$ rpki-client -vvf repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a32313a3a2f34382d3438203d3e203538353532.roa File: 323430343a666430303a32313a3a2f34382d3438203d3e203538353532.roa (raw, json) Hash identifier: OzDJ6QgsNvd2ZyFzoCfD86ybI7niPWO9WqB3x43Immo= Subject key identifier: CF:53:3E:7A:6B:42:02:BF:7B:DA:59:3A:60:33:A8:EF:BE:2A:63:7C Certificate issuer: /CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Certificate serial: 797FD4BEF6E8C62CC3AC84F0FBB1C15434CCBD99 Authority key identifier: AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a32313a3a2f34382d3438203d3e203538353532.roa Signing time: Fri 31 Oct 2025 06:00:02 +0000 ROA not before: Fri 31 Oct 2025 05:55:02 +0000 ROA not after: Fri 30 Oct 2026 06:00:02 +0000 asID: 58552 IP address blocks: 2404:fd00:21::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Nov 2025 16:31:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:7f:d4:be:f6:e8:c6:2c:c3:ac:84:f0:fb:b1:c1:54:34:cc:bd:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Validity Not Before: Oct 31 05:55:02 2025 GMT Not After : Oct 30 06:00:02 2026 GMT Subject: CN=CF533E7A6B4202BF7BDA593A6033A8EFBE2A637C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:e6:3a:8b:c5:30:15:59:a3:80:f4:d2:d5:d2: b6:8c:bd:cc:bd:f8:cb:56:d7:4b:4d:d5:e6:64:7f: 30:a0:ac:07:c7:e1:8a:29:4a:af:8c:c3:4b:29:e9: b6:6d:57:3c:f0:3b:db:69:1a:c2:ff:ca:56:e7:d6: 94:13:7c:8e:74:cd:8f:c5:c2:81:9f:b3:82:47:aa: d2:fa:e8:c7:14:b7:7c:6d:89:0d:48:64:6b:61:cd: 1f:0a:24:bf:ca:e3:59:bc:6d:ce:60:c5:38:7e:40: 48:ba:b8:61:e5:b9:4a:37:b2:81:1e:6f:21:c7:80: 7c:d4:39:5f:f6:00:7d:9f:bc:76:dc:7a:a9:2b:aa: 15:ea:ab:2c:22:d6:12:18:6e:13:05:e0:27:27:a1: 89:66:13:fd:88:6a:7c:0c:01:b6:34:be:d3:4f:12: 66:8e:30:62:d0:0f:f9:ef:88:95:82:dc:91:dd:3f: 41:a3:1a:38:b6:00:3d:eb:23:ca:a6:be:38:67:ff: b6:46:9e:53:3a:58:61:9d:a0:69:dd:a4:57:40:45: 1d:af:f7:d7:99:fc:4e:80:a0:ce:00:fe:50:93:35: 84:8d:f1:30:9e:56:81:04:38:77:2a:bb:d0:e8:98: 0f:cb:0b:d5:ed:c0:5f:3d:35:77:5c:2b:ad:2f:20: 88:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:53:3E:7A:6B:42:02:BF:7B:DA:59:3A:60:33:A8:EF:BE:2A:63:7C X509v3 Authority Key Identifier: keyid:AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a32313a3a2f34382d3438203d3e203538353532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:fd00:21::/48 Signature Algorithm: sha256WithRSAEncryption 82:30:60:1e:d0:22:f3:25:da:fd:71:91:38:95:d1:35:69:3f: