$ rpki-client -vvf repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/323430353a633434303a353a3a2f34382d3438203d3e20313339393732.roa File: 323430353a633434303a353a3a2f34382d3438203d3e20313339393732.roa (raw, json) Hash identifier: BssgmQukkLPpn+lyxMqCsRLQAaaeIP62Hd9DQhdX16U= Subject key identifier: 4D:46:71:C3:BE:55:A7:20:99:D9:08:0F:FF:F1:ED:C6:D9:6F:F2:02 Certificate issuer: /CN=6969B3009665224541D322068C9E3444C78F90F9 Certificate serial: 3FA77449DD94C58A532813A974457192579B9EA4 Authority key identifier: 69:69:B3:00:96:65:22:45:41:D3:22:06:8C:9E:34:44:C7:8F:90:F9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6969B3009665224541D322068C9E3444C78F90F9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/323430353a633434303a353a3a2f34382d3438203d3e20313339393732.roa Signing time: Wed 05 Nov 2025 10:02:57 +0000 ROA not before: Wed 05 Nov 2025 09:57:57 +0000 ROA not after: Wed 04 Nov 2026 10:02:57 +0000 asID: 139972 IP address blocks: 2405:c440:5::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/6969B3009665224541D322068C9E3444C78F90F9.crl rsync://repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/6969B3009665224541D322068C9E3444C78F90F9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6969B3009665224541D322068C9E3444C78F90F9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Nov 2025 13:27:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:a7:74:49:dd:94:c5:8a:53:28:13:a9:74:45:71:92:57:9b:9e:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6969B3009665224541D322068C9E3444C78F90F9 Validity Not Before: Nov 5 09:57:57 2025 GMT Not After : Nov 4 10:02:57 2026 GMT Subject: CN=4D4671C3BE55A72099D9080FFFF1EDC6D96FF202 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:64:5d:3d:8a:f9:7f:0c:1a:32:8f:a2:80:70: ce:ce:2b:f5:b5:72:65:d4:2b:73:1d:c2:bd:d8:f8: 9f:00:04:02:71:d9:d2:5f:86:c1:3d:b2:b0:03:ba: b6:f4:83:56:30:c2:e4:16:86:a8:d1:d5:25:6f:28: 78:33:f2:0e:a4:79:c9:06:30:a0:5b:83:e4:1d:41: ba:6d:dd:6c:59:3d:90:31:b2:69:ba:1d:9d:55:94: d7:a5:66:bc:36:a1:b5:3b:a8:cb:fc:15:ff:fe:14: 31:b1:05:1d:78:3d:52:54:4e:bd:53:fc:5b:f5:db: 94:91:f6:fb:3d:67:10:f1:9b:94:db:95:9e:f5:d9: 81:08:b3:3c:c0:32:d9:93:6c:29:f1:d1:6b:9d:b7: 80:d8:23:5b:c7:8e:f1:35:fc:59:6a:54:7e:b7:15: d1:8b:53:ff:2e:06:67:8d:63:bc:4f:f5:21:3d:d5: c1:5b:81:73:4d:25:b3:da:30:a6:d9:23:da:73:be: 3b:fa:99:2b:ad:52:5b:ef:00:42:44:09:e5:1c:60: fd:16:c2:0c:f7:b4:e9:ef:41:db:29:10:39:b5:ae: 7c:63:da:74:1f:0a:12:e4:cb:72:9c:63:4a:9d:6a: 57:f1:0f:53:0e:e7:c7:f7:5c:0c:23:8b:0d:08:42: 2e:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:46:71:C3:BE:55:A7:20:99:D9:08:0F:FF:F1:ED:C6:D9:6F:F2:02 X509v3 Authority Key Identifier: keyid:69:69:B3:00:96:65:22:45:41:D3:22:06:8C:9E:34:44:C7:8F:90:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/6969B3009665224541D322068C9E3444C78F90F9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6969B3009665224541D322068C9E3444C78F90F9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/323430353a633434303a353a3a2f34382d3438203d3e20313339393732.