$ rpki-client -vvf repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a373a3a2f34382d3438203d3e203535363835.roa File: 323430343a653130303a373a3a2f34382d3438203d3e203535363835.roa (raw, json) Hash identifier: oadmTMHsWeQ56jlu4vaG8KP+CZya0+X02kFZN8W1+Ms= Subject key identifier: B8:30:E6:5C:4C:94:30:F8:AB:D7:8B:21:06:FB:2C:5F:C4:1D:12:55 Certificate issuer: /CN=B6F0131510E62F73E5F29246F9C8F691811A704D Certificate serial: 4769632A511B6C608F2D9FFCCF9A3C528DB34A79 Authority key identifier: B6:F0:13:15:10:E6:2F:73:E5:F2:92:46:F9:C8:F6:91:81:1A:70:4D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a373a3a2f34382d3438203d3e203535363835.roa Signing time: Fri 26 Sep 2025 13:02:18 +0000 ROA not before: Fri 26 Sep 2025 12:57:18 +0000 ROA not after: Fri 25 Sep 2026 13:02:18 +0000 asID: 55685 IP address blocks: 2404:e100:7::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.crl rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 11:48:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:69:63:2a:51:1b:6c:60:8f:2d:9f:fc:cf:9a:3c:52:8d:b3:4a:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B6F0131510E62F73E5F29246F9C8F691811A704D Validity Not Before: Sep 26 12:57:18 2025 GMT Not After : Sep 25 13:02:18 2026 GMT Subject: CN=B830E65C4C9430F8ABD78B2106FB2C5FC41D1255 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:80:15:9d:cd:20:56:5d:8e:0e:f6:92:24:14: 24:41:bb:b2:a3:9b:cb:41:b0:0b:87:ba:98:41:62: 2e:b6:3c:15:be:c9:ee:f0:8a:2c:12:e8:12:28:13: c3:59:2f:58:78:2f:4a:7e:ef:da:69:c5:50:28:3b: 04:cb:4f:69:47:b3:2b:71:1a:bb:2c:84:15:96:7f: ec:fb:32:0d:25:0b:82:d6:01:89:30:0e:25:26:f3: 86:1e:f7:b5:b3:04:f0:af:cd:10:cf:fa:cc:e0:d1: 9c:f0:c5:3e:2b:78:3e:b3:54:11:09:0f:b7:00:13: 1d:45:8c:20:64:d6:02:01:33:b8:b4:a9:3a:80:b6: bf:55:57:a7:94:7d:bf:8a:88:2c:16:37:3e:c4:60: c8:a7:e8:5c:f1:e2:b7:61:62:9d:91:72:59:b7:6b: d7:5b:f5:3a:e7:51:0c:fb:87:9a:38:72:3b:53:e1: 07:43:18:fe:d2:37:b3:28:65:c0:fc:07:2b:1f:2e: ac:22:be:2f:52:60:21:c2:c2:03:c8:54:56:ca:c5: bb:b4:1e:78:05:d7:2a:76:7f:fd:24:bc:29:13:e9: c0:98:58:d4:6c:b2:c1:95:61:e4:70:2d:f5:75:94: 4a:9c:dd:f9:cd:e6:eb:cf:18:f7:d8:59:18:42:a4: f9:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:30:E6:5C:4C:94:30:F8:AB:D7:8B:21:06:FB:2C:5F:C4:1D:12:55 X509v3 Authority Key Identifier: keyid:B6:F0:13:15:10:E6:2F:73:E5:F2:92:46:F9:C8:F6:91:81:1A:70:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a373a3a2f34382d3438203d3e203535363835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:e100:7::/48 Signature Algorithm: sha256WithRSAEncryption 