$ rpki-client -vvf repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a333030333a3a2f34382d3438203d3e203535363835.roa File: 323430343a653130303a333030333a3a2f34382d3438203d3e203535363835.roa (raw, json) Hash identifier: +PPn+Gdx8qHkfshGGERo4gVtkjL080sI9k4OMAQCQpY= Subject key identifier: 7E:7F:48:E7:A8:63:3E:8B:24:D3:83:0A:88:F8:EF:8F:64:97:33:D2 Certificate issuer: /CN=B6F0131510E62F73E5F29246F9C8F691811A704D Certificate serial: 699ECD057B0B2D9CA41B69DD27544DE845208C80 Authority key identifier: B6:F0:13:15:10:E6:2F:73:E5:F2:92:46:F9:C8:F6:91:81:1A:70:4D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a333030333a3a2f34382d3438203d3e203535363835.roa Signing time: Thu 02 Oct 2025 10:00:02 +0000 ROA not before: Thu 02 Oct 2025 09:55:02 +0000 ROA not after: Thu 01 Oct 2026 10:00:02 +0000 asID: 55685 IP address blocks: 2404:e100:3003::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.crl rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 11:48:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:9e:cd:05:7b:0b:2d:9c:a4:1b:69:dd:27:54:4d:e8:45:20:8c:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B6F0131510E62F73E5F29246F9C8F691811A704D Validity Not Before: Oct 2 09:55:02 2025 GMT Not After : Oct 1 10:00:02 2026 GMT Subject: CN=7E7F48E7A8633E8B24D3830A88F8EF8F649733D2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:36:0f:50:87:35:0a:ab:5d:fc:89:2b:d0:1f: aa:e7:0d:54:ce:b1:e4:43:6f:28:12:1e:17:5d:07: 8b:08:48:0f:d3:d0:5f:3b:6c:1c:9d:d3:44:25:ee: 53:11:ff:23:0f:45:21:55:f4:ac:cf:df:9e:5b:49: a7:a9:e5:b2:6b:5b:75:ef:23:1a:88:07:00:e3:d7: 25:fc:80:44:7f:61:a1:a9:e6:96:73:38:bb:a0:7d: f8:b3:35:2a:ef:63:0a:bd:a1:8f:3d:46:5c:fe:fb: 2f:d3:3e:a0:6e:db:20:2b:37:2f:7e:fc:a2:1e:92: ca:a0:d1:00:aa:1c:a4:3d:84:fe:d3:c7:5d:be:1e: 9a:85:3b:93:d1:f5:ed:e3:17:d8:c9:7f:74:0b:2f: f4:d9:d8:2d:b1:24:17:a6:08:2a:18:58:e0:6b:b4: 27:02:98:69:95:17:4c:6f:67:ec:f1:27:a8:03:84: 97:e9:3f:7d:9d:c0:06:71:2d:ec:47:2d:23:f4:60: f6:11:00:02:1d:77:eb:24:96:92:01:0c:aa:62:16: b6:8c:4e:1b:be:d4:cf:34:f8:4e:99:ca:f9:6d:7d: cd:32:8e:8f:7c:4f:00:e4:69:b3:19:1d:84:f1:2f: e7:a0:fa:f6:34:9a:c0:ff:88:7e:79:50:86:b2:a9: 4f:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:7F:48:E7:A8:63:3E:8B:24:D3:83:0A:88:F8:EF:8F:64:97:33:D2 X509v3 Authority Key Identifier: keyid:B6:F0:13:15:10:E6:2F:73:E5:F2:92:46:F9:C8:F6:91:81:1A:70:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a333030333a3a2f34382d3438203d3e203535363835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:e100:3003::/48 Signature Algorithm: sha256WithRSAEncryption 