$ rpki-client -vvf repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/323430353a613534303a313030373a3a2f34382d3438203d3e203338313536.roa File: 323430353a613534303a313030373a3a2f34382d3438203d3e203338313536.roa (raw, json) Hash identifier: hWq7g/Qlu0oGDMvTSekQnmXxvckLppq0UC61SgL6N0g= Subject key identifier: 39:97:4F:3F:44:AF:76:AB:D9:C1:1B:ED:09:69:E1:FD:28:64:9B:03 Certificate issuer: /CN=5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4 Certificate serial: 70968AC85BDF4EDE030E112E734AF12F74E527AA Authority key identifier: 5B:D0:FD:00:EB:8A:CC:F5:09:29:F6:B0:F5:6C:75:00:6A:4D:58:C4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/323430353a613534303a313030373a3a2f34382d3438203d3e203338313536.roa Signing time: Mon 29 Sep 2025 05:02:59 +0000 ROA not before: Mon 29 Sep 2025 04:57:59 +0000 ROA not after: Mon 28 Sep 2026 05:02:59 +0000 asID: 38156 IP address blocks: 2405:a540:1007::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.crl rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 02:02:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:96:8a:c8:5b:df:4e:de:03:0e:11:2e:73:4a:f1:2f:74:e5:27:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4 Validity Not Before: Sep 29 04:57:59 2025 GMT Not After : Sep 28 05:02:59 2026 GMT Subject: CN=39974F3F44AF76ABD9C11BED0969E1FD28649B03 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:a6:fa:bc:85:e9:e3:7e:36:21:c6:44:27:c9: 62:2c:96:d2:14:7f:aa:61:5f:35:8f:bb:fe:eb:fb: 3f:e3:9b:b5:79:18:28:0f:b8:20:60:f6:42:22:ea: fd:16:04:46:c6:4c:d0:c7:29:a9:da:7d:5c:52:40: 7e:11:5f:26:be:2f:1d:17:0b:17:dc:18:8a:c5:ac: 62:75:9e:0d:a8:e8:b1:6f:40:1e:63:dd:d0:41:e4: f6:2c:a2:13:de:ed:a3:24:26:84:bb:80:ae:f2:90: 3a:9a:4e:a1:09:5c:48:be:db:40:a3:3e:04:fc:43: 91:d7:6f:af:40:08:d5:17:52:78:ed:00:69:0b:ce: dc:1a:25:63:ab:69:ff:15:e4:5c:7e:66:ba:a4:d3: e6:ec:51:82:a2:8d:38:35:20:49:d5:ec:76:2a:80: ef:b6:66:65:1c:24:93:3f:b0:40:c1:d0:82:ee:7b: 86:5c:d7:ef:b0:84:e8:da:bd:76:23:a8:13:f4:a6: 63:f3:9f:e6:19:69:3d:9f:6a:39:b1:e4:06:5f:71: 3e:60:85:48:29:d1:f2:51:f6:1a:a6:78:e9:b8:56: cf:31:7c:4a:ca:87:e7:3f:5f:56:08:bb:b1:f2:22: a1:c5:c1:06:90:69:81:e6:d5:bb:ff:08:c3:31:07: 93:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:97:4F:3F:44:AF:76:AB:D9:C1:1B:ED:09:69:E1:FD:28:64:9B:03 X509v3 Authority Key Identifier: keyid:5B:D0:FD:00:EB:8A:CC:F5:09:29:F6:B0:F5:6C:75:00:6A:4D:58:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/323430353a613534303a313030373a3a2f34382d3438203d3e203338313536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:a540:1007::/48 Signature Algorithm: sha256WithRSAEncryption 