$ rpki-client -vvf repo-rpki.idnic.net/repo/925cda36-693a-4c1a-ba9e-e0e178112140/0/323430343a326363303a3a2f34332d3433203d3e20313331373336.roa File: 323430343a326363303a3a2f34332d3433203d3e20313331373336.roa (raw, json) Hash identifier: FOu7z+lFtPq+cQCxDqirVfbm+xQEfu1NcMOm+058Mco= Subject key identifier: BC:0C:75:6E:6B:E4:3A:89:76:4C:3D:74:30:65:98:DC:76:35:AB:32 Certificate issuer: /CN=DF8EF2994CB54209F2C2A39A7BCE7DA0D9C34E4A Certificate serial: 07F031EB1FBBF67F158F944AB78C266BAF184E3E Authority key identifier: DF:8E:F2:99:4C:B5:42:09:F2:C2:A3:9A:7B:CE:7D:A0:D9:C3:4E:4A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DF8EF2994CB54209F2C2A39A7BCE7DA0D9C34E4A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/925cda36-693a-4c1a-ba9e-e0e178112140/0/323430343a326363303a3a2f34332d3433203d3e20313331373336.roa Signing time: Tue 22 Jul 2025 06:44:10 +0000 ROA not before: Tue 22 Jul 2025 06:39:10 +0000 ROA not after: Tue 21 Jul 2026 06:44:10 +0000 asID: 131736 IP address blocks: 2404:2cc0::/43 maxlen: 43 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/925cda36-693a-4c1a-ba9e-e0e178112140/0/DF8EF2994CB54209F2C2A39A7BCE7DA0D9C34E4A.crl rsync://repo-rpki.idnic.net/repo/925cda36-693a-4c1a-ba9e-e0e178112140/0/DF8EF2994CB54209F2C2A39A7BCE7DA0D9C34E4A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DF8EF2994CB54209F2C2A39A7BCE7DA0D9C34E4A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Nov 2025 11:15:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:f0:31:eb:1f:bb:f6:7f:15:8f:94:4a:b7:8c:26:6b:af:18:4e:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DF8EF2994CB54209F2C2A39A7BCE7DA0D9C34E4A Validity Not Before: Jul 22 06:39:10 2025 GMT Not After : Jul 21 06:44:10 2026 GMT Subject: CN=BC0C756E6BE43A89764C3D74306598DC7635AB32 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:db:26:59:fa:2a:4e:cc:5b:36:d5:85:08:1d: f7:32:28:ca:37:e5:22:c9:c1:30:b7:b8:eb:ee:95: 37:04:20:ad:8f:c1:7a:0a:70:72:42:99:8b:d7:d0: bd:f3:d5:53:8e:00:00:f8:b8:d5:3b:7e:f5:fc:10: 6b:be:d4:bb:9a:02:de:00:7a:8b:fd:9c:fa:60:75: 56:5f:98:36:1f:c6:d9:e1:a8:74:5f:68:51:8f:b5: d1:ff:c2:6b:10:00:8a:e3:9f:43:1c:85:43:9c:3f: ff:47:2a:8d:f1:35:ee:e5:4f:57:4b:b0:af:9d:2c: 1f:62:27:05:19:fd:52:08:b6:b9:22:df:fc:f6:8f: fb:15:59:65:55:e5:ab:53:2f:81:5c:37:c6:c9:23: 3f:88:45:cd:fd:0e:36:1a:26:d9:5a:9d:98:fc:bc: 1d:37:25:04:a9:eb:5e:a0:db:fa:47:cc:0d:01:97: da:6d:ec:7d:19:82:ac:69:6a:c3:dd:91:08:21:c1: 70:42:aa:6b:e9:1c:d6:99:cb:9d:2a:d1:ed:a9:95: d0:c9:5f:bf:a5:b5:ec:c8:2d:12:ba:91:9c:7d:ba: 37:58:54:1b:13:e0:1d:de:5d:b9:9b:48:37:06:e2: 0f:2b:b1:3c:db:41:e6:9d:a6:91:00:b9:1d:f7:f7: 97:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:0C:75:6E:6B:E4:3A:89:76:4C:3D:74:30:65:98:DC:76:35:AB:32 X509v3 Authority Key Identifier: keyid:DF:8E:F2:99:4C:B5:42:09:F2:C2:A3:9A:7B:CE:7D:A0:D9:C3:4E:4A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/925cda36-693a-4c1a-ba9e-e0e178112140/0/DF8EF2994CB54209F2C2A39A7BCE7DA0D9C34E4A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DF8EF2994CB54209F2C2A39A7BCE7DA0D9C34E4A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/925cda36-693a-4c1a-ba9e-e0e178112140/0/323430343a326363303a3a2f34332d3433203d3e20313331373336.