$ rpki-client -vvf repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a393a3a2f34382d3438203d3e203535363835.roa File: 323430343a653130303a393a3a2f34382d3438203d3e203535363835.roa (raw, json) Hash identifier: fCElwUFluYmb5Ht5zRsYlMULFMQG3w8B4eg+VetH14g= Subject key identifier: C7:CA:38:9D:12:49:43:87:0B:C9:AB:CE:AE:8C:63:D4:B0:A4:5E:C0 Certificate issuer: /CN=B6F0131510E62F73E5F29246F9C8F691811A704D Certificate serial: 305817BEE7BBDC369B75C0A6EF8DFB594A21C462 Authority key identifier: B6:F0:13:15:10:E6:2F:73:E5:F2:92:46:F9:C8:F6:91:81:1A:70:4D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a393a3a2f34382d3438203d3e203535363835.roa Signing time: Fri 26 Sep 2025 13:02:17 +0000 ROA not before: Fri 26 Sep 2025 12:57:17 +0000 ROA not after: Fri 25 Sep 2026 13:02:17 +0000 asID: 55685 IP address blocks: 2404:e100:9::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.crl rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 11:48:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:58:17:be:e7:bb:dc:36:9b:75:c0:a6:ef:8d:fb:59:4a:21:c4:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B6F0131510E62F73E5F29246F9C8F691811A704D Validity Not Before: Sep 26 12:57:17 2025 GMT Not After : Sep 25 13:02:17 2026 GMT Subject: CN=C7CA389D124943870BC9ABCEAE8C63D4B0A45EC0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:f1:04:9a:79:e2:37:2b:51:2b:ba:0f:58:3c: ec:08:90:ab:77:53:39:15:e8:f4:b0:e3:f2:0b:65: 7f:66:cb:6c:ff:96:08:61:60:8c:0d:e4:3c:5b:7e: 2f:2b:64:30:48:e3:42:e0:48:ff:cc:0f:b7:67:f2: 76:46:9c:15:b6:3a:c1:c7:1e:db:55:84:a6:a8:d6: 41:40:44:ea:0f:05:43:83:96:e8:d9:84:63:08:64: eb:e8:eb:1e:b4:10:7d:cf:27:45:21:4f:87:09:66: 57:a4:f8:23:08:7d:e0:65:34:c6:a0:49:30:37:fa: 17:7c:4f:71:de:94:50:c7:15:3c:96:63:48:80:81: 0f:2f:01:36:2d:a9:d4:bd:d7:0b:e0:24:ff:c8:ba: 43:04:2b:88:98:9b:af:a8:0b:6b:8d:5b:ce:f1:1d: 5d:e9:18:88:7e:d4:c5:f2:a6:c9:8b:55:53:33:9a: 25:5d:52:94:96:a8:c4:7e:04:e2:0f:34:5d:59:d5: ff:7e:60:35:c1:36:42:0b:d5:33:d5:53:73:fa:9d: 8f:b7:e7:b6:b7:a2:e2:d3:3d:e2:66:73:52:0f:51: 20:4f:80:e0:57:65:75:74:da:fc:d8:54:26:a5:d6: bb:69:57:7b:b6:fc:28:b4:91:8a:28:0b:b5:30:66: 70:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:CA:38:9D:12:49:43:87:0B:C9:AB:CE:AE:8C:63:D4:B0:A4:5E:C0 X509v3 Authority Key Identifier: keyid:B6:F0:13:15:10:E6:2F:73:E5:F2:92:46:F9:C8:F6:91:81:1A:70:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a393a3a2f34382d3438203d3e203535363835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:e100:9::/48 Signature Algorithm: sha256WithRSAEncryption 