$ rpki-client -vvf repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a333030373a3a2f34382d3438203d3e20313333383430.roa File: 323430343a653130303a333030373a3a2f34382d3438203d3e20313333383430.roa (raw, json) Hash identifier: d7KaiNPDp37pdh0NntQbtSYyBehC66pfxMsFb5xmsag= Subject key identifier: F0:94:31:0E:2D:82:05:8D:71:C3:CA:A9:F1:56:4E:90:E1:F2:FD:CE Certificate issuer: /CN=B6F0131510E62F73E5F29246F9C8F691811A704D Certificate serial: 6A36DAB0081B82DED70C074314D52E1864C9B38C Authority key identifier: B6:F0:13:15:10:E6:2F:73:E5:F2:92:46:F9:C8:F6:91:81:1A:70:4D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a333030373a3a2f34382d3438203d3e20313333383430.roa Signing time: Sat 22 Mar 2025 06:00:02 +0000 ROA not before: Sat 22 Mar 2025 05:55:02 +0000 ROA not after: Sat 21 Mar 2026 06:00:02 +0000 asID: 133840 IP address blocks: 2404:e100:3007::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.crl rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Nov 2025 13:31:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:36:da:b0:08:1b:82:de:d7:0c:07:43:14:d5:2e:18:64:c9:b3:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B6F0131510E62F73E5F29246F9C8F691811A704D Validity Not Before: Mar 22 05:55:02 2025 GMT Not After : Mar 21 06:00:02 2026 GMT Subject: CN=F094310E2D82058D71C3CAA9F1564E90E1F2FDCE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:ea:93:3e:12:a9:5e:91:27:1d:1a:d6:36:cd: 34:9f:84:05:3f:cc:fa:3d:92:dc:d7:e5:37:4a:7c: 5e:df:c6:4d:6c:19:2b:58:22:08:03:82:56:f5:a2: e5:86:5c:20:cb:0b:78:ec:a1:57:b2:f7:99:93:df: ec:8d:a2:85:ab:5e:07:aa:34:18:7c:8b:5e:e5:e5: ff:e8:b3:46:84:70:0f:1a:2a:ad:8a:19:0b:a8:f0: 85:0d:23:3b:74:ce:c2:db:4b:a7:c2:84:e2:c4:2f: 0d:e9:a2:b3:5e:cc:07:4f:c6:8a:85:e7:8c:74:ee: 1e:77:30:ae:46:05:7a:a9:b1:cb:2b:43:f9:bc:a9: cf:1d:db:a0:30:ba:42:86:85:cf:02:b4:45:f9:c5: bf:66:85:cd:b5:c4:e3:6a:af:02:16:f9:d6:52:fb: ef:74:71:99:30:b7:21:63:6b:73:1d:82:f4:31:d5: 72:ff:7a:39:22:92:04:44:ce:0c:32:bb:7c:ca:91: 29:cf:6a:12:c2:9b:00:4c:86:de:8a:5a:28:0a:08: 80:dd:35:4d:76:83:ab:8a:0d:e9:06:fb:fb:67:bb: 0e:60:db:3d:9a:be:18:90:93:5b:8c:83:fa:52:8f: 3b:9c:ac:d6:b9:7a:79:4e:6c:01:7d:da:bb:f2:85: d7:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:94:31:0E:2D:82:05:8D:71:C3:CA:A9:F1:56:4E:90:E1:F2:FD:CE X509v3 Authority Key Identifier: keyid:B6:F0:13:15:10:E6:2F:73:E5:F2:92:46:F9:C8:F6:91:81:1A:70:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a333030373a3a2f34382d3438203d3e20313333383430.