$ rpki-client -vvf repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/323430353a633434303a343a3a2f34382d3438203d3e20313339393732.roa File: 323430353a633434303a343a3a2f34382d3438203d3e20313339393732.roa (raw, json) Hash identifier: BqWVHHzzoFWpxbeXBGajTbzj7bsFyYJHW0FcRWiTKes= Subject key identifier: 1E:AD:C6:74:A8:A1:DB:80:8E:A8:4D:88:DE:8B:0D:4A:EE:32:DE:EE Certificate issuer: /CN=6969B3009665224541D322068C9E3444C78F90F9 Certificate serial: 15C5FEE4A7CF6A4CD198ACD7A12BF6EA9B18F250 Authority key identifier: 69:69:B3:00:96:65:22:45:41:D3:22:06:8C:9E:34:44:C7:8F:90:F9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6969B3009665224541D322068C9E3444C78F90F9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/323430353a633434303a343a3a2f34382d3438203d3e20313339393732.roa Signing time: Wed 05 Nov 2025 10:02:57 +0000 ROA not before: Wed 05 Nov 2025 09:57:57 +0000 ROA not after: Wed 04 Nov 2026 10:02:57 +0000 asID: 139972 IP address blocks: 2405:c440:4::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/6969B3009665224541D322068C9E3444C78F90F9.crl rsync://repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/6969B3009665224541D322068C9E3444C78F90F9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6969B3009665224541D322068C9E3444C78F90F9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Nov 2025 13:27:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:c5:fe:e4:a7:cf:6a:4c:d1:98:ac:d7:a1:2b:f6:ea:9b:18:f2:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6969B3009665224541D322068C9E3444C78F90F9 Validity Not Before: Nov 5 09:57:57 2025 GMT Not After : Nov 4 10:02:57 2026 GMT Subject: CN=1EADC674A8A1DB808EA84D88DE8B0D4AEE32DEEE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:c3:b2:a8:5b:1c:29:32:46:be:c0:67:c1:1f: 3b:14:19:64:cc:2e:69:18:25:0b:d7:f0:3c:7f:d6: fa:8c:9a:11:85:7c:1b:fc:f4:5d:66:36:6c:bd:39: a3:c2:5f:12:5c:4a:5c:8d:e6:af:29:a5:c7:00:81: 36:89:1c:9f:5f:63:42:03:4b:34:5e:bc:63:01:92: c4:d4:3e:5c:53:fc:1c:21:ef:0f:ec:73:02:05:83: 97:3b:6f:f1:54:33:f2:35:44:de:dd:12:50:35:5d: ba:70:5f:b6:df:81:a7:53:ba:a3:e5:46:da:18:d3: 08:93:11:60:84:1c:16:17:49:5d:e2:1c:f9:91:0f: 8c:0b:e5:cb:a6:20:77:1b:d1:63:18:32:6b:de:32: 82:ed:a3:43:a4:44:6c:f5:7d:3a:0f:66:9a:0d:6f: a3:18:ac:5f:e7:29:0b:7a:74:b6:f4:ae:5b:02:4e: a4:fa:25:d2:c3:64:1c:84:ed:4d:ad:8c:41:bd:43: dd:db:45:bd:1f:05:0f:74:90:ef:b6:00:1b:b7:1d: 3a:34:83:73:0e:bc:7c:fa:12:ad:bd:2d:f0:7f:a4: 27:f2:0c:6b:fa:3c:7c:2c:2c:c9:b4:54:3b:1b:a4: 6a:84:79:48:cf:ab:4c:33:5f:61:da:74:d1:03:74: 32:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:AD:C6:74:A8:A1:DB:80:8E:A8:4D:88:DE:8B:0D:4A:EE:32:DE:EE X509v3 Authority Key Identifier: keyid:69:69:B3:00:96:65:22:45:41:D3:22:06:8C:9E:34:44:C7:8F:90:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/6969B3009665224541D322068C9E3444C78F90F9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6969B3009665224541D322068C9E3444C78F90F9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/323430353a633434303a343a3a2f34382d3438203d3e20313339393732.