$ rpki-client -vvf repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a343a3a2f34382d3438203d3e203535363835.roa File: 323430343a653130303a343a3a2f34382d3438203d3e203535363835.roa (raw, json) Hash identifier: pv8NVMo4E3KPb5J8DT8CToReeJbcQhSNJx4lo3Yr8ko= Subject key identifier: AB:91:0E:F7:CD:6F:3F:74:EF:87:DD:F5:D7:D0:B2:4A:C2:22:A6:3A Certificate issuer: /CN=B6F0131510E62F73E5F29246F9C8F691811A704D Certificate serial: 71754DBC22DD9674DEAEA5E386E7B0FEA7CB8348 Authority key identifier: B6:F0:13:15:10:E6:2F:73:E5:F2:92:46:F9:C8:F6:91:81:1A:70:4D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a343a3a2f34382d3438203d3e203535363835.roa Signing time: Fri 26 Sep 2025 13:02:17 +0000 ROA not before: Fri 26 Sep 2025 12:57:17 +0000 ROA not after: Fri 25 Sep 2026 13:02:17 +0000 asID: 55685 IP address blocks: 2404:e100:4::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.crl rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 11:48:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:75:4d:bc:22:dd:96:74:de:ae:a5:e3:86:e7:b0:fe:a7:cb:83:48 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B6F0131510E62F73E5F29246F9C8F691811A704D Validity Not Before: Sep 26 12:57:17 2025 GMT Not After : Sep 25 13:02:17 2026 GMT Subject: CN=AB910EF7CD6F3F74EF87DDF5D7D0B24AC222A63A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:ad:3a:19:42:85:ad:fb:50:63:e3:ed:b1:48: 8d:14:4b:e9:95:cd:f1:62:4a:35:82:3f:ff:c4:50: 54:82:71:f5:0c:b2:d1:ec:02:ed:c4:6f:1f:fe:9d: 4d:1d:33:fb:f4:02:02:f4:e0:3d:01:43:bf:c1:ed: f1:41:40:93:a7:9a:7d:11:fc:0b:c6:d2:aa:6e:33: ee:7c:af:19:54:18:1a:2d:d6:9c:e9:bc:b9:d4:c8: f5:d9:ee:e7:bd:99:09:3e:4b:35:f3:d5:08:2c:95: de:77:2d:11:69:29:1e:0d:9f:5d:b8:ed:3c:bd:67: 60:0f:26:21:43:fb:96:a3:91:af:7a:ed:30:93:6f: 5d:09:c8:5e:14:8d:85:87:81:07:6f:dc:65:fd:cd: aa:6f:0d:e4:d2:a5:6b:ad:bb:85:ca:95:59:f6:1a: ca:dd:fd:04:d9:a5:76:53:b1:78:39:05:4b:3f:2e: 5d:62:fa:cf:bc:09:c4:77:86:49:9e:f1:ec:1b:79: 72:f4:08:b4:b0:49:fc:f6:c9:8b:85:c0:17:0b:4c: 7d:5c:fc:ea:95:8f:0d:e0:7f:43:74:3f:49:fe:8b: a5:c9:a2:5b:f1:06:b9:20:f6:fa:93:e2:cd:ab:0a: 1b:1c:74:05:0f:0d:c5:23:49:2d:4a:2e:80:7a:f9: 9c:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:91:0E:F7:CD:6F:3F:74:EF:87:DD:F5:D7:D0:B2:4A:C2:22:A6:3A X509v3 Authority Key Identifier: keyid:B6:F0:13:15:10:E6:2F:73:E5:F2:92:46:F9:C8:F6:91:81:1A:70:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a343a3a2f34382d3438203d3e203535363835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:e100:4::/48 Signature Algorithm: sha256WithRSAEncryption 