$ rpki-client -vvf repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a31663a3a2f34382d3438203d3e203538353532.roa File: 323430343a666430303a31663a3a2f34382d3438203d3e203538353532.roa (raw, json) Hash identifier: kMmZZlvgLE6mVqzUoImfTiu+jM1ADig+/ERzNqjuu4I= Subject key identifier: 40:31:5D:E0:6A:7E:12:5D:26:2A:C1:07:9A:10:04:5C:CD:07:68:1D Certificate issuer: /CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Certificate serial: 328AEDBB7BA946B98E8C5A369DDB7F5F96F57CEE Authority key identifier: AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a31663a3a2f34382d3438203d3e203538353532.roa Signing time: Fri 31 Oct 2025 06:00:02 +0000 ROA not before: Fri 31 Oct 2025 05:55:02 +0000 ROA not after: Fri 30 Oct 2026 06:00:02 +0000 asID: 58552 IP address blocks: 2404:fd00:1f::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Nov 2025 16:31:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:8a:ed:bb:7b:a9:46:b9:8e:8c:5a:36:9d:db:7f:5f:96:f5:7c:ee Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Validity Not Before: Oct 31 05:55:02 2025 GMT Not After : Oct 30 06:00:02 2026 GMT Subject: CN=40315DE06A7E125D262AC1079A10045CCD07681D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:42:86:5e:0e:66:f0:7f:0e:22:39:e9:98:d9: 3f:c2:16:df:03:9d:00:ed:99:49:a1:7f:d1:f1:4a: a0:a3:7c:16:5c:0c:88:db:9b:f7:88:4d:48:3c:77: 44:3f:49:b2:07:2d:d0:d3:01:49:34:eb:f5:7e:08: 45:2e:ab:89:8e:43:35:aa:ef:52:78:f9:bc:f1:77: 2a:4a:e8:79:bb:75:b3:0f:a2:8d:81:51:2a:34:ab: a2:e2:fc:f1:de:d1:68:cf:9c:89:a6:ab:b8:03:18: 36:ab:f7:72:52:98:6f:7f:01:ca:ab:74:e3:88:dc: 46:7a:c9:26:7a:9a:d5:6a:27:37:36:72:fa:a6:fc: 4c:d0:5a:38:28:0f:dd:4e:7a:33:22:0b:b2:80:af: d8:d5:16:66:97:6a:0c:17:b8:a7:53:b9:84:bc:d2: 04:f5:1a:60:d5:5c:8c:ed:44:c1:7d:3b:9c:be:e6: 67:ad:0c:f4:51:79:c9:8f:ea:c0:6c:a8:ce:65:4d: 74:af:48:5a:30:00:45:3f:a1:19:37:3c:90:42:f7: 26:62:0c:52:21:f9:85:7f:9d:3d:24:4f:5e:1b:5e: de:6b:33:3e:69:74:d0:6c:d8:99:f0:0a:b0:11:ba: 27:d9:95:71:2a:3d:a8:74:d3:36:1f:ae:c3:74:71: 6d:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:31:5D:E0:6A:7E:12:5D:26:2A:C1:07:9A:10:04:5C:CD:07:68:1D X509v3 Authority Key Identifier: keyid:AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a31663a3a2f34382d3438203d3e203538353532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:fd00:1f::/48 Signature Algorithm: sha256WithRSAEncryption 62:27:e4:43:c4:fd:66:16:0d:2e:fb:25:af:69:a9:bd:4b:59: 