90:92:28:2f:36:4c:be:2d:52:dc:c7:f0:ea:89:51:33:02:7c: 6f:92:b1:43:d7:46:ae:fe:05:f4:4e:88:37:7f:64:14:7e:b6: ab:e9:97:d1:7b:1a:07:cf:b6:bd:a3:6a:5e:37:e4:c2:76:03: 2b:12:58:18:68:c3:28:a9:db:2d:f8:de:2a:36:0c:6d:be:26: 25:c0:b3:26:ed:16:3d:78:ad:eb:50:e0:2b:34:da:a4:0b:42: 51:5a:31:a8:b1:f4:37:0d:26:83:4f:da:05:6e:bf:f1:c8:6d: 01:3b:d4:52:38:6a:57:2c:05:b8:5b:5e:52:03:40:3a:5d:28: ca:18:86:16:10:35:01:60:15:1d:95:48:4c:2c:a1:4d:e4:c6: 04:93:53:f2:df:7d:df:97:87:b9:84:8d:91:b1:6f:94:8b:cb: 51:d0:45:6a:17:7e:19:f6:c8:d3:39:b9:2b:7a:66:8f:38:16: 06:ca:4a:1b:dc:e1:09:d0:23:3c:01:c4:46:19:a6:5f:51:83: 2a:c9:41:69:bb:a4:ed:e7:5d:79:6e:7a:73:ae:0b:39:a3:65: 40:77:f7:e9:b0:46:ae:6c:92:8d:9f:24:8e:42:24:ad:31:bb: 76:57:c2:6e:49:15:31:58:e6:79:e5:6f:e0:01:cd:60:2e:9b: c4:a2:ee:3d -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUR2ljKlEbbGCPLZ/8z5o8Uo2zSnkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjZGMDEzMTUxMEU2MkY3M0U1RjI5MjQ2RjlDOEY2OTE4 MTFBNzA0RDAeFw0yNTA5MjYxMjU3MThaFw0yNjA5MjUxMzAyMThaMDMxMTAvBgNV BAMTKEI4MzBFNjVDNEM5NDMwRjhBQkQ3OEIyMTA2RkIyQzVGQzQxRDEyNTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6gBWdzSBWXY4O9pIkFCRBu7Kj m8tBsAuHuphBYi62PBW+ye7wiiwS6BIoE8NZL1h4L0p+79ppxVAoOwTLT2lHsytx GrsshBWWf+z7Mg0lC4LWAYkwDiUm84Ye97WzBPCvzRDP+szg0ZzwxT4reD6zVBEJ D7cAEx1FjCBk1gIBM7i0qTqAtr9VV6eUfb+KiCwWNz7EYMin6Fzx4rdhYp2Rclm3 a9db9TrnUQz7h5o4cjtT4QdDGP7SN7MoZcD8BysfLqwivi9SYCHCwgPIVFbKxbu0 HngF1yp2f/0kvCkT6cCYWNRsssGVYeRwLfV1lEqc3fnN5uvPGPfYWRhCpPl3AgMB AAGjggI3MIICMzAdBgNVHQ4EFgQUuDDmXEyUMPir14shBvssX8QdElUwHwYDVR0j BBgwFoAUtvATFRDmL3Pl8pJG+cj2kYEacE0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NWQ4ZGFiNC04YmI2LTRlZDAtOGRhYi01YTQwNjE2N2I5OWQvMC9CNkYwMTMxNTEw RTYyRjczRTVGMjkyNDZGOUM4RjY5MTgxMUE3MDRELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjZGMDEzMTUxMEU2MkY3M0U1RjI5MjQ2RjlDOEY2OTE4MTFB NzA0RC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg1ZDhkYWI0LThiYjYtNGVkMC04 ZGFiLTVhNDA2MTY3Yjk5ZC8wLzMyMzQzMDM0M2E2NTMxMzAzMDNhMzczYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzNTM1MzYzODM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAThAAAHMA0G CSqGSIb3DQEBCwUAA4IBAQCQkigvNky+LVLcx/DqiVEzAnxvkrFD10au/gX0Tog3 f2QUfrar6ZfRexoHz7a9o2peN+TCdgMrElgYaMMoqdst+N4qNgxtviYlwLMm7RY9 eK3rUOArNNqkC0JRWjGosfQ3DSaDT9oFbr/xyG0BO9RSOGpXLAW4W15SA0A6XSjK GIYWEDUBYBUdlUhMLKFN5MYEk1Py333fl4e5hI2RsW+Ui8tR0EVqF34Z9sjTObkr emaPOBYGykob3OEJ0CM8AcRGGaZfUYMqyUFpu6Tt5115bnpzrgs5o2VAd/fpsEau bJKNnySOQiStMbt2V8JuSRUxWOZ55W/gAc1gLpvEou49 -----END CERTIFICATE-----Generated at Mon Oct 20 13:10:35 2025 by rpki-client