$ rpki-client -vvf repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/323430353a613534303a313030613a3a2f34382d3438203d3e203338313536.roa File: 323430353a613534303a313030613a3a2f34382d3438203d3e203338313536.roa (raw, json) Hash identifier: ZFZRCa2kaUPPIAb9l5kLlbXUKvuy5m62QwKLhpeTM2s= Subject key identifier: 1A:5A:50:D6:6C:B8:8D:21:92:7C:F8:CC:25:8D:C8:41:D8:CD:B3:34 Certificate issuer: /CN=5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4 Certificate serial: 46D87F4649E68D132E7FE369C217EED486F09730 Authority key identifier: 5B:D0:FD:00:EB:8A:CC:F5:09:29:F6:B0:F5:6C:75:00:6A:4D:58:C4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/323430353a613534303a313030613a3a2f34382d3438203d3e203338313536.roa Signing time: Wed 22 Oct 2025 17:00:02 +0000 ROA not before: Wed 22 Oct 2025 16:55:02 +0000 ROA not after: Wed 21 Oct 2026 17:00:02 +0000 asID: 38156 IP address blocks: 2405:a540:100a::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.crl rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 06 Nov 2025 00:22:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:d8:7f:46:49:e6:8d:13:2e:7f:e3:69:c2:17:ee:d4:86:f0:97:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4 Validity Not Before: Oct 22 16:55:02 2025 GMT Not After : Oct 21 17:00:02 2026 GMT Subject: CN=1A5A50D66CB88D21927CF8CC258DC841D8CDB334 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:aa:85:1f:35:20:7e:11:f5:b7:dc:23:51:a0: 8b:4c:aa:cc:e4:cb:f4:70:54:d2:18:d7:52:18:5c: fb:31:74:c7:35:00:5c:c4:fd:1b:ed:d4:8c:54:0a: 44:63:82:9b:43:4d:47:bd:8a:56:6f:36:fb:ce:82: d6:35:a7:36:01:80:05:8e:3d:3a:ef:35:c9:f4:8a: df:5f:21:8f:92:2a:ff:fa:6e:3a:d5:4e:02:9d:22: 52:42:b5:e3:24:f9:83:9f:da:98:31:c9:85:8c:c3: 72:ff:c8:d1:28:91:09:cb:d8:da:81:d9:33:ba:27: 84:03:ed:ca:24:9f:eb:73:99:3c:78:d4:df:16:ca: c3:e9:44:ce:4e:80:40:eb:94:bb:86:e6:86:6b:b2: e9:09:4d:ca:d4:54:5a:5b:15:d9:63:42:0b:cd:5f: 5f:e5:16:bf:17:49:2e:40:0e:85:3b:06:0d:7e:e0: 96:66:3b:c5:15:95:81:ab:7e:fc:b1:49:d8:3c:4e: d5:37:3b:ca:8e:0d:23:be:1a:79:5c:e5:6e:35:a4: 13:58:dc:c8:d1:dc:c8:9e:2a:f7:d8:ad:48:e4:c9: 58:65:3e:b4:1b:df:e3:4b:b4:f5:3a:7a:d5:0a:c5: 37:55:d3:0f:ac:c4:c4:26:9a:bb:1d:ef:18:89:ca: 88:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:5A:50:D6:6C:B8:8D:21:92:7C:F8:CC:25:8D:C8:41:D8:CD:B3:34 X509v3 Authority Key Identifier: keyid:5B:D0:FD:00:EB:8A:CC:F5:09:29:F6:B0:F5:6C:75:00:6A:4D:58:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/323430353a613534303a313030613a3a2f34382d3438203d3e203338313536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:a540:100a::/48 Signature Algorithm: sha256WithRSAEncryption 