$ rpki-client -vvf repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/323430363a366434303a656165613a3a2f34382d3438203d3e20313431303536.roa File: 323430363a366434303a656165613a3a2f34382d3438203d3e20313431303536.roa (raw, json) Hash identifier: 2/e1df75ZuB0mlztIUau/nvIcUBCoLK27iXCpZBorYA= Subject key identifier: BD:12:99:E9:4F:40:74:87:99:3E:0D:44:D4:B6:C4:3B:E0:B9:30:77 Certificate issuer: /CN=BCA31953B92C5FC452EDA87B90CBD98E207FA337 Certificate serial: 774A8D576B9918501C2A407AEF8E05825419FD45 Authority key identifier: BC:A3:19:53:B9:2C:5F:C4:52:ED:A8:7B:90:CB:D9:8E:20:7F:A3:37 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BCA31953B92C5FC452EDA87B90CBD98E207FA337.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/323430363a366434303a656165613a3a2f34382d3438203d3e20313431303536.roa Signing time: Thu 16 Oct 2025 19:00:00 +0000 ROA not before: Thu 16 Oct 2025 18:55:00 +0000 ROA not after: Thu 15 Oct 2026 19:00:00 +0000 asID: 141056 IP address blocks: 2406:6d40:eaea::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/BCA31953B92C5FC452EDA87B90CBD98E207FA337.crl rsync://repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/BCA31953B92C5FC452EDA87B90CBD98E207FA337.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BCA31953B92C5FC452EDA87B90CBD98E207FA337.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Oct 2025 13:50:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:4a:8d:57:6b:99:18:50:1c:2a:40:7a:ef:8e:05:82:54:19:fd:45 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BCA31953B92C5FC452EDA87B90CBD98E207FA337 Validity Not Before: Oct 16 18:55:00 2025 GMT Not After : Oct 15 19:00:00 2026 GMT Subject: CN=BD1299E94F407487993E0D44D4B6C43BE0B93077 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:87:69:e7:11:b7:98:66:7e:b7:4e:60:83:61: a8:b9:0b:8e:6b:f7:ad:6d:bd:50:ca:b6:7c:8d:f7: 19:44:c7:dd:f0:ba:38:89:5d:7a:54:b0:9d:46:3c: fa:ba:6a:5c:6c:7f:63:33:a3:58:a9:9b:d2:03:18: fe:38:59:08:84:ea:3e:90:f1:a5:97:e0:12:a5:8c: a8:9f:27:90:80:68:2f:5d:c6:4d:40:4f:d3:c5:2e: e6:16:55:0b:f4:1c:85:5e:b6:ac:02:98:53:22:8c: 9c:c4:1a:a6:2c:ce:31:99:3d:9e:b1:25:28:25:a4: 7b:bd:60:2c:13:40:4f:09:ea:14:78:a0:cc:1e:a1: 41:fd:c6:bb:ba:c7:3a:34:7d:8c:d4:e6:ff:e4:95: d8:03:16:15:63:27:a1:7d:17:53:98:29:76:79:79: d9:c9:ac:90:7e:4c:3b:aa:42:43:04:45:97:32:39: 02:20:41:d8:43:38:65:04:00:54:3b:45:31:be:c7: 4c:fe:3c:b4:9d:9d:5f:d3:c6:aa:cb:ac:20:72:50: c7:40:62:df:85:13:60:fd:36:89:03:28:30:c7:2c: 4b:65:77:16:4c:91:1d:d6:8c:55:49:e2:bf:f8:29: c4:4a:89:a2:34:0e:ad:b6:1d:1e:57:87:2f:0c:f0: a3:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:12:99:E9:4F:40:74:87:99:3E:0D:44:D4:B6:C4:3B:E0:B9:30:77 X509v3 Authority Key Identifier: keyid:BC:A3:19:53:B9:2C:5F:C4:52:ED:A8:7B:90:CB:D9:8E:20:7F:A3:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/BCA31953B92C5FC452EDA87B90CBD98E207FA337.