$ rpki-client -vvf repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a383a3a2f34382d3438203d3e203535363835.roa File: 323430343a653130303a383a3a2f34382d3438203d3e203535363835.roa (raw, json) Hash identifier: 4iWiI8a0VONvJfIfKQ7QgD6Lp1agBANtloPX8OJDC+I= Subject key identifier: 1D:51:3D:E3:0E:07:86:06:18:8A:6D:0E:1A:61:A5:6A:40:1F:0A:DD Certificate issuer: /CN=B6F0131510E62F73E5F29246F9C8F691811A704D Certificate serial: 774BE68EF1FA7E3924F8D4D34D99B1761EA8E332 Authority key identifier: B6:F0:13:15:10:E6:2F:73:E5:F2:92:46:F9:C8:F6:91:81:1A:70:4D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a383a3a2f34382d3438203d3e203535363835.roa Signing time: Fri 26 Sep 2025 13:02:17 +0000 ROA not before: Fri 26 Sep 2025 12:57:17 +0000 ROA not after: Fri 25 Sep 2026 13:02:17 +0000 asID: 55685 IP address blocks: 2404:e100:8::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.crl rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 11:48:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:4b:e6:8e:f1:fa:7e:39:24:f8:d4:d3:4d:99:b1:76:1e:a8:e3:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B6F0131510E62F73E5F29246F9C8F691811A704D Validity Not Before: Sep 26 12:57:17 2025 GMT Not After : Sep 25 13:02:17 2026 GMT Subject: CN=1D513DE30E078606188A6D0E1A61A56A401F0ADD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:b7:52:40:1c:51:7d:f6:78:60:56:b4:65:83: ea:3b:77:af:aa:de:59:51:ae:dd:79:0f:d7:60:5e: 63:fb:46:02:61:85:fc:84:d7:03:32:aa:2c:c0:2a: 59:19:c1:30:b0:62:d7:c0:40:11:d5:a6:19:74:66: 6f:50:e7:75:c5:d2:81:5a:1b:42:b7:34:48:a8:83: 27:15:5c:c9:1c:50:7b:ef:df:b6:cf:52:52:bd:c1: dc:3b:c7:f4:90:7b:93:bd:1e:bd:5d:c1:f4:c5:c5: e2:b0:2e:bb:32:6b:51:c5:bd:ac:cf:71:f7:09:8a: 37:82:2e:1e:9a:11:bd:e1:43:8a:ea:82:20:15:fa: e8:c8:f3:ae:a4:fa:5f:ef:35:ea:fb:24:52:c8:9c: b5:3d:55:0c:b1:51:e9:b1:68:e9:55:24:b2:fb:da: c2:74:dc:a1:48:b6:b3:5c:cd:0a:12:92:18:a8:3f: e6:f7:5c:cc:b7:a6:d3:b3:d4:6e:aa:0e:d8:2d:a4: f5:55:1d:82:c7:1b:01:45:c1:87:aa:2b:68:f7:93: b9:73:bd:57:26:b6:04:87:f9:1a:5b:5b:7d:34:94: 90:5a:bb:7a:75:cc:79:8c:1b:34:ac:83:49:ef:27: 94:a3:7c:5c:92:b2:49:ea:87:91:73:19:57:98:6e: 00:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:51:3D:E3:0E:07:86:06:18:8A:6D:0E:1A:61:A5:6A:40:1F:0A:DD X509v3 Authority Key Identifier: keyid:B6:F0:13:15:10:E6:2F:73:E5:F2:92:46:F9:C8:F6:91:81:1A:70:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a383a3a2f34382d3438203d3e203535363835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:e100:8::/48 Signature Algorithm: sha256WithRSAEncryption 