$ rpki-client -vvf repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a31653a3a2f34382d3438203d3e203536323436.roa File: 323430343a666430303a31653a3a2f34382d3438203d3e203536323436.roa (raw, json) Hash identifier: H5790ZuDPiUn341x3dBBmdl9apYO2azq7yoMyvhHqkY= Subject key identifier: BA:7A:14:30:35:E2:3D:06:0D:55:DF:4D:C3:0D:94:F9:7A:CA:FB:ED Certificate issuer: /CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Certificate serial: 55A509EB4CE086DCD2F0F4EB831C3B0850121713 Authority key identifier: AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a31653a3a2f34382d3438203d3e203536323436.roa Signing time: Fri 31 Oct 2025 06:00:01 +0000 ROA not before: Fri 31 Oct 2025 05:55:01 +0000 ROA not after: Fri 30 Oct 2026 06:00:01 +0000 asID: 56246 IP address blocks: 2404:fd00:1e::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Nov 2025 16:31:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:a5:09:eb:4c:e0:86:dc:d2:f0:f4:eb:83:1c:3b:08:50:12:17:13 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Validity Not Before: Oct 31 05:55:01 2025 GMT Not After : Oct 30 06:00:01 2026 GMT Subject: CN=BA7A143035E23D060D55DF4DC30D94F97ACAFBED Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:b2:cb:a7:fd:98:20:17:1f:34:aa:c3:c4:9d: 87:53:88:d4:dd:85:64:47:01:bc:36:a5:89:c9:e8: b1:8b:a7:7a:3f:28:46:5f:3d:ac:69:0f:82:f7:b9: 5b:11:3a:6b:de:33:50:e1:f2:67:04:f6:c5:e4:e5: d3:c1:f2:05:4e:52:c5:e8:6b:92:bb:a3:fa:53:08: a4:8d:9b:c0:2c:84:1d:e9:99:9f:7d:bd:93:53:14: 61:a4:29:58:00:c8:02:64:dc:41:9a:91:ba:13:81: ad:2e:c3:eb:de:9c:a8:18:6d:ef:f2:07:bf:d0:a7: d8:8f:73:32:21:5b:de:c8:fe:6a:cb:0e:f2:7c:11: c1:39:b5:67:d1:f4:03:db:47:9c:51:7a:7a:ac:98: 45:03:44:9f:f7:7b:ff:9d:10:56:d5:8d:ae:73:6d: 86:5f:3f:03:a1:8e:64:67:77:66:ec:4d:de:a3:87: c5:66:37:6d:88:94:f8:07:a6:95:2a:84:68:84:93: 87:68:50:f7:ef:da:21:6e:8b:38:49:cd:e2:64:60: 58:d1:28:11:f2:1b:71:ef:4b:60:bb:ff:40:0a:b9: 93:50:d8:b2:b8:92:f9:05:f6:29:8e:fc:3c:c5:9c: 72:63:95:65:b4:cd:c4:9e:2c:eb:c4:2a:70:f3:12: 47:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:7A:14:30:35:E2:3D:06:0D:55:DF:4D:C3:0D:94:F9:7A:CA:FB:ED X509v3 Authority Key Identifier: keyid:AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a31653a3a2f34382d3438203d3e203536323436.