$ rpki-client -vvf repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/323430323a653130303a37353a3a2f34382d3438203d3e203538343835.roa File: 323430323a653130303a37353a3a2f34382d3438203d3e203538343835.roa (raw, json) Hash identifier: aHRt+E7BWGdjFLNGN2g9IGuN7mQDThteOWR07k+3Phs= Subject key identifier: E2:63:AF:6A:BA:36:F6:51:7A:DE:DA:B6:AE:0C:50:3E:25:14:F5:93 Certificate issuer: /CN=FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39 Certificate serial: 14A825462175DCAF19DA0CD7FF931242D8ADC8FA Authority key identifier: FA:5B:CA:98:4E:EB:AF:FD:CE:D8:41:90:C7:07:56:DB:EB:3B:FF:39 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/323430323a653130303a37353a3a2f34382d3438203d3e203538343835.roa Signing time: Thu 23 Oct 2025 13:02:23 +0000 ROA not before: Thu 23 Oct 2025 12:57:23 +0000 ROA not after: Thu 22 Oct 2026 13:02:23 +0000 asID: 58485 IP address blocks: 2402:e100:75::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.crl rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Nov 2025 13:50:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:a8:25:46:21:75:dc:af:19:da:0c:d7:ff:93:12:42:d8:ad:c8:fa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39 Validity Not Before: Oct 23 12:57:23 2025 GMT Not After : Oct 22 13:02:23 2026 GMT Subject: CN=E263AF6ABA36F6517ADEDAB6AE0C503E2514F593 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:c4:15:95:bb:05:da:9d:41:4b:13:8a:bf:45: 54:f9:eb:ab:41:83:cb:04:ab:1c:f7:26:1c:ec:9e: 70:d6:17:97:8e:c2:39:e2:34:1b:87:71:ce:0e:dc: 05:7f:54:85:5e:da:56:79:f8:84:1c:1e:1b:76:2c: 85:ed:a2:19:4f:8c:b9:b4:6c:52:3a:08:95:2e:28: 44:9e:d8:df:14:04:29:25:f2:0c:eb:6f:c6:02:c5: 88:33:7a:9b:f8:44:1c:b9:16:fe:a6:47:1b:e2:28: 8b:7b:78:11:96:c0:a8:a6:cb:2e:99:ac:af:74:be: 2d:94:e1:0d:b1:91:aa:75:16:f9:95:65:8a:f2:b7: 63:eb:f3:23:eb:8c:40:d8:97:16:da:c8:e5:36:77: 13:2d:e5:0d:02:01:fd:54:1b:1d:e3:13:8c:85:c2: 28:11:20:e8:d7:b0:3a:89:b3:fa:68:fc:3d:82:28: 02:da:f9:3e:df:c0:99:47:30:e2:04:55:8e:b7:fe: 4a:b3:23:6f:bf:8f:3a:d7:be:de:b3:0f:25:c7:4a: ae:fc:91:7d:fa:a8:b0:6e:8e:0a:a2:97:b2:b3:e7: 6c:0d:12:40:57:11:c1:6c:76:b5:0a:27:af:bb:ff: 2f:ad:48:02:a5:ff:f6:57:64:fe:ba:ff:66:d7:f9: cf:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:63:AF:6A:BA:36:F6:51:7A:DE:DA:B6:AE:0C:50:3E:25:14:F5:93 X509v3 Authority Key Identifier: keyid:FA:5B:CA:98:4E:EB:AF:FD:CE:D8:41:90:C7:07:56:DB:EB:3B:FF:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/323430323a653130303a37353a3a2f34382d3438203d3e203538343835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:e100:75::/48 Signature Algorithm: sha256WithRSAEncryption 