZZuWAPMSrApLtwieFez453Y4VD+VhOAcJ9T4Uo+1+z00Vb 2rtNh0++29iSHoh2CCn2fInxsJ7CH7gC+GmtyV2ve9qWK1RRR3AmQe6oN54RIJ0d RXVgBWbxqYXqUDa+HLUOoATqupgLGyPp0sb0XqaNpx3npw77NOJwxJy3YBU6fNTa 2LexbxambRyjBf2c5pgHnHShhzI+r5okCMCL1xM= -----END CERTIFICATE-----Generated at Mon Oct 27 14:29:39 2025 by rpki-client