$ rpki-client -vvf repo-rpki.idnic.net/repo/862d4d74-6295-4496-823a-1e8a3d5bbb6c/0/323030313a6466313a646534303a3a2f34382d3438203d3e20313530353033.roa File: 323030313a6466313a646534303a3a2f34382d3438203d3e20313530353033.roa (raw, json) Hash identifier: 7LSMPL8vBB3tryB4W9V+LqRs1lcp8JLOw5O4E5oOPZ8= Subject key identifier: 35:52:E6:E6:68:E4:18:80:34:C2:72:DF:A7:BF:76:5D:0B:2B:A2:47 Certificate issuer: /CN=D175BDC5A6414CEBAB472DF9159CBD32BCCF91EA Certificate serial: 409EA68EA3FEF9F78DF625E11FC15958A7ABCD1C Authority key identifier: D1:75:BD:C5:A6:41:4C:EB:AB:47:2D:F9:15:9C:BD:32:BC:CF:91:EA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D175BDC5A6414CEBAB472DF9159CBD32BCCF91EA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/862d4d74-6295-4496-823a-1e8a3d5bbb6c/0/323030313a6466313a646534303a3a2f34382d3438203d3e20313530353033.roa Signing time: Mon 03 Nov 2025 06:01:23 +0000 ROA not before: Mon 03 Nov 2025 05:56:23 +0000 ROA not after: Mon 02 Nov 2026 06:01:23 +0000 asID: 150503 IP address blocks: 2001:df1:de40::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/862d4d74-6295-4496-823a-1e8a3d5bbb6c/0/D175BDC5A6414CEBAB472DF9159CBD32BCCF91EA.crl rsync://repo-rpki.idnic.net/repo/862d4d74-6295-4496-823a-1e8a3d5bbb6c/0/D175BDC5A6414CEBAB472DF9159CBD32BCCF91EA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D175BDC5A6414CEBAB472DF9159CBD32BCCF91EA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 06 Nov 2025 14:56:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:9e:a6:8e:a3:fe:f9:f7:8d:f6:25:e1:1f:c1:59:58:a7:ab:cd:1c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D175BDC5A6414CEBAB472DF9159CBD32BCCF91EA Validity Not Before: Nov 3 05:56:23 2025 GMT Not After : Nov 2 06:01:23 2026 GMT Subject: CN=3552E6E668E4188034C272DFA7BF765D0B2BA247 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:59:43:9d:66:9b:eb:45:a2:f8:2f:b0:f3:9d: 6e:90:be:cb:00:89:18:a2:5b:96:b9:d5:b2:de:04: 83:8b:35:74:a3:cf:10:22:fe:98:c4:b8:52:6f:82: 3f:53:69:ff:7e:00:dd:05:35:9d:b2:95:fc:5c:39: da:af:bb:33:3c:a4:c7:b8:7e:57:f4:a1:f8:20:ff: 93:d8:e8:21:3f:ca:5a:8b:ba:b4:ea:50:cd:eb:c2: ea:67:dd:83:3e:d6:4d:41:d2:f2:b9:f4:e1:d7:3b: 36:7b:a0:31:a0:08:6d:de:be:1c:29:22:40:1b:32: 82:87:0f:15:ca:1c:54:f4:eb:86:bb:76:68:4f:98: c6:cb:09:65:bd:0b:00:97:51:f5:83:a7:76:16:01: 8f:66:a4:fa:d0:08:3b:03:83:16:36:00:56:ca:e5: f8:1d:da:5b:81:8e:4c:45:da:a8:73:8c:79:69:92: b0:bd:17:23:33:01:c0:77:77:bd:bc:36:04:3c:b8: a7:c0:d3:ae:d0:d5:e3:27:36:a5:1b:aa:3f:4b:2a: bb:d5:bf:3f:3d:7a:19:07:7e:d6:9b:89:df:e2:d1: b1:6d:de:5f:48:9e:4e:0f:f2:2e:1f:a2:43:15:b9: 06:2c:c5:38:05:d8:9a:28:5e:8f:ee:d8:8c:18:33: b8:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:52:E6:E6:68:E4:18:80:34:C2:72:DF:A7:BF:76:5D:0B:2B:A2:47 X509v3 Authority Key Identifier: keyid:D1:75:BD:C5:A6:41:4C:EB:AB:47:2D:F9:15:9C:BD:32:BC:CF:91:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/862d4d74-6295-4496-823a-1e8a3d5bbb6c/0/D175BDC5A6414CEBAB472DF9159CBD32BCCF91EA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D175BDC5A6414CEBAB472DF9159CBD32BCCF91EA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/862d4d74-6295-4496-823a-1e8a3d5bbb6c/0/323030313a6466313a646534303a3a2f34382d3438203d3e20313530353033.