$ rpki-client -vvf repo-rpki.idnic.net/repo/925cda36-693a-4c1a-ba9e-e0e178112140/0/323430343a326363303a32343a3a2f34362d3436203d3e20313331373336.roa File: 323430343a326363303a32343a3a2f34362d3436203d3e20313331373336.roa (raw, json) Hash identifier: pNNOikD6VzRUPv7yZG6Cg3KiGof++IQqkIf9l+Tqx7M= Subject key identifier: 62:45:E2:BD:3B:37:EA:14:E9:7A:3E:9C:24:54:44:26:E6:96:FE:5E Certificate issuer: /CN=DF8EF2994CB54209F2C2A39A7BCE7DA0D9C34E4A Certificate serial: 6FC8F2D5804186C70B9452542626C14C519881DD Authority key identifier: DF:8E:F2:99:4C:B5:42:09:F2:C2:A3:9A:7B:CE:7D:A0:D9:C3:4E:4A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DF8EF2994CB54209F2C2A39A7BCE7DA0D9C34E4A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/925cda36-693a-4c1a-ba9e-e0e178112140/0/323430343a326363303a32343a3a2f34362d3436203d3e20313331373336.roa Signing time: Tue 22 Jul 2025 09:57:14 +0000 ROA not before: Tue 22 Jul 2025 09:52:14 +0000 ROA not after: Tue 21 Jul 2026 09:57:14 +0000 asID: 131736 IP address blocks: 2404:2cc0:24::/46 maxlen: 46 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/925cda36-693a-4c1a-ba9e-e0e178112140/0/DF8EF2994CB54209F2C2A39A7BCE7DA0D9C34E4A.crl rsync://repo-rpki.idnic.net/repo/925cda36-693a-4c1a-ba9e-e0e178112140/0/DF8EF2994CB54209F2C2A39A7BCE7DA0D9C34E4A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DF8EF2994CB54209F2C2A39A7BCE7DA0D9C34E4A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Nov 2025 11:15:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:c8:f2:d5:80:41:86:c7:0b:94:52:54:26:26:c1:4c:51:98:81:dd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DF8EF2994CB54209F2C2A39A7BCE7DA0D9C34E4A Validity Not Before: Jul 22 09:52:14 2025 GMT Not After : Jul 21 09:57:14 2026 GMT Subject: CN=6245E2BD3B37EA14E97A3E9C24544426E696FE5E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:48:77:32:f6:20:da:97:5d:d7:18:6f:58:01: 82:cd:8e:c3:9f:a0:f8:48:92:30:b7:97:c4:32:53: fe:e2:75:db:fb:f3:db:d5:a0:67:6e:fb:06:ad:a2: 09:8e:ac:ce:bf:af:52:28:8c:99:10:c6:eb:ac:ea: a0:8e:70:be:ab:aa:35:ee:08:a6:bb:97:b2:eb:25: 9d:ea:ee:11:8c:9a:aa:89:b6:38:ff:f0:a3:07:f4: 1d:b7:62:47:5f:2e:d6:13:e4:a5:e1:fa:60:98:6d: ad:26:5d:ed:c4:bc:ac:85:39:99:f1:cd:f9:54:7d: 19:d1:a7:df:90:02:52:c9:c8:58:1a:01:5f:c7:86: 14:5f:dc:be:e9:a6:8f:2d:5e:db:0b:ab:d4:2c:76: 46:0d:d0:c9:99:13:4c:7f:3f:07:41:88:a1:ef:22: b7:87:65:0c:9d:c1:fa:40:00:79:5c:fc:3f:a9:54: 67:c4:ed:90:4f:05:be:d9:77:ea:c6:91:14:6c:ab: 36:de:05:8e:86:05:21:fa:87:70:0d:6f:f5:1a:3b: 57:92:74:84:da:91:30:71:39:2f:87:78:d8:47:03: a3:9d:19:02:cb:04:7d:e1:2f:78:f4:16:63:7d:35: c5:9f:cc:b4:cf:17:3e:d8:30:ea:01:e6:45:65:a4: f3:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:45:E2:BD:3B:37:EA:14:E9:7A:3E:9C:24:54:44:26:E6:96:FE:5E X509v3 Authority Key Identifier: keyid:DF:8E:F2:99:4C:B5:42:09:F2:C2:A3:9A:7B:CE:7D:A0:D9:C3:4E:4A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/925cda36-693a-4c1a-ba9e-e0e178112140/0/DF8EF2994CB54209F2C2A39A7BCE7DA0D9C34E4A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DF8EF2994CB54209F2C2A39A7BCE7DA0D9C34E4A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/925cda36-693a-4c1a-ba9e-e0e178112140/0/323430343a326363303a32343a3a2f34362d3436203d3e20313331373336.