55:0f:47:e3:71:1e:37:f2:55:8e:0e:04:bd:04:a9:58:ca:8e: f3:27:d0:c8:e9:48:cb:21:ed:2d:fa:9d:52:52:d5:e5:64:0f: 49:05:c8:8b:7c:33:d8:fe:a4:37:41:6f:3b:95:aa:63:18:c9: f0:ae:2d:b4:da:ed:bb:99:f1:55:88:5b:ae:49:ff:e1:63:01: 37:70:c7:61:b9:a6:74:4e:6b:7b:d8:cc:dc:f1:dd:21:db:d2: af:d9:7e:3e:76:36:42:aa:13:da:56:98:3a:6a:39:0e:30:ed: 27:c0:72:63:3a:08:44:88:9d:68:7e:d4:97:56:62:b6:55:e5: c7:59:aa:75:d7:f7:89:dd:d7:0d:e7:f7:78:7f:4e:4e:35:8c: e4:07:d9:c4:4b:75:c4:5e:a9:4e:36:8f:32:fa:e5:7f:82:41: b5:d5:ff:34:f5:05:1c:aa:ff:5e:c0:e9:d6:8d:ec:eb:a3:91: 95:ab:56:a5:1b:b6:b8:cd:21:e1:4a:97:b4:11:52:38:9c:a2: 3d:36:27:eb:f7:0e:05:b2:27:5a:a7:48:02:24:fb:11:3a:64: e4:02:39:f5:b1:44:51:15:4f:d7:88:45:7f:9d:a8:29:24:c6: 12:92:be:b0:ca:d7:a1:84:7f:19:a8:b1:ce:94:08:19:53:68: b3:69:7d:9c -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUFKglRiF13K8Z2gzX/5MSQtityPowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkE1QkNBOTg0RUVCQUZGRENFRDg0MTkwQzcwNzU2REJF QjNCRkYzOTAeFw0yNTEwMjMxMjU3MjNaFw0yNjEwMjIxMzAyMjNaMDMxMTAvBgNV BAMTKEUyNjNBRjZBQkEzNkY2NTE3QURFREFCNkFFMEM1MDNFMjUxNEY1OTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqxBWVuwXanUFLE4q/RVT566tB g8sEqxz3JhzsnnDWF5eOwjniNBuHcc4O3AV/VIVe2lZ5+IQcHht2LIXtohlPjLm0 bFI6CJUuKESe2N8UBCkl8gzrb8YCxYgzepv4RBy5Fv6mRxviKIt7eBGWwKimyy6Z rK90vi2U4Q2xkap1FvmVZYryt2Pr8yPrjEDYlxbayOU2dxMt5Q0CAf1UGx3jE4yF wigRIOjXsDqJs/po/D2CKALa+T7fwJlHMOIEVY63/kqzI2+/jzrXvt6zDyXHSq78 kX36qLBujgqil7Kz52wNEkBXEcFsdrUKJ6+7/y+tSAKl//ZXZP66/2bX+c9bAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQU4mOvaro29lF63tq2rgxQPiUU9ZMwHwYDVR0j BBgwFoAU+lvKmE7rr/3O2EGQxwdW2+s7/zkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZWU0N2JiZi1iYTg0LTQ0OGYtOTYyYi0yYWFmNWM3ZGQ2OGQvMC9GQTVCQ0E5ODRF RUJBRkZEQ0VEODQxOTBDNzA3NTZEQkVCM0JGRjM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkE1QkNBOTg0RUVCQUZGRENFRDg0MTkwQzcwNzU2REJFQjNC RkYzOS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJlZTQ3YmJmLWJhODQtNDQ4Zi05 NjJiLTJhYWY1YzdkZDY4ZC8wLzMyMzQzMDMyM2E2NTMxMzAzMDNhMzczNTNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzgzNDM4MzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkAuEAAHUw DQYJKoZIhvcNAQELBQADggEBAFUPR+NxHjfyVY4OBL0EqVjKjvMn0MjpSMsh7S36 nVJS1eVkD0kFyIt8M9j+pDdBbzuVqmMYyfCuLbTa7buZ8VWIW65J/+FjATdwx2G5 pnROa3vYzNzx3SHb0q/Zfj52NkKqE9pWmDpqOQ4w7SfAcmM6CESInWh+1JdWYrZV 5cdZqnXX94nd1w3n93h/Tk41jOQH2cRLdcReqU42jzL65X+CQbXV/zT1BRyq/17A 6daN7OujkZWrVqUbtrjNIeFKl7QRUjicoj02J+v3DgWyJ1qnSAIk+xE6ZOQCOfWx RFEVT9eIRX+dqCkkxhKSvrDK16GEfxmosc6UCBlTaLNpfZw= -----END CERTIFICATE-----Generated at Tue Nov 4 19:25:39 2025 by rpki-client