$ rpki-client -vvf repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a613a3a2f34382d3438203d3e203535363835.roa File: 323430343a653130303a613a3a2f34382d3438203d3e203535363835.roa (raw, json) Hash identifier: 131kwdEfc6d3o8+p4HoToRfPZAc40haR4e/MdekWXww= Subject key identifier: 95:00:43:5D:0B:5C:3F:34:9E:39:04:DE:35:93:82:0D:6E:FB:A3:E9 Certificate issuer: /CN=B6F0131510E62F73E5F29246F9C8F691811A704D Certificate serial: 2CC4D82239294155B0F2ACB41E790C976E627079 Authority key identifier: B6:F0:13:15:10:E6:2F:73:E5:F2:92:46:F9:C8:F6:91:81:1A:70:4D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a613a3a2f34382d3438203d3e203535363835.roa Signing time: Tue 14 Oct 2025 03:02:58 +0000 ROA not before: Tue 14 Oct 2025 02:57:58 +0000 ROA not after: Tue 13 Oct 2026 03:02:58 +0000 asID: 55685 IP address blocks: 2404:e100:a::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.crl rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 11:48:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:c4:d8:22:39:29:41:55:b0:f2:ac:b4:1e:79:0c:97:6e:62:70:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B6F0131510E62F73E5F29246F9C8F691811A704D Validity Not Before: Oct 14 02:57:58 2025 GMT Not After : Oct 13 03:02:58 2026 GMT Subject: CN=9500435D0B5C3F349E3904DE3593820D6EFBA3E9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:b7:19:ef:86:26:ee:3d:99:cd:f5:0a:b2:46: 77:f3:b0:a1:76:88:b4:3f:2b:34:14:9e:45:ef:8f: ff:49:c3:e0:fa:3a:23:33:9c:cc:57:c6:d5:16:9f: 03:ca:98:08:0d:f6:3d:aa:21:f4:18:31:b2:ab:65: a0:10:e9:6f:86:ab:fb:17:bc:f1:f0:71:c0:bd:25: 35:14:ed:7c:ec:72:c6:9d:c5:17:2a:c9:8e:db:de: 21:a9:7b:de:be:88:6a:52:66:0d:67:c0:05:f6:7b: 41:30:80:05:f3:2c:e9:61:9c:52:8b:c9:ba:60:b6: a1:94:00:e9:e2:87:8f:06:4d:67:45:c2:46:86:d5: 64:c6:a7:4b:54:13:be:09:ce:71:47:b7:a8:59:0c: a6:e2:b4:dd:fd:00:20:23:3c:81:8b:3d:2d:5c:98: 25:da:1a:d9:81:a2:63:ae:c5:6a:d0:e7:94:15:f8: 0e:2e:dd:71:c2:48:94:d2:aa:b8:61:4d:91:33:1c: b9:2b:c6:d0:69:93:10:4d:78:c6:ac:82:83:7a:8f: 59:45:40:32:97:66:d6:65:55:4b:b2:a4:b9:26:41: cc:be:6e:2e:33:03:95:9b:e8:64:02:8b:29:c4:05: 19:5c:79:ec:6a:88:b4:2d:4d:d9:7e:3b:d9:64:22: 25:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:00:43:5D:0B:5C:3F:34:9E:39:04:DE:35:93:82:0D:6E:FB:A3:E9 X509v3 Authority Key Identifier: keyid:B6:F0:13:15:10:E6:2F:73:E5:F2:92:46:F9:C8:F6:91:81:1A:70:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a613a3a2f34382d3438203d3e203535363835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:e100:a::/48 Signature Algorithm: sha256WithRSAEncryption 