$ rpki-client -vvf repo-rpki.idnic.net/repo/d7dd2519-3078-47d3-9e86-48fd3bde76c8/1/323030313a6466333a643163303a3a2f34382d3438203d3e20313532373538.roa File: 323030313a6466333a643163303a3a2f34382d3438203d3e20313532373538.roa (raw, json) Hash identifier: +4jn9yUTCERVA3g9fI3ooLPb8eRAkmcilsOk4E3ZshQ= Subject key identifier: 1F:C1:34:FD:20:83:9B:80:E5:D3:E0:01:DB:86:4C:2A:B6:0F:F6:65 Certificate issuer: /CN=A8E6492B5EFE9362C2CCDB1C25DA022A2E157782 Certificate serial: 46696B08A444E8049268E1168378584A790F5F4E Authority key identifier: A8:E6:49:2B:5E:FE:93:62:C2:CC:DB:1C:25:DA:02:2A:2E:15:77:82 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A8E6492B5EFE9362C2CCDB1C25DA022A2E157782.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d7dd2519-3078-47d3-9e86-48fd3bde76c8/1/323030313a6466333a643163303a3a2f34382d3438203d3e20313532373538.roa Signing time: Tue 21 Oct 2025 13:00:02 +0000 ROA not before: Tue 21 Oct 2025 12:55:02 +0000 ROA not after: Tue 20 Oct 2026 13:00:02 +0000 asID: 152758 IP address blocks: 2001:df3:d1c0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d7dd2519-3078-47d3-9e86-48fd3bde76c8/1/A8E6492B5EFE9362C2CCDB1C25DA022A2E157782.crl rsync://repo-rpki.idnic.net/repo/d7dd2519-3078-47d3-9e86-48fd3bde76c8/1/A8E6492B5EFE9362C2CCDB1C25DA022A2E157782.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A8E6492B5EFE9362C2CCDB1C25DA022A2E157782.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Nov 2025 11:53:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:69:6b:08:a4:44:e8:04:92:68:e1:16:83:78:58:4a:79:0f:5f:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A8E6492B5EFE9362C2CCDB1C25DA022A2E157782 Validity Not Before: Oct 21 12:55:02 2025 GMT Not After : Oct 20 13:00:02 2026 GMT Subject: CN=1FC134FD20839B80E5D3E001DB864C2AB60FF665 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:6d:44:47:2f:a0:5a:7c:f3:e6:0d:f3:41:48: d9:ab:4b:1c:15:37:9e:77:d6:fa:e1:53:5e:c5:96: a4:8b:ab:76:ee:92:fd:3a:ff:f9:e5:ff:d4:7d:db: e7:0d:63:41:4a:57:b3:28:de:2f:f9:c4:c1:6b:f1: 71:b2:f0:d3:c3:0e:3d:10:de:a1:13:9c:5f:da:7c: 04:0b:5d:22:a0:ed:84:d9:c1:47:f5:0b:28:dc:7f: 47:8a:df:36:49:b6:3f:8c:95:bb:6d:5f:18:ce:15: c1:2c:e8:1b:70:75:54:2c:af:09:c4:43:01:f6:2a: 3c:cf:55:f0:ad:76:85:6f:2c:8b:20:3f:7f:df:d6: a9:6d:f5:46:f1:0c:88:a3:e4:03:a6:10:3f:3f:85: 0a:37:b8:c6:05:06:20:04:11:ad:e6:06:8a:17:6f: 12:82:10:80:30:36:f3:ed:f6:e1:cf:70:fc:21:bf: 56:34:b8:03:2a:0e:eb:80:4c:b4:c6:41:99:32:62: 33:98:b1:7e:7b:d2:37:f1:46:8b:c1:7c:bd:b6:58: 4f:66:1f:75:c0:58:61:6d:09:84:96:3c:77:9b:9b: 0e:d9:a4:48:67:49:7a:b7:d1:47:20:11:43:d2:bf: 50:01:54:4b:cf:89:f1:f8:e4:f9:ce:d7:77:75:f5: 4e:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:C1:34:FD:20:83:9B:80:E5:D3:E0:01:DB:86:4C:2A:B6:0F:F6:65 X509v3 Authority Key Identifier: keyid:A8:E6:49:2B:5E:FE:93:62:C2:CC:DB:1C:25:DA:02:2A:2E:15:77:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d7dd2519-3078-47d3-9e86-48fd3bde76c8/1/A8E6492B5EFE9362C2CCDB1C25DA022A2E157782.