92:e1:bf:de:40:7d:34:a0:f1:4f:d0:22:9f:4e:a5:be:30:9e: dd:8c:ed:a6:91:27:30:9f:4e:d9:1d:2b:f9:38:70:37:c7:8c: e3:14:14:84:0d:84:c8:ac:97:25:2c:1d:63:00:fa:61:70:7e: 76:a1:b9:ba:30:eb:40:65:99:d4:71:74:05:b5:fd:c2:44:19: 33:ef:a6:ab:af:27:ea:5d:d1:83:ef:2e:10:ad:57:36:84:cc: 01:47:cd:91:4c:b8:12:39:49:0c:1a:32:56:e6:cf:d7:33:f0: 6b:a4:65:25:d6:f7:64:d1:8f:f2:73:c2:16:9d:bb:d0:98:41: cf:43:52:0e:d4:3b:c7:71:5d:bb:55:c9:21:83:7c:a0:1c:49: c4:c1:f5:e3:bd:bc:2a:be:6d:5f:ce:55:fd:e4:5d:d9:d5:bb: ca:37:89:33:b4:53:d0:ad:15:2c:00:8b:c3:dd:b0:e8:ae:ed: c6:1a:61:53:6f:52:60:f3:5a:bf:24:bf:9a:b8:72:ea:66:c2: 5c:7a:0e:2c:20:66:ae:09:fb:1b:5f:27:59:dc:25:07:44:11: f0:e7:07:3e:ad:ed:42:85:d3:e9:61:2c:14:1f:bd:e7:ea:78: 67:b0:82:93:b3:52:c6:9d:2e:ad:50:71:89:31:fa:a3:1f:00: 99:7b:fb:51 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUaZ7NBXsLLZykG2ndJ1RN6EUgjIAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjZGMDEzMTUxMEU2MkY3M0U1RjI5MjQ2RjlDOEY2OTE4 MTFBNzA0RDAeFw0yNTEwMDIwOTU1MDJaFw0yNjEwMDExMDAwMDJaMDMxMTAvBgNV BAMTKDdFN0Y0OEU3QTg2MzNFOEIyNEQzODMwQTg4RjhFRjhGNjQ5NzMzRDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHNg9QhzUKq138iSvQH6rnDVTO seRDbygSHhddB4sISA/T0F87bByd00Ql7lMR/yMPRSFV9KzP355bSaep5bJrW3Xv IxqIBwDj1yX8gER/YaGp5pZzOLugffizNSrvYwq9oY89Rlz++y/TPqBu2yArNy9+ /KIeksqg0QCqHKQ9hP7Tx12+HpqFO5PR9e3jF9jJf3QLL/TZ2C2xJBemCCoYWOBr tCcCmGmVF0xvZ+zxJ6gDhJfpP32dwAZxLexHLSP0YPYRAAIdd+sklpIBDKpiFraM Thu+1M80+E6Zyvltfc0yjo98TwDkabMZHYTxL+eg+vY0msD/iH55UIayqU+RAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUfn9I56hjPosk04MKiPjvj2SXM9IwHwYDVR0j BBgwFoAUtvATFRDmL3Pl8pJG+cj2kYEacE0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NWQ4ZGFiNC04YmI2LTRlZDAtOGRhYi01YTQwNjE2N2I5OWQvMC9CNkYwMTMxNTEw RTYyRjczRTVGMjkyNDZGOUM4RjY5MTgxMUE3MDRELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjZGMDEzMTUxMEU2MkY3M0U1RjI5MjQ2RjlDOEY2OTE4MTFB NzA0RC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg1ZDhkYWI0LThiYjYtNGVkMC04 ZGFiLTVhNDA2MTY3Yjk5ZC8wLzMyMzQzMDM0M2E2NTMxMzAzMDNhMzMzMDMwMzMz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzNTM1MzYzODM1LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJATh ADADMA0GCSqGSIb3DQEBCwUAA4IBAQCS4b/eQH00oPFP0CKfTqW+MJ7djO2mkScw n07ZHSv5OHA3x4zjFBSEDYTIrJclLB1jAPphcH52obm6MOtAZZnUcXQFtf3CRBkz 76arryfqXdGD7y4QrVc2hMwBR82RTLgSOUkMGjJW5s/XM/BrpGUl1vdk0Y/yc8IW nbvQmEHPQ1IO1DvHcV27Vckhg3ygHEnEwfXjvbwqvm1fzlX95F3Z1bvKN4kztFPQ rRUsAIvD3bDoru3GGmFTb1Jg81q/JL+auHLqZsJceg4sIGauCfsbXydZ3CUHRBHw 5wc+re1ChdPpYSwUH73n6nhnsIKTs1LGnS6tUHGJMfqjHwCZe/tR -----END CERTIFICATE-----Generated at Mon Oct 20 13:04:36 2025 by rpki-client