$ rpki-client -vvf repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/323030313a6466313a373830303a3a2f34382d3438203d3e203538343837.roa File: 323030313a6466313a373830303a3a2f34382d3438203d3e203538343837.roa (raw, json) Hash identifier: ZfJ2OjgahRBBSeJ1PmDYYPfpQIsMyrOsE9S5DMgVoe0= Subject key identifier: D4:1D:85:B0:27:B9:AD:6D:73:4F:C1:08:21:76:D7:B1:C3:AA:73:C1 Certificate issuer: /CN=B6F1322321412EFD041A6C2C0B297A1092AABE6E Certificate serial: 40E5C5BF0FFE3D16D8DAB5B2C38032624FBEC528 Authority key identifier: B6:F1:32:23:21:41:2E:FD:04:1A:6C:2C:0B:29:7A:10:92:AA:BE:6E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F1322321412EFD041A6C2C0B297A1092AABE6E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/323030313a6466313a373830303a3a2f34382d3438203d3e203538343837.roa Signing time: Wed 22 Oct 2025 09:02:27 +0000 ROA not before: Wed 22 Oct 2025 08:57:27 +0000 ROA not after: Wed 21 Oct 2026 09:02:27 +0000 asID: 58487 IP address blocks: 2001:df1:7800::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/B6F1322321412EFD041A6C2C0B297A1092AABE6E.crl rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/B6F1322321412EFD041A6C2C0B297A1092AABE6E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F1322321412EFD041A6C2C0B297A1092AABE6E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Nov 2025 14:54:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:e5:c5:bf:0f:fe:3d:16:d8:da:b5:b2:c3:80:32:62:4f:be:c5:28 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B6F1322321412EFD041A6C2C0B297A1092AABE6E Validity Not Before: Oct 22 08:57:27 2025 GMT Not After : Oct 21 09:02:27 2026 GMT Subject: CN=D41D85B027B9AD6D734FC1082176D7B1C3AA73C1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:78:c0:31:06:23:ce:7c:ea:90:b6:59:9c:35: d3:11:14:4c:97:56:98:96:d8:ec:2d:79:e1:8f:a4: f5:70:2a:a5:fc:a6:16:3e:26:c6:81:77:54:13:f1: 8e:de:51:07:42:97:16:8e:83:e9:9c:d7:de:00:66: de:09:7f:4f:6e:ed:f8:3c:bc:8a:f6:8f:68:49:f0: 65:7c:dc:d6:79:77:4d:ab:31:9e:90:fc:d2:ae:23: 30:03:5e:81:58:a2:49:2f:d7:85:a3:40:26:49:37: 39:5c:e8:17:55:94:bf:21:34:cc:aa:40:cc:cb:3c: 76:a6:1e:ee:2d:2d:0f:e6:9d:60:3f:1e:f5:97:65: bc:87:08:f7:4a:25:7e:8e:22:14:b7:5a:59:a0:27: 90:34:91:96:fd:95:cf:af:fe:e0:29:cd:a9:0a:ff: e4:d7:fa:21:f4:31:03:a2:c8:7d:97:ed:d4:96:82: 46:d0:af:cc:d6:8b:b1:4f:c2:d1:05:46:6a:d4:43: 9b:8b:44:51:0f:6d:75:d8:7e:dc:d3:12:59:41:8d: 6a:a4:b0:91:e6:5f:f7:d9:0a:d9:1a:30:20:29:2d: c8:64:bd:87:7b:b0:43:ae:7a:54:b8:6d:32:2e:4d: 87:1a:1d:8d:f0:d1:dd:41:b0:96:7d:f0:62:7b:45: bd:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:1D:85:B0:27:B9:AD:6D:73:4F:C1:08:21:76:D7:B1:C3:AA:73:C1 X509v3 Authority Key Identifier: