$ rpki-client -vvf repo-rpki.idnic.net/repo/edde8fb8-3a77-487e-9dfc-f479d6b33809/0/323030313a6466363a356130303a3a2f34382d3438203d3e203634333032.roa File: 323030313a6466363a356130303a3a2f34382d3438203d3e203634333032.roa (raw, json) Hash identifier: 6uu5L9LCXycUnW0VXTaRuOdsIdBD80z20frDdHYbxHE= Subject key identifier: FD:AE:20:1C:E2:08:2D:9B:67:54:48:8C:05:92:27:73:98:55:D5:B5 Certificate issuer: /CN=9F1E176A521C3CEFE1D787F898211547A2D65955 Certificate serial: 342035A7B4D88456238588DE9882A11D993D27E3 Authority key identifier: 9F:1E:17:6A:52:1C:3C:EF:E1:D7:87:F8:98:21:15:47:A2:D6:59:55 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9F1E176A521C3CEFE1D787F898211547A2D65955.cer Subject info access: rsync://repo-rpki.idnic.net/repo/edde8fb8-3a77-487e-9dfc-f479d6b33809/0/323030313a6466363a356130303a3a2f34382d3438203d3e203634333032.roa Signing time: Sat 06 Sep 2025 04:02:27 +0000 ROA not before: Sat 06 Sep 2025 03:57:27 +0000 ROA not after: Sat 05 Sep 2026 04:02:27 +0000 asID: 64302 IP address blocks: 2001:df6:5a00::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/edde8fb8-3a77-487e-9dfc-f479d6b33809/0/9F1E176A521C3CEFE1D787F898211547A2D65955.crl rsync://repo-rpki.idnic.net/repo/edde8fb8-3a77-487e-9dfc-f479d6b33809/0/9F1E176A521C3CEFE1D787F898211547A2D65955.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9F1E176A521C3CEFE1D787F898211547A2D65955.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Sep 2025 07:09:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:20:35:a7:b4:d8:84:56:23:85:88:de:98:82:a1:1d:99:3d:27:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9F1E176A521C3CEFE1D787F898211547A2D65955 Validity Not Before: Sep 6 03:57:27 2025 GMT Not After : Sep 5 04:02:27 2026 GMT Subject: CN=FDAE201CE2082D9B6754488C059227739855D5B5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:63:14:9b:8e:1b:80:d2:88:a2:c3:9a:ae:5d: 9d:fc:e3:ad:54:37:cf:66:65:07:57:8d:ce:56:33: 32:20:9d:f7:10:a6:c2:a6:c8:c0:b9:db:99:94:05: ed:7a:4f:2d:5d:ed:d0:55:cf:26:93:c0:83:d3:5f: 92:17:d4:a6:0a:29:bf:61:4f:9c:28:0c:ee:d9:c1: 70:fe:1d:fd:67:bc:75:cb:98:58:fe:76:dc:1c:95: 52:df:94:6c:95:24:c9:8d:c0:46:24:3f:bf:d6:c0: f1:86:71:15:f3:df:38:70:d3:ff:c0:cc:8d:8e:39: f9:46:60:d4:01:37:eb:82:cd:0d:5c:bd:07:a8:3a: b9:34:60:cc:ad:0f:ba:df:37:35:a6:5b:ed:4f:a0: cf:f6:65:d7:ee:a3:33:ad:3c:07:42:d1:26:2d:dd: 6c:db:60:92:95:94:08:3e:2d:4d:b4:b9:36:10:44: 69:16:3b:0f:bf:cc:ca:da:61:42:80:e0:51:a3:ba: 20:42:22:b9:0a:47:4b:2c:8a:09:57:30:4f:07:8b: f4:47:dc:66:b8:3f:f2:c8:92:17:da:46:09:4c:bb: 46:92:be:8f:26:cb:3d:fa:00:92:7f:e0:02:64:36: 32:b4:df:02:71:6b:db:e7:a0:d4:bc:5d:ef:74:01: 7d:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:AE:20:1C:E2:08:2D:9B:67:54:48:8C:05:92:27:73:98:55:D5:B5 X509v3 Authority Key Identifier: keyid:9F:1E:17:6A:52:1C:3C:EF:E1:D7:87:F8:98:21:15:47:A2:D6:59:55 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/edde8fb8-3a77-487e-9dfc-f479d6b33809/0/9F1E176A521C3CEFE1D787F898211547A2D65955.