73:49:18:de:d4:d3:29:2c:4f:d4:65:27:1c:27:ac:ff:8b:50: ae:1b:5b:07:6a:44:47:87:d9:bf:56:40:e5:36:09:ab:dc:07: 31:c5:a2:ab:0e:6f:75:9c:1f:ed:42:85:89:d8:bd:f3:c6:2a: a8:fc:05:62:a0:88:f2:bf:a0:4d:a9:57:79:45:e5:74:6c:24: 19:ad:8e:cf:e8:98:71:29:26:e6:94:7d:b7:8d:a9:25:44:7b: 5e:16:8c:01:38:db:72:b4:23:0a:9c:a4:f5:15:7c:bc:3c:58: 1f:f3:f5:cb:90:74:cd:91:ab:63:87:6c:80:2b:06:75:bc:c9: 65:18:cd:8c:86:fa:68:ea:3a:f4:6b:74:64:2c:42:c6:13:b4: ac:12:97:19:c7:e5:41:26:31:35:af:33:1d:e1:43:e9:e5:b5: 8e:7f:2e:97:8f:b8:98:be:29:b5:9b:4e:2b:3b:c1:51:b0:5f: ea:ae:be:68:98:aa:10:ff:e0:66:e5:7e:b3:f0:cf:02:ed:1f: d5:53:98:b0:b7:94:0c:65:85:cf:48:99:98:cd:d9:9f:ee:d6: 91:d6:8e:ed:ba:c2:ed:de:0d:d8:78:fd:23:c0:c6:20:2b:ac: 26:9c:bf:11:9b:ba:e3:24:8f:65:6a:4c:1f:4b:1a:9c:40:c1: 80:a9:8e:d1 -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUd0vmjvH6fjkk+NTTTZmxdh6o4zIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjZGMDEzMTUxMEU2MkY3M0U1RjI5MjQ2RjlDOEY2OTE4 MTFBNzA0RDAeFw0yNTA5MjYxMjU3MTdaFw0yNjA5MjUxMzAyMTdaMDMxMTAvBgNV BAMTKDFENTEzREUzMEUwNzg2MDYxODhBNkQwRTFBNjFBNTZBNDAxRjBBREQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCbt1JAHFF99nhgVrRlg+o7d6+q 3llRrt15D9dgXmP7RgJhhfyE1wMyqizAKlkZwTCwYtfAQBHVphl0Zm9Q53XF0oFa G0K3NEiogycVXMkcUHvv37bPUlK9wdw7x/SQe5O9Hr1dwfTFxeKwLrsya1HFvazP cfcJijeCLh6aEb3hQ4rqgiAV+ujI866k+l/vNer7JFLInLU9VQyxUemxaOlVJLL7 2sJ03KFItrNczQoSkhioP+b3XMy3ptOz1G6qDtgtpPVVHYLHGwFFwYeqK2j3k7lz vVcmtgSH+RpbW300lJBau3p1zHmMGzSsg0nvJ5SjfFySsknqh5FzGVeYbgCDAgMB AAGjggI3MIICMzAdBgNVHQ4EFgQUHVE94w4HhgYYim0OGmGlakAfCt0wHwYDVR0j BBgwFoAUtvATFRDmL3Pl8pJG+cj2kYEacE0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NWQ4ZGFiNC04YmI2LTRlZDAtOGRhYi01YTQwNjE2N2I5OWQvMC9CNkYwMTMxNTEw RTYyRjczRTVGMjkyNDZGOUM4RjY5MTgxMUE3MDRELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjZGMDEzMTUxMEU2MkY3M0U1RjI5MjQ2RjlDOEY2OTE4MTFB NzA0RC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg1ZDhkYWI0LThiYjYtNGVkMC04 ZGFiLTVhNDA2MTY3Yjk5ZC8wLzMyMzQzMDM0M2E2NTMxMzAzMDNhMzgzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzNTM1MzYzODM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAThAAAIMA0G CSqGSIb3DQEBCwUAA4IBAQBzSRje1NMpLE/UZSccJ6z/i1CuG1sHakRHh9m/VkDl Ngmr3AcxxaKrDm91nB/tQoWJ2L3zxiqo/AVioIjyv6BNqVd5ReV0bCQZrY7P6Jhx KSbmlH23jaklRHteFowBONtytCMKnKT1FXy8PFgf8/XLkHTNkatjh2yAKwZ1vMll GM2Mhvpo6jr0a3RkLELGE7SsEpcZx+VBJjE1rzMd4UPp5bWOfy6Xj7iYvim1m04r O8FRsF/qrr5omKoQ/+Bm5X6z8M8C7R/VU5iwt5QMZYXPSJmYzdmf7taR1o7tusLt 3g3YeP0jwMYgK6wmnL8Rm7rjJI9lakwfSxqcQMGAqY7R -----END CERTIFICATE-----Generated at Mon Oct 20 13:11:08 2025 by rpki-client