$ rpki-client -vvf repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a31633a3a2f34382d3438203d3e203538353532.roa File: 323430343a666430303a31633a3a2f34382d3438203d3e203538353532.roa (raw, json) Hash identifier: Kj9yLkgshja2xrOzLmIbp3ZiLH9AlIrxTloktkPZ1UQ= Subject key identifier: 51:81:FE:94:9E:C1:08:50:4F:FE:6A:D0:10:9E:7A:7D:6B:96:02:83 Certificate issuer: /CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Certificate serial: 27643951EF31D2587FA621F90E63137704F9656D Authority key identifier: AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a31633a3a2f34382d3438203d3e203538353532.roa Signing time: Fri 31 Oct 2025 05:00:01 +0000 ROA not before: Fri 31 Oct 2025 04:55:01 +0000 ROA not after: Fri 30 Oct 2026 05:00:01 +0000 asID: 58552 IP address blocks: 2404:fd00:1c::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Nov 2025 16:31:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:64:39:51:ef:31:d2:58:7f:a6:21:f9:0e:63:13:77:04:f9:65:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Validity Not Before: Oct 31 04:55:01 2025 GMT Not After : Oct 30 05:00:01 2026 GMT Subject: CN=5181FE949EC108504FFE6AD0109E7A7D6B960283 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:d6:16:94:e0:8a:8b:5a:44:2c:54:bc:ef:e6: 0a:d4:b8:f6:69:db:1f:7b:93:38:2f:13:bb:aa:93: 52:97:ba:11:e2:ac:3b:fb:ce:87:d0:0c:6c:5a:b2: 14:fa:59:21:12:7e:83:a5:8d:f0:9f:2a:e6:b2:d7: 18:1f:d0:1c:53:d5:2c:a5:7a:38:f8:98:d7:67:75: 4e:ef:08:79:55:d1:0b:6c:7a:11:c7:89:b6:59:4f: 53:91:3d:b2:df:a2:12:dc:ff:96:b5:97:35:34:97: 2b:6e:a4:95:5a:0a:bc:76:22:23:2f:8e:92:fe:93: 44:b7:cb:00:d8:49:23:d4:e7:12:a1:ae:e9:68:11: 7f:a4:bf:fe:27:50:86:d3:67:a6:d8:8f:de:25:b4: 37:b9:ae:98:b5:f1:59:73:87:b6:90:2f:80:10:12: e0:3a:7f:c1:bc:03:d1:83:32:3c:7b:79:0e:e6:87: 81:04:21:06:ba:16:ee:4d:1e:8b:73:9d:8b:30:68: a9:25:fe:20:6e:a0:59:d0:ff:1e:61:b9:a6:68:58: 10:32:e4:9c:a2:8f:cd:9a:67:72:bb:de:4e:14:ed: 26:db:68:7a:24:db:4e:71:6b:aa:24:c3:c3:b0:f0: 21:d7:54:5c:e1:b0:3f:b7:77:e1:88:47:fb:13:d9: 23:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:81:FE:94:9E:C1:08:50:4F:FE:6A:D0:10:9E:7A:7D:6B:96:02:83 X509v3 Authority Key Identifier: keyid:AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a31633a3a2f34382d3438203d3e203538353532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:fd00:1c::/48 Signature Algorithm: sha256WithRSAEncryption 74:1c:a3:0d:0b:99:58:f8:cf:77:51:66:45:f3:8c:63:71:5c: 88:c1:8b:dd:0c:cc:77:23:f4:8d:3b:4d:2d:54:54:67:b6:c5: a0:dc:97:af:ec:27:d4:a8:14:2b:4a:e4:aa:7c:c6:06:ef:9d: 9d:79:40:66:1a:0c:24:d9:a0:cd:2b:8a:a4:67:45:c4:b2:b4: fa:0b:4a:b3:90:52:c7:3f:be:ec:00:3c:d8:70:4e:9e:aa:32: 11:fb:54:fe:d2:25:e9:76:86:6c:c6:69:85:1f:e6:c1:ad:cd: 19:08:87:4a:dd:f9:af:70:51:70:6c:da:3f:1d:a6:bd:8d:90: a4:3e:d2:5b:b7:35:8e:ad:8e:5c:95:fc:e6:e8:c0:59:e9:2b: 8a:1a:6a:d8:fd:f9:d1:8d:31:f5:62:b4:08:34:02:7b:cd:e9: 03:1a:31:20:26:9a:50:1c:36:e9:78:ee:82:7e:36:d9:ed:19: 0d:79:57:d4:4d:d7:8c:17:59:e6:0e:21:70:61:10:c4:64:5b: 0e:a4:54:a8:57:9b:b4:e9:17:ed:a7:0a:c2:62:f3:a2:e9:e8: 45:88:62:be:81:92:45:b4:ce:ae:27:8a:0a:38:bf:09:35:a4: 3c:5a:fa:ce:de:18:38:48:5e:f5:05:a2:c9:23:ae:3a:26:c1: ab:d2:0e:2e -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUJ2Q5Ue8x0lh/piH5DmMTdwT5ZW0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FF NEQ1RkRFNjAeFw0yNTEwMzEwNDU1MDFaFw0yNjEwMzAwNTAwMDFaMDMxMTAvBgNV BAMTKDUxODFGRTk0OUVDMTA4NTA0RkZFNkFEMDEwOUU3QTdENkI5NjAyODMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC41haU4IqLWkQsVLzv5grUuPZp 2x97kzgvE7uqk1KXuhHirDv7zofQDGxashT6WSESfoOljfCfKuay1xgf0BxT1Syl ejj4mNdndU7vCHlV0QtsehHHibZZT1ORPbLfohLc/5a1lzU0lytupJVaCrx2IiMv jpL+k0S3ywDYSSPU5xKhruloEX+kv/4nUIbTZ6bYj94ltDe5rpi18Vlzh7aQL4AQ EuA6f8G8A9GDMjx7eQ7mh4EEIQa6Fu5NHotznYswaKkl/iBuoFnQ/x5huaZoWBAy 5Jyij82aZ3K73k4U7SbbaHok205xa6okw8Ow8CHXVFzhsD+3d+GIR/sT2SN1AgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUUYH+lJ7BCFBP/mrQEJ56fWuWAoMwHwYDVR0j BBgwFoAUr0tY1LFlMLn2kZ2/T1PcOuTV/eYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZDIyN2RiZS00YTFjLTQwYjAtOTRhNi03OTNiZGJkYTM3NzcvMC9BRjRCNThENEIx NjUzMEI5RjY5MTlEQkY0RjUzREMzQUU0RDVGREU2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FFNEQ1 RkRFNi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVkMjI3ZGJlLTRhMWMtNDBiMC05 NGE2LTc5M2JkYmRhMzc3Ny8wLzMyMzQzMDM0M2E2NjY0MzAzMDNhMzE2MzNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzgzNTM1MzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBP0AABww DQYJKoZIhvcNAQELBQADggEBAHQcow0LmVj4z3dRZkXzjGNxXIjBi90MzHcj9I07 TS1UVGe2xaDcl6/sJ9SoFCtK5Kp8xgbvnZ15QGYaDCTZoM0riqRnRcSytPoLSrOQ Usc/vuwAPNhwTp6qMhH7VP7SJel2hmzGaYUf5sGtzRkIh0rd+a9wUXBs2j8dpr2N kKQ+0lu3NY6tjlyV/ObowFnpK4oaatj9+dGNMfVitAg0AnvN6QMaMSAmmlAcNul4 7oJ+NtntGQ15V9RN14wXWeYOIXBhEMRkWw6kVKhXm7TpF+2nCsJi86Lp6EWIYr6B kkW0zq4nigo4vwk1pDxa+s7eGDhIXvUFoskjrjomwavSDi4= -----END CERTIFICATE-----Generated at Tue Nov 4 09:26:09 2025 by rpki-client