$ rpki-client -vvf repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a31333a3a2f34382d3438203d3e203538353532.roa File: 323430343a666430303a31333a3a2f34382d3438203d3e203538353532.roa (raw, json) Hash identifier: /7rqQ7E3HphnZgIkvCjie/ji7Fr6whnZjJQUxXOSFZA= Subject key identifier: A6:B1:85:2D:12:80:78:AC:E6:4F:F9:91:F2:23:D6:0C:56:FD:A6:39 Certificate issuer: /CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Certificate serial: 4FD07DAD8C5E8E295DD672305B9B9876E6E3DF59 Authority key identifier: AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a31333a3a2f34382d3438203d3e203538353532.roa Signing time: Fri 31 Oct 2025 06:00:03 +0000 ROA not before: Fri 31 Oct 2025 05:55:03 +0000 ROA not after: Fri 30 Oct 2026 06:00:03 +0000 asID: 58552 IP address blocks: 2404:fd00:13::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Nov 2025 13:50:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:d0:7d:ad:8c:5e:8e:29:5d:d6:72:30:5b:9b:98:76:e6:e3:df:59 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Validity Not Before: Oct 31 05:55:03 2025 GMT Not After : Oct 30 06:00:03 2026 GMT Subject: CN=A6B1852D128078ACE64FF991F223D60C56FDA639 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:9a:25:cf:eb:67:37:71:1b:0d:73:2a:b7:f7: bf:09:c8:1f:de:83:c9:77:5c:7b:ae:d5:4e:87:23: 99:7b:b7:95:cf:00:3a:3e:41:ce:29:9b:ab:8d:f4: 7c:cd:11:ea:93:1b:87:30:25:74:84:dc:b9:02:70: 2d:20:8a:26:2d:16:ee:b4:00:83:49:37:c8:52:dd: 25:be:73:e0:3b:94:85:f1:37:f0:a4:82:95:a3:9e: c7:41:02:0f:28:42:f8:f1:dc:1a:eb:d8:40:48:56: 51:03:cb:2f:36:20:7d:92:b3:27:b5:35:03:55:e3: 11:31:09:7f:2f:01:03:d0:d0:1a:ab:d0:05:fe:53: ab:a4:8d:e2:12:dd:d8:8e:4d:45:0c:8f:64:5d:61: 82:cd:da:4b:d7:02:87:6e:56:04:d6:b5:75:93:16: be:d9:d7:41:d2:3e:0b:94:ce:a7:7a:4f:8e:4f:48: af:63:ae:1d:6a:99:01:26:da:f4:61:95:a7:fb:fb: 53:3e:c5:90:5b:55:e6:7a:a2:7d:af:13:44:e7:b1: a5:99:a2:0a:b3:53:83:fb:14:d7:e8:51:6e:5c:ef: db:1a:ed:90:b2:35:f2:6f:27:c5:b2:8a:14:e0:1a: c9:ac:65:31:3d:3e:01:a4:63:9b:6c:7c:59:cb:91: 69:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:B1:85:2D:12:80:78:AC:E6:4F:F9:91:F2:23:D6:0C:56:FD:A6:39 X509v3 Authority Key Identifier: keyid:AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a31333a3a2f34382d3438203d3e203538353532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:fd00:13::/48 Signature Algorithm: sha256WithRSAEncryption 5a:92:ec:2e:ae:08:f2:04:a5:c2:63:d9:32:f1:41:89:14:ca: