$ rpki-client -vvf repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a32333a3a2f34382d3438203d3e203536323436.roa File: 323430343a666430303a32333a3a2f34382d3438203d3e203536323436.roa (raw, json) Hash identifier: KcWX7mFMML98/CDHhJP7EkwcnlsreD2u1JTglC4y9SU= Subject key identifier: CD:8A:83:F1:1B:77:B5:92:30:DF:BE:8F:81:72:3E:5E:6D:56:51:91 Certificate issuer: /CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Certificate serial: 4B7A1D8BDDCF788C57FF6FC252A7C39CFFC0B6CB Authority key identifier: AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a32333a3a2f34382d3438203d3e203536323436.roa Signing time: Fri 31 Oct 2025 06:00:03 +0000 ROA not before: Fri 31 Oct 2025 05:55:03 +0000 ROA not after: Fri 30 Oct 2026 06:00:03 +0000 asID: 56246 IP address blocks: 2404:fd00:23::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Nov 2025 13:50:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:7a:1d:8b:dd:cf:78:8c:57:ff:6f:c2:52:a7:c3:9c:ff:c0:b6:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Validity Not Before: Oct 31 05:55:03 2025 GMT Not After : Oct 30 06:00:03 2026 GMT Subject: CN=CD8A83F11B77B59230DFBE8F81723E5E6D565191 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:48:e2:45:5a:79:03:c9:65:83:a7:13:59:b0: d9:a8:6f:44:c6:31:bb:74:89:32:94:41:4d:ea:57: 9e:fb:43:e9:6b:e4:18:7d:01:a0:5a:cf:8b:f2:f3: 09:86:bc:9a:5a:c7:5b:70:58:d5:bf:7f:00:ac:94: e8:c2:fc:71:98:2e:42:82:70:1d:8b:9d:71:44:f7: 79:5b:16:c1:18:61:9f:2c:a3:87:65:0c:18:3b:df: 22:c4:b9:a2:5d:df:d2:f6:96:43:73:47:fd:d7:b6: a2:d2:41:97:cf:33:7b:80:8c:ca:07:c3:89:8a:da: 7d:6e:22:77:2b:26:58:1f:be:58:22:fc:6b:25:62: 51:74:2e:c8:9c:19:5e:9f:e5:dc:21:61:83:c5:65: 47:16:ff:e3:d7:3b:76:70:2f:61:be:e2:2d:fa:ab: f2:69:ca:dc:c4:24:be:77:74:e0:ce:70:20:18:50: 67:d8:a5:2c:3f:4a:21:1b:1b:34:08:24:51:55:e0: 09:e4:aa:35:8b:d6:13:f9:40:5c:a7:80:f8:5f:f8: c5:6a:0a:37:7e:c8:67:36:68:12:c3:e2:0e:6e:cc: ce:58:4c:b9:95:11:92:5c:a2:90:49:ce:a2:b9:eb: 53:b2:1e:73:d2:24:c6:17:7b:4f:4f:71:1b:40:65: 0d:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:8A:83:F1:1B:77:B5:92:30:DF:BE:8F:81:72:3E:5E:6D:56:51:91 X509v3 Authority Key Identifier: keyid:AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a32333a3a2f34382d3438203d3e203536323436.