$ rpki-client -vvf repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/323430363a366434303a3131373a3a2f34382d3438203d3e20313431303536.roa File: 323430363a366434303a3131373a3a2f34382d3438203d3e20313431303536.roa (raw, json) Hash identifier: lE9s+BoEY5gwrvlaGT630nudod/SJ6QnowFtOuZG/F8= Subject key identifier: 51:2C:2F:DB:AA:38:97:40:67:4F:C1:AE:B0:10:5F:11:02:49:94:8E Certificate issuer: /CN=BCA31953B92C5FC452EDA87B90CBD98E207FA337 Certificate serial: 2D21F5E2FFFA6B873026C952EFBBD92EB6935C18 Authority key identifier: BC:A3:19:53:B9:2C:5F:C4:52:ED:A8:7B:90:CB:D9:8E:20:7F:A3:37 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BCA31953B92C5FC452EDA87B90CBD98E207FA337.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/323430363a366434303a3131373a3a2f34382d3438203d3e20313431303536.roa Signing time: Thu 16 Oct 2025 19:00:00 +0000 ROA not before: Thu 16 Oct 2025 18:55:00 +0000 ROA not after: Thu 15 Oct 2026 19:00:00 +0000 asID: 141056 IP address blocks: 2406:6d40:117::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/BCA31953B92C5FC452EDA87B90CBD98E207FA337.crl rsync://repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/BCA31953B92C5FC452EDA87B90CBD98E207FA337.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BCA31953B92C5FC452EDA87B90CBD98E207FA337.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Oct 2025 13:50:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:21:f5:e2:ff:fa:6b:87:30:26:c9:52:ef:bb:d9:2e:b6:93:5c:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BCA31953B92C5FC452EDA87B90CBD98E207FA337 Validity Not Before: Oct 16 18:55:00 2025 GMT Not After : Oct 15 19:00:00 2026 GMT Subject: CN=512C2FDBAA389740674FC1AEB0105F110249948E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:93:fe:77:d0:45:62:2a:fb:bc:00:3c:b7:a9: a2:78:ec:39:c2:28:1c:7b:b2:61:e2:7e:aa:98:29: a1:e9:86:ad:b3:70:86:25:09:4b:cf:24:e1:47:54: 3d:a6:50:28:f3:44:55:58:64:ef:d0:96:fc:95:46: 9a:9f:4a:36:e6:1f:33:e4:46:7f:bf:1e:d5:b7:56: c4:d3:fa:70:1b:79:c0:ff:da:14:1d:8a:f8:a8:54: e5:80:7f:f2:01:4a:5a:ad:8f:8e:eb:75:d7:3e:2a: 5f:20:c9:1d:ea:7a:a7:63:d6:e4:18:d7:db:b6:14: a3:7d:a4:25:91:b3:16:36:c1:a4:0d:69:7d:3a:45: 3c:92:21:00:e9:58:34:71:17:bb:b2:b3:8a:c6:8a: f1:69:31:62:a9:dd:75:3a:d8:95:f9:af:16:54:2e: 7e:07:64:61:09:28:64:65:1a:43:e1:ff:73:98:03: 39:ca:49:6b:4c:18:bc:b8:56:97:2d:48:fe:bd:2f: bf:1a:53:ef:79:ef:b1:c3:9c:a5:b3:6b:64:8f:f4: f6:66:e2:a3:9f:49:68:8a:43:06:6e:c3:82:c1:1f: 96:3c:c9:04:da:46:d8:cb:8d:7c:c5:22:92:ee:67: 25:e0:b5:c8:0f:77:42:26:a1:14:17:3e:c6:73:41: 82:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:2C:2F:DB:AA:38:97:40:67:4F:C1:AE:B0:10:5F:11:02:49:94:8E X509v3 Authority Key Identifier: keyid:BC:A3:19:53:B9:2C:5F:C4:52:ED:A8:7B:90:CB:D9:8E:20:7F:A3:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/BCA31953B92C5FC452EDA87B90CBD98E207FA337.