$ rpki-client -vvf repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a353a3a2f34382d3438203d3e203535363835.roa File: 323430343a653130303a353a3a2f34382d3438203d3e203535363835.roa (raw, json) Hash identifier: 54Ws6/C0Nj7LG0NuogcZASv8zr7a7LbWjFyiZDSNhXs= Subject key identifier: A7:BA:D0:33:C6:79:D1:C7:85:40:EA:2A:E5:7F:E1:2E:B7:82:15:D3 Certificate issuer: /CN=B6F0131510E62F73E5F29246F9C8F691811A704D Certificate serial: 7716739EC15F1D79C6EB29FA733FFBFAA119F49B Authority key identifier: B6:F0:13:15:10:E6:2F:73:E5:F2:92:46:F9:C8:F6:91:81:1A:70:4D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a353a3a2f34382d3438203d3e203535363835.roa Signing time: Fri 26 Sep 2025 13:02:17 +0000 ROA not before: Fri 26 Sep 2025 12:57:17 +0000 ROA not after: Fri 25 Sep 2026 13:02:17 +0000 asID: 55685 IP address blocks: 2404:e100:5::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.crl rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 11:48:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:16:73:9e:c1:5f:1d:79:c6:eb:29:fa:73:3f:fb:fa:a1:19:f4:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B6F0131510E62F73E5F29246F9C8F691811A704D Validity Not Before: Sep 26 12:57:17 2025 GMT Not After : Sep 25 13:02:17 2026 GMT Subject: CN=A7BAD033C679D1C78540EA2AE57FE12EB78215D3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:d3:d6:7b:d4:4e:89:bb:59:34:d6:2f:94:d4: 68:fc:a5:59:24:8b:c6:05:ac:cf:09:19:38:68:cb: e4:bf:d0:31:34:b7:e7:8a:84:63:57:61:a5:16:b2: 55:c3:9a:28:70:fc:16:d6:ec:ff:e3:0a:f9:b6:4c: 95:c5:c2:33:01:e2:d0:d9:4d:3d:ae:44:ac:48:71: b9:fb:1f:a8:28:d0:6e:fc:87:bc:d8:1a:70:96:fe: b1:80:7c:74:29:8f:6c:71:07:11:62:f3:22:16:21: 9f:a8:be:76:53:23:31:04:e8:de:68:91:8d:4e:08: 3c:47:61:76:dd:21:37:66:0f:2d:38:1d:b6:6b:2b: 1a:a2:e8:dd:6d:97:1f:1c:e6:00:e8:53:4e:17:89: a5:6a:6f:62:e4:2a:a2:05:98:6c:43:de:a5:10:f6: ea:22:b1:ba:3c:06:5f:00:dd:50:5c:80:a9:98:2f: ed:98:e7:a8:2d:1c:f3:66:d1:ee:59:36:a5:a3:9c: bf:47:25:4f:6a:68:f9:99:8b:f0:6c:19:c1:4a:64: ea:6a:c7:00:fa:b8:d3:20:75:39:0d:fb:29:19:72: 44:ed:5a:7f:de:c5:86:8a:8f:4e:36:1b:d4:23:42: 38:1c:4e:59:9b:6c:a3:0e:33:4a:22:2d:5e:83:f2: 53:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:BA:D0:33:C6:79:D1:C7:85:40:EA:2A:E5:7F:E1:2E:B7:82:15:D3 X509v3 Authority Key Identifier: keyid:B6:F0:13:15:10:E6:2F:73:E5:F2:92:46:F9:C8:F6:91:81:1A:70:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a353a3a2f34382d3438203d3e203535363835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:e100:5::/48 Signature Algorithm: sha256WithRSAEncryption 