$ rpki-client -vvf repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a32323a3a2f34382d3438203d3e203536323436.roa File: 323430343a666430303a32323a3a2f34382d3438203d3e203536323436.roa (raw, json) Hash identifier: TZix419qisnkt58c9kTwBvyfwS3wktBn28Asw/fw8cU= Subject key identifier: 74:70:BD:D7:85:C4:78:DB:C4:CB:21:8E:16:FF:0A:6F:5F:D5:0B:8E Certificate issuer: /CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Certificate serial: 037BC4726BB2D31EB92C3B09B2DD8289215EA735 Authority key identifier: AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a32323a3a2f34382d3438203d3e203536323436.roa Signing time: Fri 31 Oct 2025 06:00:02 +0000 ROA not before: Fri 31 Oct 2025 05:55:02 +0000 ROA not after: Fri 30 Oct 2026 06:00:02 +0000 asID: 56246 IP address blocks: 2404:fd00:22::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Nov 2025 13:50:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:7b:c4:72:6b:b2:d3:1e:b9:2c:3b:09:b2:dd:82:89:21:5e:a7:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Validity Not Before: Oct 31 05:55:02 2025 GMT Not After : Oct 30 06:00:02 2026 GMT Subject: CN=7470BDD785C478DBC4CB218E16FF0A6F5FD50B8E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:26:aa:c5:79:81:cc:d6:54:ec:05:16:6c:18: e6:31:03:92:01:82:b3:a0:56:b1:ea:f9:ba:48:fd: 4d:5e:a9:35:ac:b9:2e:8e:4e:ab:cf:e9:de:3d:3a: fa:46:a2:ec:73:e8:e6:14:34:90:0e:7e:f4:3f:46: 01:d4:f2:2b:05:f7:1e:46:73:51:b3:62:08:ed:f5: 6e:b6:d1:3f:56:94:b8:28:24:6b:65:68:02:89:ed: 91:a0:48:b1:56:94:ae:94:04:4c:b7:b4:67:00:5f: 50:68:85:2c:e8:84:45:32:5a:19:ca:68:fa:48:ea: 30:51:06:9f:9d:5c:78:c3:2b:e0:f5:e9:a2:2b:45: f1:3e:47:58:a0:a8:58:71:3a:de:ea:8c:12:7a:59: 71:92:47:23:b9:a1:82:0b:0d:7a:ab:8e:c0:45:aa: 99:06:a6:a7:2c:9e:48:1f:12:ff:4c:92:b0:f1:63: 21:b2:eb:45:c7:9d:ca:72:8a:3e:ca:54:24:b4:05: ec:b9:79:6e:c9:a6:ac:34:c8:62:ae:0b:29:4e:6a: 9f:86:2c:f4:1a:cc:74:dd:be:68:3d:e9:a8:7a:e1: 7c:03:1d:92:ef:72:1e:bb:d0:79:7b:81:e0:7a:48: 71:42:82:be:56:1b:f0:c2:be:55:bc:25:5f:e1:39: a0:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:70:BD:D7:85:C4:78:DB:C4:CB:21:8E:16:FF:0A:6F:5F:D5:0B:8E X509v3 Authority Key Identifier: keyid:AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a32323a3a2f34382d3438203d3e203536323436.