$ rpki-client -vvf repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/323430353a613534303a313030663a3a2f34382d3438203d3e203338313536.roa File: 323430353a613534303a313030663a3a2f34382d3438203d3e203338313536.roa (raw, json) Hash identifier: KwIJb12Xy1VJugZmYZA5fsXvDoSScji8vAPgsl7mXl0= Subject key identifier: 40:21:68:8F:AF:CC:0E:DD:12:F2:8A:45:6B:03:89:85:AC:8B:35:CE Certificate issuer: /CN=5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4 Certificate serial: 0B80A3B8949112B297C071E8F42939E155DDB6EA Authority key identifier: 5B:D0:FD:00:EB:8A:CC:F5:09:29:F6:B0:F5:6C:75:00:6A:4D:58:C4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/323430353a613534303a313030663a3a2f34382d3438203d3e203338313536.roa Signing time: Wed 22 Oct 2025 15:00:02 +0000 ROA not before: Wed 22 Oct 2025 14:55:02 +0000 ROA not after: Wed 21 Oct 2026 15:00:02 +0000 asID: 38156 IP address blocks: 2405:a540:100f::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.crl rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 06 Nov 2025 00:22:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:80:a3:b8:94:91:12:b2:97:c0:71:e8:f4:29:39:e1:55:dd:b6:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4 Validity Not Before: Oct 22 14:55:02 2025 GMT Not After : Oct 21 15:00:02 2026 GMT Subject: CN=4021688FAFCC0EDD12F28A456B038985AC8B35CE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:5f:a0:a1:6b:2c:bd:87:6d:95:26:72:ed:36: cf:b9:6f:10:e2:d9:87:58:94:91:60:07:55:cb:e0: 04:6f:4a:13:88:92:77:f2:90:6a:50:17:55:51:5f: 8a:f0:0d:6f:15:d5:de:eb:db:ea:bf:a1:64:b8:12: 34:de:34:7c:67:f2:8f:d7:cd:b5:96:04:6f:c3:c5: 0f:bc:8f:d5:cc:88:16:95:76:b1:29:86:c8:27:48: 6b:33:e7:67:02:84:14:77:05:ad:91:35:f5:0a:8d: a9:f2:93:81:9b:9c:67:d4:88:ae:04:7c:26:4a:cb: 1a:d5:cf:f8:6e:8b:1f:d8:98:05:34:d8:4b:65:b8: e1:29:50:ce:24:44:6c:64:63:67:df:ba:1b:67:08: a7:fb:62:53:66:71:e3:e3:87:e2:a4:d6:70:70:00: 2f:7a:09:6d:e1:3b:c2:7a:76:09:27:db:12:af:91: be:d3:ff:3d:f7:cb:45:50:ca:d0:ab:5c:b4:01:a9: 5a:82:45:d4:57:24:19:0a:65:f9:1a:2e:e5:e7:d6: 6b:86:50:96:49:2b:77:02:63:3e:97:0a:69:96:f9: 13:0c:6e:bb:b1:9c:bf:f7:12:9f:9b:69:88:b1:26: a5:7e:ef:43:66:3c:3a:55:f3:ba:d9:a7:33:81:1e: 6f:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:21:68:8F:AF:CC:0E:DD:12:F2:8A:45:6B:03:89:85:AC:8B:35:CE X509v3 Authority Key Identifier: keyid:5B:D0:FD:00:EB:8A:CC:F5:09:29:F6:B0:F5:6C:75:00:6A:4D:58:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/323430353a613534303a313030663a3a2f34382d3438203d3e203338313536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:a540:100f::/48 Signature Algorithm: sha256WithRSAEncryption