16:12:d7:b6:20:7c:40:93:56:f4:3f:58:05:d0:6e:8e:32:3a: b3:19:54:be:35:fa:1b:33:f1:4b:a2:66:ff:d9:18:4d:cb:3c: 14:d7:63:d9:0d:92:4a:07:c3:f8:1a:9e:ac:e1:a5:91:43:c4: b6:ae:9c:80:b4:26:57:52:14:96:d8:d8:cb:c0:99:72:a2:3c: 24:d4:c1:91:0a:3d:e0:6a:06:ff:8b:81:1a:63:ab:97:10:b1: 1d:07:04:4b:24:6b:d1:48:48:2c:cd:a0:55:ed:09:23:74:fc: ef:9b:2e:c7:de:d2:25:be:2c:96:ee:29:9b:c7:fe:e4:f8:02: 8e:58:e1:95:6e:fe:de:31:b6:d9:a9:44:46:45:e6:62:7e:dc: 98:b6:81:c2:8f:7b:8e:57:5c:3d:99:89:f8:ef:6c:10:25:f0: 2d:bb:73:13:5f:51:91:31:ce:40:0a:23:cc:85:0c:f3:cb:93: b9:52:d3:17:c4:96:be:1a:6b:b5:c9:24:d4:db:36:76:06:c6: 55:91:65:71:90:0e:22:70:06:60:79:7b:0a:50:42:e0:00:ee: 97:e6:d9:3d:75:73:b6:a2:83:9c:c5:15:09:07:bb:94:0f:8d: 74:78:52:f5:dc:d3:f6:ef:84:a2:aa:e7:e3:3d:4d:44:bb:6d: 6a:22:f0:ca -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUdxZznsFfHXnG6yn6cz/7+qEZ9JswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjZGMDEzMTUxMEU2MkY3M0U1RjI5MjQ2RjlDOEY2OTE4 MTFBNzA0RDAeFw0yNTA5MjYxMjU3MTdaFw0yNjA5MjUxMzAyMTdaMDMxMTAvBgNV BAMTKEE3QkFEMDMzQzY3OUQxQzc4NTQwRUEyQUU1N0ZFMTJFQjc4MjE1RDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDy09Z71E6Ju1k01i+U1Gj8pVkk i8YFrM8JGThoy+S/0DE0t+eKhGNXYaUWslXDmihw/BbW7P/jCvm2TJXFwjMB4tDZ TT2uRKxIcbn7H6go0G78h7zYGnCW/rGAfHQpj2xxBxFi8yIWIZ+ovnZTIzEE6N5o kY1OCDxHYXbdITdmDy04HbZrKxqi6N1tlx8c5gDoU04XiaVqb2LkKqIFmGxD3qUQ 9uoisbo8Bl8A3VBcgKmYL+2Y56gtHPNm0e5ZNqWjnL9HJU9qaPmZi/BsGcFKZOpq xwD6uNMgdTkN+ykZckTtWn/exYaKj042G9QjQjgcTlmbbKMOM0oiLV6D8lOxAgMB AAGjggI3MIICMzAdBgNVHQ4EFgQUp7rQM8Z50ceFQOoq5X/hLreCFdMwHwYDVR0j BBgwFoAUtvATFRDmL3Pl8pJG+cj2kYEacE0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NWQ4ZGFiNC04YmI2LTRlZDAtOGRhYi01YTQwNjE2N2I5OWQvMC9CNkYwMTMxNTEw RTYyRjczRTVGMjkyNDZGOUM4RjY5MTgxMUE3MDRELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjZGMDEzMTUxMEU2MkY3M0U1RjI5MjQ2RjlDOEY2OTE4MTFB NzA0RC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg1ZDhkYWI0LThiYjYtNGVkMC04 ZGFiLTVhNDA2MTY3Yjk5ZC8wLzMyMzQzMDM0M2E2NTMxMzAzMDNhMzUzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzNTM1MzYzODM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAThAAAFMA0G CSqGSIb3DQEBCwUAA4IBAQAWEte2IHxAk1b0P1gF0G6OMjqzGVS+NfobM/FLomb/ 2RhNyzwU12PZDZJKB8P4Gp6s4aWRQ8S2rpyAtCZXUhSW2NjLwJlyojwk1MGRCj3g agb/i4EaY6uXELEdBwRLJGvRSEgszaBV7QkjdPzvmy7H3tIlviyW7imbx/7k+AKO WOGVbv7eMbbZqURGReZiftyYtoHCj3uOV1w9mYn472wQJfAtu3MTX1GRMc5ACiPM hQzzy5O5UtMXxJa+Gmu1ySTU2zZ2BsZVkWVxkA4icAZgeXsKUELgAO6X5tk9dXO2 ooOcxRUJB7uUD410eFL13NP274SiqufjPU1Eu21qIvDK -----END CERTIFICATE-----Generated at Mon Oct 20 13:13:07 2025 by rpki-client