$ rpki-client -vvf repo-rpki.idnic.net/repo/7b5ecd74-4424-4d40-96a1-7fd763011944/0/323430363a3663303a3a2f33322d3438203d3e20313430333936.roa File: 323430363a3663303a3a2f33322d3438203d3e20313430333936.roa (raw, json) Hash identifier: xR28xhgfPaocTNljEccnigENCimK3oapTJgJUkyM5nM= Subject key identifier: AE:43:DA:C6:A8:34:28:B9:DC:C8:39:F0:9D:94:CF:06:E3:46:99:6A Certificate issuer: /CN=658CE677CBFABF819AD1DE1FB865B1A2FD17C487 Certificate serial: 6C349A9B4E32B0485EB8BC198EAE2CAAB4F26B40 Authority key identifier: 65:8C:E6:77:CB:FA:BF:81:9A:D1:DE:1F:B8:65:B1:A2:FD:17:C4:87 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/658CE677CBFABF819AD1DE1FB865B1A2FD17C487.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7b5ecd74-4424-4d40-96a1-7fd763011944/0/323430363a3663303a3a2f33322d3438203d3e20313430333936.roa Signing time: Tue 07 Oct 2025 04:00:02 +0000 ROA not before: Tue 07 Oct 2025 03:55:02 +0000 ROA not after: Tue 06 Oct 2026 04:00:02 +0000 asID: 140396 IP address blocks: 2406:6c0::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7b5ecd74-4424-4d40-96a1-7fd763011944/0/658CE677CBFABF819AD1DE1FB865B1A2FD17C487.crl rsync://repo-rpki.idnic.net/repo/7b5ecd74-4424-4d40-96a1-7fd763011944/0/658CE677CBFABF819AD1DE1FB865B1A2FD17C487.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/658CE677CBFABF819AD1DE1FB865B1A2FD17C487.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 11:48:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:34:9a:9b:4e:32:b0:48:5e:b8:bc:19:8e:ae:2c:aa:b4:f2:6b:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=658CE677CBFABF819AD1DE1FB865B1A2FD17C487 Validity Not Before: Oct 7 03:55:02 2025 GMT Not After : Oct 6 04:00:02 2026 GMT Subject: CN=AE43DAC6A83428B9DCC839F09D94CF06E346996A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:6b:22:6a:ba:9f:46:4d:a8:1a:7f:6c:8d:e5: 23:25:f4:d1:6f:ff:26:e8:86:fa:19:be:81:4c:38: ac:fb:ce:07:c7:08:c4:62:5c:5e:d0:33:97:86:7b: 70:9f:be:b1:b3:c4:8b:cd:77:7e:e4:13:e4:cc:fd: f5:72:0b:d6:5d:15:f8:77:eb:35:a4:fe:ab:cc:34: 30:ab:b4:51:32:83:97:4e:e5:ff:7c:66:91:ab:94: aa:11:ae:d7:e1:34:87:96:d1:2c:1f:bd:1a:4c:e7: d3:00:30:37:a1:3b:0c:76:a8:9d:e7:e7:d7:e3:c9: 50:23:26:4c:c9:0c:56:ac:38:12:06:27:88:65:ba: f0:27:2b:bc:68:33:e0:d5:e9:e2:a8:97:20:e8:1a: a7:ef:bc:46:bd:52:51:be:04:a1:47:53:56:dc:95: 26:6c:73:24:6a:9b:ff:04:ac:35:1c:f4:b4:7f:6f: c6:5c:eb:17:df:32:cd:01:97:a5:af:e4:08:ff:f4: bf:f7:4e:8b:ce:00:87:16:cd:92:88:bc:6b:ed:41: d6:4a:25:0c:d7:cd:14:91:26:1a:ac:1f:a3:a3:ce: 0f:25:d0:ff:ac:8d:77:f7:7c:5d:e5:66:db:7e:8e: 64:4c:95:cf:fc:b3:16:0b:45:99:7f:d5:ac:ba:e7: 52:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:43:DA:C6:A8:34:28:B9:DC:C8:39:F0:9D:94:CF:06:E3:46:99:6A X509v3 Authority Key Identifier: keyid:65:8C:E6:77:CB:FA:BF:81:9A:D1:DE:1F:B8:65:B1:A2:FD:17:C4:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7b5ecd74-4424-4d40-96a1-7fd763011944/0/658CE677CBFABF819AD1DE1FB865B1A2FD17C487.