$ rpki-client -vvf repo-rpki.idnic.net/repo/af1c79f1-264e-423f-9e08-0b2900da6949/0/323430323a363938303a343030303a3a2f34382d3438203d3e203539323738.roa File: 323430323a363938303a343030303a3a2f34382d3438203d3e203539323738.roa (raw, json) Hash identifier: LrRa5/YbMQIirnwavEqQmjlSXIv4GPDAL8XSH/RPz2k= Subject key identifier: BF:B9:1F:BD:D9:6B:D9:79:5C:5D:99:04:FA:BE:A8:A0:AB:45:0D:13 Certificate issuer: /CN=2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD Certificate serial: 7359ADDC8CDCFCD1F4991FEE96CD2C82D39926C9 Authority key identifier: 2D:23:11:F5:63:DF:0A:F8:EB:EF:DA:21:87:16:26:B5:DD:78:C5:BD Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/af1c79f1-264e-423f-9e08-0b2900da6949/0/323430323a363938303a343030303a3a2f34382d3438203d3e203539323738.roa Signing time: Thu 03 Jul 2025 06:02:21 +0000 ROA not before: Thu 03 Jul 2025 05:57:21 +0000 ROA not after: Thu 02 Jul 2026 06:02:21 +0000 asID: 59278 IP address blocks: 2402:6980:4000::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/af1c79f1-264e-423f-9e08-0b2900da6949/0/2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD.crl rsync://repo-rpki.idnic.net/repo/af1c79f1-264e-423f-9e08-0b2900da6949/0/2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Nov 2025 23:17:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:59:ad:dc:8c:dc:fc:d1:f4:99:1f:ee:96:cd:2c:82:d3:99:26:c9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD Validity Not Before: Jul 3 05:57:21 2025 GMT Not After : Jul 2 06:02:21 2026 GMT Subject: CN=BFB91FBDD96BD9795C5D9904FABEA8A0AB450D13 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:92:34:51:93:78:b3:2f:81:16:bf:8d:ee:6c: f5:fc:a7:58:e0:1f:ff:d4:80:b9:6f:60:cf:49:0a: 25:88:12:38:41:ec:53:fd:50:0e:4e:4b:0d:3b:f4: 25:e8:d9:35:05:0a:52:dc:ee:17:0e:f0:7e:45:9f: 1b:20:4d:8c:b4:00:ff:06:96:80:97:62:34:dc:bd: 8c:3c:27:3b:32:59:2f:e8:d8:b3:f5:32:d5:c3:40: 86:aa:9c:6b:b7:42:3f:cf:f9:1d:05:12:b8:0f:b8: 54:90:06:30:dc:05:26:a1:b8:8a:bd:7f:0b:7e:95: 53:38:ca:fd:6b:94:85:f5:43:49:8c:67:ec:e3:60: 1d:32:9d:cb:78:90:e1:db:30:83:ae:84:08:da:ae: ca:ba:b3:91:5d:ee:df:0b:12:30:96:cd:a5:41:07: 5f:74:dd:69:cd:58:71:27:e2:6c:70:72:90:63:31: 00:54:8f:6c:c0:bd:e0:67:f1:e8:c5:e7:15:e5:60: 98:eb:2e:e6:b5:96:a7:4d:16:bb:30:7d:3b:6c:13: 41:eb:e4:24:80:a9:e2:5b:85:49:8d:47:69:94:6a: fa:23:a8:60:44:2d:08:a6:c1:c7:ac:17:e8:ef:51: 0b:bd:8d:31:de:b0:2d:dc:a0:63:21:f7:4b:12:d0: 49:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:B9:1F:BD:D9:6B:D9:79:5C:5D:99:04:FA:BE:A8:A0:AB:45:0D:13 X509v3 Authority Key Identifier: keyid:2D:23:11:F5:63:DF:0A:F8:EB:EF:DA:21:87:16:26:B5:DD:78:C5:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/af1c79f1-264e-423f-9e08-0b2900da6949/0/2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/af1c79f1-264e-423f-9e08-0b2900da6949/0/323430323a363938303a343030303a3a2f34382d3438203d3e203539323738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:6980:4000::/48 