$ rpki-client -vvf repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/323430323a653130303a3330353a3a2f34382d3438203d3e203538343835.roa File: 323430323a653130303a3330353a3a2f34382d3438203d3e203538343835.roa (raw, json) Hash identifier: jMXfHZ5G6a1+HMzwB17/q65yvup/Qxz3sZvzBsrsAlg= Subject key identifier: 20:95:58:9B:35:33:D8:B5:00:CF:2F:A8:E2:68:19:4A:8B:E5:1E:BB Certificate issuer: /CN=FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39 Certificate serial: 6298C930BA988F405FC5CDB4D1EB78E63C9C8019 Authority key identifier: FA:5B:CA:98:4E:EB:AF:FD:CE:D8:41:90:C7:07:56:DB:EB:3B:FF:39 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/323430323a653130303a3330353a3a2f34382d3438203d3e203538343835.roa Signing time: Thu 23 Oct 2025 13:02:23 +0000 ROA not before: Thu 23 Oct 2025 12:57:23 +0000 ROA not after: Thu 22 Oct 2026 13:02:23 +0000 asID: 58485 IP address blocks: 2402:e100:305::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.crl rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Nov 2025 13:50:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:98:c9:30:ba:98:8f:40:5f:c5:cd:b4:d1:eb:78:e6:3c:9c:80:19 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39 Validity Not Before: Oct 23 12:57:23 2025 GMT Not After : Oct 22 13:02:23 2026 GMT Subject: CN=2095589B3533D8B500CF2FA8E268194A8BE51EBB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:39:bc:41:7c:ec:9e:28:1a:16:09:15:d3:36: fd:0c:21:bc:17:25:25:1d:03:35:bf:46:af:2a:39: ca:96:fc:dd:31:30:16:90:21:a7:52:26:3b:5d:f4: cc:cb:07:0f:4a:82:3d:b7:c6:c7:1b:c7:f2:49:14: 99:94:b1:45:2f:2f:05:63:78:31:c1:9e:94:65:d7: eb:f9:77:95:e4:5f:1d:5a:36:b5:2d:cb:71:fd:2b: d9:f2:52:12:e8:d6:77:e4:45:72:4e:24:4c:77:7a: 32:70:4d:5b:ad:e9:5e:f2:6f:52:e8:74:ef:03:d8: d1:33:8f:09:d6:12:da:c8:31:bb:12:d9:b4:8c:93: 95:16:8e:cf:e2:e8:97:84:bc:8d:c1:ac:4c:90:f1: 5d:8c:8c:2e:49:61:ca:ee:1f:64:5c:e8:fc:ae:be: de:2e:0b:42:1f:70:ea:5f:b2:70:8f:17:8c:4c:0b: f4:8b:c6:8b:0b:f0:c7:f8:62:15:2d:e2:12:74:d2: f2:73:2a:1b:6a:76:21:95:54:5a:86:f9:98:d8:eb: 32:f2:c7:aa:df:d5:bf:ae:db:02:c7:85:8a:0f:5a: 3b:6e:6c:fc:22:41:be:e1:5b:26:98:f3:ff:c4:9c: 82:bf:5e:e6:9e:24:1b:98:b4:e9:53:aa:d3:81:6c: db:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:95:58:9B:35:33:D8:B5:00:CF:2F:A8:E2:68:19:4A:8B:E5:1E:BB X509v3 Authority Key Identifier: keyid:FA:5B:CA:98:4E:EB:AF:FD:CE:D8:41:90:C7:07:56:DB:EB:3B:FF:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/323430323a653130303a3330353a3a2f34382d3438203d3e203538343835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:e100:305::/48 Signature Algorithm: sha256WithRSAEncryption 