0c:be:63:d4:e5:f4:46:2c:d5:79:89:25:bc:8f:8f:9f:a1:29: a0:1b:30:6b:89:1f:88:ab:66:86:c0:c2:04:f8:ad:c2:0a:c2: 89:8f:8f:95:07:84:4c:08:f2:a2:f0:ce:7e:15:d3:9f:c1:03: e4:5c:06:c4:e5:1b:bc:fb:67:9d:80:42:fa:99:24:28:c9:59: a4:2c:5f:09:0e:47:e9:45:ae:63:5c:16:74:76:fa:4d:0c:34: c8:92:93:62:e9:3b:e7:19:9e:ea:47:84:c4:2c:08:2c:56:c3: 19:3b:02:da:4f:07:30:0a:9c:0e:3b:21:d4:73:ff:b4:7a:86: b8:ad:10:35:4e:bb:79:c6:c5:38:e7:31:aa:48:4f:3d:f0:88: 13:90:07:08:8c:65:0e:b0:fb:1a:8e:6c:01:af:ec:91:e9:d7: ba:43:32:53:cd:ae:a9:cf:b0:42:5f:71:e9:42:da:92:d5:04: 7d:99:5a:e4:e0:84:a1:6e:fa:f6:34:ff:d9:3a:b8:dd:ed:c0: 07:f9:f1:bc:c6:ea:de:f7:66:10:dd:08:09:4d:8f:26:43:53: 19:d0:ab:4c:e8:99:aa:88:c6:f7:7f:a3:43:0d:50:ec:4d:b2: 07:b2:e7:60:c0:89:9a:29:c9:8e:1a:3d:03:31:5d:0a:73:a9: 7c:a4:e1:08 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIURth/RknmjRMuf+Npwhfu1IbwlzAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUJEMEZEMDBFQjhBQ0NGNTA5MjlGNkIwRjU2Qzc1MDA2 QTRENThDNDAeFw0yNTEwMjIxNjU1MDJaFw0yNjEwMjExNzAwMDJaMDMxMTAvBgNV BAMTKDFBNUE1MEQ2NkNCODhEMjE5MjdDRjhDQzI1OERDODQxRDhDREIzMzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyqoUfNSB+EfW33CNRoItMqszk y/RwVNIY11IYXPsxdMc1AFzE/Rvt1IxUCkRjgptDTUe9ilZvNvvOgtY1pzYBgAWO PTrvNcn0it9fIY+SKv/6bjrVTgKdIlJCteMk+YOf2pgxyYWMw3L/yNEokQnL2NqB 2TO6J4QD7cokn+tzmTx41N8WysPpRM5OgEDrlLuG5oZrsukJTcrUVFpbFdljQgvN X1/lFr8XSS5ADoU7Bg1+4JZmO8UVlYGrfvyxSdg8TtU3O8qODSO+Gnlc5W41pBNY 3MjR3MieKvfYrUjkyVhlPrQb3+NLtPU6etUKxTdV0w+sxMQmmrsd7xiJyoi7AgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUGlpQ1my4jSGSfPjMJY3IQdjNszQwHwYDVR0j BBgwFoAUW9D9AOuKzPUJKfaw9Wx1AGpNWMQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j NWQzZDIyYS0zMzhiLTQzMDItOTNmNC1jMDIxZWE2YWQ1NDgvMC81QkQwRkQwMEVC OEFDQ0Y1MDkyOUY2QjBGNTZDNzUwMDZBNEQ1OEM0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUJEMEZEMDBFQjhBQ0NGNTA5MjlGNkIwRjU2Qzc1MDA2QTRE NThDNC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M1ZDNkMjJhLTMzOGItNDMwMi05 M2Y0LWMwMjFlYTZhZDU0OC8wLzMyMzQzMDM1M2E2MTM1MzQzMDNhMzEzMDMwNjEz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMzM4MzEzNTM2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAWl QBAKMA0GCSqGSIb3DQEBCwUAA4IBAQAMvmPU5fRGLNV5iSW8j4+foSmgGzBriR+I q2aGwMIE+K3CCsKJj4+VB4RMCPKi8M5+FdOfwQPkXAbE5Ru8+2edgEL6mSQoyVmk LF8JDkfpRa5jXBZ0dvpNDDTIkpNi6TvnGZ7qR4TELAgsVsMZOwLaTwcwCpwOOyHU c/+0eoa4rRA1Trt5xsU45zGqSE898IgTkAcIjGUOsPsajmwBr+yR6de6QzJTza6p z7BCX3HpQtqS1QR9mVrk4IShbvr2NP/ZOrjd7cAH+fG8xure92YQ3QgJTY8mQ1MZ 0KtM6JmqiMb3f6NDDVDsTbIHsudgwImaKcmOGj0DMV0Kc6l8pOEI -----END CERTIFICATE-----Generated at Tue Nov 4 07:44:24 2025 by rpki-client