1c:53:2a:7e:86:36:b3:47:67:65:ef:4e:19:07:f3:a9:35:37: 8b:ad:19:1c:2b:0a:e7:95:65:68:a2:7b:57:b3:ca:8a:e7:fd: f6:dc:ce:da:5f:55:6c:69:da:f4:c1:36:29:da:4a:70:e8:c4: e3:d5:98:56:24:71:bd:d2:73:19:05:d2:fb:27:d3:d1:70:33: ad:ae:58:7d:4a:45:8f:a5:86:ee:36:7c:57:90:e6:75:06:84: e9:0b:49:92:83:e2:e1:dd:c8:71:a0:06:21:3e:a3:00:8e:ed: 07:3d:1f:f4:b8:ed:06:fe:44:b8:1f:56:fb:d3:24:ec:0a:08: 65:cb:bb:6b:f6:93:74:9d:d9:d3:be:fa:df:b4:b7:2f:7a:33: cf:b1:5d:e7:5f:b2:d0:7b:11:76:1b:5c:2a:3e:df:30:64:60: 6a:c7:47:6b:fb:04:d2:36:e6:57:d3:51:c9:dc:bf:4b:1b:10: 1b:39:40:7f:fd:5b:cf:62:e3:55:84:50:60:b6:dd:bb:4c:0f: d6:e2:89:75:b8:53:cb:f0:14:2f:22:03:96:c0:c7:af:70:58: e0:b5:ad:76:8e:ca:73:15:dd:fe:88:a0:49:6f:62:5a:95:ee: ea:5a:9d:30:2d:0d:1c:27:07:df:6e:0a:0f:61:d0:f2:ef:c0: 7a:c2:76:a1 -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUMFgXvue73DabdcCm7437WUohxGIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjZGMDEzMTUxMEU2MkY3M0U1RjI5MjQ2RjlDOEY2OTE4 MTFBNzA0RDAeFw0yNTA5MjYxMjU3MTdaFw0yNjA5MjUxMzAyMTdaMDMxMTAvBgNV BAMTKEM3Q0EzODlEMTI0OTQzODcwQkM5QUJDRUFFOEM2M0Q0QjBBNDVFQzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/8QSaeeI3K1Erug9YPOwIkKt3 UzkV6PSw4/ILZX9my2z/lghhYIwN5Dxbfi8rZDBI40LgSP/MD7dn8nZGnBW2OsHH HttVhKao1kFAROoPBUODlujZhGMIZOvo6x60EH3PJ0UhT4cJZlek+CMIfeBlNMag STA3+hd8T3HelFDHFTyWY0iAgQ8vATYtqdS91wvgJP/IukMEK4iYm6+oC2uNW87x HV3pGIh+1MXypsmLVVMzmiVdUpSWqMR+BOIPNF1Z1f9+YDXBNkIL1TPVU3P6nY+3 57a3ouLTPeJmc1IPUSBPgOBXZXV02vzYVCal1rtpV3u2/Ci0kYooC7UwZnAvAgMB AAGjggI3MIICMzAdBgNVHQ4EFgQUx8o4nRJJQ4cLyavOroxj1LCkXsAwHwYDVR0j BBgwFoAUtvATFRDmL3Pl8pJG+cj2kYEacE0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NWQ4ZGFiNC04YmI2LTRlZDAtOGRhYi01YTQwNjE2N2I5OWQvMC9CNkYwMTMxNTEw RTYyRjczRTVGMjkyNDZGOUM4RjY5MTgxMUE3MDRELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjZGMDEzMTUxMEU2MkY3M0U1RjI5MjQ2RjlDOEY2OTE4MTFB NzA0RC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg1ZDhkYWI0LThiYjYtNGVkMC04 ZGFiLTVhNDA2MTY3Yjk5ZC8wLzMyMzQzMDM0M2E2NTMxMzAzMDNhMzkzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzNTM1MzYzODM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAThAAAJMA0G CSqGSIb3DQEBCwUAA4IBAQAcUyp+hjazR2dl704ZB/OpNTeLrRkcKwrnlWVoontX s8qK5/323M7aX1Vsadr0wTYp2kpw6MTj1ZhWJHG90nMZBdL7J9PRcDOtrlh9SkWP pYbuNnxXkOZ1BoTpC0mSg+Lh3chxoAYhPqMAju0HPR/0uO0G/kS4H1b70yTsCghl y7tr9pN0ndnTvvrftLcvejPPsV3nX7LQexF2G1wqPt8wZGBqx0dr+wTSNuZX01HJ 3L9LGxAbOUB//VvPYuNVhFBgtt27TA/W4ol1uFPL8BQvIgOWwMevcFjgta12jspz Fd3+iKBJb2Jale7qWp0wLQ0cJwffbgoPYdDy78B6wnah -----END CERTIFICATE-----Generated at Mon Oct 20 13:05:15 2025 by rpki-client