$ rpki-client -vvf repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/323430353a633434303a3a2f34382d3438203d3e20313339393732.roa File: 323430353a633434303a3a2f34382d3438203d3e20313339393732.roa (raw, json) Hash identifier: qdpua64K6XKO1BzztEjSdqKs6BcraRKEEjxmWtSbUpM= Subject key identifier: 10:D0:27:BE:E0:45:68:CF:63:97:42:96:89:42:0A:A9:B0:63:61:E2 Certificate issuer: /CN=6969B3009665224541D322068C9E3444C78F90F9 Certificate serial: 0270B9E735B2F434B49816BDFA4A3B2B75961BF9 Authority key identifier: 69:69:B3:00:96:65:22:45:41:D3:22:06:8C:9E:34:44:C7:8F:90:F9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6969B3009665224541D322068C9E3444C78F90F9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/323430353a633434303a3a2f34382d3438203d3e20313339393732.roa Signing time: Wed 05 Nov 2025 10:02:57 +0000 ROA not before: Wed 05 Nov 2025 09:57:57 +0000 ROA not after: Wed 04 Nov 2026 10:02:57 +0000 asID: 139972 IP address blocks: 2405:c440::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/6969B3009665224541D322068C9E3444C78F90F9.crl rsync://repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/6969B3009665224541D322068C9E3444C78F90F9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6969B3009665224541D322068C9E3444C78F90F9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Nov 2025 13:27:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:70:b9:e7:35:b2:f4:34:b4:98:16:bd:fa:4a:3b:2b:75:96:1b:f9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6969B3009665224541D322068C9E3444C78F90F9 Validity Not Before: Nov 5 09:57:57 2025 GMT Not After : Nov 4 10:02:57 2026 GMT Subject: CN=10D027BEE04568CF6397429689420AA9B06361E2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:e5:dc:00:e9:5a:60:72:8c:ce:97:7a:30:b1: ff:7e:c3:1e:03:87:15:58:fd:89:fe:b3:4a:d4:e1: 7c:17:a3:77:88:af:01:2f:78:c3:20:a7:ad:3e:73: a7:7a:54:5b:73:62:ea:a1:e1:f8:90:7f:e0:d5:ee: 6e:55:54:25:59:31:b3:ba:4e:e5:71:db:3e:72:82: ac:c2:1b:68:3e:74:a1:57:08:e2:82:68:e5:3a:2b: 70:d7:aa:c8:7f:5b:86:52:56:76:7d:07:8a:76:da: 89:8a:f9:4b:dc:1b:9a:16:c5:02:c6:ee:d8:10:d0: 77:7b:fb:87:09:49:69:e9:fd:5e:f3:3f:1a:1c:3f: 46:79:f9:74:ea:c3:1c:62:a6:23:24:93:2f:82:ab: e7:38:53:96:a9:8d:5a:48:70:79:5c:15:02:86:c5: 4b:97:be:91:5e:bb:61:54:95:5f:39:49:73:48:02: 5f:a3:95:c8:e2:8e:80:5f:74:20:30:f2:13:4b:e8: af:e6:df:13:c2:87:cf:e8:d9:4b:47:5c:6a:1e:3b: 5b:41:42:12:dd:c2:2b:3e:f2:26:b8:54:16:4c:0e: 16:74:19:a4:34:f3:44:28:70:c8:68:31:a7:a2:0d: 30:39:d0:e1:06:64:fe:1a:18:3a:3e:27:06:18:d0: f5:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:D0:27:BE:E0:45:68:CF:63:97:42:96:89:42:0A:A9:B0:63:61:E2 X509v3 Authority Key Identifier: keyid:69:69:B3:00:96:65:22:45:41:D3:22:06:8C:9E:34:44:C7:8F:90:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/6969B3009665224541D322068C9E3444C78F90F9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6969B3009665224541D322068C9E3444C78F90F9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/323430353a633434303a3a2f34382d3438203d3e20313339393732.