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:2cc0::/43 Signature Algorithm: sha256WithRSAEncryption c6:4b:3e:31:30:dc:82:b4:2e:23:07:db:ae:80:b1:eb:00:af: 30:9b:68:c2:e7:3c:2e:88:56:a9:11:3d:1b:dc:be:d6:8b:06: ed:01:2d:8b:2f:af:09:08:e6:81:f4:22:76:de:dd:e3:a6:8f: 29:6d:4b:15:a1:5d:08:42:79:8c:ab:91:25:32:32:88:97:1f: 96:1d:de:9b:bc:18:55:4b:5e:ba:97:0b:bf:92:e3:88:7e:47: d5:64:2b:e0:d4:e5:9a:b4:34:e7:ab:dc:8d:66:fb:6f:fa:a6: f1:53:3c:43:48:ab:7e:af:fd:d1:ce:e8:94:aa:6b:c2:0e:be: 13:f2:cf:29:50:f0:87:1d:b2:93:05:da:85:70:74:be:11:c9: ff:1c:51:25:ce:ff:aa:09:36:14:b2:4f:1f:bd:63:79:1b:82: 47:27:2a:34:07:41:c4:15:ae:00:20:07:06:58:46:09:ea:da: e4:70:13:cc:f1:c3:57:c7:fc:af:6d:ae:44:05:a0:6b:81:f8: 45:a9:fe:42:67:dd:ff:9b:47:25:81:ff:fb:4f:f2:ac:70:65: 72:39:37:24:1f:c3:ec:c6:10:ec:d7:27:1c:40:92:bc:f8:98: 72:3a:8b:bc:15:10:90:7e:c1:29:41:25:4b:56:c3:32:1f:33: 51:af:8b:2b -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgIUB/Ax6x+79n8Vj5RKt4wma68YTj4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREY4RUYyOTk0Q0I1NDIwOUYyQzJBMzlBN0JDRTdEQTBE OUMzNEU0QTAeFw0yNTA3MjIwNjM5MTBaFw0yNjA3MjEwNjQ0MTBaMDMxMTAvBgNV BAMTKEJDMEM3NTZFNkJFNDNBODk3NjRDM0Q3NDMwNjU5OERDNzYzNUFCMzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDd2yZZ+ipOzFs21YUIHfcyKMo3 5SLJwTC3uOvulTcEIK2PwXoKcHJCmYvX0L3z1VOOAAD4uNU7fvX8EGu+1LuaAt4A eov9nPpgdVZfmDYfxtnhqHRfaFGPtdH/wmsQAIrjn0MchUOcP/9HKo3xNe7lT1dL sK+dLB9iJwUZ/VIItrki3/z2j/sVWWVV5atTL4FcN8bJIz+IRc39DjYaJtlanZj8 vB03JQSp616g2/pHzA0Bl9pt7H0ZgqxpasPdkQghwXBCqmvpHNaZy50q0e2pldDJ X7+ltezILRK6kZx9ujdYVBsT4B3eXbmbSDcG4g8rsTzbQeadppEAuR3395f/AgMB AAGjggI1MIICMTAdBgNVHQ4EFgQUvAx1bmvkOol2TD10MGWY3HY1qzIwHwYDVR0j BBgwFoAU347ymUy1QgnywqOae859oNnDTkowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 MjVjZGEzNi02OTNhLTRjMWEtYmE5ZS1lMGUxNzgxMTIxNDAvMC9ERjhFRjI5OTRD QjU0MjA5RjJDMkEzOUE3QkNFN0RBMEQ5QzM0RTRBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREY4RUYyOTk0Q0I1NDIwOUYyQzJBMzlBN0JDRTdEQTBEOUMz NEU0QS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzkyNWNkYTM2LTY5M2EtNGMxYS1i YTllLWUwZTE3ODExMjE0MC8wLzMyMzQzMDM0M2EzMjYzNjMzMDNhM2EyZjM0MzMy ZDM0MzMyMDNkM2UyMDMxMzMzMTM3MzMzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHBSQELMAAADANBgkq hkiG9w0BAQsFAAOCAQEAxks+MTDcgrQuIwfbroCx6wCvMJtowuc8LohWqRE9G9y+ 1osG7QEtiy+vCQjmgfQidt7d46aPKW1LFaFdCEJ5jKuRJTIyiJcflh3em7wYVUte upcLv5LjiH5H1WQr4NTlmrQ056vcjWb7b/qm8VM8Q0irfq/90c7olKprwg6+E/LP KVDwhx2ykwXahXB0vhHJ/xxRJc7/qgk2FLJPH71jeRuCRycqNAdBxBWuACAHBlhG Cera5HATzPHDV8f8r22uRAWga4H4Ran+Qmfd/5tHJYH/+0/yrHBlcjk3JB/D7MYQ 7NcnHECSvPiYcjqLvBUQkH7BKUElS1bDMh8zUa+LKw== -----END CERTIFICATE-----Generated at Wed Nov 5 10:59:53 2025 by rpki-client