ef:09:fb:ab:76:47:c3:f6:02:88:d3:fb:5c:38:5b:26:84:90: 78:4a:80:53:01:3c:be:d9:f6:cc:de:26:17:7e:4e:d1:d7:01: 01:4f:83:69:d3:68:54:4d:fe:ed:ca:ea:8a:03:74:c1:f7:f4: c0:33:23:c7:66:38:77:9f:de:55:e0:1a:59:fb:29:27:1c:6a: 2e:94:84:19:2a:00:be:10:fc:b1:76:56:c6:10:63:b5:cb:6b: 48:f0:00:d5:bd:91:ec:2b:35:67:ec:f4:21:e6:f7:56:b1:4e: 4a:84:4e:9d:6a:43:25:55:c5:46:ea:75:0a:a9:74:ad:8f:1d: fc:5d:da:7c:9e:4a:bf:a1:f7:6e:07:14:53:e5:9c:d9:95:8d: b6:47:3c:0e:18:25:18:23:93:df:2d:31:a5:d0:93:4b:74:b6: 10:cc:70:17:6e:a0:93:c7:93:ab:48:c4:c0:04:f6:6c:aa:62: 63:65:5c:ce:59:78:2d:8a:43:7c:65:63:58:ec:59:b8:58:08: ed:f2:22:31:44:66:04:79:f8:7d:78:e0:9e:b5:e6:72:45:43: eb:b5:8d:82:c1:14:b9:5c:bb:ab:6b:41:67:b8:2c:d0:01:78: 5c:95:42:ab -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUT9B9rYxejild1nIwW5uYdubj31kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FF NEQ1RkRFNjAeFw0yNTEwMzEwNTU1MDNaFw0yNjEwMzAwNjAwMDNaMDMxMTAvBgNV BAMTKEE2QjE4NTJEMTI4MDc4QUNFNjRGRjk5MUYyMjNENjBDNTZGREE2MzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTmiXP62c3cRsNcyq3978JyB/e g8l3XHuu1U6HI5l7t5XPADo+Qc4pm6uN9HzNEeqTG4cwJXSE3LkCcC0giiYtFu60 AINJN8hS3SW+c+A7lIXxN/CkgpWjnsdBAg8oQvjx3Brr2EBIVlEDyy82IH2Ssye1 NQNV4xExCX8vAQPQ0Bqr0AX+U6ukjeIS3diOTUUMj2RdYYLN2kvXAoduVgTWtXWT Fr7Z10HSPguUzqd6T45PSK9jrh1qmQEm2vRhlaf7+1M+xZBbVeZ6on2vE0TnsaWZ ogqzU4P7FNfoUW5c79sa7ZCyNfJvJ8WyihTgGsmsZTE9PgGkY5tsfFnLkWnBAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUprGFLRKAeKzmT/mR8iPWDFb9pjkwHwYDVR0j BBgwFoAUr0tY1LFlMLn2kZ2/T1PcOuTV/eYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZDIyN2RiZS00YTFjLTQwYjAtOTRhNi03OTNiZGJkYTM3NzcvMC9BRjRCNThENEIx NjUzMEI5RjY5MTlEQkY0RjUzREMzQUU0RDVGREU2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FFNEQ1 RkRFNi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVkMjI3ZGJlLTRhMWMtNDBiMC05 NGE2LTc5M2JkYmRhMzc3Ny8wLzMyMzQzMDM0M2E2NjY0MzAzMDNhMzEzMzNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzgzNTM1MzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBP0AABMw DQYJKoZIhvcNAQELBQADggEBAFqS7C6uCPIEpcJj2TLxQYkUyu8J+6t2R8P2AojT +1w4WyaEkHhKgFMBPL7Z9szeJhd+TtHXAQFPg2nTaFRN/u3K6ooDdMH39MAzI8dm OHef3lXgGln7KSccai6UhBkqAL4Q/LF2VsYQY7XLa0jwANW9kewrNWfs9CHm91ax TkqETp1qQyVVxUbqdQqpdK2PHfxd2nyeSr+h924HFFPlnNmVjbZHPA4YJRgjk98t MaXQk0t0thDMcBduoJPHk6tIxMAE9myqYmNlXM5ZeC2KQ3xlY1jsWbhYCO3yIjFE ZgR5+H144J615nJFQ+u1jYLBFLlcu6trQWe4LNABeFyVQqs= -----END CERTIFICATE-----Generated at Tue Nov 4 23:25:32 2025 by rpki-client