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:fd00:23::/48 Signature Algorithm: sha256WithRSAEncryption 23:ac:c8:ee:5b:14:02:41:5a:64:d2:65:7c:5e:66:d1:95:b8: 33:a3:86:63:7d:c9:3d:92:d8:b5:a2:ef:ae:4c:1a:9b:03:85: b8:73:d3:a2:7b:cb:e6:bd:63:5f:5a:50:49:9f:6e:d0:1e:6b: d1:ef:01:91:c9:1b:48:1a:2f:da:95:13:d8:4f:50:78:fd:23: 1a:e5:89:28:af:11:16:23:3c:9f:26:cb:c4:f4:32:49:0d:a1: e0:00:94:5a:12:0e:cd:dd:a4:b2:7e:2b:c3:ae:f4:16:c9:65: be:37:9f:a2:b6:dd:a0:a8:d4:76:39:35:0a:3b:9c:9c:73:80: c5:c7:c5:88:28:95:35:c5:8d:f1:b7:6c:d8:c0:30:0e:0e:eb: 28:e9:46:a0:be:29:78:e2:45:d4:d0:5e:06:55:69:fd:3e:42: 81:02:85:e2:eb:63:ce:14:80:5f:0e:b0:8a:c2:ec:03:a2:f8: 97:3d:03:ef:b1:57:d0:dd:27:11:05:52:b3:c8:7f:92:30:87: 7e:34:3e:3e:5f:1a:6b:34:30:63:67:6f:a8:a7:74:e8:4f:b1: d6:54:eb:ac:5e:4c:53:8e:9a:ea:8d:0a:e4:bc:91:4e:c5:92: fa:80:24:99:f3:b7:2a:aa:66:16:93:2c:5f:92:72:dc:cf:1f: f7:c8:52:64 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUS3odi93PeIxX/2/CUqfDnP/AtsswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FF NEQ1RkRFNjAeFw0yNTEwMzEwNTU1MDNaFw0yNjEwMzAwNjAwMDNaMDMxMTAvBgNV BAMTKENEOEE4M0YxMUI3N0I1OTIzMERGQkU4RjgxNzIzRTVFNkQ1NjUxOTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCeSOJFWnkDyWWDpxNZsNmob0TG Mbt0iTKUQU3qV577Q+lr5Bh9AaBaz4vy8wmGvJpax1twWNW/fwCslOjC/HGYLkKC cB2LnXFE93lbFsEYYZ8so4dlDBg73yLEuaJd39L2lkNzR/3XtqLSQZfPM3uAjMoH w4mK2n1uIncrJlgfvlgi/GslYlF0LsicGV6f5dwhYYPFZUcW/+PXO3ZwL2G+4i36 q/JpytzEJL53dODOcCAYUGfYpSw/SiEbGzQIJFFV4AnkqjWL1hP5QFyngPhf+MVq Cjd+yGc2aBLD4g5uzM5YTLmVEZJcopBJzqK561OyHnPSJMYXe09PcRtAZQ1NAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUzYqD8Rt3tZIw376PgXI+Xm1WUZEwHwYDVR0j BBgwFoAUr0tY1LFlMLn2kZ2/T1PcOuTV/eYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZDIyN2RiZS00YTFjLTQwYjAtOTRhNi03OTNiZGJkYTM3NzcvMC9BRjRCNThENEIx NjUzMEI5RjY5MTlEQkY0RjUzREMzQUU0RDVGREU2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FFNEQ1 RkRFNi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVkMjI3ZGJlLTRhMWMtNDBiMC05 NGE2LTc5M2JkYmRhMzc3Ny8wLzMyMzQzMDM0M2E2NjY0MzAzMDNhMzIzMzNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzYzMjM0MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBP0AACMw DQYJKoZIhvcNAQELBQADggEBACOsyO5bFAJBWmTSZXxeZtGVuDOjhmN9yT2S2LWi 765MGpsDhbhz06J7y+a9Y19aUEmfbtAea9HvAZHJG0gaL9qVE9hPUHj9IxrliSiv ERYjPJ8my8T0MkkNoeAAlFoSDs3dpLJ+K8Ou9BbJZb43n6K23aCo1HY5NQo7nJxz gMXHxYgolTXFjfG3bNjAMA4O6yjpRqC+KXjiRdTQXgZVaf0+QoECheLrY84UgF8O sIrC7AOi+Jc9A++xV9DdJxEFUrPIf5Iwh340Pj5fGms0MGNnb6indOhPsdZU66xe TFOOmuqNCuS8kU7FkvqAJJnztyqqZhaTLF+SctzPH/fIUmQ= -----END CERTIFICATE-----Generated at Tue Nov 4 19:14:46 2025 by rpki-client