$ rpki-client -vvf repo-rpki.idnic.net/repo/af1c79f1-264e-423f-9e08-0b2900da6949/0/323430323a363938303a333030303a3a2f34382d3438203d3e203539323738.roa File: 323430323a363938303a333030303a3a2f34382d3438203d3e203539323738.roa (raw, json) Hash identifier: 1MuWl4R2LfAc9czxG6/QjtCE9g5QKK5BETiXC4FMLHs= Subject key identifier: F1:10:48:26:6F:4A:58:15:59:19:D8:14:7D:4C:91:0A:E9:9C:FC:BE Certificate issuer: /CN=2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD Certificate serial: 3B2C0DE7DFC59A1E1169CE118B10BD36C9CEDBBC Authority key identifier: 2D:23:11:F5:63:DF:0A:F8:EB:EF:DA:21:87:16:26:B5:DD:78:C5:BD Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/af1c79f1-264e-423f-9e08-0b2900da6949/0/323430323a363938303a333030303a3a2f34382d3438203d3e203539323738.roa Signing time: Thu 03 Jul 2025 06:02:22 +0000 ROA not before: Thu 03 Jul 2025 05:57:22 +0000 ROA not after: Thu 02 Jul 2026 06:02:22 +0000 asID: 59278 IP address blocks: 2402:6980:3000::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/af1c79f1-264e-423f-9e08-0b2900da6949/0/2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD.crl rsync://repo-rpki.idnic.net/repo/af1c79f1-264e-423f-9e08-0b2900da6949/0/2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Nov 2025 23:17:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:2c:0d:e7:df:c5:9a:1e:11:69:ce:11:8b:10:bd:36:c9:ce:db:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD Validity Not Before: Jul 3 05:57:22 2025 GMT Not After : Jul 2 06:02:22 2026 GMT Subject: CN=F11048266F4A58155919D8147D4C910AE99CFCBE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:36:24:7d:96:03:37:3b:33:84:2f:9c:17:2b: c6:69:4e:fa:3d:bf:a7:35:5b:fd:a0:bd:9e:2b:15: b4:e5:c6:e6:64:2a:28:35:03:01:11:b3:1c:2c:b3: 1b:9d:f0:0e:1c:12:7a:05:b1:33:03:e1:81:93:a7: d1:39:f0:0d:98:64:7d:53:a4:a2:9f:da:37:81:a7: b2:5b:57:67:f5:ed:fb:2a:8d:52:fd:6c:9f:79:ee: 6b:aa:3b:d5:12:57:ad:09:13:c5:61:80:37:3b:9d: 23:04:6b:53:0a:80:9e:f6:c2:cf:bc:cc:48:a3:6e: ab:f2:0b:28:a0:5f:dc:84:83:cc:e3:73:94:70:88: e0:9c:4e:ed:58:59:ad:26:3e:39:bf:81:e4:72:ae: 23:11:e0:a2:61:20:78:ec:54:ec:6b:65:9e:79:d5: 77:7b:f4:41:3a:ab:cf:54:b7:88:98:2a:a1:15:45: a4:07:d9:3d:86:62:b0:ba:c3:ec:9b:74:14:2f:eb: 3f:7b:f8:33:e7:ab:c9:c6:cb:e6:e1:a9:03:b9:63: 0f:04:64:90:76:37:50:0e:3a:56:87:15:8d:86:5d: ba:ce:b3:8f:91:93:4f:7c:29:e3:89:19:e4:28:aa: cd:2b:bd:a2:f3:e9:9d:85:ef:10:4c:ab:26:45:72: 72:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:10:48:26:6F:4A:58:15:59:19:D8:14:7D:4C:91:0A:E9:9C:FC:BE X509v3 Authority Key Identifier: keyid:2D:23:11:F5:63:DF:0A:F8:EB:EF:DA:21:87:16:26:B5:DD:78:C5:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/af1c79f1-264e-423f-9e08-0b2900da6949/0/2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/af1c79f1-264e-423f-9e08-0b2900da6949/0/323430323a363938303a333030303a3a2f34382d3438203d3e203539323738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:6980:3000::/48 