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:fd00:22::/48 Signature Algorithm: sha256WithRSAEncryption 31:06:46:47:f4:48:bc:1f:47:d7:e2:c9:61:db:22:6e:a4:14: 33:b7:e1:ae:40:0c:48:bf:11:40:23:b3:9f:c8:9a:82:4d:fb: 23:20:6e:d1:09:a5:8c:5e:99:18:62:33:06:29:bc:f7:9d:e8: ac:89:35:1d:a6:20:6a:e3:a8:68:e5:14:c0:44:9c:af:65:68: 96:ad:a7:d3:34:cd:bc:d7:3d:ee:61:2c:30:29:2f:8e:0e:f8: 0a:1e:27:21:6e:a1:a6:48:27:08:a5:6d:57:d5:8c:c2:35:ef: dd:d4:00:40:7f:cf:a6:f8:61:1c:a9:da:40:65:e5:d4:a0:30: 81:e8:94:5e:30:12:e7:a5:53:8c:f3:a8:74:b4:4a:d6:8f:4c: e4:f3:20:83:09:ac:4b:51:f6:ee:dc:02:dd:eb:3d:85:9a:4a: b2:22:9a:9f:c9:08:18:c5:0c:d0:52:4a:ba:06:0d:d0:4d:3b: c6:b5:c3:b6:e0:9c:a2:35:2c:78:0b:27:c3:dc:04:0e:66:2c: a2:0a:92:28:7b:4b:3a:82:0d:f1:90:d9:38:c2:6d:17:13:09: 59:a4:b4:1f:6d:0b:98:b7:0a:15:a4:d0:d6:b4:33:5c:46:8f: bd:b0:18:4e:75:ce:b0:55:90:6e:56:79:e1:bd:ae:70:d8:c6: 63:47:bd:23 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUA3vEcmuy0x65LDsJst2CiSFepzUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FF NEQ1RkRFNjAeFw0yNTEwMzEwNTU1MDJaFw0yNjEwMzAwNjAwMDJaMDMxMTAvBgNV BAMTKDc0NzBCREQ3ODVDNDc4REJDNENCMjE4RTE2RkYwQTZGNUZENTBCOEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqJqrFeYHM1lTsBRZsGOYxA5IB grOgVrHq+bpI/U1eqTWsuS6OTqvP6d49OvpGouxz6OYUNJAOfvQ/RgHU8isF9x5G c1GzYgjt9W620T9WlLgoJGtlaAKJ7ZGgSLFWlK6UBEy3tGcAX1BohSzohEUyWhnK aPpI6jBRBp+dXHjDK+D16aIrRfE+R1igqFhxOt7qjBJ6WXGSRyO5oYILDXqrjsBF qpkGpqcsnkgfEv9MkrDxYyGy60XHncpyij7KVCS0Bey5eW7Jpqw0yGKuCylOap+G LPQazHTdvmg96ah64XwDHZLvch670Hl7geB6SHFCgr5WG/DCvlW8JV/hOaC9AgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUdHC914XEeNvEyyGOFv8Kb1/VC44wHwYDVR0j BBgwFoAUr0tY1LFlMLn2kZ2/T1PcOuTV/eYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZDIyN2RiZS00YTFjLTQwYjAtOTRhNi03OTNiZGJkYTM3NzcvMC9BRjRCNThENEIx NjUzMEI5RjY5MTlEQkY0RjUzREMzQUU0RDVGREU2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FFNEQ1 RkRFNi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVkMjI3ZGJlLTRhMWMtNDBiMC05 NGE2LTc5M2JkYmRhMzc3Ny8wLzMyMzQzMDM0M2E2NjY0MzAzMDNhMzIzMjNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzYzMjM0MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBP0AACIw DQYJKoZIhvcNAQELBQADggEBADEGRkf0SLwfR9fiyWHbIm6kFDO34a5ADEi/EUAj s5/ImoJN+yMgbtEJpYxemRhiMwYpvPed6KyJNR2mIGrjqGjlFMBEnK9laJatp9M0 zbzXPe5hLDApL44O+AoeJyFuoaZIJwilbVfVjMI1793UAEB/z6b4YRyp2kBl5dSg MIHolF4wEuelU4zzqHS0StaPTOTzIIMJrEtR9u7cAt3rPYWaSrIimp/JCBjFDNBS SroGDdBNO8a1w7bgnKI1LHgLJ8PcBA5mLKIKkih7SzqCDfGQ2TjCbRcTCVmktB9t C5i3ChWk0Na0M1xGj72wGE51zrBVkG5WeeG9rnDYxmNHvSM= -----END CERTIFICATE-----Generated at Tue Nov 4 19:14:46 2025 by rpki-client