13:e8:62:f9:5f:ca:99:0a:ac:77:15:41:3e:f8:41:55:36:9f: 5b:dd:5d:ff:af:3d:d9:68:bc:33:79:cc:54:d6:a8:f5:e8:f3: 9f:c2:3d:b1:26:ab:46:d8:fe:0a:93:9b:ab:73:43:83:56:46: c0:ed:11:8e:5e:7a:71:4f:b3:75:ea:8a:08:65:2a:26:ef:ab: b9:55:11:f6:40:b0:de:16:a0:ec:21:a7:2e:09:ed:ac:86:96: 5e:57:36:95:b2:e7:ed:19:eb:c9:4a:2b:08:cb:db:da:c1:ae: 7f:18:52:9b:14:66:7a:15:bc:61:8f:d5:ee:10:df:81:23:ab: 41:dc:0f:3b:ba:88:f3:3b:7f:13:a5:38:d2:f8:79:ec:7d:94: 78:e4:78:88:19:bf:6b:1a:6a:78:2f:19:5d:60:47:01:79:b3: 9d:1b:df:36:01:cd:ee:d0:94:9e:88:08:29:ec:8c:44:91:bc: ad:24:71:8b:18:23:3f:43:c2:62:87:60:e2:e5:63:38:fb:64: d6:d3:0b:17:89:0a:4f:de:b4:34:2a:17:99:13:81:70:2d:e9: 2e:86:d0:c5:74:57:b3:d4:7c:e8:0c:34:f3:10:46:ae:f1:f8: 44:e3:7d:5e:6d:81:30:d2:17:4a:0b:a4:80:50:55:73:38:2a: e2:db:cb:ae -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIULMTYIjkpQVWw8qy0HnkMl25icHkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjZGMDEzMTUxMEU2MkY3M0U1RjI5MjQ2RjlDOEY2OTE4 MTFBNzA0RDAeFw0yNTEwMTQwMjU3NThaFw0yNjEwMTMwMzAyNThaMDMxMTAvBgNV BAMTKDk1MDA0MzVEMEI1QzNGMzQ5RTM5MDRERTM1OTM4MjBENkVGQkEzRTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDjtxnvhibuPZnN9QqyRnfzsKF2 iLQ/KzQUnkXvj/9Jw+D6OiMznMxXxtUWnwPKmAgN9j2qIfQYMbKrZaAQ6W+Gq/sX vPHwccC9JTUU7XzscsadxRcqyY7b3iGpe96+iGpSZg1nwAX2e0EwgAXzLOlhnFKL ybpgtqGUAOnih48GTWdFwkaG1WTGp0tUE74JznFHt6hZDKbitN39ACAjPIGLPS1c mCXaGtmBomOuxWrQ55QV+A4u3XHCSJTSqrhhTZEzHLkrxtBpkxBNeMasgoN6j1lF QDKXZtZlVUuypLkmQcy+bi4zA5Wb6GQCiynEBRlceexqiLQtTdl+O9lkIiVNAgMB AAGjggI3MIICMzAdBgNVHQ4EFgQUlQBDXQtcPzSeOQTeNZOCDW77o+kwHwYDVR0j BBgwFoAUtvATFRDmL3Pl8pJG+cj2kYEacE0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NWQ4ZGFiNC04YmI2LTRlZDAtOGRhYi01YTQwNjE2N2I5OWQvMC9CNkYwMTMxNTEw RTYyRjczRTVGMjkyNDZGOUM4RjY5MTgxMUE3MDRELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjZGMDEzMTUxMEU2MkY3M0U1RjI5MjQ2RjlDOEY2OTE4MTFB NzA0RC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg1ZDhkYWI0LThiYjYtNGVkMC04 ZGFiLTVhNDA2MTY3Yjk5ZC8wLzMyMzQzMDM0M2E2NTMxMzAzMDNhNjEzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzNTM1MzYzODM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAThAAAKMA0G CSqGSIb3DQEBCwUAA4IBAQAT6GL5X8qZCqx3FUE++EFVNp9b3V3/rz3ZaLwzecxU 1qj16POfwj2xJqtG2P4Kk5urc0ODVkbA7RGOXnpxT7N16ooIZSom76u5VRH2QLDe FqDsIacuCe2shpZeVzaVsuftGevJSisIy9vawa5/GFKbFGZ6Fbxhj9XuEN+BI6tB 3A87uojzO38TpTjS+HnsfZR45HiIGb9rGmp4LxldYEcBebOdG982Ac3u0JSeiAgp 7IxEkbytJHGLGCM/Q8Jih2Di5WM4+2TW0wsXiQpP3rQ0KheZE4FwLekuhtDFdFez 1HzoDDTzEEau8fhE431ebYEw0hdKC6SAUFVzOCri28uu -----END CERTIFICATE-----Generated at Mon Oct 20 13:11:22 2025 by rpki-client