78:ba:e3:54:8b:5b:97:89:31:36:ae:46:00:22:20:93:f6:13: 6e:50:6a:c1:0c:d4:c5:0a:87:ce:15:00:ea:2c:98:1a:82:e1: 2b:63:71:d5:96:6d:65:d6:38:75:0f:ae:bd:3e:14:ef:03:37: 59:39:28:be:e5:b4:b0:b3:87:ee:56:9d:15:de:d4:ea:d1:53: df:d4:73:a7:dc:3b:19:fb:f8:91:4b:f5:f5:4a:4d:e1:3e:1e: 9e:ef:a4:9f:7e:93:90:de:b9:7d:29:97:5d:32:8e:1a:c1:03: 1b:9b:38:2d:49:ff:fd:7c:ac:26:d2:59:7f:8f:9b:31:30:a9: 4b:a6:ff:4d:26:d2:f5:1c:48:b9:59:c1:7d:7d:e8:32:50:66: 2f:61:49:ff:9b:ac:e6:10:27:29:26:2b:b0:07:8e:d9:a9:fe: c6:47:e1:54:d3:0a:72:c8:1f:8c:0c:ad:5d:a0:7c:e1:3d:fe: 8b:ab:94:c1:8d:ee:7b:3b:58:d7:2d:b2:b5:ea:9c:59:8d:e7: 66:2a:cd:5f:70:bf:5a:92:91:25:67:7e:51:25:cc:f6:55:77: 41:ab:64:ba:1f:58:25:bc:2e:d5:b7:f2:18:35:bf:7e:aa:a7: 21:30:11:9f:b9:da:5e:ab:7e:97:5c:40:5a:88:6b:33:27:5f: 53:6c:36:fe -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUcXVNvCLdlnTerqXjhuew/qfLg0gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjZGMDEzMTUxMEU2MkY3M0U1RjI5MjQ2RjlDOEY2OTE4 MTFBNzA0RDAeFw0yNTA5MjYxMjU3MTdaFw0yNjA5MjUxMzAyMTdaMDMxMTAvBgNV BAMTKEFCOTEwRUY3Q0Q2RjNGNzRFRjg3RERGNUQ3RDBCMjRBQzIyMkE2M0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDdrToZQoWt+1Bj4+2xSI0US+mV zfFiSjWCP//EUFSCcfUMstHsAu3Ebx/+nU0dM/v0AgL04D0BQ7/B7fFBQJOnmn0R /AvG0qpuM+58rxlUGBot1pzpvLnUyPXZ7ue9mQk+SzXz1Qgsld53LRFpKR4Nn124 7Ty9Z2APJiFD+5ajka967TCTb10JyF4UjYWHgQdv3GX9zapvDeTSpWutu4XKlVn2 Gsrd/QTZpXZTsXg5BUs/Ll1i+s+8CcR3hkme8ewbeXL0CLSwSfz2yYuFwBcLTH1c /OqVjw3gf0N0P0n+i6XJolvxBrkg9vqT4s2rChscdAUPDcUjSS1KLoB6+ZwjAgMB AAGjggI3MIICMzAdBgNVHQ4EFgQUq5EO981vP3Tvh93119CySsIipjowHwYDVR0j BBgwFoAUtvATFRDmL3Pl8pJG+cj2kYEacE0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NWQ4ZGFiNC04YmI2LTRlZDAtOGRhYi01YTQwNjE2N2I5OWQvMC9CNkYwMTMxNTEw RTYyRjczRTVGMjkyNDZGOUM4RjY5MTgxMUE3MDRELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjZGMDEzMTUxMEU2MkY3M0U1RjI5MjQ2RjlDOEY2OTE4MTFB NzA0RC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg1ZDhkYWI0LThiYjYtNGVkMC04 ZGFiLTVhNDA2MTY3Yjk5ZC8wLzMyMzQzMDM0M2E2NTMxMzAzMDNhMzQzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzNTM1MzYzODM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAThAAAEMA0G CSqGSIb3DQEBCwUAA4IBAQB4uuNUi1uXiTE2rkYAIiCT9hNuUGrBDNTFCofOFQDq LJgaguErY3HVlm1l1jh1D669PhTvAzdZOSi+5bSws4fuVp0V3tTq0VPf1HOn3DsZ +/iRS/X1Sk3hPh6e76SffpOQ3rl9KZddMo4awQMbmzgtSf/9fKwm0ll/j5sxMKlL pv9NJtL1HEi5WcF9fegyUGYvYUn/m6zmECcpJiuwB47Zqf7GR+FU0wpyyB+MDK1d oHzhPf6Lq5TBje57O1jXLbK16pxZjedmKs1fcL9akpElZ35RJcz2VXdBq2S6H1gl vC7Vt/IYNb9+qqchMBGfudpeq36XXEBaiGszJ19TbDb+ -----END CERTIFICATE-----Generated at Mon Oct 20 13:11:53 2025 by rpki-client