$ rpki-client -vvf repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/323430353a633434303a323a3a2f34382d3438203d3e20313339393732.roa File: 323430353a633434303a323a3a2f34382d3438203d3e20313339393732.roa (raw, json) Hash identifier: fouWRDUQRVJ8s06qwWjIYLujpkqkEw0cr2CXSj6LTdQ= Subject key identifier: 79:2E:99:70:69:95:E5:1A:16:85:59:AE:15:40:1D:5E:C3:A6:7F:21 Certificate issuer: /CN=6969B3009665224541D322068C9E3444C78F90F9 Certificate serial: 543A2A5B1986D3959B6A09C0AC34949610E73CFA Authority key identifier: 69:69:B3:00:96:65:22:45:41:D3:22:06:8C:9E:34:44:C7:8F:90:F9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6969B3009665224541D322068C9E3444C78F90F9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/323430353a633434303a323a3a2f34382d3438203d3e20313339393732.roa Signing time: Wed 05 Nov 2025 10:02:57 +0000 ROA not before: Wed 05 Nov 2025 09:57:57 +0000 ROA not after: Wed 04 Nov 2026 10:02:57 +0000 asID: 139972 IP address blocks: 2405:c440:2::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/6969B3009665224541D322068C9E3444C78F90F9.crl rsync://repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/6969B3009665224541D322068C9E3444C78F90F9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6969B3009665224541D322068C9E3444C78F90F9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Nov 2025 13:27:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:3a:2a:5b:19:86:d3:95:9b:6a:09:c0:ac:34:94:96:10:e7:3c:fa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6969B3009665224541D322068C9E3444C78F90F9 Validity Not Before: Nov 5 09:57:57 2025 GMT Not After : Nov 4 10:02:57 2026 GMT Subject: CN=792E99706995E51A168559AE15401D5EC3A67F21 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:84:78:d5:0d:ae:3b:c5:94:06:fa:5e:61:96: 51:b3:34:7e:31:fd:66:3a:ee:0d:0c:82:4e:23:75: 7d:39:3b:97:38:0e:bb:f4:32:1e:93:7b:ed:ac:36: 4e:44:d0:a8:6e:06:09:c7:4c:e4:86:f6:ae:86:33: f1:75:c7:6b:e2:3d:98:0b:58:ca:8d:12:88:d9:a2: 01:21:b3:8a:9f:91:ba:7f:c3:0e:d7:91:cd:2c:13: 5c:fd:af:a5:51:37:37:d8:46:da:ca:de:bd:8c:0d: 00:3d:48:61:89:30:cb:57:02:62:f8:45:c5:5e:11: 4a:79:4c:78:7e:12:d7:d3:85:59:9c:b6:ef:85:5e: ee:be:ee:69:5a:9c:b1:41:09:56:22:47:e8:51:2b: e1:84:0d:cd:a9:60:77:2b:aa:6d:4b:2e:b8:81:15: dd:d0:67:ab:78:26:6d:e3:eb:b6:df:94:ee:2c:5d: 6f:6f:52:a6:f3:a8:75:9d:fd:9c:fc:c2:08:96:5e: c7:30:74:83:28:48:bb:0c:35:d2:0c:02:c2:08:93: 70:95:69:42:66:24:69:bf:7c:4c:2e:35:07:49:25: 26:07:88:aa:29:47:82:49:af:4f:71:69:35:b3:7e: f4:0e:a2:c6:e6:dc:32:5f:2f:1d:50:e3:c4:a6:d8: d0:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:2E:99:70:69:95:E5:1A:16:85:59:AE:15:40:1D:5E:C3:A6:7F:21 X509v3 Authority Key Identifier: keyid:69:69:B3:00:96:65:22:45:41:D3:22:06:8C:9E:34:44:C7:8F:90:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/6969B3009665224541D322068C9E3444C78F90F9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6969B3009665224541D322068C9E3444C78F90F9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/323430353a633434303a323a3a2f34382d3438203d3e20313339393732.