$ rpki-client -vvf repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/323430323a653130303a33383a3a2f34382d3438203d3e203538343835.roa File: 323430323a653130303a33383a3a2f34382d3438203d3e203538343835.roa (raw, json) Hash identifier: ZcG33pBZTzSD/OyfUqiIR26pFQTz1ZHq/I2vKc5L2Lk= Subject key identifier: 6D:9F:43:17:3A:C4:C2:E4:FF:B9:6C:37:D2:57:7A:7F:FF:C8:FD:D1 Certificate issuer: /CN=FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39 Certificate serial: 61769AF16B0F6F7D18DDED1EFD1A39CF21564308 Authority key identifier: FA:5B:CA:98:4E:EB:AF:FD:CE:D8:41:90:C7:07:56:DB:EB:3B:FF:39 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/323430323a653130303a33383a3a2f34382d3438203d3e203538343835.roa Signing time: Thu 23 Oct 2025 13:02:23 +0000 ROA not before: Thu 23 Oct 2025 12:57:23 +0000 ROA not after: Thu 22 Oct 2026 13:02:23 +0000 asID: 58485 IP address blocks: 2402:e100:38::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.crl rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Nov 2025 13:50:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:76:9a:f1:6b:0f:6f:7d:18:dd:ed:1e:fd:1a:39:cf:21:56:43:08 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39 Validity Not Before: Oct 23 12:57:23 2025 GMT Not After : Oct 22 13:02:23 2026 GMT Subject: CN=6D9F43173AC4C2E4FFB96C37D2577A7FFFC8FDD1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:e4:7b:3e:06:0f:ab:54:ed:ce:e4:0b:2c:2c: 3d:14:54:a3:20:e8:dc:63:a6:66:a4:fc:aa:d6:b1: 0f:af:70:b5:6e:94:fb:b3:43:e8:8c:41:55:16:42: 39:8b:56:89:e3:d2:e2:21:05:40:47:d7:49:f6:51: 19:73:ab:bd:66:16:67:07:e3:17:84:dc:34:11:82: 06:9f:15:fa:e3:2b:6a:72:95:bc:ec:45:ed:a3:f4: b5:48:90:ba:56:ca:d6:f1:f6:f0:8f:f1:b3:df:a2: da:35:7a:ac:00:09:3a:4c:29:21:1a:9b:f6:0e:c1: 89:9a:03:9e:3d:c0:a3:02:34:3a:b1:5f:74:3d:04: ff:85:79:da:05:a5:7c:9f:57:6e:0f:b1:52:39:89: 74:d8:48:ef:41:36:d2:e6:88:dd:e0:0e:34:e4:14: 84:d9:16:31:20:0d:36:5c:ee:0a:82:6a:24:b8:9b: 55:59:5a:b9:a4:77:de:4a:79:6a:6c:56:ea:6d:cc: 32:2c:b4:38:78:8b:c6:7e:d5:32:1d:d9:45:de:ac: 41:6c:c7:74:66:a1:85:e4:e1:21:63:b4:66:b4:85: f8:70:0e:7a:e9:ef:82:67:ea:da:c5:7c:d7:b6:6a: 02:7b:db:b2:ba:2b:3d:7c:4f:3b:20:c5:36:af:1f: db:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:9F:43:17:3A:C4:C2:E4:FF:B9:6C:37:D2:57:7A:7F:FF:C8:FD:D1 X509v3 Authority Key Identifier: keyid:FA:5B:CA:98:4E:EB:AF:FD:CE:D8:41:90:C7:07:56:DB:EB:3B:FF:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/323430323a653130303a33383a3a2f34382d3438203d3e203538343835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:e100:38::/48 Signature Algorithm: sha256WithRSAEncryption 