$ rpki-client -vvf repo-rpki.idnic.net/repo/d6c8b3a9-4eff-460d-b01d-6ba5d99dadb9/0/323430353a356534303a3a2f33322d3332203d3e20313339343038.roa File: 323430353a356534303a3a2f33322d3332203d3e20313339343038.roa (raw, json) Hash identifier: sRyhu6fDfcemdhV/NAA1n4G4NdnybRSnokvW0ioWtBY= Subject key identifier: 4A:D3:14:5D:9B:27:5F:2C:56:1C:6F:93:AC:14:C3:8F:6B:FE:80:5C Certificate issuer: /CN=4443E43239D3F5B9674F2F5B5A37711434C48AF2 Certificate serial: 5E505188B908578B4235C2C6F270719399ECFD25 Authority key identifier: 44:43:E4:32:39:D3:F5:B9:67:4F:2F:5B:5A:37:71:14:34:C4:8A:F2 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4443E43239D3F5B9674F2F5B5A37711434C48AF2.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d6c8b3a9-4eff-460d-b01d-6ba5d99dadb9/0/323430353a356534303a3a2f33322d3332203d3e20313339343038.roa Signing time: Wed 13 Aug 2025 14:00:00 +0000 ROA not before: Wed 13 Aug 2025 13:55:00 +0000 ROA not after: Wed 12 Aug 2026 14:00:00 +0000 asID: 139408 IP address blocks: 2405:5e40::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d6c8b3a9-4eff-460d-b01d-6ba5d99dadb9/0/4443E43239D3F5B9674F2F5B5A37711434C48AF2.crl rsync://repo-rpki.idnic.net/repo/d6c8b3a9-4eff-460d-b01d-6ba5d99dadb9/0/4443E43239D3F5B9674F2F5B5A37711434C48AF2.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4443E43239D3F5B9674F2F5B5A37711434C48AF2.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 06 Nov 2025 22:47:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:50:51:88:b9:08:57:8b:42:35:c2:c6:f2:70:71:93:99:ec:fd:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4443E43239D3F5B9674F2F5B5A37711434C48AF2 Validity Not Before: Aug 13 13:55:00 2025 GMT Not After : Aug 12 14:00:00 2026 GMT Subject: CN=4AD3145D9B275F2C561C6F93AC14C38F6BFE805C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:0f:6f:05:10:28:3b:e0:66:2e:bd:28:09:c2: 22:2e:d2:5e:c5:c2:aa:d9:ec:bd:03:f0:5f:21:39: 1c:4b:11:19:7e:6c:d4:60:da:26:ce:e9:d2:69:ba: 29:c1:3f:75:b5:82:0f:30:2c:f6:0b:19:6e:aa:a3: a4:f1:dd:c7:e9:5b:fb:8b:ba:e7:9b:14:e6:8f:8a: 37:3d:36:55:94:ba:27:7f:f0:8e:56:ba:7a:31:61: cf:ec:f9:db:aa:96:03:2f:db:19:24:e5:63:b8:ce: 59:b4:3d:7a:81:da:ca:1f:c1:1b:da:bc:39:1f:50: ae:a9:49:5c:8b:67:fb:15:4a:69:89:5f:66:eb:af: 1f:b9:30:bf:0e:3c:b3:35:0a:92:48:dc:09:fc:85: 8b:bf:5c:9c:11:f6:6d:ec:23:68:cf:74:fa:ee:56: c8:49:8f:2c:d1:b8:a6:40:24:90:a9:5a:d9:06:aa: 98:b2:10:f9:a7:02:66:ba:65:89:71:72:53:17:90: 09:23:c8:d2:92:25:c2:b1:b2:5f:a7:a2:44:72:4e: 02:05:ef:88:5d:17:f7:16:77:ed:32:52:08:8a:34: 7c:a3:d2:69:0f:1c:48:b5:4f:ca:9b:20:a9:57:6d: 50:d3:43:39:c9:86:47:21:3f:b6:49:0b:9d:91:19: a7:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:D3:14:5D:9B:27:5F:2C:56:1C:6F:93:AC:14:C3:8F:6B:FE:80:5C X509v3 Authority Key Identifier: keyid:44:43:E4:32:39:D3:F5:B9:67:4F:2F:5B:5A:37:71:14:34:C4:8A:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d6c8b3a9-4eff-460d-b01d-6ba5d99dadb9/0/4443E43239D3F5B9674F2F5B5A37711434C48AF2.