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9F1E176A521C3CEFE1D787F898211547A2D65955.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/edde8fb8-3a77-487e-9dfc-f479d6b33809/0/323030313a6466363a356130303a3a2f34382d3438203d3e203634333032.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df6:5a00::/48 Signature Algorithm: sha256WithRSAEncryption 4f:16:b5:9b:0e:ad:16:47:cb:26:8d:ab:eb:34:f4:0d:b4:bf: 90:f6:dc:14:b9:d7:63:8a:00:35:cd:e1:29:69:a3:cd:48:2a: 23:01:cd:4b:3f:3e:19:d5:6c:bc:dd:e3:0f:71:31:16:8b:18: 8a:50:e5:d6:26:07:f1:ce:68:3f:ee:6e:61:65:0e:ca:1d:2a: 43:25:df:34:79:6e:b8:3f:87:08:29:bd:99:63:49:ea:72:be: d7:9e:88:e2:28:f2:65:60:bf:f3:4d:cc:d9:21:e0:9d:22:7c: aa:f3:39:8b:3c:f5:f0:0d:7f:78:33:f8:b6:fb:9f:4f:59:91: 8c:5b:c6:d2:15:bf:c9:8c:78:ca:3c:0b:b3:0b:2e:1a:3d:25: 6a:d5:be:72:32:12:52:a6:8f:ab:5e:f6:e1:a3:93:ea:dd:98: a2:55:fe:0f:57:04:b7:3d:e9:c7:e7:e5:1f:b8:8b:e2:f8:a6: d3:14:82:f9:53:cc:61:95:61:32:5a:69:28:c6:e4:a4:b9:55: b4:36:88:43:35:93:28:de:dc:ac:98:72:4f:fd:ad:f6:4f:1e: 36:ac:7d:b8:82:ad:e2:55:d7:7b:f4:95:2a:e4:d2:65:1a:b2: 6f:e2:74:2d:d5:74:79:59:6d:eb:bb:c1:ac:c2:f4:27:4b:6b: 1a:63:d0:3e -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUNCA1p7TYhFYjhYjemIKhHZk9J+MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUYxRTE3NkE1MjFDM0NFRkUxRDc4N0Y4OTgyMTE1NDdB MkQ2NTk1NTAeFw0yNTA5MDYwMzU3MjdaFw0yNjA5MDUwNDAyMjdaMDMxMTAvBgNV BAMTKEZEQUUyMDFDRTIwODJEOUI2NzU0NDg4QzA1OTIyNzczOTg1NUQ1QjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDgYxSbjhuA0oiiw5quXZ38461U N89mZQdXjc5WMzIgnfcQpsKmyMC525mUBe16Ty1d7dBVzyaTwIPTX5IX1KYKKb9h T5woDO7ZwXD+Hf1nvHXLmFj+dtwclVLflGyVJMmNwEYkP7/WwPGGcRXz3zhw0//A zI2OOflGYNQBN+uCzQ1cvQeoOrk0YMytD7rfNzWmW+1PoM/2ZdfuozOtPAdC0SYt 3WzbYJKVlAg+LU20uTYQRGkWOw+/zMraYUKA4FGjuiBCIrkKR0ssiglXME8Hi/RH 3Ga4P/LIkhfaRglMu0aSvo8myz36AJJ/4AJkNjK03wJxa9vnoNS8Xe90AX0bAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQU/a4gHOIILZtnVEiMBZInc5hV1bUwHwYDVR0j BBgwFoAUnx4XalIcPO/h14f4mCEVR6LWWVUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l ZGRlOGZiOC0zYTc3LTQ4N2UtOWRmYy1mNDc5ZDZiMzM4MDkvMC85RjFFMTc2QTUy MUMzQ0VGRTFENzg3Rjg5ODIxMTU0N0EyRDY1OTU1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUYxRTE3NkE1MjFDM0NFRkUxRDc4N0Y4OTgyMTE1NDdBMkQ2 NTk1NS5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2VkZGU4ZmI4LTNhNzctNDg3ZS05 ZGZjLWY0NzlkNmIzMzgwOS8wLzMyMzAzMDMxM2E2NDY2MzYzYTM1NjEzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzYzNDMzMzAzMi5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACABDfZa ADANBgkqhkiG9w0BAQsFAAOCAQEATxa1mw6tFkfLJo2r6zT0DbS/kPbcFLnXY4oA Nc3hKWmjzUgqIwHNSz8+GdVsvN3jD3ExFosYilDl1iYH8c5oP+5uYWUOyh0qQyXf NHluuD+HCCm9mWNJ6nK+156I4ijyZWC/803M2SHgnSJ8qvM5izz18A1/eDP4tvuf T1mRjFvG0hW/yYx4yjwLswsuGj0latW+cjISUqaPq1724aOT6t2YolX+D1cEtz3p x+flH7iL4vim0xSC+VPMYZVhMlppKMbkpLlVtDaIQzWTKN7crJhyT/2t9k8eNqx9 uIKt4lXXe/SVKuTSZRqyb+J0LdV0eVlt67vBrML0J0trGmPQPg== -----END CERTIFICATE-----Generated at Sun Sep 7 17:50:47 2025 by rpki-client