$ rpki-client -vvf repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/323430323a653130303a61653a3a2f34382d3438203d3e203538343835.roa File: 323430323a653130303a61653a3a2f34382d3438203d3e203538343835.roa (raw, json) Hash identifier: jn8YvD6TNkp1LaERG+YoqpArjIVwe5+hvrSaozXb0+E= Subject key identifier: 75:0B:33:30:E5:85:13:FD:4F:09:B7:9D:9B:3B:EF:E0:09:A3:07:4A Certificate issuer: /CN=FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39 Certificate serial: 3D5035E53991978CE2CDF7F70D5F1D419D3D9C98 Authority key identifier: FA:5B:CA:98:4E:EB:AF:FD:CE:D8:41:90:C7:07:56:DB:EB:3B:FF:39 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/323430323a653130303a61653a3a2f34382d3438203d3e203538343835.roa Signing time: Thu 16 Oct 2025 18:00:00 +0000 ROA not before: Thu 16 Oct 2025 17:55:00 +0000 ROA not after: Thu 15 Oct 2026 18:00:00 +0000 asID: 58485 IP address blocks: 2402:e100:ae::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.crl rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 01:50:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:50:35:e5:39:91:97:8c:e2:cd:f7:f7:0d:5f:1d:41:9d:3d:9c:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39 Validity Not Before: Oct 16 17:55:00 2025 GMT Not After : Oct 15 18:00:00 2026 GMT Subject: CN=750B3330E58513FD4F09B79D9B3BEFE009A3074A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:40:a6:4f:aa:07:cd:f9:bd:55:0f:11:7d:8e: 41:df:a9:5d:46:4a:93:9e:ae:ea:32:90:d4:24:72: 0e:b7:b9:64:ff:ff:4d:30:e0:0e:c0:e6:24:09:0a: fb:f7:0b:a5:fc:e5:59:69:d1:e2:44:bc:c8:f6:be: d6:f1:28:97:0d:32:ef:5c:9c:c5:17:a5:ba:9a:01: 22:35:dc:45:8f:d1:f3:7f:d6:5c:5a:9f:11:5e:94: 97:c1:e0:fb:3f:b0:f0:c6:a4:8c:70:e4:bf:88:75: 68:83:39:46:43:54:34:12:b2:08:88:b9:f7:6e:d9: 5a:f6:fb:6e:a3:82:9b:24:0f:6e:df:b7:db:e6:63: 10:66:5e:5a:9e:00:9b:ea:1c:6b:62:0a:80:d4:e6: d7:91:d2:c7:da:51:64:d0:7a:fb:f8:2e:97:6f:8f: 21:55:f6:10:ed:46:b3:a7:c9:af:02:3b:18:0f:d8: 16:f3:d7:90:6e:4c:7b:c8:e3:d2:af:e7:db:e7:b3: 08:81:cc:b1:0b:26:2e:58:79:7d:f8:e2:39:c1:a8: c3:12:42:f5:d5:45:11:09:d0:8c:bf:64:60:20:7e: 11:b0:05:66:75:c9:b2:1b:c2:e0:c7:f1:8d:2d:1c: dc:9c:95:50:e6:33:a3:38:33:e7:76:d6:df:01:ed: b3:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:0B:33:30:E5:85:13:FD:4F:09:B7:9D:9B:3B:EF:E0:09:A3:07:4A X509v3 Authority Key Identifier: keyid:FA:5B:CA:98:4E:EB:AF:FD:CE:D8:41:90:C7:07:56:DB:EB:3B:FF:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/323430323a653130303a61653a3a2f34382d3438203d3e203538343835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:e100:ae::/48 Signature Algorithm: sha256WithRSAEncryption