$ rpki-client -vvf repo-rpki.idnic.net/repo/690c9009-ad53-4fa6-a183-34b3457bea03/0/323430333a373230303a3a2f33322d3438203d3e2039373835.roa File: 323430333a373230303a3a2f33322d3438203d3e2039373835.roa (raw, json) Hash identifier: CtyzufwtsM1OsMWgnYCmXW6JoR/5zQKHjokkqsxGYYM= Subject key identifier: FF:76:6F:17:4F:D9:C0:F2:AA:AB:8C:BF:DC:C6:A4:C3:CE:99:23:D4 Certificate issuer: /CN=BF3B675AEBEE64D00B323056545D1F630F1C489E Certificate serial: 0E1C59955F7B101352C6321F4C801DCBA0ECFB00 Authority key identifier: BF:3B:67:5A:EB:EE:64:D0:0B:32:30:56:54:5D:1F:63:0F:1C:48:9E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BF3B675AEBEE64D00B323056545D1F630F1C489E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/690c9009-ad53-4fa6-a183-34b3457bea03/0/323430333a373230303a3a2f33322d3438203d3e2039373835.roa Signing time: Mon 02 Jun 2025 02:04:51 +0000 ROA not before: Mon 02 Jun 2025 01:59:51 +0000 ROA not after: Mon 01 Jun 2026 02:04:51 +0000 asID: 9785 IP address blocks: 2403:7200::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/690c9009-ad53-4fa6-a183-34b3457bea03/0/BF3B675AEBEE64D00B323056545D1F630F1C489E.crl rsync://repo-rpki.idnic.net/repo/690c9009-ad53-4fa6-a183-34b3457bea03/0/BF3B675AEBEE64D00B323056545D1F630F1C489E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BF3B675AEBEE64D00B323056545D1F630F1C489E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Nov 2025 05:01:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:1c:59:95:5f:7b:10:13:52:c6:32:1f:4c:80:1d:cb:a0:ec:fb:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BF3B675AEBEE64D00B323056545D1F630F1C489E Validity Not Before: Jun 2 01:59:51 2025 GMT Not After : Jun 1 02:04:51 2026 GMT Subject: CN=FF766F174FD9C0F2AAAB8CBFDCC6A4C3CE9923D4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:c1:f0:c4:de:66:da:a9:4d:dd:87:9e:71:f5: b1:81:b4:67:56:70:28:8e:74:45:de:a0:9a:3f:6e: d8:bf:e9:06:d9:f8:2f:12:32:1f:84:20:84:66:5b: b8:6c:f4:06:26:d9:6d:2b:8f:c6:e3:ba:2f:fb:5d: 15:a9:f0:43:29:f7:d1:c2:12:55:26:68:5d:e7:35: 5a:0b:53:48:fa:cb:da:0d:23:a0:fb:cb:63:72:d4: 4f:40:ed:10:79:34:9b:d5:60:76:ee:6b:8c:82:8b: f1:ee:b9:cb:4b:41:ce:53:b3:93:43:a6:85:16:9f: ae:b0:fb:1d:04:35:68:ba:8e:47:47:48:4f:be:ca: 20:09:d0:dd:0c:cb:61:bb:52:83:df:4c:94:fe:66: 1c:69:1e:d8:5a:13:81:17:ec:e2:ef:5c:a3:5b:f3: fe:32:dd:11:f8:d1:d2:61:79:3b:cd:ae:29:ef:7f: 4c:73:55:bb:a0:25:85:f4:a3:81:dd:d3:4a:f5:a3: 17:ae:61:7d:97:92:ee:65:70:9b:1e:12:d8:02:91: a2:89:c4:a2:9e:69:d6:b2:14:50:a9:6b:91:52:89: d5:63:19:8c:87:8a:fa:c3:2b:fd:45:02:75:42:fe: ee:8b:25:6c:c6:45:9a:21:2a:fe:12:aa:d2:de:26: 74:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:76:6F:17:4F:D9:C0:F2:AA:AB:8C:BF:DC:C6:A4:C3:CE:99:23:D4 X509v3 Authority Key Identifier: keyid:BF:3B:67:5A:EB:EE:64:D0:0B:32:30:56:54:5D:1F:63:0F:1C:48:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/690c9009-ad53-4fa6-a183-34b3457bea03/0/BF3B675AEBEE64D00B323056545D1F630F1C489E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BF3B675AEBEE64D00B323056545D1F630F1C489E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/690c9009-ad53-4fa6-a183-34b3457bea03/0/323430333a373230303a3a2f33322d3438203d3e2039373835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:7200::/32 Signature Algorithm: sha256WithRSAEncryption 65:08:1b:f7:b5:9b:de:71:8a:c4:c4:6a:12:16:48:f4:1e:00: 59:38:f6:6c:8d:a4:e5:7b:ee:b9:19:c1:13:14:1c:c8:d3:16: 30:71:93:aa:1b:65:23:09:14:59:f3:6b:8c:de:e1:07:b1:03: 7e:72:da:38:bd:c1:ba:52:a7:b2:19:5d:91:ca:ea:68:13:30: f8:80:9d:72:ba:df:af:9a:35:a7:5a:c8:21:24:7b:bd:8b:88: 99:2b:b0:52:3b:33:19:96:6c:55:eb:0e:35:81:3c:e6:c8:bd: c3:87:dc:78:35:5f:a2:9d:99:b5:65:24:10:89:95:7f:3c:be: b2:0c:ee:f3:05:3d:46:45:e1:f4:6e:de:dd:fd:55:0e:a2:a6: 3b:c7:56:37:c5:96:64:4b:a4:9a:5e:f8:79:59:94:4c:e9:8c: 57:fd:a7:cb:fc:42:0d:4e:56:76:ec:dd:4d:e9:e5:ee:ac:8d: d8:69:96:85:3c:ce:7c:a3:a2:3a:3f:3d:74:a1:9d:96:40:49: 40:d2:51:8f:e3:11:fe:52:cd:be:e1:24:48:08:c7:07:10:d2: 52:b1:7a:fc:f2:5b:ca:9e:2d:5c:c3:20:d2:fc:df:21:6a:39: 3e:7f:1f:85:b5:55:ea:81:e0:3d:53:66:bd:dd:b3:bc:79:6c: d5:09:0c:5f -----BEGIN CERTIFICATE----- MIIFJDCCBAygAwIBAgIUDhxZlV97EBNSxjIfTIAdy6Ds+wAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkYzQjY3NUFFQkVFNjREMDBCMzIzMDU2NTQ1RDFGNjMw RjFDNDg5RTAeFw0yNTA2MDIwMTU5NTFaFw0yNjA2MDEwMjA0NTFaMDMxMTAvBgNV BAMTKEZGNzY2RjE3NEZEOUMwRjJBQUFCOENCRkRDQzZBNEMzQ0U5OTIzRDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxwfDE3mbaqU3dh55x9bGBtGdW cCiOdEXeoJo/bti/6QbZ+C8SMh+EIIRmW7hs9AYm2W0rj8bjui/7XRWp8EMp99HC ElUmaF3nNVoLU0j6y9oNI6D7y2Ny1E9A7RB5NJvVYHbua4yCi/HuuctLQc5Ts5ND poUWn66w+x0ENWi6jkdHSE++yiAJ0N0My2G7UoPfTJT+ZhxpHthaE4EX7OLvXKNb 8/4y3RH40dJheTvNrinvf0xzVbugJYX0o4Hd00r1oxeuYX2Xku5lcJseEtgCkaKJ xKKeadayFFCpa5FSidVjGYyHivrDK/1FAnVC/u6LJWzGRZohKv4SqtLeJnQZAgMB AAGjggIuMIICKjAdBgNVHQ4EFgQU/3ZvF0/ZwPKqq4y/3Makw86ZI9QwHwYDVR0j BBgwFoAUvztnWuvuZNALMjBWVF0fYw8cSJ4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 OTBjOTAwOS1hZDUzLTRmYTYtYTE4My0zNGIzNDU3YmVhMDMvMC9CRjNCNjc1QUVC RUU2NEQwMEIzMjMwNTY1NDVEMUY2MzBGMUM0ODlFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkYzQjY3NUFFQkVFNjREMDBCMzIzMDU2NTQ1RDFGNjMwRjFD NDg5RS5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNjkwYzkwMDktYWQ1My00ZmE2LWEx ODMtMzRiMzQ1N2JlYTAzLzAvMzIzNDMwMzMzYTM3MzIzMDMwM2EzYTJmMzMzMjJk MzQzODIwM2QzZTIwMzkzNzM4MzUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkA3IAMA0GCSqGSIb3DQEB CwUAA4IBAQBlCBv3tZvecYrExGoSFkj0HgBZOPZsjaTle+65GcETFBzI0xYwcZOq G2UjCRRZ82uM3uEHsQN+cto4vcG6UqeyGV2RyupoEzD4gJ1yut+vmjWnWsghJHu9 i4iZK7BSOzMZlmxV6w41gTzmyL3Dh9x4NV+inZm1ZSQQiZV/PL6yDO7zBT1GReH0 bt7d/VUOoqY7x1Y3xZZkS6SaXvh5WZRM6YxX/afL/EINTlZ27N1N6eXurI3YaZaF PM58o6I6Pz10oZ2WQElA0lGP4xH+Us2+4SRICMcHENJSsXr88lvKni1cwyDS/N8h ajk+fx+FtVXqgeA9U2a93bO8eWzVCQxf -----END CERTIFICATE-----Generated at Wed Nov 5 11:51:58 2025 by rpki-client