$ rpki-client -vvf repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a32353a3a2f34382d3438203d3e203536323436.roa File: 323430343a666430303a32353a3a2f34382d3438203d3e203536323436.roa (raw, json) Hash identifier: BP2+1ZkwxF18R0/me3JApRbdN3rrr+cMEB8hx+BpF4c= Subject key identifier: E2:3A:E8:A4:5D:3B:0C:62:EE:06:A6:09:44:A8:E0:7E:4F:65:49:4A Certificate issuer: /CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Certificate serial: 5480E33B355D6DF8D7FD958F7BC924871D2C0792 Authority key identifier: AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a32353a3a2f34382d3438203d3e203536323436.roa Signing time: Fri 31 Oct 2025 06:00:01 +0000 ROA not before: Fri 31 Oct 2025 05:55:01 +0000 ROA not after: Fri 30 Oct 2026 06:00:01 +0000 asID: 56246 IP address blocks: 2404:fd00:25::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Nov 2025 16:31:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:80:e3:3b:35:5d:6d:f8:d7:fd:95:8f:7b:c9:24:87:1d:2c:07:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Validity Not Before: Oct 31 05:55:01 2025 GMT Not After : Oct 30 06:00:01 2026 GMT Subject: CN=E23AE8A45D3B0C62EE06A60944A8E07E4F65494A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:34:90:28:2f:aa:05:73:43:da:14:b5:eb:d3: 7b:7b:b2:26:a7:24:09:c5:7a:1a:24:44:af:34:f8: dc:90:22:bb:1e:53:0a:90:e3:81:04:a0:5a:84:46: d0:a6:2b:9b:1c:5e:11:ab:ad:30:a5:c6:5f:b5:1e: c8:53:53:20:68:bc:58:a1:c5:1d:f7:6f:51:24:93: 57:92:00:f0:8b:14:fc:90:55:22:a6:b0:6d:d3:56: 9f:c0:31:7b:34:0e:ba:d3:48:24:42:b4:55:80:58: 71:21:b4:d7:4f:b3:5d:2c:30:d1:d3:b7:98:9e:f9: 9b:61:73:70:c8:1d:97:c5:0e:23:12:2e:d2:dd:1c: 97:5a:c5:2e:29:ae:39:ab:93:69:b9:55:0c:74:17: 68:bc:f2:d0:c5:56:99:95:b3:69:28:c6:46:71:30: 01:7f:6f:a9:02:c6:80:40:44:12:59:61:e3:f5:54: ec:1d:64:9b:d7:3d:57:f1:e4:dc:f8:5d:36:b2:cd: dd:35:f8:93:82:e2:d8:1c:78:f6:ff:d5:be:ab:59: 6c:6a:43:6e:05:00:ea:64:38:58:c6:53:36:51:0b: 32:66:5b:29:9a:5f:23:90:ff:77:f4:bd:78:eb:c7: da:4f:24:ee:8f:ae:5f:c1:15:12:77:d1:e1:d0:1c: e4:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:3A:E8:A4:5D:3B:0C:62:EE:06:A6:09:44:A8:E0:7E:4F:65:49:4A X509v3 Authority Key Identifier: keyid:AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a32353a3a2f34382d3438203d3e203536323436.