ae:13:4c:1e:ef:5c:d1:e0:9d:59:84:3b:85:1f:18:40:ba:f0: 1b:76:63:53:ea:b4:60:a4:de:33:cd:9a:fe:71:25:18:68:52: 0e:84:8b:92:21:f0:fe:a9:b9:b4:41:aa:95:6a:8d:1f:b0:e6: a3:be:64:e0:8a:2b:a0:97:82:a0:67:ce:ca:93:b8:75:27:b6: e2:b2:fa:e3:87:ec:2f:2e:9f:12:31:f0:45:05:e1:2f:2e:cf: 30:5d:41:df:03:70:a4:09:bf:3c:2c:32:84:64:1d:06:2e:93: c5:b9:29:24:fb:09:95:1b:82:84:59:55:8d:41:15:f1:37:4b: 7c:74:6f:8e:2c:00:7f:0d:b9:c2:fa:ee:8a:20:7d:eb:42:37: f6:a4:77:fc:80:f2:8d:3e:dd:f7:92:ae:f3:fd:1b:f3:34:26: 5d:81:f1:7a:79:2a:ee:aa:b4:27:79:69:07:01:76:70:c5:70: 44:c7:26:50:40:b9:f0:e6:0d:04:a7:94:7c:e8:2f:fb:65:f2: fe:31:6e:f5:96:a1:0b:0e:67:54:e2:4e:5d:27:6e:d8:56:21: bc:5a:5a:6c:fb:63:89:bb:f0:74:79:49:5a:ef:a4:8c:79:41: 51:a6:1f:85 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUeX/UvvboxizDrITw+7HBVDTMvZkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FF NEQ1RkRFNjAeFw0yNTEwMzEwNTU1MDJaFw0yNjEwMzAwNjAwMDJaMDMxMTAvBgNV BAMTKENGNTMzRTdBNkI0MjAyQkY3QkRBNTkzQTYwMzNBOEVGQkUyQTYzN0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCu5jqLxTAVWaOA9NLV0raMvcy9 +MtW10tN1eZkfzCgrAfH4YopSq+Mw0sp6bZtVzzwO9tpGsL/ylbn1pQTfI50zY/F woGfs4JHqtL66McUt3xtiQ1IZGthzR8KJL/K41m8bc5gxTh+QEi6uGHluUo3soEe byHHgHzUOV/2AH2fvHbceqkrqhXqqywi1hIYbhMF4CcnoYlmE/2IanwMAbY0vtNP EmaOMGLQD/nviJWC3JHdP0GjGji2AD3rI8qmvjhn/7ZGnlM6WGGdoGndpFdARR2v 99eZ/E6AoM4A/lCTNYSN8TCeVoEEOHcqu9DomA/LC9XtwF89NXdcK60vIIiTAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUz1M+emtCAr972lk6YDOo774qY3wwHwYDVR0j BBgwFoAUr0tY1LFlMLn2kZ2/T1PcOuTV/eYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZDIyN2RiZS00YTFjLTQwYjAtOTRhNi03OTNiZGJkYTM3NzcvMC9BRjRCNThENEIx NjUzMEI5RjY5MTlEQkY0RjUzREMzQUU0RDVGREU2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FFNEQ1 RkRFNi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVkMjI3ZGJlLTRhMWMtNDBiMC05 NGE2LTc5M2JkYmRhMzc3Ny8wLzMyMzQzMDM0M2E2NjY0MzAzMDNhMzIzMTNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzgzNTM1MzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBP0AACEw DQYJKoZIhvcNAQELBQADggEBAIIwYB7QIvMl2v1xkTiV0TVpP64TTB7vXNHgnVmE O4UfGEC68Bt2Y1PqtGCk3jPNmv5xJRhoUg6Ei5Ih8P6pubRBqpVqjR+w5qO+ZOCK K6CXgqBnzsqTuHUntuKy+uOH7C8unxIx8EUF4S8uzzBdQd8DcKQJvzwsMoRkHQYu k8W5KST7CZUbgoRZVY1BFfE3S3x0b44sAH8NucL67oogfetCN/akd/yA8o0+3feS rvP9G/M0Jl2B8Xp5Ku6qtCd5aQcBdnDFcETHJlBAufDmDQSnlHzoL/tl8v4xbvWW oQsOZ1TiTl0nbthWIbxaWmz7Y4m78HR5SVrvpIx5QVGmH4U= -----END CERTIFICATE-----Generated at Tue Nov 4 09:26:10 2025 by rpki-client