keyid:B6:F1:32:23:21:41:2E:FD:04:1A:6C:2C:0B:29:7A:10:92:AA:BE:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/B6F1322321412EFD041A6C2C0B297A1092AABE6E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F1322321412EFD041A6C2C0B297A1092AABE6E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/323030313a6466313a373830303a3a2f34382d3438203d3e203538343837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df1:7800::/48 Signature Algorithm: sha256WithRSAEncryption 57:e1:36:8f:7c:e8:f8:25:01:5b:07:27:d0:fa:f0:09:32:a6: 2d:19:86:30:81:d7:b0:90:d1:c6:5d:a8:93:6b:42:85:90:f8: a7:c2:11:dc:5b:ec:c0:fa:6b:7f:5b:af:05:85:73:3c:83:71: 23:87:3d:84:1c:21:84:29:6c:fd:51:fd:d8:80:21:6a:79:e4: ef:99:8a:9d:84:d7:10:db:83:78:0a:99:41:3c:7b:c3:95:07: 06:f0:53:ee:06:4e:46:21:8b:6c:fa:cf:5c:27:cd:cb:09:0f: 07:3a:8c:92:80:3a:4f:13:17:31:c4:13:c8:1c:cc:e0:30:d5: 23:63:f8:9f:94:21:f0:b9:fc:a8:6a:33:0b:f3:94:6f:5f:32: 39:3b:3b:82:1c:33:4f:b1:0d:c2:57:24:c4:7c:21:be:60:ff: 49:5a:2d:30:0b:ea:0c:06:9c:f1:a4:9d:b3:7e:7c:b1:d7:07: 1e:b3:64:ca:32:2f:72:57:3b:9d:73:3c:57:96:01:54:66:95: 4c:76:78:b4:64:a8:a3:f3:ca:75:bc:09:a1:20:b9:83:6e:56: 5a:09:ad:78:f4:03:9d:66:6c:28:87:aa:04:f5:8a:e0:2a:6c: 7e:e6:1c:55:e5:3c:16:18:73:a7:75:69:7b:7f:0c:3a:7f:ef: 33:90:12:e6 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUQOXFvw/+PRbY2rWyw4AyYk++xSgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjZGMTMyMjMyMTQxMkVGRDA0MUE2QzJDMEIyOTdBMTA5 MkFBQkU2RTAeFw0yNTEwMjIwODU3MjdaFw0yNjEwMjEwOTAyMjdaMDMxMTAvBgNV BAMTKEQ0MUQ4NUIwMjdCOUFENkQ3MzRGQzEwODIxNzZEN0IxQzNBQTczQzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2eMAxBiPOfOqQtlmcNdMRFEyX VpiW2OwteeGPpPVwKqX8phY+JsaBd1QT8Y7eUQdClxaOg+mc194AZt4Jf09u7fg8 vIr2j2hJ8GV83NZ5d02rMZ6Q/NKuIzADXoFYokkv14WjQCZJNzlc6BdVlL8hNMyq QMzLPHamHu4tLQ/mnWA/HvWXZbyHCPdKJX6OIhS3WlmgJ5A0kZb9lc+v/uApzakK /+TX+iH0MQOiyH2X7dSWgkbQr8zWi7FPwtEFRmrUQ5uLRFEPbXXYftzTEllBjWqk sJHmX/fZCtkaMCApLchkvYd7sEOuelS4bTIuTYcaHY3w0d1BsJZ98GJ7Rb0bAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQU1B2FsCe5rW1zT8EIIXbXscOqc8EwHwYDVR0j BBgwFoAUtvEyIyFBLv0EGmwsCyl6EJKqvm4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZDhmMDYwZi1lNGIzLTRhNGUtOTdmZC1mNjFhYjE3ZGVlZWQvMC9CNkYxMzIyMzIx NDEyRUZEMDQxQTZDMkMwQjI5N0ExMDkyQUFCRTZFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjZGMTMyMjMyMTQxMkVGRDA0MUE2QzJDMEIyOTdBMTA5MkFB QkU2RS5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJkOGYwNjBmLWU0YjMtNGE0ZS05 N2ZkLWY2MWFiMTdkZWVlZC8wLzMyMzAzMDMxM2E2NDY2MzEzYTM3MzgzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzUzODM0MzgzNy5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACABDfF4 ADANBgkqhkiG9w0BAQsFAAOCAQEAV+E2j3zo+CUBWwcn0PrwCTKmLRmGMIHXsJDR xl2ok2tChZD4p8IR3FvswPprf1uvBYVzPINxI4c9hBwhhCls/VH92IAhannk75mK nYTXENuDeAqZQTx7w5UHBvBT7gZORiGLbPrPXCfNywkPBzqMkoA6TxMXMcQTyBzM 4DDVI2P4n5Qh8Ln8qGozC/OUb18yOTs7ghwzT7ENwlckxHwhvmD/SVotMAvqDAac 8aSds358sdcHHrNkyjIvclc7nXM8V5YBVGaVTHZ4tGSoo/PKdbwJoSC5g25WWgmt ePQDnWZsKIeqBPWK4CpsfuYcVeU8Fhhzp3Vpe38MOn/vM5AS5g== -----END CERTIFICATE-----Generated at Tue Nov 4 08:17:48 2025 by rpki-client