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:fd00:25::/48 Signature Algorithm: sha256WithRSAEncryption 58:b7:d2:8e:9c:f8:a3:b8:c4:6c:ae:ee:de:8d:f2:0c:71:72: 68:86:d9:0c:2b:d3:cd:7f:f3:55:83:dc:3a:17:e2:b7:c1:54: 08:87:5a:d0:71:0d:e4:3e:19:46:0c:ec:05:53:92:bf:f9:a5: ce:9d:77:7d:7e:2b:ea:59:e1:ae:18:c8:ed:b4:15:af:4f:f0: ae:f0:29:76:e9:2a:27:c6:85:d6:6a:68:03:ff:e6:31:5b:7e: fd:fe:69:4e:97:c4:b9:98:89:e4:9b:60:0d:9e:99:54:06:5f: 3b:a3:a8:a1:bd:ad:07:f0:ca:a8:49:62:db:7e:a9:d4:9a:59: ff:4c:f7:15:2a:9c:bc:9d:03:66:29:17:8d:8d:b8:83:0b:7e: 09:c0:37:8f:21:32:0d:84:a5:35:1f:d0:0d:ef:3c:3c:03:6e: ba:da:c4:12:63:b9:08:58:f9:e6:0e:eb:ff:df:b0:21:f9:b9: a2:ec:79:62:a6:19:d9:a1:2d:5b:35:4b:ba:6e:6a:57:97:82: 7c:29:6a:f2:b9:12:46:d2:f4:06:c8:98:48:02:1e:7c:a7:1a: f0:7a:7d:88:1d:59:71:87:df:19:f0:f2:8c:82:97:66:65:88: cc:9f:d5:9e:27:5d:f5:a2:9c:d9:da:0d:1c:ac:ac:49:19:80: b6:f3:75:86 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUVIDjOzVdbfjX/ZWPe8kkhx0sB5IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FF NEQ1RkRFNjAeFw0yNTEwMzEwNTU1MDFaFw0yNjEwMzAwNjAwMDFaMDMxMTAvBgNV BAMTKEUyM0FFOEE0NUQzQjBDNjJFRTA2QTYwOTQ0QThFMDdFNEY2NTQ5NEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFNJAoL6oFc0PaFLXr03t7sian JAnFehokRK80+NyQIrseUwqQ44EEoFqERtCmK5scXhGrrTClxl+1HshTUyBovFih xR33b1Ekk1eSAPCLFPyQVSKmsG3TVp/AMXs0DrrTSCRCtFWAWHEhtNdPs10sMNHT t5ie+Zthc3DIHZfFDiMSLtLdHJdaxS4prjmrk2m5VQx0F2i88tDFVpmVs2koxkZx MAF/b6kCxoBARBJZYeP1VOwdZJvXPVfx5Nz4XTayzd01+JOC4tgcePb/1b6rWWxq Q24FAOpkOFjGUzZRCzJmWymaXyOQ/3f0vXjrx9pPJO6Prl/BFRJ30eHQHOTTAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQU4jropF07DGLuBqYJRKjgfk9lSUowHwYDVR0j BBgwFoAUr0tY1LFlMLn2kZ2/T1PcOuTV/eYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZDIyN2RiZS00YTFjLTQwYjAtOTRhNi03OTNiZGJkYTM3NzcvMC9BRjRCNThENEIx NjUzMEI5RjY5MTlEQkY0RjUzREMzQUU0RDVGREU2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FFNEQ1 RkRFNi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVkMjI3ZGJlLTRhMWMtNDBiMC05 NGE2LTc5M2JkYmRhMzc3Ny8wLzMyMzQzMDM0M2E2NjY0MzAzMDNhMzIzNTNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzYzMjM0MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBP0AACUw DQYJKoZIhvcNAQELBQADggEBAFi30o6c+KO4xGyu7t6N8gxxcmiG2Qwr081/81WD 3DoX4rfBVAiHWtBxDeQ+GUYM7AVTkr/5pc6dd31+K+pZ4a4YyO20Fa9P8K7wKXbp KifGhdZqaAP/5jFbfv3+aU6XxLmYieSbYA2emVQGXzujqKG9rQfwyqhJYtt+qdSa Wf9M9xUqnLydA2YpF42NuIMLfgnAN48hMg2EpTUf0A3vPDwDbrraxBJjuQhY+eYO 6//fsCH5uaLseWKmGdmhLVs1S7pualeXgnwpavK5EkbS9AbImEgCHnynGvB6fYgd WXGH3xnw8oyCl2ZliMyf1Z4nXfWinNnaDRysrEkZgLbzdYY= -----END CERTIFICATE-----Generated at Tue Nov 4 16:59:35 2025 by rpki-client