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A8E6492B5EFE9362C2CCDB1C25DA022A2E157782.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d7dd2519-3078-47d3-9e86-48fd3bde76c8/1/323030313a6466333a643163303a3a2f34382d3438203d3e20313532373538.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df3:d1c0::/48 Signature Algorithm: sha256WithRSAEncryption b8:6a:9e:33:4d:5b:57:69:51:43:0a:da:17:05:85:01:8c:9a: 95:02:15:29:8e:fb:1d:ff:8b:0f:5e:f0:1c:90:bf:8d:35:2e: ec:92:c5:09:6a:09:80:d3:a3:98:f7:b6:cd:7c:7a:4e:bc:6a: 21:b5:7e:5c:69:a3:09:29:87:18:d1:3c:dc:f0:91:27:09:82: 7c:49:3b:16:41:de:7e:87:a8:20:fa:f1:04:8e:22:26:91:ae: da:9e:6d:dc:34:7a:6c:ce:c8:55:84:b0:3f:6e:4f:d6:2e:59: ec:a0:e0:6d:4f:e5:be:86:35:cd:3c:10:67:c9:5d:f8:a8:0d: f1:87:76:4d:59:9e:07:7b:1e:e3:4c:47:81:f3:f7:4f:3b:27: e6:8b:50:de:94:39:20:e7:08:98:de:88:82:d0:88:4c:18:78: 14:d0:1f:17:41:1f:fc:07:62:cd:11:67:86:aa:27:51:47:63: 65:3b:d6:97:58:c4:6b:07:00:e7:54:32:c4:7c:f6:0d:95:82: 86:e3:a2:13:ab:10:f6:3a:5c:ce:ca:68:78:15:b8:14:75:60: fd:af:9f:31:81:c3:ac:bb:84:48:a6:d6:7e:a4:63:65:76:37: 8d:3f:29:56:eb:4c:81:ea:8e:15:49:33:15:94:ec:2b:c6:f6: 99:2b:38:e0 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIURmlrCKRE6ASSaOEWg3hYSnkPX04wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQThFNjQ5MkI1RUZFOTM2MkMyQ0NEQjFDMjVEQTAyMkEy RTE1Nzc4MjAeFw0yNTEwMjExMjU1MDJaFw0yNjEwMjAxMzAwMDJaMDMxMTAvBgNV BAMTKDFGQzEzNEZEMjA4MzlCODBFNUQzRTAwMURCODY0QzJBQjYwRkY2NjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQClbURHL6BafPPmDfNBSNmrSxwV N5531vrhU17FlqSLq3bukv06//nl/9R92+cNY0FKV7Mo3i/5xMFr8XGy8NPDDj0Q 3qETnF/afAQLXSKg7YTZwUf1Cyjcf0eK3zZJtj+MlbttXxjOFcEs6BtwdVQsrwnE QwH2KjzPVfCtdoVvLIsgP3/f1qlt9UbxDIij5AOmED8/hQo3uMYFBiAEEa3mBooX bxKCEIAwNvPt9uHPcPwhv1Y0uAMqDuuATLTGQZkyYjOYsX570jfxRovBfL22WE9m H3XAWGFtCYSWPHebmw7ZpEhnSXq30UcgEUPSv1ABVEvPifH45PnO13d19U6jAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUH8E0/SCDm4Dl0+AB24ZMKrYP9mUwHwYDVR0j BBgwFoAUqOZJK17+k2LCzNscJdoCKi4Vd4IwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k N2RkMjUxOS0zMDc4LTQ3ZDMtOWU4Ni00OGZkM2JkZTc2YzgvMS9BOEU2NDkyQjVF RkU5MzYyQzJDQ0RCMUMyNURBMDIyQTJFMTU3NzgyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQThFNjQ5MkI1RUZFOTM2MkMyQ0NEQjFDMjVEQTAyMkEyRTE1 Nzc4Mi5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q3ZGQyNTE5LTMwNzgtNDdkMy05 ZTg2LTQ4ZmQzYmRlNzZjOC8xLzMyMzAzMDMxM2E2NDY2MzMzYTY0MzE2MzMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNTMyMzczNTM4LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 89HAMA0GCSqGSIb3DQEBCwUAA4IBAQC4ap4zTVtXaVFDCtoXBYUBjJqVAhUpjvsd /4sPXvAckL+NNS7sksUJagmA06OY97bNfHpOvGohtX5caaMJKYcY0Tzc8JEnCYJ8 STsWQd5+h6gg+vEEjiImka7anm3cNHpszshVhLA/bk/WLlnsoOBtT+W+hjXNPBBn yV34qA3xh3ZNWZ4Hex7jTEeB8/dPOyfmi1DelDkg5wiY3oiC0IhMGHgU0B8XQR/8 B2LNEWeGqidRR2NlO9aXWMRrBwDnVDLEfPYNlYKG46ITqxD2OlzOymh4FbgUdWD9 r58xgcOsu4RIptZ+pGNldjeNPylW60yB6o4VSTMVlOwrxvaZKzjg -----END CERTIFICATE-----Generated at Tue Nov 4 21:09:28 2025 by rpki-client