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df1:de40::/48 Signature Algorithm: sha256WithRSAEncryption a7:da:ca:97:43:7a:b8:f6:69:a0:8f:c5:7e:db:51:dd:04:c2: c7:c2:ad:ae:ee:18:fe:e5:d8:ff:18:95:87:db:cb:8e:40:9d: eb:e6:8b:e3:2e:93:24:d5:2a:11:44:74:8a:52:6a:8b:f4:8a: ff:6b:6d:25:3a:ee:89:87:63:e9:a9:91:4c:49:87:73:ca:e5: 32:b8:d3:c8:e2:3d:d1:bd:24:c7:77:06:72:53:07:f8:c0:c6: b3:a0:db:a1:47:fa:72:f8:db:dc:ed:b2:19:bd:47:65:7d:49: 87:12:2e:9c:b7:6d:f8:eb:49:e4:4f:d5:e4:ec:9c:10:71:ca: fc:7b:8e:c2:51:f6:da:2f:08:2d:65:67:39:cf:81:d8:44:67: da:92:af:be:e4:f8:5f:38:40:55:4b:05:38:d6:8e:20:f1:05: 20:85:48:e4:f6:ab:8d:41:6e:a7:85:14:dd:24:dc:f6:8a:19: e3:25:6f:c5:00:ac:fd:18:3f:ce:0b:58:ed:c0:d9:54:d8:8a: 1e:03:e8:23:d0:9a:60:d2:bc:e2:64:97:cc:96:08:25:e7:12: b2:16:1e:f7:2f:e5:65:01:bb:9b:d4:e9:43:82:24:ea:55:77: ab:cb:53:2c:c8:45:99:8d:b5:89:91:00:ae:9e:84:ca:8d:fb: 71:91:0c:82 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUQJ6mjqP++feN9iXhH8FZWKerzRwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDE3NUJEQzVBNjQxNENFQkFCNDcyREY5MTU5Q0JEMzJC Q0NGOTFFQTAeFw0yNTExMDMwNTU2MjNaFw0yNjExMDIwNjAxMjNaMDMxMTAvBgNV BAMTKDM1NTJFNkU2NjhFNDE4ODAzNEMyNzJERkE3QkY3NjVEMEIyQkEyNDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtWUOdZpvrRaL4L7DznW6QvssA iRiiW5a51bLeBIOLNXSjzxAi/pjEuFJvgj9Taf9+AN0FNZ2ylfxcOdqvuzM8pMe4 flf0ofgg/5PY6CE/ylqLurTqUM3rwupn3YM+1k1B0vK59OHXOzZ7oDGgCG3evhwp IkAbMoKHDxXKHFT064a7dmhPmMbLCWW9CwCXUfWDp3YWAY9mpPrQCDsDgxY2AFbK 5fgd2luBjkxF2qhzjHlpkrC9FyMzAcB3d728NgQ8uKfA067Q1eMnNqUbqj9LKrvV vz89ehkHftabid/i0bFt3l9Ink4P8i4fokMVuQYsxTgF2JooXo/u2IwYM7gHAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUNVLm5mjkGIA0wnLfp792XQsrokcwHwYDVR0j BBgwFoAU0XW9xaZBTOurRy35FZy9MrzPkeowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NjJkNGQ3NC02Mjk1LTQ0OTYtODIzYS0xZThhM2Q1YmJiNmMvMC9EMTc1QkRDNUE2 NDE0Q0VCQUI0NzJERjkxNTlDQkQzMkJDQ0Y5MUVBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDE3NUJEQzVBNjQxNENFQkFCNDcyREY5MTU5Q0JEMzJCQ0NG OTFFQS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg2MmQ0ZDc0LTYyOTUtNDQ5Ni04 MjNhLTFlOGEzZDViYmI2Yy8wLzMyMzAzMDMxM2E2NDY2MzEzYTY0NjUzNDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNTMwMzUzMDMzLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8d5AMA0GCSqGSIb3DQEBCwUAA4IBAQCn2sqXQ3q49mmgj8V+21HdBMLHwq2u7hj+ 5dj/GJWH28uOQJ3r5ovjLpMk1SoRRHSKUmqL9Ir/a20lOu6Jh2PpqZFMSYdzyuUy uNPI4j3RvSTHdwZyUwf4wMazoNuhR/py+Nvc7bIZvUdlfUmHEi6ct23460nkT9Xk 7JwQccr8e47CUfbaLwgtZWc5z4HYRGfakq++5PhfOEBVSwU41o4g8QUghUjk9quN QW6nhRTdJNz2ihnjJW/FAKz9GD/OC1jtwNlU2IoeA+gj0Jpg0rziZJfMlggl5xKy Fh73L+VlAbub1OlDgiTqVXery1MsyEWZjbWJkQCunoTKjftxkQyC -----END CERTIFICATE-----Generated at Wed Nov 5 01:25:58 2025 by rpki-client