ce:70:ee:43:87:35:ee:db:79:60:99:ce:9d:84:96:8a:21:18: c1:2c:d6:d7:84:91:05:b4:6e:0b:47:f2:66:97:a2:e5:a3:75: 22:fc:94:38:d7:41:4b:56:44:20:12:da:d1:fc:27:8b:ea:bc: a6:51:b1:0a:5a:f5:6c:93:8b:c9:ea:ef:d7:cf:04:e9:00:fe: 5b:63:28:ce:53:47:49:26:95:68:81:30:b8:e0:38:8f:b2:76: f4:af:22:91:2e:d7:15:76:fb:d4:2f:fd:04:3a:87:3e:a5:68: 99:88:66:6e:b5:3d:17:a0:8b:0a:d5:2f:b4:77:2e:6e:1c:75: 5d:a5:c0:3d:56:64:cf:21:2b:1c:71:ba:aa:b5:78:db:f0:85: d2:b9:2c:f1:5d:e4:ca:77:01:d3:32:b9:2a:4d:2c:be:f3:2c: 4a:c0:1d:31:c6:fc:9c:86:85:44:cb:ef:d3:fe:3d:48:e9:6f: 17:d9:b9:92:3e:19:df:61:bd:13:cd:2f:80:25:33:b0:48:ca: de:0a:73:17:54:58:c6:61:b7:6f:a2:f1:21:43:ac:a9:e6:f5: 2f:ec:97:b7:f6:c0:5f:41:22:71:cc:72:2a:67:2a:bd:07:85: f1:71:fc:00:95:a7:6e:81:e3:a4:5d:80:83:9a:e0:e1:5b:fb: 5b:ba:2b:53 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUC4CjuJSRErKXwHHo9Ck54VXdtuowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUJEMEZEMDBFQjhBQ0NGNTA5MjlGNkIwRjU2Qzc1MDA2 QTRENThDNDAeFw0yNTEwMjIxNDU1MDJaFw0yNjEwMjExNTAwMDJaMDMxMTAvBgNV BAMTKDQwMjE2ODhGQUZDQzBFREQxMkYyOEE0NTZCMDM4OTg1QUM4QjM1Q0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCiX6Chayy9h22VJnLtNs+5bxDi 2YdYlJFgB1XL4ARvShOIknfykGpQF1VRX4rwDW8V1d7r2+q/oWS4EjTeNHxn8o/X zbWWBG/DxQ+8j9XMiBaVdrEphsgnSGsz52cChBR3Ba2RNfUKjanyk4GbnGfUiK4E fCZKyxrVz/huix/YmAU02EtluOEpUM4kRGxkY2ffuhtnCKf7YlNmcePjh+Kk1nBw AC96CW3hO8J6dgkn2xKvkb7T/z33y0VQytCrXLQBqVqCRdRXJBkKZfkaLuXn1muG UJZJK3cCYz6XCmmW+RMMbruxnL/3Ep+baYixJqV+70NmPDpV87rZpzOBHm+BAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUQCFoj6/MDt0S8opFawOJhayLNc4wHwYDVR0j BBgwFoAUW9D9AOuKzPUJKfaw9Wx1AGpNWMQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j NWQzZDIyYS0zMzhiLTQzMDItOTNmNC1jMDIxZWE2YWQ1NDgvMC81QkQwRkQwMEVC OEFDQ0Y1MDkyOUY2QjBGNTZDNzUwMDZBNEQ1OEM0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUJEMEZEMDBFQjhBQ0NGNTA5MjlGNkIwRjU2Qzc1MDA2QTRE NThDNC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M1ZDNkMjJhLTMzOGItNDMwMi05 M2Y0LWMwMjFlYTZhZDU0OC8wLzMyMzQzMDM1M2E2MTM1MzQzMDNhMzEzMDMwNjYz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMzM4MzEzNTM2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAWl QBAPMA0GCSqGSIb3DQEBCwUAA4IBAQDOcO5DhzXu23lgmc6dhJaKIRjBLNbXhJEF tG4LR/Jml6Llo3Ui/JQ410FLVkQgEtrR/CeL6rymUbEKWvVsk4vJ6u/XzwTpAP5b YyjOU0dJJpVogTC44DiPsnb0ryKRLtcVdvvUL/0EOoc+pWiZiGZutT0XoIsK1S+0 dy5uHHVdpcA9VmTPISsccbqqtXjb8IXSuSzxXeTKdwHTMrkqTSy+8yxKwB0xxvyc hoVEy+/T/j1I6W8X2bmSPhnfYb0TzS+AJTOwSMreCnMXVFjGYbdvovEhQ6yp5vUv 7Je39sBfQSJxzHIqZyq9B4XxcfwAladugeOkXYCDmuDhW/tbuitT -----END CERTIFICATE-----Generated at Tue Nov 4 07:44:22 2025 by rpki-client