$ rpki-client -vvf repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/323430323a653130303a38313a3a2f34382d3438203d3e203538343835.roa File: 323430323a653130303a38313a3a2f34382d3438203d3e203538343835.roa (raw, json) Hash identifier: QYoY/WJkKnag3eKK6TqUfAN2/yGtdFRAxKAtoXHhjqo= Subject key identifier: 4D:2F:D3:D3:A3:C6:6D:1A:F3:5A:62:35:CC:85:A0:01:7B:1F:53:A4 Certificate issuer: /CN=FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39 Certificate serial: 454AEE0D6BEEB1F72AA62E5034AD69C66EED180C Authority key identifier: FA:5B:CA:98:4E:EB:AF:FD:CE:D8:41:90:C7:07:56:DB:EB:3B:FF:39 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/323430323a653130303a38313a3a2f34382d3438203d3e203538343835.roa Signing time: Thu 23 Oct 2025 13:02:23 +0000 ROA not before: Thu 23 Oct 2025 12:57:23 +0000 ROA not after: Thu 22 Oct 2026 13:02:23 +0000 asID: 58485 IP address blocks: 2402:e100:81::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.crl rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Nov 2025 13:50:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:4a:ee:0d:6b:ee:b1:f7:2a:a6:2e:50:34:ad:69:c6:6e:ed:18:0c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39 Validity Not Before: Oct 23 12:57:23 2025 GMT Not After : Oct 22 13:02:23 2026 GMT Subject: CN=4D2FD3D3A3C66D1AF35A6235CC85A0017B1F53A4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:fa:bc:73:53:6a:8d:35:f0:de:df:6a:91:85: 1f:d4:f5:37:b0:05:2d:b5:84:ae:44:4f:a5:b3:9a: 03:db:f5:66:8a:df:9e:66:02:6a:7f:91:a0:5d:0a: bd:6b:cd:41:df:3c:17:6e:d1:94:ab:81:7a:00:15: 3b:46:5d:c5:52:0f:06:c3:7e:dd:bc:0e:93:cb:50: ea:46:2c:59:14:74:30:5f:ed:02:bd:62:b2:e9:90: f3:bc:e5:a6:10:42:c0:41:92:86:b9:46:27:d7:3d: 0a:a6:39:e9:4f:32:22:56:ff:79:53:26:91:52:a3: c9:fd:57:87:f3:6b:8c:59:77:4a:a8:dc:de:46:ff: 39:9b:7e:2f:4f:76:9c:6a:1a:cc:7f:16:5b:48:2b: 92:f7:08:e8:62:e4:a8:67:01:a5:25:68:8a:b2:c3: 65:e3:a9:a3:4c:01:26:72:6f:08:a7:c5:40:d5:dd: 9a:2c:a4:c3:da:57:dd:4b:4e:ac:b6:6e:e8:25:42: 75:c7:8f:95:31:ff:84:81:de:c4:7b:97:80:a1:91: 8f:0c:71:d4:d5:86:e3:af:19:a6:03:0d:d3:6f:b8: 00:c3:63:d5:fb:d1:53:c0:51:af:1c:44:2b:56:6f: 60:f2:25:71:60:5e:72:f7:81:1f:c5:8d:a4:d6:d2: 61:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:2F:D3:D3:A3:C6:6D:1A:F3:5A:62:35:CC:85:A0:01:7B:1F:53:A4 X509v3 Authority Key Identifier: keyid:FA:5B:CA:98:4E:EB:AF:FD:CE:D8:41:90:C7:07:56:DB:EB:3B:FF:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/323430323a653130303a38313a3a2f34382d3438203d3e203538343835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:e100:81::/48 Signature Algorithm: sha256WithRSAEncryption