Signature Algorithm: sha256WithRSAEncryption 37:1f:d6:91:cc:66:59:72:61:5c:5e:f0:e1:18:40:e4:29:67: 53:89:49:9f:43:7d:10:e3:20:7b:22:c1:8d:1f:09:45:87:46: 3d:4d:61:a2:f3:00:be:75:d7:6b:b2:ee:7c:3a:b1:c0:b3:48: 38:f9:1d:23:3e:5c:8d:69:4c:35:74:56:ef:05:b7:03:5e:b1: c4:bb:04:77:d5:38:3a:d1:0f:87:b3:e9:cf:87:ed:be:61:37: 37:71:8b:8f:82:94:33:9c:17:5f:53:42:16:d1:cd:73:0c:53: 36:25:8c:75:49:20:97:41:86:d6:77:27:f6:4c:43:4c:f9:90: 9f:85:be:d2:43:ee:a7:a0:7e:15:40:4c:9d:49:23:d1:93:15: 8a:51:f2:85:69:1a:d1:d7:d2:66:39:6b:0a:12:de:46:38:ae: 00:b8:0d:a0:5c:99:78:7b:05:21:10:77:91:f1:4f:c8:a2:e1: 44:c9:f8:3c:a5:87:7a:1d:a1:73:a1:7c:40:cc:36:18:0b:9f: f9:fa:ba:4b:2e:ee:a6:88:7d:3c:de:81:59:6a:82:c4:c9:02: 2d:fd:b9:0d:c5:64:d9:59:f9:2a:5f:31:1d:44:c0:f0:bc:e3: a0:c6:c1:8c:8a:fa:e8:d1:eb:7a:e9:28:fc:3e:b3:44:cd:05: 58:00:1d:0a -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUOywN59/Fmh4Rac4RixC9NsnO27wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkQyMzExRjU2M0RGMEFGOEVCRUZEQTIxODcxNjI2QjVE RDc4QzVCRDAeFw0yNTA3MDMwNTU3MjJaFw0yNjA3MDIwNjAyMjJaMDMxMTAvBgNV BAMTKEYxMTA0ODI2NkY0QTU4MTU1OTE5RDgxNDdENEM5MTBBRTk5Q0ZDQkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCYNiR9lgM3OzOEL5wXK8ZpTvo9 v6c1W/2gvZ4rFbTlxuZkKig1AwERsxwssxud8A4cEnoFsTMD4YGTp9E58A2YZH1T pKKf2jeBp7JbV2f17fsqjVL9bJ957muqO9USV60JE8VhgDc7nSMEa1MKgJ72ws+8 zEijbqvyCyigX9yEg8zjc5RwiOCcTu1YWa0mPjm/geRyriMR4KJhIHjsVOxrZZ55 1Xd79EE6q89Ut4iYKqEVRaQH2T2GYrC6w+ybdBQv6z97+DPnq8nGy+bhqQO5Yw8E ZJB2N1AOOlaHFY2GXbrOs4+Rk098KeOJGeQoqs0rvaLz6Z2F7xBMqyZFcnK/AgMB AAGjggI9MIICOTAdBgNVHQ4EFgQU8RBIJm9KWBVZGdgUfUyRCumc/L4wHwYDVR0j BBgwFoAULSMR9WPfCvjr79ohhxYmtd14xb0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h ZjFjNzlmMS0yNjRlLTQyM2YtOWUwOC0wYjI5MDBkYTY5NDkvMC8yRDIzMTFGNTYz REYwQUY4RUJFRkRBMjE4NzE2MjZCNURENzhDNUJELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkQyMzExRjU2M0RGMEFGOEVCRUZEQTIxODcxNjI2QjVERDc4 QzVCRC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FmMWM3OWYxLTI2NGUtNDIzZi05 ZTA4LTBiMjkwMGRhNjk0OS8wLzMyMzQzMDMyM2EzNjM5MzgzMDNhMzMzMDMwMzAz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzNTM5MzIzNzM4LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAJp gDAAMA0GCSqGSIb3DQEBCwUAA4IBAQA3H9aRzGZZcmFcXvDhGEDkKWdTiUmfQ30Q 4yB7IsGNHwlFh0Y9TWGi8wC+dddrsu58OrHAs0g4+R0jPlyNaUw1dFbvBbcDXrHE uwR31Tg60Q+Hs+nPh+2+YTc3cYuPgpQznBdfU0IW0c1zDFM2JYx1SSCXQYbWdyf2 TENM+ZCfhb7SQ+6noH4VQEydSSPRkxWKUfKFaRrR19JmOWsKEt5GOK4AuA2gXJl4 ewUhEHeR8U/IouFEyfg8pYd6HaFzoXxAzDYYC5/5+rpLLu6miH083oFZaoLEyQIt /bkNxWTZWfkqXzEdRMDwvOOgxsGMivro0et66Sj8PrNEzQVYAB0K -----END CERTIFICATE-----Generated at Wed Nov 5 19:46:22 2025 by rpki-client