$ rpki-client -vvf repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/323430363a366434303a3131363a3a2f34382d3438203d3e20313431303536.roa File: 323430363a366434303a3131363a3a2f34382d3438203d3e20313431303536.roa (raw, json) Hash identifier: ifILYerUDcpRe223pMC/3xtPqhg84IovzTQC0ym+UNg= Subject key identifier: 18:24:83:86:D2:FE:9D:E8:AF:B7:F3:8F:FB:03:23:02:37:26:1C:F1 Certificate issuer: /CN=BCA31953B92C5FC452EDA87B90CBD98E207FA337 Certificate serial: 66B0AF2D126A69860236721D1EF797D95924EB0C Authority key identifier: BC:A3:19:53:B9:2C:5F:C4:52:ED:A8:7B:90:CB:D9:8E:20:7F:A3:37 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BCA31953B92C5FC452EDA87B90CBD98E207FA337.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/323430363a366434303a3131363a3a2f34382d3438203d3e20313431303536.roa Signing time: Thu 16 Oct 2025 19:00:00 +0000 ROA not before: Thu 16 Oct 2025 18:55:00 +0000 ROA not after: Thu 15 Oct 2026 19:00:00 +0000 asID: 141056 IP address blocks: 2406:6d40:116::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/BCA31953B92C5FC452EDA87B90CBD98E207FA337.crl rsync://repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/BCA31953B92C5FC452EDA87B90CBD98E207FA337.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BCA31953B92C5FC452EDA87B90CBD98E207FA337.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Oct 2025 13:50:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:b0:af:2d:12:6a:69:86:02:36:72:1d:1e:f7:97:d9:59:24:eb:0c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BCA31953B92C5FC452EDA87B90CBD98E207FA337 Validity Not Before: Oct 16 18:55:00 2025 GMT Not After : Oct 15 19:00:00 2026 GMT Subject: CN=18248386D2FE9DE8AFB7F38FFB03230237261CF1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:86:17:47:69:6a:85:52:36:8c:5f:42:67:99: e7:78:f2:4c:5f:44:06:25:4c:f5:df:ad:73:f6:c0: 6f:43:6a:59:1d:d0:d2:cd:a5:66:76:31:e8:0d:d8: 2b:db:d4:7a:c6:3a:aa:f2:83:f9:0f:14:6f:4d:80: 79:a2:64:3b:4f:43:49:af:6a:3b:d0:da:89:e0:d0: b8:b2:97:b1:52:e6:15:c2:38:16:8b:ee:01:50:c0: da:c6:b5:47:92:ac:b8:51:e6:fb:63:42:6f:53:95: 4c:d3:21:ad:f7:4a:95:67:30:c7:6a:d4:9e:2e:2e: 29:2f:d0:1f:c6:dc:69:9b:88:cd:3f:2c:fc:20:00: 25:2e:78:ec:22:7f:6c:9b:6a:a5:57:ad:d5:fb:6f: e7:c1:70:72:9f:d9:8e:a5:4e:b6:60:a1:e4:6f:98: e9:4e:39:ff:99:b1:60:f8:6d:01:9f:19:8b:32:80: f2:db:a1:c2:fc:be:08:9e:a9:3e:d3:3e:e0:2c:7e: 6f:93:4e:6a:91:ea:1a:db:25:1a:66:c4:a4:d2:69: 80:45:09:b5:39:b0:5c:24:42:9d:14:7c:43:8c:ff: af:13:de:bf:67:d7:f6:37:9b:b3:31:ae:24:93:9e: 15:3f:51:a5:1d:19:e4:f6:00:9d:6e:e5:1e:be:e1: 58:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:24:83:86:D2:FE:9D:E8:AF:B7:F3:8F:FB:03:23:02:37:26:1C:F1 X509v3 Authority Key Identifier: keyid:BC:A3:19:53:B9:2C:5F:C4:52:ED:A8:7B:90:CB:D9:8E:20:7F:A3:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/BCA31953B92C5FC452EDA87B90CBD98E207FA337.