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:e100:3007::/48 Signature Algorithm: sha256WithRSAEncryption 39:e6:3a:17:8f:09:6f:ff:d7:4d:2b:6f:d3:7a:49:df:e0:70: 33:9f:5d:8d:3e:b6:ea:25:7a:d3:c5:05:e2:3b:d5:c2:4a:d3: 50:a3:69:5e:c0:b4:2e:53:60:1b:0a:2f:ac:66:51:3e:5f:cf: f2:c9:76:e0:39:de:da:51:19:03:72:d4:01:79:44:73:48:de: 69:3b:c7:46:d6:11:d4:0d:82:5a:11:77:01:5c:9c:3d:6d:7a: 24:a8:47:d0:3d:ad:fa:79:d4:5f:ff:37:9d:73:2a:29:bc:ef: 52:8c:72:00:f2:8f:69:7b:f0:02:00:5d:e5:a1:44:b3:37:d2: 08:91:64:2d:b2:53:36:8d:a2:27:a6:23:0a:a9:0b:93:7e:40: 9c:15:d2:f5:07:cb:38:69:66:8f:ea:36:6d:11:81:0d:86:5d: 75:3b:d7:7a:36:d4:a3:22:11:8e:97:a4:3c:ae:bb:c6:e2:ee: d8:08:3f:ae:b0:0a:17:51:71:cb:b9:98:a3:86:e1:f0:35:fa: 76:e3:ef:85:54:88:d6:bc:a4:c3:f3:82:d9:41:fb:71:0f:17: be:b6:fc:68:08:8d:a6:c4:31:c3:a6:f2:a8:bb:b2:0f:77:9f: 8d:3a:ba:e8:75:8d:53:1d:68:04:a3:67:36:32:cc:1c:3e:1c: 0e:11:3a:65 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUajbasAgbgt7XDAdDFNUuGGTJs4wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjZGMDEzMTUxMEU2MkY3M0U1RjI5MjQ2RjlDOEY2OTE4 MTFBNzA0RDAeFw0yNTAzMjIwNTU1MDJaFw0yNjAzMjEwNjAwMDJaMDMxMTAvBgNV BAMTKEYwOTQzMTBFMkQ4MjA1OEQ3MUMzQ0FBOUYxNTY0RTkwRTFGMkZEQ0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDF6pM+EqlekScdGtY2zTSfhAU/ zPo9ktzX5TdKfF7fxk1sGStYIggDglb1ouWGXCDLC3jsoVey95mT3+yNooWrXgeq NBh8i17l5f/os0aEcA8aKq2KGQuo8IUNIzt0zsLbS6fChOLELw3porNezAdPxoqF 54x07h53MK5GBXqpscsrQ/m8qc8d26AwukKGhc8CtEX5xb9mhc21xONqrwIW+dZS ++90cZkwtyFja3MdgvQx1XL/ejkikgREzgwyu3zKkSnPahLCmwBMht6KWigKCIDd NU12g6uKDekG+/tnuw5g2z2avhiQk1uMg/pSjzucrNa5enlObAF92rvyhdetAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQU8JQxDi2CBY1xw8qp8VZOkOHy/c4wHwYDVR0j BBgwFoAUtvATFRDmL3Pl8pJG+cj2kYEacE0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NWQ4ZGFiNC04YmI2LTRlZDAtOGRhYi01YTQwNjE2N2I5OWQvMC9CNkYwMTMxNTEw RTYyRjczRTVGMjkyNDZGOUM4RjY5MTgxMUE3MDRELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjZGMDEzMTUxMEU2MkY3M0U1RjI5MjQ2RjlDOEY2OTE4MTFB NzA0RC5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg1ZDhkYWI0LThiYjYtNGVkMC04 ZGFiLTVhNDA2MTY3Yjk5ZC8wLzMyMzQzMDM0M2E2NTMxMzAzMDNhMzMzMDMwMzcz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTMzMzMzODM0MzAucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk BOEAMAcwDQYJKoZIhvcNAQELBQADggEBADnmOhePCW//100rb9N6Sd/gcDOfXY0+ tuoletPFBeI71cJK01CjaV7AtC5TYBsKL6xmUT5fz/LJduA53tpRGQNy1AF5RHNI 3mk7x0bWEdQNgloRdwFcnD1teiSoR9A9rfp51F//N51zKim871KMcgDyj2l78AIA XeWhRLM30giRZC2yUzaNoiemIwqpC5N+QJwV0vUHyzhpZo/qNm0RgQ2GXXU713o2 1KMiEY6XpDyuu8bi7tgIP66wChdRccu5mKOG4fA1+nbj74VUiNa8pMPzgtlB+3EP F762/GgIjabEMcOm8qi7sg93n406uuh1jVMdaASjZzYyzBw+HA4ROmU= -----END CERTIFICATE-----Generated at Tue Nov 4 19:28:35 2025 by rpki-client