$ rpki-client -vvf repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/323430323a653130303a38303a3a2f34382d3438203d3e203538343835.roa File: 323430323a653130303a38303a3a2f34382d3438203d3e203538343835.roa (raw, json) Hash identifier: f/URrW3I6+5vkW0D1aSS1Bkh+i2+LjuWyAbPuExcRpQ= Subject key identifier: E9:E1:C1:7B:D4:13:F7:40:43:02:D1:72:03:E0:F0:61:38:EA:34:38 Certificate issuer: /CN=FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39 Certificate serial: 037540CB34D3DC022221B96EF27F8793F20BFE55 Authority key identifier: FA:5B:CA:98:4E:EB:AF:FD:CE:D8:41:90:C7:07:56:DB:EB:3B:FF:39 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/323430323a653130303a38303a3a2f34382d3438203d3e203538343835.roa Signing time: Thu 23 Oct 2025 12:00:00 +0000 ROA not before: Thu 23 Oct 2025 11:55:00 +0000 ROA not after: Thu 22 Oct 2026 12:00:00 +0000 asID: 58485 IP address blocks: 2402:e100:80::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.crl rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Nov 2025 13:50:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:75:40:cb:34:d3:dc:02:22:21:b9:6e:f2:7f:87:93:f2:0b:fe:55 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39 Validity Not Before: Oct 23 11:55:00 2025 GMT Not After : Oct 22 12:00:00 2026 GMT Subject: CN=E9E1C17BD413F7404302D17203E0F06138EA3438 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:98:0a:7a:8e:d2:9e:d9:3f:a4:4d:80:12:0f: a1:70:85:2f:67:7b:eb:58:5f:c9:5d:bf:65:6e:e6: 9e:09:db:eb:ac:78:73:13:ad:30:06:c9:c8:74:ed: a2:da:28:ef:e9:bf:2e:b8:51:28:80:3f:c2:a0:bd: 23:53:91:61:d5:1b:95:61:a9:20:c6:37:a9:9a:24: a8:3b:67:f0:56:2f:ff:1d:f7:52:fa:4f:24:c4:7a: 0d:01:ac:75:e9:38:f8:02:89:64:00:4a:55:b8:cf: 36:5a:ea:f3:a1:a4:13:d0:d9:8a:f5:5f:18:e2:60: 6f:93:bf:17:e7:20:a2:53:40:de:65:c8:13:24:2a: 99:08:0e:66:76:b4:68:c0:a0:ec:87:df:a1:90:68: cc:88:ce:8c:d5:dd:2a:e8:04:99:f8:26:31:55:7a: 24:e4:69:ed:95:b8:01:13:ca:94:22:6d:c5:67:57: 91:06:ee:8b:a2:18:c6:be:bd:85:10:8a:39:c2:d4: 22:29:d6:b5:73:bd:b0:9c:66:00:6b:c9:08:0f:8d: 21:96:0b:83:94:15:d0:f4:5a:c9:3a:6c:48:0b:db: cf:56:1e:22:17:86:cf:d3:3a:53:ef:4e:d3:d8:1f: 0e:59:fd:99:47:91:a7:c2:84:c4:71:64:30:2f:f1: 31:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:E1:C1:7B:D4:13:F7:40:43:02:D1:72:03:E0:F0:61:38:EA:34:38 X509v3 Authority Key Identifier: keyid:FA:5B:CA:98:4E:EB:AF:FD:CE:D8:41:90:C7:07:56:DB:EB:3B:FF:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/323430323a653130303a38303a3a2f34382d3438203d3e203538343835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:e100:80::/48 Signature Algorithm: sha256WithRSAEncryption 