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:c440:2::/48 Signature Algorithm: sha256WithRSAEncryption bb:9f:4f:d0:9e:23:4d:3e:19:79:76:09:69:0d:e1:9b:2e:80: 2d:d7:84:52:09:20:f2:d0:30:7f:29:a1:d8:2d:68:36:7e:a5: 89:c3:74:5b:66:9a:12:f7:98:54:07:ec:3b:e1:0e:49:91:a3: 6f:e9:9f:1c:da:d7:86:da:0c:9a:9c:b2:86:2d:49:ff:38:8f: 9b:0e:76:43:85:e3:f2:a9:ba:8d:1e:b0:4e:78:56:e1:06:fa: c0:e7:c9:10:d9:d4:d7:87:ab:50:e0:a9:8c:52:09:d8:7d:f1: 50:92:fd:76:cd:88:de:36:c0:86:7b:bb:66:2d:a3:ec:79:31: fb:20:b1:51:28:9e:2e:34:d8:a0:76:8a:c5:b7:26:ba:e5:8c: 91:f9:37:c8:83:ca:42:0a:a7:81:48:fc:36:42:99:42:db:68: 8e:50:e8:7d:1d:b5:6b:80:6b:15:e9:f2:fb:49:bc:12:1f:4e: 3c:10:4e:fb:95:f8:3d:ce:e5:5f:18:a8:3c:b4:50:3f:2b:8c: 14:c4:bc:52:93:43:8c:c2:5e:9b:17:82:28:34:31:6f:9b:44: 04:46:da:5a:e3:e7:a5:fe:f6:75:89:42:56:fc:ec:af:70:f3: 00:5a:4e:55:cc:01:3f:28:8f:07:09:55:23:a6:e6:9a:5e:b6: 7d:ba:ae:c3 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUVDoqWxmG05WbagnArDSUlhDnPPowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjk2OUIzMDA5NjY1MjI0NTQxRDMyMjA2OEM5RTM0NDRD NzhGOTBGOTAeFw0yNTExMDUwOTU3NTdaFw0yNjExMDQxMDAyNTdaMDMxMTAvBgNV BAMTKDc5MkU5OTcwNjk5NUU1MUExNjg1NTlBRTE1NDAxRDVFQzNBNjdGMjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOhHjVDa47xZQG+l5hllGzNH4x /WY67g0Mgk4jdX05O5c4Drv0Mh6Te+2sNk5E0KhuBgnHTOSG9q6GM/F1x2viPZgL WMqNEojZogEhs4qfkbp/ww7Xkc0sE1z9r6VRNzfYRtrK3r2MDQA9SGGJMMtXAmL4 RcVeEUp5THh+EtfThVmctu+FXu6+7mlanLFBCVYiR+hRK+GEDc2pYHcrqm1LLriB Fd3QZ6t4Jm3j67bflO4sXW9vUqbzqHWd/Zz8wgiWXscwdIMoSLsMNdIMAsIIk3CV aUJmJGm/fEwuNQdJJSYHiKopR4JJr09xaTWzfvQOosbm3DJfLx1Q48Sm2NAdAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUeS6ZcGmV5RoWhVmuFUAdXsOmfyEwHwYDVR0j BBgwFoAUaWmzAJZlIkVB0yIGjJ40RMePkPkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 OWVlYmY3Yy1mZTM4LTQ2YTktODMxMS1lMDUzZmNhNTBkZmQvMC82OTY5QjMwMDk2 NjUyMjQ1NDFEMzIyMDY4QzlFMzQ0NEM3OEY5MEY5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjk2OUIzMDA5NjY1MjI0NTQxRDMyMjA2OEM5RTM0NDRDNzhG OTBGOS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk5ZWViZjdjLWZlMzgtNDZhOS04 MzExLWUwNTNmY2E1MGRmZC8wLzMyMzQzMDM1M2E2MzM0MzQzMDNhMzIzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTMzMzkzOTM3MzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBcRAAAIw DQYJKoZIhvcNAQELBQADggEBALufT9CeI00+GXl2CWkN4ZsugC3XhFIJIPLQMH8p odgtaDZ+pYnDdFtmmhL3mFQH7DvhDkmRo2/pnxza14baDJqcsoYtSf84j5sOdkOF 4/Kpuo0esE54VuEG+sDnyRDZ1NeHq1DgqYxSCdh98VCS/XbNiN42wIZ7u2Yto+x5 MfsgsVEoni402KB2isW3JrrljJH5N8iDykIKp4FI/DZCmULbaI5Q6H0dtWuAaxXp 8vtJvBIfTjwQTvuV+D3O5V8YqDy0UD8rjBTEvFKTQ4zCXpsXgig0MW+bRARG2lrj 56X+9nWJQlb87K9w8wBaTlXMAT8ojwcJVSOm5ppetn26rsM= -----END CERTIFICATE-----Generated at Wed Nov 5 18:03:51 2025 by rpki-client