$ rpki-client -vvf repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a31343a3a2f34382d3438203d3e203538353532.roa File: 323430343a666430303a31343a3a2f34382d3438203d3e203538353532.roa (raw, json) Hash identifier: 4qkpg4fYk7s7gqDGcQ4chubSgkyaybFQdy6MQ7z815c= Subject key identifier: 76:54:32:A4:F6:EB:51:89:02:EA:A1:5F:55:6F:3A:E7:BA:71:08:AA Certificate issuer: /CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Certificate serial: 48952C45E906EAB5A78126561FDA522C3629CC28 Authority key identifier: AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a31343a3a2f34382d3438203d3e203538353532.roa Signing time: Fri 31 Oct 2025 06:00:01 +0000 ROA not before: Fri 31 Oct 2025 05:55:01 +0000 ROA not after: Fri 30 Oct 2026 06:00:01 +0000 asID: 58552 IP address blocks: 2404:fd00:14::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Nov 2025 13:50:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:95:2c:45:e9:06:ea:b5:a7:81:26:56:1f:da:52:2c:36:29:cc:28 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Validity Not Before: Oct 31 05:55:01 2025 GMT Not After : Oct 30 06:00:01 2026 GMT Subject: CN=765432A4F6EB518902EAA15F556F3AE7BA7108AA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:9c:aa:c5:14:d1:83:13:75:57:d6:64:26:7b: 47:d1:a9:92:b8:78:16:3b:db:2a:4d:8c:45:da:fa: 9e:55:4d:c9:87:53:c2:8d:e8:60:d9:d8:65:ca:8a: 83:74:be:ed:85:f3:fe:c1:21:a7:1e:ad:a0:c4:c0: 77:2f:64:c6:49:30:67:9c:7f:75:37:bb:39:c9:a2: 8e:b3:48:22:e3:d4:05:2a:dd:a7:91:7e:3c:3f:0c: 1b:1b:2b:c5:82:51:bf:62:6d:5d:27:3a:2c:ba:f0: 87:ce:7b:38:d4:bb:d7:b6:6c:99:d6:7b:45:43:e6: c8:92:79:14:f1:42:11:cb:28:5e:2b:93:25:09:ea: b2:cf:59:06:d0:32:28:c5:7c:f6:bb:a4:12:68:26: c3:25:2e:34:cf:2f:d5:66:8f:eb:c7:5c:35:91:79: f1:1e:89:b6:0b:b9:9d:57:36:0b:78:20:c8:30:92: e2:1c:86:d9:31:05:09:df:9c:2c:5f:14:56:d2:0d: 09:d2:94:f1:01:2c:0e:69:7a:df:18:60:a5:02:58: 67:e1:b1:be:75:de:34:20:06:ff:1f:ea:f4:78:d3: f5:f6:bf:6e:b9:23:28:b7:55:ed:3e:00:d8:a2:2f: 1c:6a:69:e7:ef:42:03:b6:99:57:2b:0c:ae:6c:13: 8e:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:54:32:A4:F6:EB:51:89:02:EA:A1:5F:55:6F:3A:E7:BA:71:08:AA X509v3 Authority Key Identifier: keyid:AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a31343a3a2f34382d3438203d3e203538353532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:fd00:14::/48 Signature Algorithm: sha256WithRSAEncryption 4d:c6:e3:0c:d3:82:da:45:63:82:9d:e8:ac:1f:6a:f0:4b:05: d3:ff:00:64:9b:d2:a5:1c:49:43:9d:cb:aa:af:2c:0d:a1:21: b2:d1:1b:ab:18:97:1f:06:65:f9:7e:35:bd:27:a8:91:33:17: 28:98:4a:16:b5:bd:fa:5d:46:f3:9a:63:c5:40:b5:4e:ab:dc: 32:e2:29:64:39:5f:75:a4:44:e0:e4:18:45:b4:8c:d9:24:d7: 35:3c:3b:c2:26:47:9b:9d:11:a0:02:e5:6f:fb:69:6b:c6:ba: 6f:76:6f:53:f0:0a:cb:e8:c6:1b:12:93:c4:e1:41:4b:d6:a5: 0a:b0:5a:f9:06:7d:7c:51:46:8c:f4:62:f0:eb:8d:1e:9a:bd: c9:e3:5a:a3:4b:8c:17:06:1d:bf:7f:92:1b:ee:37:d9:2c:82: 43:33:a0:49:8a:03:6c:fa:45:6f:c2:9f:29:61:b6:71:b1:89: 9a:02:ea:7c:c8:ee:29:e3:06:99:06:b2:0f:43:ad:83:61:62: c0:94:1c:fe:8f:6a:86:16:5c:4a:e8:6d:e4:88:27:37:7b:c6: d7:ce:c2:6d:1f:7b:98:36:65:04:87:04:76:c6:10:dd:94:d0: 27:ec:4a:e8:49:a5:52:5a:d2:7e:e6:c4:20:e6:71:9e:f4:62: 56:f1:e0:9c -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUSJUsRekG6rWngSZWH9pSLDYpzCgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FF NEQ1RkRFNjAeFw0yNTEwMzEwNTU1MDFaFw0yNjEwMzAwNjAwMDFaMDMxMTAvBgNV BAMTKDc2NTQzMkE0RjZFQjUxODkwMkVBQTE1RjU1NkYzQUU3QkE3MTA4QUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAnKrFFNGDE3VX1mQme0fRqZK4 eBY72ypNjEXa+p5VTcmHU8KN6GDZ2GXKioN0vu2F8/7BIaceraDEwHcvZMZJMGec f3U3uznJoo6zSCLj1AUq3aeRfjw/DBsbK8WCUb9ibV0nOiy68IfOezjUu9e2bJnW e0VD5siSeRTxQhHLKF4rkyUJ6rLPWQbQMijFfPa7pBJoJsMlLjTPL9Vmj+vHXDWR efEeibYLuZ1XNgt4IMgwkuIchtkxBQnfnCxfFFbSDQnSlPEBLA5pet8YYKUCWGfh sb513jQgBv8f6vR40/X2v265Iyi3Ve0+ANiiLxxqaefvQgO2mVcrDK5sE445AgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUdlQypPbrUYkC6qFfVW8657pxCKowHwYDVR0j BBgwFoAUr0tY1LFlMLn2kZ2/T1PcOuTV/eYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZDIyN2RiZS00YTFjLTQwYjAtOTRhNi03OTNiZGJkYTM3NzcvMC9BRjRCNThENEIx NjUzMEI5RjY5MTlEQkY0RjUzREMzQUU0RDVGREU2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FFNEQ1 RkRFNi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVkMjI3ZGJlLTRhMWMtNDBiMC05 NGE2LTc5M2JkYmRhMzc3Ny8wLzMyMzQzMDM0M2E2NjY0MzAzMDNhMzEzNDNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzgzNTM1MzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBP0AABQw DQYJKoZIhvcNAQELBQADggEBAE3G4wzTgtpFY4Kd6KwfavBLBdP/AGSb0qUcSUOd y6qvLA2hIbLRG6sYlx8GZfl+Nb0nqJEzFyiYSha1vfpdRvOaY8VAtU6r3DLiKWQ5 X3WkRODkGEW0jNkk1zU8O8ImR5udEaAC5W/7aWvGum92b1PwCsvoxhsSk8ThQUvW pQqwWvkGfXxRRoz0YvDrjR6avcnjWqNLjBcGHb9/khvuN9ksgkMzoEmKA2z6RW/C nylhtnGxiZoC6nzI7injBpkGsg9DrYNhYsCUHP6PaoYWXErobeSIJzd7xtfOwm0f e5g2ZQSHBHbGEN2U0CfsSuhJpVJa0n7mxCDmcZ70Ylbx4Jw= -----END CERTIFICATE-----Generated at Tue Nov 4 21:16:09 2025 by rpki-client