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:2cc0:24::/46 Signature Algorithm: sha256WithRSAEncryption c9:ea:fa:42:bd:31:3b:57:18:78:b4:e5:80:68:99:3a:38:d3: 4c:3a:54:8d:f1:4e:ec:fc:68:c2:1b:b8:e5:35:c6:4d:e3:f0: 3b:ba:82:e5:23:9f:6d:30:fd:73:43:69:1d:ae:d6:3c:0a:de: 15:86:74:81:77:36:b0:50:05:47:0a:92:2e:7f:0c:20:fa:20: a9:93:5d:f0:c7:47:26:e9:08:71:a2:62:dc:e4:3a:14:57:ae: be:99:d5:a9:27:1e:fa:98:ee:9a:4a:90:b3:47:2e:e5:fe:96: ff:1a:a5:d6:9b:b2:da:58:6d:b3:c9:84:ce:54:ae:62:31:01: 1e:f8:bf:6c:c9:a0:5c:a9:8b:ce:71:36:6a:bd:86:e4:b0:3e: 2e:2d:3a:19:1a:b6:53:8e:3c:ff:16:f0:0b:57:b6:53:09:d3: 88:b8:18:70:62:b0:28:d8:e4:fc:cd:bf:1c:03:27:d3:a1:ba: 47:8b:d0:1f:bd:42:3c:d3:46:d5:87:9c:7e:94:4d:8a:75:18: 73:07:85:d9:31:6f:c6:d9:34:77:bb:57:5d:86:76:9d:6e:7b: 35:2e:c9:5f:ec:6e:5f:b6:c7:59:99:b5:75:22:9e:28:6d:b9: 69:eb:b0:f5:90:c5:e3:cd:33:bb:8e:04:ce:ce:86:3e:c8:2a: 9b:ff:5b:c5 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUb8jy1YBBhscLlFJUJibBTFGYgd0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREY4RUYyOTk0Q0I1NDIwOUYyQzJBMzlBN0JDRTdEQTBE OUMzNEU0QTAeFw0yNTA3MjIwOTUyMTRaFw0yNjA3MjEwOTU3MTRaMDMxMTAvBgNV BAMTKDYyNDVFMkJEM0IzN0VBMTRFOTdBM0U5QzI0NTQ0NDI2RTY5NkZFNUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDSHcy9iDal13XGG9YAYLNjsOf oPhIkjC3l8QyU/7iddv789vVoGdu+watogmOrM6/r1IojJkQxuus6qCOcL6rqjXu CKa7l7LrJZ3q7hGMmqqJtjj/8KMH9B23YkdfLtYT5KXh+mCYba0mXe3EvKyFOZnx zflUfRnRp9+QAlLJyFgaAV/HhhRf3L7ppo8tXtsLq9QsdkYN0MmZE0x/PwdBiKHv IreHZQydwfpAAHlc/D+pVGfE7ZBPBb7Zd+rGkRRsqzbeBY6GBSH6h3ANb/UaO1eS dITakTBxOS+HeNhHA6OdGQLLBH3hL3j0FmN9NcWfzLTPFz7YMOoB5kVlpPMbAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUYkXivTs36hTpej6cJFREJuaW/l4wHwYDVR0j BBgwFoAU347ymUy1QgnywqOae859oNnDTkowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 MjVjZGEzNi02OTNhLTRjMWEtYmE5ZS1lMGUxNzgxMTIxNDAvMC9ERjhFRjI5OTRD QjU0MjA5RjJDMkEzOUE3QkNFN0RBMEQ5QzM0RTRBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREY4RUYyOTk0Q0I1NDIwOUYyQzJBMzlBN0JDRTdEQTBEOUMz NEU0QS5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzkyNWNkYTM2LTY5M2EtNGMxYS1i YTllLWUwZTE3ODExMjE0MC8wLzMyMzQzMDM0M2EzMjYzNjMzMDNhMzIzNDNhM2Ey ZjM0MzYyZDM0MzYyMDNkM2UyMDMxMzMzMTM3MzMzNi5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHAiQELMAA JDANBgkqhkiG9w0BAQsFAAOCAQEAyer6Qr0xO1cYeLTlgGiZOjjTTDpUjfFO7Pxo whu45TXGTePwO7qC5SOfbTD9c0NpHa7WPAreFYZ0gXc2sFAFRwqSLn8MIPogqZNd 8MdHJukIcaJi3OQ6FFeuvpnVqSce+pjumkqQs0cu5f6W/xql1puy2lhts8mEzlSu YjEBHvi/bMmgXKmLznE2ar2G5LA+Li06GRq2U448/xbwC1e2UwnTiLgYcGKwKNjk /M2/HAMn06G6R4vQH71CPNNG1YecfpRNinUYcweF2TFvxtk0d7tXXYZ2nW57NS7J X+xuX7bHWZm1dSKeKG25aeuw9ZDF480zu44Ezs6GPsgqm/9bxQ== -----END CERTIFICATE-----Generated at Tue Nov 4 21:33:20 2025 by rpki-client