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BCA31953B92C5FC452EDA87B90CBD98E207FA337.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/323430363a366434303a3131363a3a2f34382d3438203d3e20313431303536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:6d40:116::/48 Signature Algorithm: sha256WithRSAEncryption 8a:88:b2:9f:4e:78:10:8e:79:62:48:62:2d:bf:17:6b:69:e9: 55:2d:2b:db:7b:83:ff:bd:40:6f:88:65:05:3a:65:36:5c:c1: 7a:a6:78:c6:45:c0:76:81:a4:14:f3:f8:14:04:dd:b8:76:e6: 58:45:48:4a:cf:0c:8a:b5:17:9e:ee:a2:1d:7c:c4:fd:3d:eb: 66:00:ca:e3:d5:75:f8:8b:2f:7a:c6:1c:ba:91:5a:55:0e:f1: 2b:0f:27:9f:93:94:c0:ca:fb:e3:81:63:45:a0:cf:ca:ff:d0: c5:fa:4c:61:67:ff:0f:04:6f:41:af:ae:e7:d4:0c:71:ba:b4: b6:2c:f1:51:e3:5b:40:d0:72:c1:5b:99:3a:75:72:4d:6c:fc: 8c:0c:83:e3:59:aa:80:e7:81:ae:76:5f:42:42:94:84:8b:cc: c8:a5:e9:67:e9:7a:ae:ed:24:f1:80:a0:78:a8:1a:2a:4e:47: 61:4c:77:01:98:5c:d6:22:97:93:ad:b9:32:e4:d1:b8:f9:04: 12:a1:e5:31:f4:cd:ec:04:57:3a:41:61:d0:05:46:ac:2a:4b: 2a:b5:a4:ea:05:ef:7e:d4:90:7d:24:8b:b9:06:48:d6:c8:48: 9f:0f:a2:01:c1:5b:03:ff:52:36:57:4d:f4:86:52:fa:1f:15: 09:db:b5:2c -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUZrCvLRJqaYYCNnIdHveX2Vkk6wwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkNBMzE5NTNCOTJDNUZDNDUyRURBODdCOTBDQkQ5OEUy MDdGQTMzNzAeFw0yNTEwMTYxODU1MDBaFw0yNjEwMTUxOTAwMDBaMDMxMTAvBgNV BAMTKDE4MjQ4Mzg2RDJGRTlERThBRkI3RjM4RkZCMDMyMzAyMzcyNjFDRjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8hhdHaWqFUjaMX0Jnmed48kxf RAYlTPXfrXP2wG9Dalkd0NLNpWZ2MegN2Cvb1HrGOqryg/kPFG9NgHmiZDtPQ0mv ajvQ2ong0Liyl7FS5hXCOBaL7gFQwNrGtUeSrLhR5vtjQm9TlUzTIa33SpVnMMdq 1J4uLikv0B/G3GmbiM0/LPwgACUueOwif2ybaqVXrdX7b+fBcHKf2Y6lTrZgoeRv mOlOOf+ZsWD4bQGfGYsygPLbocL8vgieqT7TPuAsfm+TTmqR6hrbJRpmxKTSaYBF CbU5sFwkQp0UfEOM/68T3r9n1/Y3m7MxriSTnhU/UaUdGeT2AJ1u5R6+4VgtAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUGCSDhtL+neivt/OP+wMjAjcmHPEwHwYDVR0j BBgwFoAUvKMZU7ksX8RS7ah7kMvZjiB/ozcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ZTJjNDgxNS1iMmRhLTRjMjAtYmMzMS01MDNhZGY0OWI0OTAvMC9CQ0EzMTk1M0I5 MkM1RkM0NTJFREE4N0I5MENCRDk4RTIwN0ZBMzM3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkNBMzE5NTNCOTJDNUZDNDUyRURBODdCOTBDQkQ5OEUyMDdG QTMzNy5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNlMmM0ODE1LWIyZGEtNGMyMC1i YzMxLTUwM2FkZjQ5YjQ5MC8wLzMyMzQzMDM2M2EzNjY0MzQzMDNhMzEzMTM2M2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNDMxMzAzNTM2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAZt QAEWMA0GCSqGSIb3DQEBCwUAA4IBAQCKiLKfTngQjnliSGItvxdraelVLSvbe4P/ vUBviGUFOmU2XMF6pnjGRcB2gaQU8/gUBN24duZYRUhKzwyKtRee7qIdfMT9Petm AMrj1XX4iy96xhy6kVpVDvErDyefk5TAyvvjgWNFoM/K/9DF+kxhZ/8PBG9Br67n 1AxxurS2LPFR41tA0HLBW5k6dXJNbPyMDIPjWaqA54Gudl9CQpSEi8zIpeln6Xqu 7STxgKB4qBoqTkdhTHcBmFzWIpeTrbky5NG4+QQSoeUx9M3sBFc6QWHQBUasKksq taTqBe9+1JB9JIu5BkjWyEifD6IBwVsD/1I2V030hlL6HxUJ27Us -----END CERTIFICATE-----Generated at Sun Oct 19 02:40:10 2025 by rpki-client