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BCA31953B92C5FC452EDA87B90CBD98E207FA337.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/323430363a366434303a3131373a3a2f34382d3438203d3e20313431303536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:6d40:117::/48 Signature Algorithm: sha256WithRSAEncryption 91:ce:38:d8:4f:6f:d7:00:b2:c9:b5:5f:ce:3a:ab:ae:84:ac: 4b:91:c2:90:5c:77:5b:ff:c7:a7:c5:10:d9:d0:f7:3f:2f:8b: 8b:0d:d6:e4:31:af:3c:e2:4a:99:73:c5:03:c9:19:81:4f:be: 4c:e8:01:4f:35:c7:79:1c:cc:6a:14:0a:1d:f6:32:e8:35:00: 58:a1:e6:53:d3:1c:60:97:88:ab:ca:1b:ae:43:6d:4d:49:67: d8:c3:92:e2:0b:e3:d1:32:b3:1c:0d:bb:24:05:85:ee:c3:3a: 27:c2:25:50:ad:93:72:06:e9:03:cf:f2:cd:9b:f8:e6:1c:9a: 37:42:75:61:ec:fc:f5:c1:76:67:69:e2:41:2f:d5:a6:90:2e: 5e:18:1a:2a:28:05:ad:80:40:14:93:9c:ec:93:0c:ed:b1:a4: 5e:d4:5c:33:60:9d:be:37:b2:9a:ee:5a:af:7c:a8:af:c9:93: b7:0b:86:5c:b2:e8:38:00:5c:bf:7f:73:d0:2b:54:ff:93:5f: 6b:39:5a:9a:c0:b8:3f:75:bd:42:d8:9c:bc:9b:17:27:d7:f0: c3:10:b3:fc:dc:f8:f3:28:5f:0d:a2:c1:25:ae:9c:e2:af:58: 8c:84:c1:77:94:2a:2e:6c:de:06:66:30:07:23:aa:9e:e8:c6: 80:54:b0:27 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIULSH14v/6a4cwJslS77vZLraTXBgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkNBMzE5NTNCOTJDNUZDNDUyRURBODdCOTBDQkQ5OEUy MDdGQTMzNzAeFw0yNTEwMTYxODU1MDBaFw0yNjEwMTUxOTAwMDBaMDMxMTAvBgNV BAMTKDUxMkMyRkRCQUEzODk3NDA2NzRGQzFBRUIwMTA1RjExMDI0OTk0OEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCsk/530EViKvu8ADy3qaJ47DnC KBx7smHifqqYKaHphq2zcIYlCUvPJOFHVD2mUCjzRFVYZO/QlvyVRpqfSjbmHzPk Rn+/HtW3VsTT+nAbecD/2hQdivioVOWAf/IBSlqtj47rddc+Kl8gyR3qeqdj1uQY 19u2FKN9pCWRsxY2waQNaX06RTySIQDpWDRxF7uys4rGivFpMWKp3XU62JX5rxZU Ln4HZGEJKGRlGkPh/3OYAznKSWtMGLy4VpctSP69L78aU+9577HDnKWza2SP9PZm 4qOfSWiKQwZuw4LBH5Y8yQTaRtjLjXzFIpLuZyXgtcgPd0ImoRQXPsZzQYJdAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUUSwv26o4l0BnT8GusBBfEQJJlI4wHwYDVR0j BBgwFoAUvKMZU7ksX8RS7ah7kMvZjiB/ozcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ZTJjNDgxNS1iMmRhLTRjMjAtYmMzMS01MDNhZGY0OWI0OTAvMC9CQ0EzMTk1M0I5 MkM1RkM0NTJFREE4N0I5MENCRDk4RTIwN0ZBMzM3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkNBMzE5NTNCOTJDNUZDNDUyRURBODdCOTBDQkQ5OEUyMDdG QTMzNy5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNlMmM0ODE1LWIyZGEtNGMyMC1i YzMxLTUwM2FkZjQ5YjQ5MC8wLzMyMzQzMDM2M2EzNjY0MzQzMDNhMzEzMTM3M2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNDMxMzAzNTM2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAZt QAEXMA0GCSqGSIb3DQEBCwUAA4IBAQCRzjjYT2/XALLJtV/OOquuhKxLkcKQXHdb /8enxRDZ0Pc/L4uLDdbkMa884kqZc8UDyRmBT75M6AFPNcd5HMxqFAod9jLoNQBY oeZT0xxgl4iryhuuQ21NSWfYw5LiC+PRMrMcDbskBYXuwzonwiVQrZNyBukDz/LN m/jmHJo3QnVh7Pz1wXZnaeJBL9WmkC5eGBoqKAWtgEAUk5zskwztsaRe1FwzYJ2+ N7Ka7lqvfKivyZO3C4Zcsug4AFy/f3PQK1T/k19rOVqawLg/db1C2Jy8mxcn1/DD ELP83PjzKF8NosElrpzir1iMhMF3lCoubN4GZjAHI6qe6MaAVLAn -----END CERTIFICATE-----Generated at Sun Oct 19 02:40:09 2025 by rpki-client