$ rpki-client -vvf repo-rpki.idnic.net/repo/02158aec-5281-42e6-979b-fca61d47c845/0/323430353a633963303a3a2f33322d3438203d3e20313338383233.roa File: 323430353a633963303a3a2f33322d3438203d3e20313338383233.roa (raw, json) Hash identifier: fAuWxeE7ImjYp2a97WPBMhqeHz7I3/dQp2udhbh8G2w= Subject key identifier: 1C:25:10:40:7C:4D:B7:41:4C:4F:74:A7:89:60:8C:12:E5:16:C1:B6 Certificate issuer: /CN=E2111F10F01C17C4A322DAF5076425FBD824219D Certificate serial: 051CDA3DD2132486E9977EB4BB5AE9200858516B Authority key identifier: E2:11:1F:10:F0:1C:17:C4:A3:22:DA:F5:07:64:25:FB:D8:24:21:9D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E2111F10F01C17C4A322DAF5076425FBD824219D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/02158aec-5281-42e6-979b-fca61d47c845/0/323430353a633963303a3a2f33322d3438203d3e20313338383233.roa Signing time: Sun 20 Jul 2025 09:00:00 +0000 ROA not before: Sun 20 Jul 2025 08:55:00 +0000 ROA not after: Sun 19 Jul 2026 09:00:00 +0000 asID: 138823 IP address blocks: 2405:c9c0::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/02158aec-5281-42e6-979b-fca61d47c845/0/E2111F10F01C17C4A322DAF5076425FBD824219D.crl rsync://repo-rpki.idnic.net/repo/02158aec-5281-42e6-979b-fca61d47c845/0/E2111F10F01C17C4A322DAF5076425FBD824219D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E2111F10F01C17C4A322DAF5076425FBD824219D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 08 Aug 2025 20:07:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:1c:da:3d:d2:13:24:86:e9:97:7e:b4:bb:5a:e9:20:08:58:51:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E2111F10F01C17C4A322DAF5076425FBD824219D Validity Not Before: Jul 20 08:55:00 2025 GMT Not After : Jul 19 09:00:00 2026 GMT Subject: CN=1C2510407C4DB7414C4F74A789608C12E516C1B6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:99:22:36:ce:01:0c:3a:ff:75:de:49:fb:a5: 2c:22:5c:5a:9b:13:e6:55:a7:05:4a:9a:49:6f:54: e5:e8:0d:73:fb:e2:bd:a3:65:9e:5b:3c:a0:b6:04: 92:5d:c9:63:d2:3e:ce:0b:0f:04:08:1a:ad:e4:7a: d2:4e:0f:2b:03:ff:17:99:37:89:5b:cf:a2:ad:11: 5b:35:41:26:ff:92:ad:53:86:31:c7:04:09:3a:3d: 8a:24:e9:ae:8e:4a:e4:3a:40:ea:3f:43:86:3c:a5: 33:be:0e:c8:ac:88:aa:bc:9b:28:b2:8c:31:fc:8f: 9f:b6:65:9b:fc:90:ec:b2:58:93:ef:8f:98:7f:4d: 28:8d:e3:c1:4f:f6:84:2e:8b:98:f1:1e:3c:a3:94: af:51:80:15:c3:b5:5c:e5:df:e3:37:f5:57:69:2d: ac:4e:15:50:c8:87:d3:d7:74:75:5f:ff:73:d0:f8: 95:18:69:ae:e8:35:63:e6:aa:f5:4f:ee:5c:01:ad: be:12:c7:df:36:db:9d:bf:9d:36:3f:7e:77:4a:7d: 80:cc:55:02:1e:39:54:18:53:74:d2:54:1a:bb:77: e8:46:4b:19:69:a5:a2:04:a3:1d:d7:21:72:0f:f0: b4:58:ee:bf:35:25:ee:16:32:c7:74:30:f4:cc:0c: 8c:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:25:10:40:7C:4D:B7:41:4C:4F:74:A7:89:60:8C:12:E5:16:C1:B6 X509v3 Authority Key Identifier: keyid:E2:11:1F:10:F0:1C:17:C4:A3:22:DA:F5:07:64:25:FB:D8:24:21:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/02158aec-5281-42e6-979b-fca61d47c845/0/E2111F10F01C17C4A322DAF5076425FBD824219D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E2111F10F01C17C4A322DAF5076425FBD824219D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/02158aec-5281-42e6-979b-fca61d47c845/0/323430353a633963303a3a2f33322d3438203d3e20313338383233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:c9c0::/32 Signature Algorithm: sha256WithRSAEncryption b7:b6:8f:9c:5b:e5:c9:1d:20:cd:15:5b:97:3e:b4:22:f3:28: 3b:e7:95:83:ec:05:97:c4:82:27:03:75:e4:d5:be:7b:49:9b: 1d:fc:3a:09:a2:02:94:48:a6:21:ac:c4:3a:95:c8:20:12:c7: bc:1a:4f:95:dc:85:65:c4:f5:47:db:71:e3:9b:59:97:61:c1: c5:c3:74:94:e3:2b:29:27:3a:a4:d9:36:28:bf:1b:ae:41:49: 08:63:76:3a:a9:f1:77:6a:9e:b7:13:c3:2c:f0:70:81:64:d6: 88:ee:a0:03:71:52:df:19:ec:c4:44:a0:51:50:3b:e1:f8:20: 84:8f:21:48:40:38:64:6c:a1:ec:a4:69:0a:c5:7f:3d:19:82: 85:86:68:16:39:8f:42:73:03:8b:e8:77:08:18:03:16:3f:7f: 49:2a:27:a8:63:e7:9f:9a:3f:17:b3:c1:a9:a0:79:42:de:e8: 0f:0f:0a:04:2e:fd:78:9a:c0:61:b5:a6:6b:1e:36:57:9c:1c: 40:28:72:c2:c7:d6:95:05:79:7d:80:35:ed:72:e8:d3:30:09: 99:a1:04:7b:f3:b2:08:9c:da:b2:1a:59:4e:f1:c6:8f:ba:d5: 33:30:63:6c:20:4b:30:9f:9f:2c:91:b1:a1:10:9f:c5:58:60: ab:45:f1:29 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUBRzaPdITJIbpl360u1rpIAhYUWswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTIxMTFGMTBGMDFDMTdDNEEzMjJEQUY1MDc2NDI1RkJE ODI0MjE5RDAeFw0yNTA3MjAwODU1MDBaFw0yNjA3MTkwOTAwMDBaMDMxMTAvBgNV BAMTKDFDMjUxMDQwN0M0REI3NDE0QzRGNzRBNzg5NjA4QzEyRTUxNkMxQjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZmSI2zgEMOv913kn7pSwiXFqb E+ZVpwVKmklvVOXoDXP74r2jZZ5bPKC2BJJdyWPSPs4LDwQIGq3ketJODysD/xeZ N4lbz6KtEVs1QSb/kq1ThjHHBAk6PYok6a6OSuQ6QOo/Q4Y8pTO+DsisiKq8myiy jDH8j5+2ZZv8kOyyWJPvj5h/TSiN48FP9oQui5jxHjyjlK9RgBXDtVzl3+M39Vdp LaxOFVDIh9PXdHVf/3PQ+JUYaa7oNWPmqvVP7lwBrb4Sx982252/nTY/fndKfYDM VQIeOVQYU3TSVBq7d+hGSxlppaIEox3XIXIP8LRY7r81Je4WMsd0MPTMDIynAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUHCUQQHxNt0FMT3SniWCMEuUWwbYwHwYDVR0j BBgwFoAU4hEfEPAcF8SjItr1B2Ql+9gkIZ0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w MjE1OGFlYy01MjgxLTQyZTYtOTc5Yi1mY2E2MWQ0N2M4NDUvMC9FMjExMUYxMEYw MUMxN0M0QTMyMkRBRjUwNzY0MjVGQkQ4MjQyMTlELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRTIxMTFGMTBGMDFDMTdDNEEzMjJEQUY1MDc2NDI1RkJEODI0 MjE5RC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzAyMTU4YWVjLTUyODEtNDJlNi05 NzliLWZjYTYxZDQ3Yzg0NS8wLzMyMzQzMDM1M2E2MzM5NjMzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMxMzMzODM4MzIzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQFycAwDQYJKoZI hvcNAQELBQADggEBALe2j5xb5ckdIM0VW5c+tCLzKDvnlYPsBZfEgicDdeTVvntJ mx38OgmiApRIpiGsxDqVyCASx7waT5XchWXE9UfbceObWZdhwcXDdJTjKyknOqTZ Nii/G65BSQhjdjqp8XdqnrcTwyzwcIFk1ojuoANxUt8Z7MREoFFQO+H4IISPIUhA OGRsoeykaQrFfz0ZgoWGaBY5j0JzA4vodwgYAxY/f0kqJ6hj55+aPxezwamgeULe 6A8PCgQu/XiawGG1pmseNlecHEAocsLH1pUFeX2ANe1y6NMwCZmhBHvzsgic2rIa WU7xxo+61TMwY2wgSzCfnyyRsaEQn8VYYKtF8Sk= -----END CERTIFICATE-----Generated at Thu Aug 7 20:21:33 2025 by rpki-client