b8:ec:f1:2d:97:2a:aa:e5:75:2e:88:9a:71:74:e6:ba:ea:c1: 94:70:87:41:bf:71:3e:29:a2:0e:05:8c:8f:1c:85:7f:82:b0: fb:09:d4:6e:4a:57:2d:5d:e2:79:93:af:99:f0:75:cf:71:bf: 28:19:2b:8c:43:68:d1:db:50:50:48:85:cc:5e:24:e1:0a:b6: a0:8a:7c:0b:93:14:29:97:9f:2a:f9:34:4a:ce:a5:21:69:ed: d2:09:e6:79:d1:df:5e:f8:4b:bc:2d:c4:79:ea:57:d4:22:8e: 88:63:87:c8:e6:a7:5e:cc:9c:40:f5:c5:bb:9f:fc:1c:01:55: 01:24:17:ca:c1:f5:6c:20:da:ec:32:6b:88:61:62:65:1f:fb: cc:f8:ff:55:4a:98:1d:62:1a:06:15:c2:d9:ad:c6:51:2b:34: 8f:9c:92:6b:76:7f:01:05:f2:cc:b3:14:d9:1d:45:ca:87:d6: d9:b6:66:28:05:62:f9:eb:9b:79:bd:d1:73:5f:97:29:7a:03: 00:2f:ef:df:26:96:2f:61:46:ef:d7:c6:7f:13:79:8e:73:14: 56:a4:a4:17:32:6e:e2:62:b7:90:c2:34:72:a3:2e:54:d3:13: d9:72:bb:e0:2c:2e:1f:ef:9f:52:c1:05:3f:7d:d4:75:ca:b7: 64:3c:a9:1b -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUPVA15TmRl4zizff3DV8dQZ09nJgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkE1QkNBOTg0RUVCQUZGRENFRDg0MTkwQzcwNzU2REJF QjNCRkYzOTAeFw0yNTEwMTYxNzU1MDBaFw0yNjEwMTUxODAwMDBaMDMxMTAvBgNV BAMTKDc1MEIzMzMwRTU4NTEzRkQ0RjA5Qjc5RDlCM0JFRkUwMDlBMzA3NEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDbQKZPqgfN+b1VDxF9jkHfqV1G SpOeruoykNQkcg63uWT//00w4A7A5iQJCvv3C6X85Vlp0eJEvMj2vtbxKJcNMu9c nMUXpbqaASI13EWP0fN/1lxanxFelJfB4Ps/sPDGpIxw5L+IdWiDOUZDVDQSsgiI ufdu2Vr2+26jgpskD27ft9vmYxBmXlqeAJvqHGtiCoDU5teR0sfaUWTQevv4Lpdv jyFV9hDtRrOnya8COxgP2Bbz15BuTHvI49Kv59vnswiBzLELJi5YeX344jnBqMMS QvXVRREJ0Iy/ZGAgfhGwBWZ1ybIbwuDH8Y0tHNyclVDmM6M4M+d21t8B7bNnAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUdQszMOWFE/1PCbedmzvv4AmjB0owHwYDVR0j BBgwFoAU+lvKmE7rr/3O2EGQxwdW2+s7/zkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZWU0N2JiZi1iYTg0LTQ0OGYtOTYyYi0yYWFmNWM3ZGQ2OGQvMC9GQTVCQ0E5ODRF RUJBRkZEQ0VEODQxOTBDNzA3NTZEQkVCM0JGRjM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkE1QkNBOTg0RUVCQUZGRENFRDg0MTkwQzcwNzU2REJFQjNC RkYzOS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJlZTQ3YmJmLWJhODQtNDQ4Zi05 NjJiLTJhYWY1YzdkZDY4ZC8wLzMyMzQzMDMyM2E2NTMxMzAzMDNhNjE2NTNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzgzNDM4MzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkAuEAAK4w DQYJKoZIhvcNAQELBQADggEBALjs8S2XKqrldS6ImnF05rrqwZRwh0G/cT4pog4F jI8chX+CsPsJ1G5KVy1d4nmTr5nwdc9xvygZK4xDaNHbUFBIhcxeJOEKtqCKfAuT FCmXnyr5NErOpSFp7dIJ5nnR3174S7wtxHnqV9Qijohjh8jmp17MnED1xbuf/BwB VQEkF8rB9Wwg2uwya4hhYmUf+8z4/1VKmB1iGgYVwtmtxlErNI+ckmt2fwEF8syz FNkdRcqH1tm2ZigFYvnrm3m90XNflyl6AwAv798mli9hRu/Xxn8TeY5zFFakpBcy buJit5DCNHKjLlTTE9lyu+AsLh/vn1LBBT991HXKt2Q8qRs= -----END CERTIFICATE-----Generated at Mon Oct 20 15:00:21 2025 by rpki-client