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4443E43239D3F5B9674F2F5B5A37711434C48AF2.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d6c8b3a9-4eff-460d-b01d-6ba5d99dadb9/0/323430353a356534303a3a2f33322d3332203d3e20313339343038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:5e40::/32 Signature Algorithm: sha256WithRSAEncryption 95:79:f1:21:54:b5:7f:83:8a:38:a0:f3:a9:9f:1f:46:4d:68: e9:9f:1a:d6:d2:e1:2b:cf:f8:63:8c:99:b1:43:fa:cf:c3:bc: 20:4e:7f:8e:d7:61:f9:c9:d9:29:ab:e8:3b:b8:cc:fd:d2:d2: fd:3f:81:03:47:18:eb:fc:02:2a:f0:c5:60:fa:84:74:e4:66: 1f:9a:5b:a9:ce:5d:b6:9d:01:64:59:9b:10:2d:ec:d9:c9:19: e7:ea:6b:aa:ce:8a:04:97:37:60:8c:ed:f6:dd:b2:2a:4b:75: b4:3d:65:af:55:70:dc:73:5d:94:b9:01:f9:51:3b:5c:a5:c5: 82:4c:ee:a6:1f:f0:f1:ee:16:2f:fb:73:08:bf:80:d0:b9:38: 03:f4:a7:19:42:0a:9e:34:55:de:c1:ff:98:38:16:e0:33:65: c2:2a:6b:27:4a:74:99:10:5d:13:6f:a4:2e:62:9d:5f:91:9e: 45:68:7a:a3:17:e4:8d:b6:89:28:20:6f:a2:4e:ee:4f:2e:87: 1c:a1:42:25:c5:fe:ec:4a:b5:7b:a5:93:6f:b3:c0:a1:e9:a2: 77:9f:42:b3:cb:c8:a1:7a:46:e5:5c:69:da:e6:2c:dd:8c:7d: 07:8f:2f:8a:11:9e:4a:3e:37:f1:db:f3:2e:4a:5e:9c:52:d8: 59:d0:cd:55 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUXlBRiLkIV4tCNcLG8nBxk5ns/SUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDQ0M0U0MzIzOUQzRjVCOTY3NEYyRjVCNUEzNzcxMTQz NEM0OEFGMjAeFw0yNTA4MTMxMzU1MDBaFw0yNjA4MTIxNDAwMDBaMDMxMTAvBgNV BAMTKDRBRDMxNDVEOUIyNzVGMkM1NjFDNkY5M0FDMTRDMzhGNkJGRTgwNUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCD28FECg74GYuvSgJwiIu0l7F wqrZ7L0D8F8hORxLERl+bNRg2ibO6dJpuinBP3W1gg8wLPYLGW6qo6Tx3cfpW/uL uuebFOaPijc9NlWUuid/8I5WunoxYc/s+duqlgMv2xkk5WO4zlm0PXqB2sofwRva vDkfUK6pSVyLZ/sVSmmJX2brrx+5ML8OPLM1CpJI3An8hYu/XJwR9m3sI2jPdPru VshJjyzRuKZAJJCpWtkGqpiyEPmnAma6ZYlxclMXkAkjyNKSJcKxsl+nokRyTgIF 74hdF/cWd+0yUgiKNHyj0mkPHEi1T8qbIKlXbVDTQznJhkchP7ZJC52RGaeHAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUStMUXZsnXyxWHG+TrBTDj2v+gFwwHwYDVR0j BBgwFoAUREPkMjnT9blnTy9bWjdxFDTEivIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k NmM4YjNhOS00ZWZmLTQ2MGQtYjAxZC02YmE1ZDk5ZGFkYjkvMC80NDQzRTQzMjM5 RDNGNUI5Njc0RjJGNUI1QTM3NzExNDM0QzQ4QUYyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDQ0M0U0MzIzOUQzRjVCOTY3NEYyRjVCNUEzNzcxMTQzNEM0 OEFGMi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q2YzhiM2E5LTRlZmYtNDYwZC1i MDFkLTZiYTVkOTlkYWRiOS8wLzMyMzQzMDM1M2EzNTY1MzQzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzMzOTM0MzAzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQFXkAwDQYJKoZI hvcNAQELBQADggEBAJV58SFUtX+Dijig86mfH0ZNaOmfGtbS4SvP+GOMmbFD+s/D vCBOf47XYfnJ2Smr6Du4zP3S0v0/gQNHGOv8AirwxWD6hHTkZh+aW6nOXbadAWRZ mxAt7NnJGefqa6rOigSXN2CM7fbdsipLdbQ9Za9VcNxzXZS5AflRO1ylxYJM7qYf 8PHuFi/7cwi/gNC5OAP0pxlCCp40Vd7B/5g4FuAzZcIqaydKdJkQXRNvpC5inV+R nkVoeqMX5I22iSggb6JO7k8uhxyhQiXF/uxKtXulk2+zwKHponefQrPLyKF6RuVc adrmLN2MfQePL4oRnko+N/Hb8y5KXpxS2FnQzVU= -----END CERTIFICATE-----Generated at Wed Nov 5 16:09:50 2025 by rpki-client