Signature Algorithm: sha256WithRSAEncryption 0d:0a:ca:d6:48:97:8e:17:c1:24:a9:c4:83:be:76:42:e5:3f: 1d:41:2a:ed:00:65:87:9a:b3:85:9d:20:bc:a0:ab:25:ba:41: a1:c8:5d:ef:a9:62:5f:85:40:7f:f9:da:58:28:95:10:37:5f: fc:4d:e9:62:2f:cf:17:09:be:e1:76:19:a7:f9:82:0a:5f:e1: 66:52:d9:dc:a5:04:fd:ba:87:72:84:84:c1:a6:7c:83:de:62: bb:b0:e2:09:1e:e7:4c:c1:8e:2b:43:84:91:23:2c:c2:65:1f: d7:b4:cc:9a:62:cb:07:0b:bd:2d:9b:4a:7d:66:e3:91:9a:f6: 99:86:cb:96:ee:1b:58:17:fb:ff:48:5e:fe:8a:d5:1b:4b:13: 3b:29:2b:3b:a7:e8:71:44:6a:11:98:8d:c1:2c:86:e8:7f:aa: 0b:46:06:19:8f:00:16:65:a8:23:bc:d6:5f:60:39:2d:6b:ff: 24:41:54:c9:d4:42:2e:a2:6a:ff:5f:d1:4b:88:51:6b:41:9a: cb:ee:3f:0a:84:03:af:db:81:c4:be:f9:e4:08:64:9d:47:75: 7e:e5:dd:1b:5d:33:6e:b9:e7:61:f1:aa:34:b0:7d:3a:10:d0: ea:26:5e:82:47:1c:f6:c7:a5:6c:29:9d:5c:fe:8e:03:f3:c1: ce:27:17:56 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUc1mt3Izc/NH0mR/uls0sgtOZJskwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkQyMzExRjU2M0RGMEFGOEVCRUZEQTIxODcxNjI2QjVE RDc4QzVCRDAeFw0yNTA3MDMwNTU3MjFaFw0yNjA3MDIwNjAyMjFaMDMxMTAvBgNV BAMTKEJGQjkxRkJERDk2QkQ5Nzk1QzVEOTkwNEZBQkVBOEEwQUI0NTBEMTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDkjRRk3izL4EWv43ubPX8p1jg H//UgLlvYM9JCiWIEjhB7FP9UA5OSw079CXo2TUFClLc7hcO8H5FnxsgTYy0AP8G loCXYjTcvYw8JzsyWS/o2LP1MtXDQIaqnGu3Qj/P+R0FErgPuFSQBjDcBSahuIq9 fwt+lVM4yv1rlIX1Q0mMZ+zjYB0ynct4kOHbMIOuhAjarsq6s5Fd7t8LEjCWzaVB B1903WnNWHEn4mxwcpBjMQBUj2zAveBn8ejF5xXlYJjrLua1lqdNFrswfTtsE0Hr 5CSAqeJbhUmNR2mUavojqGBELQimwcesF+jvUQu9jTHesC3coGMh90sS0EkPAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUv7kfvdlr2XlcXZkE+r6ooKtFDRMwHwYDVR0j BBgwFoAULSMR9WPfCvjr79ohhxYmtd14xb0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h ZjFjNzlmMS0yNjRlLTQyM2YtOWUwOC0wYjI5MDBkYTY5NDkvMC8yRDIzMTFGNTYz REYwQUY4RUJFRkRBMjE4NzE2MjZCNURENzhDNUJELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkQyMzExRjU2M0RGMEFGOEVCRUZEQTIxODcxNjI2QjVERDc4 QzVCRC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FmMWM3OWYxLTI2NGUtNDIzZi05 ZTA4LTBiMjkwMGRhNjk0OS8wLzMyMzQzMDMyM2EzNjM5MzgzMDNhMzQzMDMwMzAz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzNTM5MzIzNzM4LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAJp gEAAMA0GCSqGSIb3DQEBCwUAA4IBAQANCsrWSJeOF8EkqcSDvnZC5T8dQSrtAGWH mrOFnSC8oKslukGhyF3vqWJfhUB/+dpYKJUQN1/8TeliL88XCb7hdhmn+YIKX+Fm UtncpQT9uodyhITBpnyD3mK7sOIJHudMwY4rQ4SRIyzCZR/XtMyaYssHC70tm0p9 ZuORmvaZhsuW7htYF/v/SF7+itUbSxM7KSs7p+hxRGoRmI3BLIbof6oLRgYZjwAW ZagjvNZfYDkta/8kQVTJ1EIuomr/X9FLiFFrQZrL7j8KhAOv24HEvvnkCGSdR3V+ 5d0bXTNuuedh8ao0sH06ENDqJl6CRxz2x6VsKZ1c/o4D88HOJxdW -----END CERTIFICATE-----Generated at Wed Nov 5 18:05:48 2025 by rpki-client