75:e6:bd:52:25:18:58:8c:2d:1e:c2:31:f2:80:ef:a4:ae:c6: 1f:e1:f8:cc:9c:fb:10:d3:fe:40:dc:a0:3b:b7:7f:a1:bb:57: 16:60:4e:a2:31:61:9f:c2:f3:bc:a0:78:da:74:5b:8c:c6:f2: 27:e8:86:8b:08:ae:94:a2:c1:97:a2:20:7d:90:96:38:79:fe: 05:01:97:0c:c4:c4:42:39:ad:bc:da:46:b2:67:46:41:3f:b5: fd:e3:0f:59:72:38:d3:fc:a8:c7:7f:55:b9:e6:c2:74:78:af: 06:9c:b4:f3:4d:0a:09:dd:da:1a:3d:15:14:5f:70:10:70:c7: 52:3a:c0:33:47:cf:80:83:39:55:d6:5d:be:fc:cf:b5:f9:f3: 29:4b:e5:79:04:48:ab:bb:8f:d3:64:90:1a:eb:4d:d2:eb:a1: 39:20:9f:0b:f2:50:48:4d:c0:1c:36:8e:09:54:e7:c6:c5:f6: 88:f2:a9:6f:9e:88:94:44:ea:b3:65:b8:99:c2:2f:64:b0:04: 1b:77:20:66:12:75:06:f5:b1:69:4f:f0:58:28:a3:27:70:16: 8c:f0:6e:38:b2:98:fe:9c:3f:9a:01:2c:3a:88:71:b8:43:83: ad:21:b4:d2 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUMortu3upRrmOjFo2ndt/X5b1fO4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FF NEQ1RkRFNjAeFw0yNTEwMzEwNTU1MDJaFw0yNjEwMzAwNjAwMDJaMDMxMTAvBgNV BAMTKDQwMzE1REUwNkE3RTEyNUQyNjJBQzEwNzlBMTAwNDVDQ0QwNzY4MUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRQoZeDmbwfw4iOemY2T/CFt8D nQDtmUmhf9HxSqCjfBZcDIjbm/eITUg8d0Q/SbIHLdDTAUk06/V+CEUuq4mOQzWq 71J4+bzxdypK6Hm7dbMPoo2BUSo0q6Li/PHe0WjPnImmq7gDGDar93JSmG9/Acqr dOOI3EZ6ySZ6mtVqJzc2cvqm/EzQWjgoD91OejMiC7KAr9jVFmaXagwXuKdTuYS8 0gT1GmDVXIztRMF9O5y+5metDPRRecmP6sBsqM5lTXSvSFowAEU/oRk3PJBC9yZi DFIh+YV/nT0kT14bXt5rMz5pdNBs2JnwCrARuifZlXEqPah00zYfrsN0cW3bAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUQDFd4Gp+El0mKsEHmhAEXM0HaB0wHwYDVR0j BBgwFoAUr0tY1LFlMLn2kZ2/T1PcOuTV/eYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZDIyN2RiZS00YTFjLTQwYjAtOTRhNi03OTNiZGJkYTM3NzcvMC9BRjRCNThENEIx NjUzMEI5RjY5MTlEQkY0RjUzREMzQUU0RDVGREU2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FFNEQ1 RkRFNi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVkMjI3ZGJlLTRhMWMtNDBiMC05 NGE2LTc5M2JkYmRhMzc3Ny8wLzMyMzQzMDM0M2E2NjY0MzAzMDNhMzE2NjNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzgzNTM1MzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBP0AAB8w DQYJKoZIhvcNAQELBQADggEBAGIn5EPE/WYWDS77Ja9pqb1LWXXmvVIlGFiMLR7C MfKA76Suxh/h+Myc+xDT/kDcoDu3f6G7VxZgTqIxYZ/C87ygeNp0W4zG8ifohosI rpSiwZeiIH2Qljh5/gUBlwzExEI5rbzaRrJnRkE/tf3jD1lyONP8qMd/VbnmwnR4 rwactPNNCgnd2ho9FRRfcBBwx1I6wDNHz4CDOVXWXb78z7X58ylL5XkESKu7j9Nk kBrrTdLroTkgnwvyUEhNwBw2jglU58bF9ojyqW+eiJRE6rNluJnCL2SwBBt3IGYS dQb1sWlP8FgooydwFozwbjiymP6cP5oBLDqIcbhDg60htNI= -----END CERTIFICATE-----Generated at Tue Nov 4 09:26:08 2025 by rpki-client