88:89:28:7d:c1:87:c5:88:ba:17:a4:b6:5b:7d:e6:2b:6f:12: 88:24:c3:77:36:bb:25:4c:12:79:a6:70:12:e1:2c:9a:02:22: ff:b0:c8:1d:9b:37:33:43:0b:29:f2:84:90:0b:de:e5:01:0c: 68:58:36:66:fb:eb:3f:09:33:d3:ec:f0:45:fb:30:f9:02:4a: 00:3e:71:70:3d:62:ef:1a:ce:42:ad:53:de:a3:91:88:c2:fb: cc:52:70:ae:59:5a:63:b1:83:30:97:4c:78:5d:3a:8e:94:f7: 29:57:aa:9f:15:e4:9d:20:bf:02:8a:e7:09:b7:6d:c5:49:97: 21:0c:ec:de:c0:8c:01:f6:ae:e9:28:ea:c6:32:9c:f7:25:bc: c4:97:25:84:ec:c9:e4:80:5e:24:e4:95:20:46:6e:6d:53:8e: f0:63:cb:33:2e:a2:41:23:f4:f1:b2:b7:6b:70:25:3b:9f:b0: 00:85:12:00:ad:d8:d7:af:fc:e2:db:c7:72:67:34:69:5e:86: bc:d2:7c:d5:22:d5:b1:ab:47:57:17:01:23:a4:7c:c3:53:e4: 5b:80:43:35:30:29:6c:0e:b7:3d:7e:ac:fc:bb:2c:4b:78:55: 70:0a:a0:55:ac:7e:05:25:74:b5:3f:96:19:35:5c:cb:b0:3e: 9e:7a:d3:be -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUA3VAyzTT3AIiIblu8n+Hk/IL/lUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkE1QkNBOTg0RUVCQUZGRENFRDg0MTkwQzcwNzU2REJF QjNCRkYzOTAeFw0yNTEwMjMxMTU1MDBaFw0yNjEwMjIxMjAwMDBaMDMxMTAvBgNV BAMTKEU5RTFDMTdCRDQxM0Y3NDA0MzAyRDE3MjAzRTBGMDYxMzhFQTM0MzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9mAp6jtKe2T+kTYASD6FwhS9n e+tYX8ldv2Vu5p4J2+useHMTrTAGych07aLaKO/pvy64USiAP8KgvSNTkWHVG5Vh qSDGN6maJKg7Z/BWL/8d91L6TyTEeg0BrHXpOPgCiWQASlW4zzZa6vOhpBPQ2Yr1 XxjiYG+TvxfnIKJTQN5lyBMkKpkIDmZ2tGjAoOyH36GQaMyIzozV3SroBJn4JjFV eiTkae2VuAETypQibcVnV5EG7ouiGMa+vYUQijnC1CIp1rVzvbCcZgBryQgPjSGW C4OUFdD0Wsk6bEgL289WHiIXhs/TOlPvTtPYHw5Z/ZlHkafChMRxZDAv8THrAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQU6eHBe9QT90BDAtFyA+DwYTjqNDgwHwYDVR0j BBgwFoAU+lvKmE7rr/3O2EGQxwdW2+s7/zkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZWU0N2JiZi1iYTg0LTQ0OGYtOTYyYi0yYWFmNWM3ZGQ2OGQvMC9GQTVCQ0E5ODRF RUJBRkZEQ0VEODQxOTBDNzA3NTZEQkVCM0JGRjM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkE1QkNBOTg0RUVCQUZGRENFRDg0MTkwQzcwNzU2REJFQjNC RkYzOS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJlZTQ3YmJmLWJhODQtNDQ4Zi05 NjJiLTJhYWY1YzdkZDY4ZC8wLzMyMzQzMDMyM2E2NTMxMzAzMDNhMzgzMDNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzgzNDM4MzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkAuEAAIAw DQYJKoZIhvcNAQELBQADggEBAIiJKH3Bh8WIuhektlt95itvEogkw3c2uyVMEnmm cBLhLJoCIv+wyB2bNzNDCynyhJAL3uUBDGhYNmb76z8JM9Ps8EX7MPkCSgA+cXA9 Yu8azkKtU96jkYjC+8xScK5ZWmOxgzCXTHhdOo6U9ylXqp8V5J0gvwKK5wm3bcVJ lyEM7N7AjAH2ruko6sYynPclvMSXJYTsyeSAXiTklSBGbm1TjvBjyzMuokEj9PGy t2twJTufsACFEgCt2Nev/OLbx3JnNGlehrzSfNUi1bGrR1cXASOkfMNT5FuAQzUw KWwOtz1+rPy7LEt4VXAKoFWsfgUldLU/lhk1XMuwPp56074= -----END CERTIFICATE-----Generated at Tue Nov 4 19:25:36 2025 by rpki-client