8c:94:ab:21:67:30:c9:e0:8e:96:e5:48:36:a7:f9:ab:f0:4c: a4:9b:6e:56:01:7c:15:b1:76:2c:97:32:e6:9b:98:07:53:94: 3f:07:b1:1e:62:e3:08:70:aa:d6:75:7f:e0:24:db:9d:1a:82: c3:e1:2e:d3:70:7a:74:98:ee:25:12:75:84:e0:fa:e4:d3:18: c2:b6:b7:64:fc:8f:17:64:39:8d:2e:c6:b3:ba:9b:2a:6a:5c: a2:01:f6:de:23:9f:7d:88:a8:2b:72:63:0d:e5:e2:cd:a8:2b: 4b:6c:18:4d:3d:c1:1d:b1:44:90:27:29:f6:f4:45:83:0c:eb: 48:58:df:2e:20:ef:25:65:fb:b5:a7:90:c4:06:7e:6f:c6:bc: 16:ff:6f:35:57:29:57:e4:ea:fd:14:63:6f:f0:4d:ec:0c:39: 1e:29:50:8a:84:bd:d7:92:58:06:d8:62:d8:9c:97:8e:0e:e1: 89:0d:e3:5f:b8:a6:1f:e1:b5:e0:82:fa:05:6b:35:62:d0:3b: ee:53:a1:99:cf:fc:dd:91:a0:b7:61:97:9c:06:f0:c1:8e:81: 3a:88:b0:b2:bc:f3:84:a4:0b:f7:d9:e8:1f:4f:84:6a:27:7d: eb:4b:34:ec:a2:4f:01:79:75:bf:51:ec:6a:f3:7a:24:7c:1a: 51:c6:f8:f9 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUcJaKyFvfTt4DDhEuc0rxL3TlJ6owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUJEMEZEMDBFQjhBQ0NGNTA5MjlGNkIwRjU2Qzc1MDA2 QTRENThDNDAeFw0yNTA5MjkwNDU3NTlaFw0yNjA5MjgwNTAyNTlaMDMxMTAvBgNV BAMTKDM5OTc0RjNGNDRBRjc2QUJEOUMxMUJFRDA5NjlFMUZEMjg2NDlCMDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDipvq8henjfjYhxkQnyWIsltIU f6phXzWPu/7r+z/jm7V5GCgPuCBg9kIi6v0WBEbGTNDHKanafVxSQH4RXya+Lx0X CxfcGIrFrGJ1ng2o6LFvQB5j3dBB5PYsohPe7aMkJoS7gK7ykDqaTqEJXEi+20Cj PgT8Q5HXb69ACNUXUnjtAGkLztwaJWOraf8V5Fx+Zrqk0+bsUYKijTg1IEnV7HYq gO+2ZmUcJJM/sEDB0ILue4Zc1++whOjavXYjqBP0pmPzn+YZaT2fajmx5AZfcT5g hUgp0fJR9hqmeOm4Vs8xfErKh+c/X1YIu7HyIqHFwQaQaYHm1bv/CMMxB5NhAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUOZdPP0SvdqvZwRvtCWnh/ShkmwMwHwYDVR0j BBgwFoAUW9D9AOuKzPUJKfaw9Wx1AGpNWMQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j NWQzZDIyYS0zMzhiLTQzMDItOTNmNC1jMDIxZWE2YWQ1NDgvMC81QkQwRkQwMEVC OEFDQ0Y1MDkyOUY2QjBGNTZDNzUwMDZBNEQ1OEM0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUJEMEZEMDBFQjhBQ0NGNTA5MjlGNkIwRjU2Qzc1MDA2QTRE NThDNC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M1ZDNkMjJhLTMzOGItNDMwMi05 M2Y0LWMwMjFlYTZhZDU0OC8wLzMyMzQzMDM1M2E2MTM1MzQzMDNhMzEzMDMwMzcz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMzM4MzEzNTM2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAWl QBAHMA0GCSqGSIb3DQEBCwUAA4IBAQCMlKshZzDJ4I6W5Ug2p/mr8Eykm25WAXwV sXYslzLmm5gHU5Q/B7EeYuMIcKrWdX/gJNudGoLD4S7TcHp0mO4lEnWE4Prk0xjC trdk/I8XZDmNLsazupsqalyiAfbeI599iKgrcmMN5eLNqCtLbBhNPcEdsUSQJyn2 9EWDDOtIWN8uIO8lZfu1p5DEBn5vxrwW/281VylX5Or9FGNv8E3sDDkeKVCKhL3X klgG2GLYnJeODuGJDeNfuKYf4bXggvoFazVi0DvuU6GZz/zdkaC3YZecBvDBjoE6 iLCyvPOEpAv32egfT4RqJ33rSzTsok8BeXW/Uexq83okfBpRxvj5 -----END CERTIFICATE-----Generated at Mon Oct 20 13:25:05 2025 by rpki-client