$ rpki-client -vvf repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a31643a3a2f34382d3438203d3e203536323436.roa File: 323430343a666430303a31643a3a2f34382d3438203d3e203536323436.roa (raw, json) Hash identifier: 1OdDjIVH10c+tACV0T3iBo0OgFchlTLHDzIwKRMXmoQ= Subject key identifier: D5:3F:D4:A1:66:64:62:37:D4:87:49:B1:0B:E8:20:91:48:9B:63:01 Certificate issuer: /CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Certificate serial: 32ED06A067B088CB4F89125767B903B565A4DD52 Authority key identifier: AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a31643a3a2f34382d3438203d3e203536323436.roa Signing time: Fri 31 Oct 2025 06:00:02 +0000 ROA not before: Fri 31 Oct 2025 05:55:02 +0000 ROA not after: Fri 30 Oct 2026 06:00:02 +0000 asID: 56246 IP address blocks: 2404:fd00:1d::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Nov 2025 13:50:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:ed:06:a0:67:b0:88:cb:4f:89:12:57:67:b9:03:b5:65:a4:dd:52 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Validity Not Before: Oct 31 05:55:02 2025 GMT Not After : Oct 30 06:00:02 2026 GMT Subject: CN=D53FD4A166646237D48749B10BE82091489B6301 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:06:a2:ca:29:ac:49:59:85:b2:5e:d4:39:86: 0d:7b:39:29:9b:83:bb:eb:74:59:e0:fd:e5:1f:af: 21:7b:7a:c4:28:7a:09:c0:3c:33:8d:20:91:17:0c: 7e:33:e9:95:fd:8f:70:2c:7d:48:3d:ab:1d:97:e8: aa:ff:fd:73:90:c5:e1:bc:7c:07:b6:e9:42:31:5f: 95:be:99:22:26:51:5d:85:a9:e5:e7:62:ae:58:8a: c5:fd:b5:52:f0:89:d1:1e:5e:1b:b8:43:72:71:a2: 72:45:f9:ea:66:cc:fe:91:de:4c:59:a9:e8:a4:71: 82:ec:81:7a:63:4e:ec:ec:14:dd:c4:1e:89:5c:d7: 92:cc:d1:0f:75:a4:9f:e8:2a:da:c0:3f:28:43:ce: 7e:ab:f1:25:21:5d:57:6a:ae:d5:94:6d:d1:c3:95: d6:96:e3:cf:88:ce:10:e4:f8:fd:b7:7e:62:ce:89: 29:cf:79:f6:3a:eb:da:11:cc:40:ac:21:79:ca:5b: 88:9a:e1:66:08:87:cb:96:d7:74:ac:46:0c:c5:0b: 7c:40:8e:d0:00:2d:26:2f:52:5d:50:b5:a9:e5:47: be:ee:41:2c:85:9b:5d:4a:35:20:ba:b9:3e:20:bd: d8:cd:e5:58:5a:32:fe:50:83:81:93:de:7c:24:c9: ca:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:3F:D4:A1:66:64:62:37:D4:87:49:B1:0B:E8:20:91:48:9B:63:01 X509v3 Authority Key Identifier: keyid:AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a31643a3a2f34382d3438203d3e203536323436.