38:54:3f:ff:06:ac:a1:fe:82:c5:00:91:bc:2b:87:95:80:45: 0d:98:bc:83:4d:25:91:76:16:66:3f:32:ef:79:2f:00:ab:c3: 6c:27:81:35:c1:0f:8d:9c:55:d3:aa:fa:d0:94:af:df:e6:92: d3:d2:80:af:7b:db:b5:4d:92:f7:91:04:24:c8:34:9e:71:ca: aa:91:e4:a2:f1:40:11:02:6c:8f:20:73:7e:a6:b8:51:5f:0b: ac:88:4c:a6:cc:7b:44:d6:64:d0:e9:cf:31:28:e3:ea:45:c8: 3f:dd:03:23:14:88:d4:39:09:30:6b:7b:6b:ef:ed:52:ee:ba: 3c:80:74:e5:ec:3c:38:39:f6:d6:12:e4:92:9b:2f:4f:ca:46: cf:45:c6:28:64:25:75:e6:8b:cf:d0:6f:b8:4d:04:3d:84:27: 41:7c:3e:a9:cb:08:56:78:d4:e8:4f:0f:54:5d:b4:20:cf:6f: 3d:f2:ac:18:71:5e:8a:d2:0b:7f:a2:e5:e8:82:6d:ba:0f:cf: 15:6e:f2:65:4e:1e:18:73:6e:61:14:56:13:57:33:cc:a0:22: c0:65:d3:29:cc:d7:77:d5:9a:df:bc:1a:40:cc:1a:fc:29:0d: e8:3b:89:e5:61:b4:15:9f:4f:70:03:ef:f6:53:4a:f3:80:45: 46:88:2c:c2 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUYXaa8WsPb30Y3e0e/Ro5zyFWQwgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkE1QkNBOTg0RUVCQUZGRENFRDg0MTkwQzcwNzU2REJF QjNCRkYzOTAeFw0yNTEwMjMxMjU3MjNaFw0yNjEwMjIxMzAyMjNaMDMxMTAvBgNV BAMTKDZEOUY0MzE3M0FDNEMyRTRGRkI5NkMzN0QyNTc3QTdGRkZDOEZERDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCx5Hs+Bg+rVO3O5AssLD0UVKMg 6Nxjpmak/KrWsQ+vcLVulPuzQ+iMQVUWQjmLVonj0uIhBUBH10n2URlzq71mFmcH 4xeE3DQRggafFfrjK2pylbzsRe2j9LVIkLpWytbx9vCP8bPfoto1eqwACTpMKSEa m/YOwYmaA549wKMCNDqxX3Q9BP+FedoFpXyfV24PsVI5iXTYSO9BNtLmiN3gDjTk FITZFjEgDTZc7gqCaiS4m1VZWrmkd95KeWpsVuptzDIstDh4i8Z+1TId2UXerEFs x3RmoYXk4SFjtGa0hfhwDnrp74Jn6trFfNe2agJ727K6Kz18TzsgxTavH9ufAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUbZ9DFzrEwuT/uWw30ld6f//I/dEwHwYDVR0j BBgwFoAU+lvKmE7rr/3O2EGQxwdW2+s7/zkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZWU0N2JiZi1iYTg0LTQ0OGYtOTYyYi0yYWFmNWM3ZGQ2OGQvMC9GQTVCQ0E5ODRF RUJBRkZEQ0VEODQxOTBDNzA3NTZEQkVCM0JGRjM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkE1QkNBOTg0RUVCQUZGRENFRDg0MTkwQzcwNzU2REJFQjNC RkYzOS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJlZTQ3YmJmLWJhODQtNDQ4Zi05 NjJiLTJhYWY1YzdkZDY4ZC8wLzMyMzQzMDMyM2E2NTMxMzAzMDNhMzMzODNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzgzNDM4MzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkAuEAADgw DQYJKoZIhvcNAQELBQADggEBADhUP/8GrKH+gsUAkbwrh5WARQ2YvINNJZF2FmY/ Mu95LwCrw2wngTXBD42cVdOq+tCUr9/mktPSgK9727VNkveRBCTINJ5xyqqR5KLx QBECbI8gc36muFFfC6yITKbMe0TWZNDpzzEo4+pFyD/dAyMUiNQ5CTBre2vv7VLu ujyAdOXsPDg59tYS5JKbL0/KRs9FxihkJXXmi8/Qb7hNBD2EJ0F8PqnLCFZ41OhP D1RdtCDPbz3yrBhxXorSC3+i5eiCbboPzxVu8mVOHhhzbmEUVhNXM8ygIsBl0ynM 13fVmt+8GkDMGvwpDeg7ieVhtBWfT3AD7/ZTSvOARUaILMI= -----END CERTIFICATE-----Generated at Tue Nov 4 19:25:57 2025 by rpki-client