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:fd00:1e::/48 Signature Algorithm: sha256WithRSAEncryption 93:b9:8d:0e:bb:e8:df:7d:c7:14:4d:35:a4:b1:be:5e:db:fc: 89:7a:13:14:8f:13:09:dd:db:56:c4:21:d8:51:a7:1e:44:d5: 81:1e:ad:d9:a1:60:3e:b6:43:96:ca:0a:9e:e2:9a:01:2f:8d: 82:b8:08:05:5b:a9:0a:d3:bd:0e:7d:b7:88:b6:00:8e:b5:ea: 46:f8:25:fa:40:65:d5:51:62:53:cf:e1:cc:da:c9:11:8d:57: 71:d8:b6:5a:7f:3d:ad:af:90:68:d1:6c:b3:3f:df:74:dd:83: d2:79:8c:06:19:62:40:91:4c:02:95:12:a8:cf:ad:3c:4c:58: eb:63:03:69:88:43:9e:71:00:22:ce:7e:46:1b:bf:8f:a9:f1: 5c:eb:de:55:8f:58:6f:82:6b:5c:24:30:a6:1f:94:ca:6a:2b: c5:1f:30:cb:c9:41:4f:59:7a:0d:c3:47:b6:15:43:b9:33:67: b7:84:7b:d6:c9:20:5a:92:e1:90:33:07:ac:85:e0:dd:4e:2d: 58:87:9a:45:eb:33:ec:90:3f:ed:26:f7:58:6d:55:29:78:6d: e8:b4:a4:f4:7b:b8:58:09:1f:b8:87:5f:7c:1f:9f:3c:92:b8: 95:f4:9a:86:c0:b8:e0:5b:1c:eb:fe:90:66:a5:b2:dc:8e:07: 4a:d4:02:3f -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUVaUJ60zghtzS8PTrgxw7CFASFxMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FF NEQ1RkRFNjAeFw0yNTEwMzEwNTU1MDFaFw0yNjEwMzAwNjAwMDFaMDMxMTAvBgNV BAMTKEJBN0ExNDMwMzVFMjNEMDYwRDU1REY0REMzMEQ5NEY5N0FDQUZCRUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIssun/ZggFx80qsPEnYdTiNTd hWRHAbw2pYnJ6LGLp3o/KEZfPaxpD4L3uVsROmveM1Dh8mcE9sXk5dPB8gVOUsXo a5K7o/pTCKSNm8AshB3pmZ99vZNTFGGkKVgAyAJk3EGakboTga0uw+venKgYbe/y B7/Qp9iPczIhW97I/mrLDvJ8EcE5tWfR9APbR5xRenqsmEUDRJ/3e/+dEFbVja5z bYZfPwOhjmRnd2bsTd6jh8VmN22IlPgHppUqhGiEk4doUPfv2iFuizhJzeJkYFjR KBHyG3HvS2C7/0AKuZNQ2LK4kvkF9imO/DzFnHJjlWW0zcSeLOvEKnDzEkdzAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUunoUMDXiPQYNVd9Nww2U+XrK++0wHwYDVR0j BBgwFoAUr0tY1LFlMLn2kZ2/T1PcOuTV/eYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZDIyN2RiZS00YTFjLTQwYjAtOTRhNi03OTNiZGJkYTM3NzcvMC9BRjRCNThENEIx NjUzMEI5RjY5MTlEQkY0RjUzREMzQUU0RDVGREU2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FFNEQ1 RkRFNi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVkMjI3ZGJlLTRhMWMtNDBiMC05 NGE2LTc5M2JkYmRhMzc3Ny8wLzMyMzQzMDM0M2E2NjY0MzAzMDNhMzE2NTNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzYzMjM0MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBP0AAB4w DQYJKoZIhvcNAQELBQADggEBAJO5jQ676N99xxRNNaSxvl7b/Il6ExSPEwnd21bE IdhRpx5E1YEerdmhYD62Q5bKCp7imgEvjYK4CAVbqQrTvQ59t4i2AI616kb4JfpA ZdVRYlPP4czayRGNV3HYtlp/Pa2vkGjRbLM/33Tdg9J5jAYZYkCRTAKVEqjPrTxM WOtjA2mIQ55xACLOfkYbv4+p8Vzr3lWPWG+Ca1wkMKYflMpqK8UfMMvJQU9Zeg3D R7YVQ7kzZ7eEe9bJIFqS4ZAzB6yF4N1OLViHmkXrM+yQP+0m91htVSl4bei0pPR7 uFgJH7iHX3wfnzySuJX0mobAuOBbHOv+kGalstyOB0rUAj8= -----END CERTIFICATE-----Generated at Tue Nov 4 16:59:35 2025 by rpki-client