$ rpki-client -vvf repo-rpki.idnic.net/repo/925cda36-693a-4c1a-ba9e-e0e178112140/0/323430343a326363303a32303a3a2f34362d3436203d3e20313331373336.roa File: 323430343a326363303a32303a3a2f34362d3436203d3e20313331373336.roa (raw, json) Hash identifier: AL79go4QRK47TgrAmtQGB5fYfJRAvCqPrZVQAqwDWT4= Subject key identifier: 37:A2:3F:35:A4:B5:32:E2:DE:77:1A:FA:D9:99:55:09:42:1E:6B:A7 Certificate issuer: /CN=DF8EF2994CB54209F2C2A39A7BCE7DA0D9C34E4A Certificate serial: 7D466169D3398777B1FE36FD221480D41FBB6FD0 Authority key identifier: DF:8E:F2:99:4C:B5:42:09:F2:C2:A3:9A:7B:CE:7D:A0:D9:C3:4E:4A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DF8EF2994CB54209F2C2A39A7BCE7DA0D9C34E4A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/925cda36-693a-4c1a-ba9e-e0e178112140/0/323430343a326363303a32303a3a2f34362d3436203d3e20313331373336.roa Signing time: Tue 22 Jul 2025 09:56:49 +0000 ROA not before: Tue 22 Jul 2025 09:51:49 +0000 ROA not after: Tue 21 Jul 2026 09:56:49 +0000 asID: 131736 IP address blocks: 2404:2cc0:20::/46 maxlen: 46 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/925cda36-693a-4c1a-ba9e-e0e178112140/0/DF8EF2994CB54209F2C2A39A7BCE7DA0D9C34E4A.crl rsync://repo-rpki.idnic.net/repo/925cda36-693a-4c1a-ba9e-e0e178112140/0/DF8EF2994CB54209F2C2A39A7BCE7DA0D9C34E4A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DF8EF2994CB54209F2C2A39A7BCE7DA0D9C34E4A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Nov 2025 11:15:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:46:61:69:d3:39:87:77:b1:fe:36:fd:22:14:80:d4:1f:bb:6f:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DF8EF2994CB54209F2C2A39A7BCE7DA0D9C34E4A Validity Not Before: Jul 22 09:51:49 2025 GMT Not After : Jul 21 09:56:49 2026 GMT Subject: CN=37A23F35A4B532E2DE771AFAD9995509421E6BA7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:7c:be:15:90:a9:4b:6f:77:2b:b6:23:80:4b: b4:59:5c:13:03:76:c3:53:e1:67:a0:57:01:86:d9: 3c:d6:09:d0:38:df:21:92:06:0d:a8:77:7e:c2:de: 0d:b3:52:b4:e1:16:cc:0d:5c:16:cf:4a:bf:86:a1: 8b:41:1c:79:4e:01:5c:cd:38:a3:a1:16:46:b5:8d: 0f:27:62:9c:e6:7d:a5:b0:06:2e:e6:79:bd:aa:4c: 09:11:b8:91:f0:c6:67:80:29:27:ba:c7:e6:11:43: f5:c9:09:c8:32:36:dd:67:bb:3e:2d:a7:2e:87:65: 5f:a9:06:89:7a:75:93:03:f2:eb:a7:9d:24:ce:aa: b6:cc:0c:6b:79:a1:e6:45:f5:98:95:af:fb:02:12: 60:bd:2b:92:c2:ba:21:54:fc:15:90:7e:4a:25:84: 59:a3:ce:2b:9a:56:ba:f3:2f:83:01:3e:50:f3:c7: 3d:24:93:72:8a:d2:ae:e1:47:eb:73:51:2a:3f:98: 93:f4:3b:3b:70:45:6e:7b:a9:4d:35:fe:92:ad:ed: 39:2a:bf:63:ce:dd:9e:84:2c:49:9f:36:30:03:4d: 1b:da:9c:04:1b:d4:dc:b4:24:be:4c:f3:58:43:f9: a5:26:e0:57:3e:a3:88:1c:32:e2:3a:48:1f:38:ce: ee:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:A2:3F:35:A4:B5:32:E2:DE:77:1A:FA:D9:99:55:09:42:1E:6B:A7 X509v3 Authority Key Identifier: keyid:DF:8E:F2:99:4C:B5:42:09:F2:C2:A3:9A:7B:CE:7D:A0:D9:C3:4E:4A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/925cda36-693a-4c1a-ba9e-e0e178112140/0/DF8EF2994CB54209F2C2A39A7BCE7DA0D9C34E4A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DF8EF2994CB54209F2C2A39A7BCE7DA0D9C34E4A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/925cda36-693a-4c1a-ba9e-e0e178112140/0/323430343a326363303a32303a3a2f34362d3436203d3e20313331373336.