9f:5b:cf:19:58:8d:09:9f:c7:21:ad:69:2f:1d:df:fa:3e:85: 3f:7b:d5:62:b2:90:27:98:78:ce:b2:76:92:c4:a9:9b:ed:10: 1a:8b:0f:e8:0f:ae:9f:e4:d6:01:f8:66:37:85:29:af:ce:1c: 4e:81:05:c5:0e:dc:ac:82:3b:bc:f6:d1:64:3f:63:c4:e7:51: 90:d4:69:ae:10:e7:02:40:7a:c4:89:12:92:6a:05:83:73:25: d8:e2:e6:7d:0e:45:ef:78:21:5a:44:d0:ed:12:20:8f:19:5d: 4a:fc:e4:e8:af:73:97:8a:1c:05:88:08:aa:f8:6a:73:f2:c9: 7c:0d:e3:89:7b:e8:37:31:89:7d:4f:20:e6:c2:7f:a3:a7:89: 94:51:35:74:ce:67:6a:2f:d0:3b:c5:c4:18:78:b8:c2:62:fc: 0d:f0:b0:ca:f1:c7:3e:46:ae:17:01:f6:9b:c7:68:fc:07:37: ce:19:46:2e:aa:8c:56:bc:c1:e3:e9:79:56:5d:a8:76:59:1e: 97:51:e5:f8:9d:43:94:ee:1e:1b:bb:dc:20:bc:cc:b9:ad:00: 19:b1:3d:2c:6f:6d:7b:30:75:46:9e:87:8f:c0:2d:17:21:fb: 57:cb:c8:b5:48:26:b3:7e:c9:2e:99:6d:e9:dd:1a:24:0c:62: bb:72:1f:ed -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUYpjJMLqYj0Bfxc200et45jycgBkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkE1QkNBOTg0RUVCQUZGRENFRDg0MTkwQzcwNzU2REJF QjNCRkYzOTAeFw0yNTEwMjMxMjU3MjNaFw0yNjEwMjIxMzAyMjNaMDMxMTAvBgNV BAMTKDIwOTU1ODlCMzUzM0Q4QjUwMENGMkZBOEUyNjgxOTRBOEJFNTFFQkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1ObxBfOyeKBoWCRXTNv0MIbwX JSUdAzW/Rq8qOcqW/N0xMBaQIadSJjtd9MzLBw9Kgj23xscbx/JJFJmUsUUvLwVj eDHBnpRl1+v5d5XkXx1aNrUty3H9K9nyUhLo1nfkRXJOJEx3ejJwTVut6V7yb1Lo dO8D2NEzjwnWEtrIMbsS2bSMk5UWjs/i6JeEvI3BrEyQ8V2MjC5JYcruH2Rc6Pyu vt4uC0IfcOpfsnCPF4xMC/SLxosL8Mf4YhUt4hJ00vJzKhtqdiGVVFqG+ZjY6zLy x6rf1b+u2wLHhYoPWjtubPwiQb7hWyaY8//EnIK/XuaeJBuYtOlTqtOBbNtrAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUIJVYmzUz2LUAzy+o4mgZSovlHrswHwYDVR0j BBgwFoAU+lvKmE7rr/3O2EGQxwdW2+s7/zkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZWU0N2JiZi1iYTg0LTQ0OGYtOTYyYi0yYWFmNWM3ZGQ2OGQvMC9GQTVCQ0E5ODRF RUJBRkZEQ0VEODQxOTBDNzA3NTZEQkVCM0JGRjM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkE1QkNBOTg0RUVCQUZGRENFRDg0MTkwQzcwNzU2REJFQjNC RkYzOS5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJlZTQ3YmJmLWJhODQtNDQ4Zi05 NjJiLTJhYWY1YzdkZDY4ZC8wLzMyMzQzMDMyM2E2NTMxMzAzMDNhMzMzMDM1M2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzUzODM0MzgzNS5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQC4QAD BTANBgkqhkiG9w0BAQsFAAOCAQEAn1vPGViNCZ/HIa1pLx3f+j6FP3vVYrKQJ5h4 zrJ2ksSpm+0QGosP6A+un+TWAfhmN4Upr84cToEFxQ7crII7vPbRZD9jxOdRkNRp rhDnAkB6xIkSkmoFg3Ml2OLmfQ5F73ghWkTQ7RIgjxldSvzk6K9zl4ocBYgIqvhq c/LJfA3jiXvoNzGJfU8g5sJ/o6eJlFE1dM5nai/QO8XEGHi4wmL8DfCwyvHHPkau FwH2m8do/Ac3zhlGLqqMVrzB4+l5Vl2odlkel1Hl+J1DlO4eG7vcILzMua0AGbE9 LG9tezB1Rp6Hj8AtFyH7V8vItUgms37JLplt6d0aJAxiu3If7Q== -----END CERTIFICATE-----Generated at Tue Nov 4 19:25:48 2025 by rpki-client