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/658CE677CBFABF819AD1DE1FB865B1A2FD17C487.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7b5ecd74-4424-4d40-96a1-7fd763011944/0/323430363a3663303a3a2f33322d3438203d3e20313430333936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:6c0::/32 Signature Algorithm: sha256WithRSAEncryption 63:f7:5f:fb:b6:27:7d:79:3b:ac:77:e3:84:34:ee:48:8c:08: 35:f7:8a:d5:26:dd:71:ba:26:11:bd:13:70:26:6b:49:80:38: 56:01:de:28:b0:c4:fd:8c:08:39:52:12:ae:e5:a8:77:0d:3b: e2:f9:27:cf:67:56:f5:00:82:7d:3c:ed:69:32:c6:a7:d1:bd: 5d:fe:3c:49:84:d2:02:d0:52:af:3f:71:92:62:02:e3:ad:9b: ad:0e:0c:81:1c:fb:fe:58:45:e9:4e:b2:de:31:8a:b2:fd:64: e3:ce:8d:26:e6:c9:a6:65:58:c7:8d:3e:7a:5e:1a:48:1e:30: 16:97:2a:65:96:3b:28:29:60:2b:db:ba:81:4b:f5:e6:ca:40: 98:52:b4:b3:31:99:a6:56:e2:70:c6:ff:8c:c7:f9:27:67:a2: 87:b2:ff:dc:5b:14:2c:39:22:ec:6a:4c:fb:46:e4:a6:84:a9: 12:62:5b:8c:50:54:d2:75:14:9d:35:46:cc:16:1e:ca:00:02: 6c:e8:19:bc:ee:1f:04:be:b3:36:35:a5:bf:b8:d6:93:bb:e9: 8a:c0:58:3a:60:18:ca:56:7b:e4:5f:bb:fe:e2:e4:9b:6d:67: 2c:bd:f5:5d:ec:24:6b:c6:27:4b:a2:fb:e9:27:59:58:b5:8b: 39:df:59:cb -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUbDSam04ysEheuLwZjq4sqrTya0AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjU4Q0U2NzdDQkZBQkY4MTlBRDFERTFGQjg2NUIxQTJG RDE3QzQ4NzAeFw0yNTEwMDcwMzU1MDJaFw0yNjEwMDYwNDAwMDJaMDMxMTAvBgNV BAMTKEFFNDNEQUM2QTgzNDI4QjlEQ0M4MzlGMDlEOTRDRjA2RTM0Njk5NkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvayJqup9GTagaf2yN5SMl9NFv /ybohvoZvoFMOKz7zgfHCMRiXF7QM5eGe3CfvrGzxIvNd37kE+TM/fVyC9ZdFfh3 6zWk/qvMNDCrtFEyg5dO5f98ZpGrlKoRrtfhNIeW0SwfvRpM59MAMDehOwx2qJ3n 59fjyVAjJkzJDFasOBIGJ4hluvAnK7xoM+DV6eKolyDoGqfvvEa9UlG+BKFHU1bc lSZscyRqm/8ErDUc9LR/b8Zc6xffMs0Bl6Wv5Aj/9L/3TovOAIcWzZKIvGvtQdZK JQzXzRSRJhqsH6Ojzg8l0P+sjXf3fF3lZtt+jmRMlc/8sxYLRZl/1ay651KlAgMB AAGjggIxMIICLTAdBgNVHQ4EFgQUrkPaxqg0KLncyDnwnZTPBuNGmWowHwYDVR0j BBgwFoAUZYzmd8v6v4Ga0d4fuGWxov0XxIcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 YjVlY2Q3NC00NDI0LTRkNDAtOTZhMS03ZmQ3NjMwMTE5NDQvMC82NThDRTY3N0NC RkFCRjgxOUFEMURFMUZCODY1QjFBMkZEMTdDNDg3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjU4Q0U2NzdDQkZBQkY4MTlBRDFERTFGQjg2NUIxQTJGRDE3 QzQ4Ny5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdiNWVjZDc0LTQ0MjQtNGQ0MC05 NmExLTdmZDc2MzAxMTk0NC8wLzMyMzQzMDM2M2EzNjYzMzAzYTNhMmYzMzMyMmQz NDM4MjAzZDNlMjAzMTM0MzAzMzM5MzYucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkBgbAMA0GCSqGSIb3 DQEBCwUAA4IBAQBj91/7tid9eTusd+OENO5IjAg194rVJt1xuiYRvRNwJmtJgDhW Ad4osMT9jAg5UhKu5ah3DTvi+SfPZ1b1AIJ9PO1pMsan0b1d/jxJhNIC0FKvP3GS YgLjrZutDgyBHPv+WEXpTrLeMYqy/WTjzo0m5smmZVjHjT56XhpIHjAWlyplljso KWAr27qBS/XmykCYUrSzMZmmVuJwxv+Mx/knZ6KHsv/cWxQsOSLsakz7RuSmhKkS YluMUFTSdRSdNUbMFh7KAAJs6Bm87h8EvrM2NaW/uNaTu+mKwFg6YBjKVnvkX7v+ 4uSbbWcsvfVd7CRrxidLovvpJ1lYtYs531nL -----END CERTIFICATE-----Generated at Mon Oct 20 19:03:38 2025 by rpki-client