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:c440:5::/48 Signature Algorithm: sha256WithRSAEncryption 36:4b:c0:67:49:43:ff:4a:b6:0d:61:8d:a8:18:0e:92:d2:95: fb:6b:62:34:f8:f4:ef:e3:84:a9:ae:cf:cb:37:44:ed:d7:15: 2e:cd:07:e2:12:70:87:3c:14:b2:2b:90:9c:b4:8c:95:d7:7e: ca:01:89:fb:e6:16:e8:9e:4d:6c:4a:c6:9c:a0:f2:c9:a9:9e: 03:ac:ce:e8:81:f4:65:f2:33:b9:a5:3b:f4:48:60:13:b5:c6: c5:63:b6:d0:af:62:4b:1d:86:6d:5c:cc:af:50:eb:01:f4:46: 0d:21:20:c6:a8:9f:c3:87:ce:7f:13:72:f7:22:72:87:bc:a1: 27:ad:cb:6a:44:b0:c2:63:ef:1a:50:d5:3f:9e:65:bd:b6:ea: 72:69:98:1e:86:08:87:ab:d6:ac:5b:3a:a8:58:62:4a:ba:43: 0c:17:b8:d0:46:de:21:79:59:74:b9:a5:d6:79:23:1f:5e:80: 71:fa:8f:c1:d5:c4:25:e2:31:0a:2e:36:ee:ea:f7:40:ff:c6: c1:52:61:ff:1f:08:a7:56:7d:75:e6:e7:4e:c7:9d:19:4c:e9: f9:68:2e:79:dc:88:fa:e0:be:f4:5b:21:e8:41:02:f2:a1:9d: b8:63:80:79:26:07:3a:06:cf:91:bc:37:2e:0c:47:4a:71:91: c5:58:36:9c -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUP6d0Sd2UxYpTKBOpdEVxklebnqQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjk2OUIzMDA5NjY1MjI0NTQxRDMyMjA2OEM5RTM0NDRD NzhGOTBGOTAeFw0yNTExMDUwOTU3NTdaFw0yNjExMDQxMDAyNTdaMDMxMTAvBgNV BAMTKDRENDY3MUMzQkU1NUE3MjA5OUQ5MDgwRkZGRjFFREM2RDk2RkYyMDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCfZF09ivl/DBoyj6KAcM7OK/W1 cmXUK3Mdwr3Y+J8ABAJx2dJfhsE9srADurb0g1YwwuQWhqjR1SVvKHgz8g6keckG MKBbg+QdQbpt3WxZPZAxsmm6HZ1VlNelZrw2obU7qMv8Ff/+FDGxBR14PVJUTr1T /Fv125SR9vs9ZxDxm5TblZ712YEIszzAMtmTbCnx0Wudt4DYI1vHjvE1/FlqVH63 FdGLU/8uBmeNY7xP9SE91cFbgXNNJbPaMKbZI9pzvjv6mSutUlvvAEJECeUcYP0W wgz3tOnvQdspEDm1rnxj2nQfChLky3KcY0qdalfxD1MO58f3XAwjiw0IQi45AgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUTUZxw75VpyCZ2QgP//Htxtlv8gIwHwYDVR0j BBgwFoAUaWmzAJZlIkVB0yIGjJ40RMePkPkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 OWVlYmY3Yy1mZTM4LTQ2YTktODMxMS1lMDUzZmNhNTBkZmQvMC82OTY5QjMwMDk2 NjUyMjQ1NDFEMzIyMDY4QzlFMzQ0NEM3OEY5MEY5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjk2OUIzMDA5NjY1MjI0NTQxRDMyMjA2OEM5RTM0NDRDNzhG OTBGOS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk5ZWViZjdjLWZlMzgtNDZhOS04 MzExLWUwNTNmY2E1MGRmZC8wLzMyMzQzMDM1M2E2MzM0MzQzMDNhMzUzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTMzMzkzOTM3MzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBcRAAAUw DQYJKoZIhvcNAQELBQADggEBADZLwGdJQ/9Ktg1hjagYDpLSlftrYjT49O/jhKmu z8s3RO3XFS7NB+IScIc8FLIrkJy0jJXXfsoBifvmFuieTWxKxpyg8smpngOszuiB 9GXyM7mlO/RIYBO1xsVjttCvYksdhm1czK9Q6wH0Rg0hIMaon8OHzn8Tcvcicoe8 oSety2pEsMJj7xpQ1T+eZb226nJpmB6GCIer1qxbOqhYYkq6QwwXuNBG3iF5WXS5 pdZ5Ix9egHH6j8HVxCXiMQouNu7q90D/xsFSYf8fCKdWfXXm507HnRlM6floLnnc iPrgvvRbIehBAvKhnbhjgHkmBzoGz5G8Ny4MR0pxkcVYNpw= -----END CERTIFICATE-----Generated at Wed Nov 5 23:52:48 2025 by rpki-client