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BCA31953B92C5FC452EDA87B90CBD98E207FA337.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/323430363a366434303a656165613a3a2f34382d3438203d3e20313431303536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:6d40:eaea::/48 Signature Algorithm: sha256WithRSAEncryption 49:5e:e5:5d:09:b1:68:6a:36:c6:ed:0a:32:69:fd:fd:eb:ea: 95:f5:62:e1:e9:e6:2a:b6:a9:56:34:6f:ab:fd:17:18:32:ca: 5c:69:e8:a4:92:92:b3:bf:7c:4c:a7:31:9c:7c:b1:43:57:3e: 4b:cc:7d:0d:84:d4:15:dd:d5:48:60:b1:72:1a:a8:57:51:60: 9b:57:b0:02:27:74:b3:e0:58:44:ce:3b:39:6d:18:8b:6d:48: 6f:73:67:72:cf:b1:ee:e1:41:7a:03:f9:15:18:e9:c9:c2:1a: 44:4b:32:fa:b3:77:ec:01:70:c7:2c:ac:23:3c:cd:df:a7:83: 9c:64:d8:b1:41:f6:9b:cd:14:2f:84:94:d5:a4:5d:bf:9a:69: 1a:21:ec:15:d2:da:a4:1a:da:57:73:21:0c:49:31:2a:d3:f3: c3:a1:cf:08:f1:bc:6d:19:cf:d9:8c:61:d7:b2:07:75:da:a9: 24:0f:f5:43:25:f2:73:50:b3:97:41:af:10:31:75:ff:aa:95: 22:f1:6f:cc:44:93:a9:63:8e:5c:25:6a:50:9f:02:f5:1a:c6: 8e:9c:62:16:3b:a3:19:b5:ad:41:82:9d:45:4d:d5:50:f7:31: c6:bb:84:7b:a5:07:26:35:ac:96:43:1a:fe:e7:a6:72:5b:03: 90:4c:ef:b2 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUd0qNV2uZGFAcKkB6744FglQZ/UUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkNBMzE5NTNCOTJDNUZDNDUyRURBODdCOTBDQkQ5OEUy MDdGQTMzNzAeFw0yNTEwMTYxODU1MDBaFw0yNjEwMTUxOTAwMDBaMDMxMTAvBgNV BAMTKEJEMTI5OUU5NEY0MDc0ODc5OTNFMEQ0NEQ0QjZDNDNCRTBCOTMwNzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKh2nnEbeYZn63TmCDYai5C45r 961tvVDKtnyN9xlEx93wujiJXXpUsJ1GPPq6alxsf2Mzo1ipm9IDGP44WQiE6j6Q 8aWX4BKljKifJ5CAaC9dxk1AT9PFLuYWVQv0HIVetqwCmFMijJzEGqYszjGZPZ6x JSglpHu9YCwTQE8J6hR4oMweoUH9xru6xzo0fYzU5v/kldgDFhVjJ6F9F1OYKXZ5 ednJrJB+TDuqQkMERZcyOQIgQdhDOGUEAFQ7RTG+x0z+PLSdnV/TxqrLrCByUMdA Yt+FE2D9NokDKDDHLEtldxZMkR3WjFVJ4r/4KcRKiaI0Dq22HR5Xhy8M8KMVAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUvRKZ6U9AdIeZPg1E1LbEO+C5MHcwHwYDVR0j BBgwFoAUvKMZU7ksX8RS7ah7kMvZjiB/ozcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ZTJjNDgxNS1iMmRhLTRjMjAtYmMzMS01MDNhZGY0OWI0OTAvMC9CQ0EzMTk1M0I5 MkM1RkM0NTJFREE4N0I5MENCRDk4RTIwN0ZBMzM3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkNBMzE5NTNCOTJDNUZDNDUyRURBODdCOTBDQkQ5OEUyMDdG QTMzNy5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNlMmM0ODE1LWIyZGEtNGMyMC1i YzMxLTUwM2FkZjQ5YjQ5MC8wLzMyMzQzMDM2M2EzNjY0MzQzMDNhNjU2MTY1NjEz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTM0MzEzMDM1MzYucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk Bm1A6uowDQYJKoZIhvcNAQELBQADggEBAEle5V0JsWhqNsbtCjJp/f3r6pX1YuHp 5iq2qVY0b6v9Fxgyylxp6KSSkrO/fEynMZx8sUNXPkvMfQ2E1BXd1UhgsXIaqFdR YJtXsAIndLPgWETOOzltGIttSG9zZ3LPse7hQXoD+RUY6cnCGkRLMvqzd+wBcMcs rCM8zd+ng5xk2LFB9pvNFC+ElNWkXb+aaRoh7BXS2qQa2ldzIQxJMSrT88Ohzwjx vG0Zz9mMYdeyB3XaqSQP9UMl8nNQs5dBrxAxdf+qlSLxb8xEk6ljjlwlalCfAvUa xo6cYhY7oxm1rUGCnUVN1VD3Mca7hHulByY1rJZDGv7npnJbA5BM77I= -----END CERTIFICATE-----Generated at Sun Oct 19 02:38:29 2025 by rpki-client