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:c440:4::/48 Signature Algorithm: sha256WithRSAEncryption 2f:c7:15:5e:f1:c8:ac:9c:5b:95:17:c2:3c:62:ef:44:ed:8c: 3a:83:3f:88:79:56:b2:8b:1e:5b:6c:b6:c2:45:2d:9a:80:74: 01:f7:be:f5:30:68:28:ec:05:6a:0e:7c:c5:ca:2e:14:3c:bf: 1f:c5:5a:32:75:fe:fd:5c:51:6c:2c:eb:bd:f2:33:ba:45:0a: b4:74:97:f8:2a:ff:05:77:d3:a9:1a:0c:81:54:8c:cc:2e:13: 0a:38:19:24:ea:58:ce:39:46:cb:04:1e:d9:2a:9f:ba:3c:51: 57:18:4c:96:6f:16:a9:fa:e0:0a:38:38:d9:39:50:a3:8c:da: ba:aa:65:c9:49:2a:14:c4:01:0b:2a:f6:ad:53:4a:bb:c9:3b: cc:fa:60:88:44:cb:04:33:1d:42:e3:fd:42:eb:47:c6:5e:25: a7:ce:95:23:a2:5b:46:ca:81:62:4e:39:a6:4f:c7:f6:c2:0a: e3:c2:08:27:8d:8e:7e:34:5a:f6:d6:54:fa:c2:4c:6e:b0:f0: 27:e5:f4:be:76:cc:b2:36:8a:fa:82:29:85:28:03:eb:91:e5: f8:e8:0e:3b:4a:cd:e5:c2:ac:fd:95:f4:99:eb:d2:21:7d:f7: b8:cc:bc:7d:5d:5f:d9:5c:db:97:32:ec:b9:09:28:1d:28:19: 51:fd:a0:db -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUFcX+5KfPakzRmKzXoSv26psY8lAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjk2OUIzMDA5NjY1MjI0NTQxRDMyMjA2OEM5RTM0NDRD NzhGOTBGOTAeFw0yNTExMDUwOTU3NTdaFw0yNjExMDQxMDAyNTdaMDMxMTAvBgNV BAMTKDFFQURDNjc0QThBMURCODA4RUE4NEQ4OERFOEIwRDRBRUUzMkRFRUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpw7KoWxwpMka+wGfBHzsUGWTM LmkYJQvX8Dx/1vqMmhGFfBv89F1mNmy9OaPCXxJcSlyN5q8ppccAgTaJHJ9fY0ID SzRevGMBksTUPlxT/Bwh7w/scwIFg5c7b/FUM/I1RN7dElA1XbpwX7bfgadTuqPl RtoY0wiTEWCEHBYXSV3iHPmRD4wL5cumIHcb0WMYMmveMoLto0OkRGz1fToPZpoN b6MYrF/nKQt6dLb0rlsCTqT6JdLDZByE7U2tjEG9Q93bRb0fBQ90kO+2ABu3HTo0 g3MOvHz6Eq29LfB/pCfyDGv6PHwsLMm0VDsbpGqEeUjPq0wzX2HadNEDdDInAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUHq3GdKih24COqE2I3osNSu4y3u4wHwYDVR0j BBgwFoAUaWmzAJZlIkVB0yIGjJ40RMePkPkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 OWVlYmY3Yy1mZTM4LTQ2YTktODMxMS1lMDUzZmNhNTBkZmQvMC82OTY5QjMwMDk2 NjUyMjQ1NDFEMzIyMDY4QzlFMzQ0NEM3OEY5MEY5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjk2OUIzMDA5NjY1MjI0NTQxRDMyMjA2OEM5RTM0NDRDNzhG OTBGOS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk5ZWViZjdjLWZlMzgtNDZhOS04 MzExLWUwNTNmY2E1MGRmZC8wLzMyMzQzMDM1M2E2MzM0MzQzMDNhMzQzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTMzMzkzOTM3MzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBcRAAAQw DQYJKoZIhvcNAQELBQADggEBAC/HFV7xyKycW5UXwjxi70TtjDqDP4h5VrKLHlts tsJFLZqAdAH3vvUwaCjsBWoOfMXKLhQ8vx/FWjJ1/v1cUWws673yM7pFCrR0l/gq /wV306kaDIFUjMwuEwo4GSTqWM45RssEHtkqn7o8UVcYTJZvFqn64Ao4ONk5UKOM 2rqqZclJKhTEAQsq9q1TSrvJO8z6YIhEywQzHULj/ULrR8ZeJafOlSOiW0bKgWJO OaZPx/bCCuPCCCeNjn40WvbWVPrCTG6w8Cfl9L52zLI2ivqCKYUoA+uR5fjoDjtK zeXCrP2V9Jnr0iF997jMvH1dX9lc25cy7LkJKB0oGVH9oNs= -----END CERTIFICATE-----Generated at Wed Nov 5 23:52:48 2025 by rpki-client