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:fd00:1d::/48 Signature Algorithm: sha256WithRSAEncryption 99:39:13:ce:ee:7b:1d:a5:1d:92:86:9c:dd:ed:ba:c9:43:95: 7e:fa:da:9d:45:6b:da:62:03:e4:7f:51:a8:66:e0:fd:f7:ff: 42:6d:e9:07:39:4b:32:48:4d:10:ad:c1:41:4e:1e:06:d0:8c: 54:2f:83:0e:50:4a:53:c0:b9:79:b5:0b:26:83:57:fc:60:33: 14:68:cb:1c:4e:52:e0:bf:bb:17:19:67:f4:3a:7d:b6:8f:08: 5a:85:8f:4f:09:d2:03:28:e2:80:6e:f4:fe:4f:36:77:1d:78: b5:cc:bf:d8:3f:73:84:53:89:42:7d:7c:5c:53:f3:0e:45:96: 40:a5:50:cb:7b:d0:5c:78:de:57:9d:05:5a:ba:04:ed:a3:a7: 73:72:bc:75:58:2e:ca:87:dc:58:a4:09:f5:b6:94:b7:b8:f7: 8d:ba:40:86:10:c0:91:7d:00:74:81:af:45:de:a7:7f:9b:f7: c2:7e:d6:c3:4a:24:eb:d8:15:c6:bc:03:b7:5e:7f:f8:36:f3: c5:63:2c:c8:88:2e:ee:ed:b8:06:f1:a8:1b:86:e4:98:66:60: d1:30:85:e8:b8:a3:6c:7a:ab:fe:6b:19:76:17:6e:be:49:f0: 7e:2b:8a:69:09:01:b1:5e:4e:50:a2:81:85:55:81:82:b8:83: 0b:6e:eb:08 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUMu0GoGewiMtPiRJXZ7kDtWWk3VIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FF NEQ1RkRFNjAeFw0yNTEwMzEwNTU1MDJaFw0yNjEwMzAwNjAwMDJaMDMxMTAvBgNV BAMTKEQ1M0ZENEExNjY2NDYyMzdENDg3NDlCMTBCRTgyMDkxNDg5QjYzMDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5BqLKKaxJWYWyXtQ5hg17OSmb g7vrdFng/eUfryF7esQoegnAPDONIJEXDH4z6ZX9j3AsfUg9qx2X6Kr//XOQxeG8 fAe26UIxX5W+mSImUV2FqeXnYq5YisX9tVLwidEeXhu4Q3JxonJF+epmzP6R3kxZ qeikcYLsgXpjTuzsFN3EHolc15LM0Q91pJ/oKtrAPyhDzn6r8SUhXVdqrtWUbdHD ldaW48+IzhDk+P23fmLOiSnPefY669oRzECsIXnKW4ia4WYIh8uW13SsRgzFC3xA jtAALSYvUl1QtanlR77uQSyFm11KNSC6uT4gvdjN5VhaMv5Qg4GT3nwkycotAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQU1T/UoWZkYjfUh0mxC+ggkUibYwEwHwYDVR0j BBgwFoAUr0tY1LFlMLn2kZ2/T1PcOuTV/eYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZDIyN2RiZS00YTFjLTQwYjAtOTRhNi03OTNiZGJkYTM3NzcvMC9BRjRCNThENEIx NjUzMEI5RjY5MTlEQkY0RjUzREMzQUU0RDVGREU2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FFNEQ1 RkRFNi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVkMjI3ZGJlLTRhMWMtNDBiMC05 NGE2LTc5M2JkYmRhMzc3Ny8wLzMyMzQzMDM0M2E2NjY0MzAzMDNhMzE2NDNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzYzMjM0MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBP0AAB0w DQYJKoZIhvcNAQELBQADggEBAJk5E87uex2lHZKGnN3tuslDlX762p1Fa9piA+R/ Uahm4P33/0Jt6Qc5SzJITRCtwUFOHgbQjFQvgw5QSlPAuXm1CyaDV/xgMxRoyxxO UuC/uxcZZ/Q6fbaPCFqFj08J0gMo4oBu9P5PNncdeLXMv9g/c4RTiUJ9fFxT8w5F lkClUMt70Fx43ledBVq6BO2jp3NyvHVYLsqH3FikCfW2lLe49426QIYQwJF9AHSB r0Xep3+b98J+1sNKJOvYFca8A7def/g288VjLMiILu7tuAbxqBuG5JhmYNEwhei4 o2x6q/5rGXYXbr5J8H4rimkJAbFeTlCigYVVgYK4gwtu6wg= -----END CERTIFICATE-----Generated at Tue Nov 4 19:14:46 2025 by rpki-client