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:c440::/48 Signature Algorithm: sha256WithRSAEncryption 57:82:91:27:b8:26:94:1f:fe:f4:5d:fb:7c:78:6a:ed:ac:1e: 2a:8c:81:86:f2:40:af:56:d0:fd:83:9c:52:d8:73:87:f3:4c: b3:6c:a1:3d:52:09:42:1a:cf:16:20:21:f8:9c:a0:0b:a2:b5: b8:29:c1:93:1e:2c:53:ee:ba:3c:b3:f7:e0:0a:9a:e5:b0:7c: cd:06:52:14:f0:75:60:b8:20:8e:24:97:76:ad:21:a6:bd:c2: 6a:3e:70:d2:5c:fd:52:e6:d1:e2:d9:29:0c:01:70:33:52:37: f8:a0:c0:c1:04:22:a6:ab:3a:1c:14:98:1e:c2:2b:4f:7a:31: f1:4e:d9:cc:41:4e:82:52:97:06:c2:c9:c0:2e:3f:35:32:30: 11:df:39:43:f1:fb:c3:1c:0e:f3:3d:8e:19:1f:ca:d8:ba:1f: 9f:bd:db:a7:7f:d8:71:c1:f3:42:d4:46:06:b6:30:9f:7c:af: ac:39:a0:1e:72:c5:cf:53:1b:6a:87:2e:ef:7a:7a:cd:b1:0e: 7a:ca:fb:21:78:77:26:4e:5c:ff:12:3b:f8:45:ba:bd:fe:09: f8:91:ba:5c:02:26:23:6a:44:a2:c8:1a:87:61:82:4a:b2:eb: 6d:f5:e7:5c:74:d4:d4:53:db:72:2b:9c:98:9c:f3:87:53:cc: 26:59:a8:5f -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgIUAnC55zWy9DS0mBa9+ko7K3WWG/kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjk2OUIzMDA5NjY1MjI0NTQxRDMyMjA2OEM5RTM0NDRD NzhGOTBGOTAeFw0yNTExMDUwOTU3NTdaFw0yNjExMDQxMDAyNTdaMDMxMTAvBgNV BAMTKDEwRDAyN0JFRTA0NTY4Q0Y2Mzk3NDI5Njg5NDIwQUE5QjA2MzYxRTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDG5dwA6VpgcozOl3owsf9+wx4D hxVY/Yn+s0rU4XwXo3eIrwEveMMgp60+c6d6VFtzYuqh4fiQf+DV7m5VVCVZMbO6 TuVx2z5ygqzCG2g+dKFXCOKCaOU6K3DXqsh/W4ZSVnZ9B4p22omK+UvcG5oWxQLG 7tgQ0Hd7+4cJSWnp/V7zPxocP0Z5+XTqwxxipiMkky+Cq+c4U5apjVpIcHlcFQKG xUuXvpFeu2FUlV85SXNIAl+jlcjijoBfdCAw8hNL6K/m3xPCh8/o2UtHXGoeO1tB QhLdwis+8ia4VBZMDhZ0GaQ080QocMhoMaeiDTA50OEGZP4aGDo+JwYY0PWlAgMB AAGjggI1MIICMTAdBgNVHQ4EFgQUENAnvuBFaM9jl0KWiUIKqbBjYeIwHwYDVR0j BBgwFoAUaWmzAJZlIkVB0yIGjJ40RMePkPkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 OWVlYmY3Yy1mZTM4LTQ2YTktODMxMS1lMDUzZmNhNTBkZmQvMC82OTY5QjMwMDk2 NjUyMjQ1NDFEMzIyMDY4QzlFMzQ0NEM3OEY5MEY5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjk2OUIzMDA5NjY1MjI0NTQxRDMyMjA2OEM5RTM0NDRDNzhG OTBGOS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk5ZWViZjdjLWZlMzgtNDZhOS04 MzExLWUwNTNmY2E1MGRmZC8wLzMyMzQzMDM1M2E2MzM0MzQzMDNhM2EyZjM0Mzgy ZDM0MzgyMDNkM2UyMDMxMzMzOTM5MzczMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQFxEAAADANBgkq hkiG9w0BAQsFAAOCAQEAV4KRJ7gmlB/+9F37fHhq7aweKoyBhvJAr1bQ/YOcUthz h/NMs2yhPVIJQhrPFiAh+JygC6K1uCnBkx4sU+66PLP34Aqa5bB8zQZSFPB1YLgg jiSXdq0hpr3Caj5w0lz9UubR4tkpDAFwM1I3+KDAwQQipqs6HBSYHsIrT3ox8U7Z zEFOglKXBsLJwC4/NTIwEd85Q/H7wxwO8z2OGR/K2Lofn73bp3/YccHzQtRGBrYw n3yvrDmgHnLFz1Mbaocu73p6zbEOesr7IXh3Jk5c/xI7+EW6vf4J+JG6XAImI2pE osgah2GCSrLrbfXnXHTU1FPbciucmJzzh1PMJlmoXw== -----END CERTIFICATE-----Generated at Wed Nov 5 18:03:59 2025 by rpki-client