b7:15:38:29:0e:b4:40:18:1f:15:70:26:d3:9c:83:bc:f7:da: 6a:f0:69:05:ac:b5:7d:94:9d:9f:2c:c1:e1:d9:83:ad:57:68: b5:9a:94:53:ef:74:d1:cd:a3:51:e2:17:78:8a:9b:73:af:5c: cf:1c:18:c7:8e:98:60:d0:fd:ae:3d:5e:90:bd:25:21:74:bb: a4:c5:d3:2a:4e:c6:29:fa:ab:bf:0d:8a:9b:02:f3:5a:7a:11: 7e:70:2e:b8:5a:ed:13:bf:4a:2e:81:c7:7d:ce:fb:bb:2d:9c: 02:cb:b0:7b:8b:d7:c2:36:5f:35:c9:79:90:7d:10:cb:3d:b4: 85:7e:a1:e1:56:3f:a2:fb:38:48:f7:3c:48:f0:44:32:4e:1d: c4:bf:85:49:cb:8e:76:1a:9f:ba:95:ec:fa:7a:1d:60:30:9a: 6a:4a:4f:1b:ef:bc:40:fe:d8:52:c8:bd:f0:ab:0a:57:d5:7b: ac:cc:7a:ba:47:be:b3:97:ed:24:60:12:59:de:b0:41:59:73: 6f:9c:ca:90:59:6e:a6:f0:58:ee:63:a8:e1:be:1b:23:68:76: 89:16:99:80:6f:c2:4d:57:3b:52:e5:32:10:43:74:79:41:29: 84:b9:e1:20:7a:fe:4d:24:b5:5e:8b:df:b2:43:d2:3e:61:2e: 8b:b7:9b:3c -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIURUruDWvusfcqpi5QNK1pxm7tGAwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkE1QkNBOTg0RUVCQUZGRENFRDg0MTkwQzcwNzU2REJF QjNCRkYzOTAeFw0yNTEwMjMxMjU3MjNaFw0yNjEwMjIxMzAyMjNaMDMxMTAvBgNV BAMTKDREMkZEM0QzQTNDNjZEMUFGMzVBNjIzNUNDODVBMDAxN0IxRjUzQTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCt+rxzU2qNNfDe32qRhR/U9Tew BS21hK5ET6WzmgPb9WaK355mAmp/kaBdCr1rzUHfPBdu0ZSrgXoAFTtGXcVSDwbD ft28DpPLUOpGLFkUdDBf7QK9YrLpkPO85aYQQsBBkoa5RifXPQqmOelPMiJW/3lT JpFSo8n9V4fza4xZd0qo3N5G/zmbfi9PdpxqGsx/FltIK5L3COhi5KhnAaUlaIqy w2XjqaNMASZybwinxUDV3ZospMPaV91LTqy2buglQnXHj5Ux/4SB3sR7l4ChkY8M cdTVhuOvGaYDDdNvuADDY9X70VPAUa8cRCtWb2DyJXFgXnL3gR/FjaTW0mH/AgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUTS/T06PGbRrzWmI1zIWgAXsfU6QwHwYDVR0j BBgwFoAU+lvKmE7rr/3O2EGQxwdW2+s7/zkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZWU0N2JiZi1iYTg0LTQ0OGYtOTYyYi0yYWFmNWM3ZGQ2OGQvMC9GQTVCQ0E5ODRF RUJBRkZEQ0VEODQxOTBDNzA3NTZEQkVCM0JGRjM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkE1QkNBOTg0RUVCQUZGRENFRDg0MTkwQzcwNzU2REJFQjNC RkYzOS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJlZTQ3YmJmLWJhODQtNDQ4Zi05 NjJiLTJhYWY1YzdkZDY4ZC8wLzMyMzQzMDMyM2E2NTMxMzAzMDNhMzgzMTNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzgzNDM4MzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkAuEAAIEw DQYJKoZIhvcNAQELBQADggEBALcVOCkOtEAYHxVwJtOcg7z32mrwaQWstX2UnZ8s weHZg61XaLWalFPvdNHNo1HiF3iKm3OvXM8cGMeOmGDQ/a49XpC9JSF0u6TF0ypO xin6q78NipsC81p6EX5wLrha7RO/Si6Bx33O+7stnALLsHuL18I2XzXJeZB9EMs9 tIV+oeFWP6L7OEj3PEjwRDJOHcS/hUnLjnYan7qV7Pp6HWAwmmpKTxvvvED+2FLI vfCrClfVe6zMerpHvrOX7SRgElnesEFZc2+cypBZbqbwWO5jqOG+GyNodokWmYBv wk1XO1LlMhBDdHlBKYS54SB6/k0ktV6L37JD0j5hLou3mzw= -----END CERTIFICATE-----Generated at Tue Nov 4 19:26:01 2025 by rpki-client