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:2cc0:20::/46 Signature Algorithm: sha256WithRSAEncryption 3d:78:6c:1f:ce:de:0a:0f:62:cc:17:9c:a9:44:13:52:e3:e1: 50:fa:c4:65:03:a2:a2:17:45:10:6d:7e:4b:00:26:eb:81:6f: 4d:7f:2d:04:1f:88:c4:a2:7c:ea:b8:00:c6:a1:71:f1:75:1c: 31:02:3c:2e:c4:b9:e3:95:c7:5b:bb:b9:d7:b2:5b:02:28:4a: 2e:93:be:d2:9e:a4:3d:2f:b2:c4:96:17:4e:58:bf:27:3c:2c: 12:b3:79:3d:13:d1:27:58:dc:4d:ff:3b:36:2b:df:c0:4c:e7: 91:cd:94:4c:f4:8e:73:f4:6a:e7:f7:c1:cd:cb:f3:1e:66:77: ef:28:f8:d0:95:a8:e4:6a:4b:d1:9b:eb:c0:e0:90:06:8e:0e: dc:dc:43:27:42:4b:25:f1:f2:9d:0e:4e:17:5c:e6:45:2e:78: 38:09:b5:e8:2e:b8:af:dd:e0:fe:87:ed:fe:60:81:81:d4:f1: 18:ba:c1:e3:e1:49:2d:55:30:99:b2:12:68:af:ab:45:44:8a: 5b:73:4e:ff:05:1d:00:95:6d:ef:cf:d7:15:33:ff:44:5d:a9: 88:4a:87:4b:ef:72:26:33:12:2c:68:67:cd:54:a4:c2:fd:19: cf:3b:b7:d5:f4:f2:83:28:22:27:c2:89:4f:97:31:a7:a7:59: 04:88:11:2c -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUfUZhadM5h3ex/jb9IhSA1B+7b9AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREY4RUYyOTk0Q0I1NDIwOUYyQzJBMzlBN0JDRTdEQTBE OUMzNEU0QTAeFw0yNTA3MjIwOTUxNDlaFw0yNjA3MjEwOTU2NDlaMDMxMTAvBgNV BAMTKDM3QTIzRjM1QTRCNTMyRTJERTc3MUFGQUQ5OTk1NTA5NDIxRTZCQTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDofL4VkKlLb3crtiOAS7RZXBMD dsNT4WegVwGG2TzWCdA43yGSBg2od37C3g2zUrThFswNXBbPSr+GoYtBHHlOAVzN OKOhFka1jQ8nYpzmfaWwBi7meb2qTAkRuJHwxmeAKSe6x+YRQ/XJCcgyNt1nuz4t py6HZV+pBol6dZMD8uunnSTOqrbMDGt5oeZF9ZiVr/sCEmC9K5LCuiFU/BWQfkol hFmjziuaVrrzL4MBPlDzxz0kk3KK0q7hR+tzUSo/mJP0OztwRW57qU01/pKt7Tkq v2PO3Z6ELEmfNjADTRvanAQb1Ny0JL5M81hD+aUm4Fc+o4gcMuI6SB84zu7HAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUN6I/NaS1MuLedxr62ZlVCUIea6cwHwYDVR0j BBgwFoAU347ymUy1QgnywqOae859oNnDTkowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 MjVjZGEzNi02OTNhLTRjMWEtYmE5ZS1lMGUxNzgxMTIxNDAvMC9ERjhFRjI5OTRD QjU0MjA5RjJDMkEzOUE3QkNFN0RBMEQ5QzM0RTRBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREY4RUYyOTk0Q0I1NDIwOUYyQzJBMzlBN0JDRTdEQTBEOUMz NEU0QS5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzkyNWNkYTM2LTY5M2EtNGMxYS1i YTllLWUwZTE3ODExMjE0MC8wLzMyMzQzMDM0M2EzMjYzNjMzMDNhMzIzMDNhM2Ey ZjM0MzYyZDM0MzYyMDNkM2UyMDMxMzMzMTM3MzMzNi5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHAiQELMAA IDANBgkqhkiG9w0BAQsFAAOCAQEAPXhsH87eCg9izBecqUQTUuPhUPrEZQOiohdF EG1+SwAm64FvTX8tBB+IxKJ86rgAxqFx8XUcMQI8LsS545XHW7u517JbAihKLpO+ 0p6kPS+yxJYXTli/JzwsErN5PRPRJ1jcTf87NivfwEznkc2UTPSOc/Rq5/fBzcvz HmZ37yj40JWo5GpL0ZvrwOCQBo4O3NxDJ0JLJfHynQ5OF1zmRS54OAm16C64r93g /oft/mCBgdTxGLrB4+FJLVUwmbISaK+rRUSKW3NO/wUdAJVt78/XFTP/RF2piEqH S+9yJjMSLGhnzVSkwv0Zzzu31fTygygiJ8KJT5cxp6dZBIgRLA== -----END CERTIFICATE-----Generated at Wed Nov 5 10:28:35 2025 by rpki-client