$ rpki-client -vvf repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a323a3a2f34382d3438203d3e203535363835.roa File: 323430343a653130303a323a3a2f34382d3438203d3e203535363835.roa (raw, json) Hash identifier: v7eRoIMCGFhx2LpF3pPPV04YHqX+7r0680kae7dBnk4= Subject key identifier: 03:4B:4B:21:3E:E2:F2:28:FD:D9:00:4E:AC:58:48:D3:6F:A6:3B:9C Certificate issuer: /CN=B6F0131510E62F73E5F29246F9C8F691811A704D Certificate serial: 68137FE56A6511B7C4C4C2E596C7B2DA33C3F78D Authority key identifier: B6:F0:13:15:10:E6:2F:73:E5:F2:92:46:F9:C8:F6:91:81:1A:70:4D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a323a3a2f34382d3438203d3e203535363835.roa Signing time: Tue 26 Aug 2025 07:02:06 +0000 ROA not before: Tue 26 Aug 2025 06:57:06 +0000 ROA not after: Tue 25 Aug 2026 07:02:06 +0000 asID: 55685 IP address blocks: 2404:e100:2::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.crl rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Sep 2025 16:37:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:13:7f:e5:6a:65:11:b7:c4:c4:c2:e5:96:c7:b2:da:33:c3:f7:8d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B6F0131510E62F73E5F29246F9C8F691811A704D Validity Not Before: Aug 26 06:57:06 2025 GMT Not After : Aug 25 07:02:06 2026 GMT Subject: CN=034B4B213EE2F228FDD9004EAC5848D36FA63B9C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:66:29:51:b6:e4:ea:bd:71:b6:01:06:d4:40: 1f:6a:3e:3f:59:96:e1:70:f5:dc:5c:4c:b4:a9:08: ab:7e:a4:7d:ed:ed:b5:0b:99:7b:b2:b2:00:62:16: 6c:ff:34:b3:93:e0:77:2e:bf:11:ed:9d:90:7f:6b: 65:39:d1:0c:6d:59:ed:d1:0d:43:3a:4d:1f:95:a6: 79:c3:44:5d:23:cb:81:7d:11:6c:ff:5e:f7:58:79: dd:9c:91:cf:f4:7d:7a:63:29:03:33:ad:71:73:2d: 5d:f4:2b:ff:e8:ae:40:75:9d:20:b0:ab:17:31:21: b5:f7:00:4e:21:9e:b9:48:d0:0a:91:16:42:50:81: f3:8e:d4:12:aa:f8:ec:70:cc:38:ce:99:e7:5c:3f: 65:e7:ff:f0:63:b9:9e:39:8b:3a:33:c1:d2:29:80: 23:28:b9:b3:56:cd:56:7f:e9:e6:e1:36:97:2a:61: d7:14:09:93:0f:be:bb:54:4f:cb:88:72:29:26:05: 17:d1:b2:78:0b:14:a3:d2:c0:8b:ae:51:41:05:ef: 8f:d0:0a:dc:58:a8:00:8c:da:4c:3f:ab:7d:c0:44: 0f:a5:42:0b:c7:14:0a:c1:bf:09:6c:9b:18:56:57: d1:ab:06:e4:0e:72:11:52:c6:88:e8:1a:7f:06:42: 7e:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:4B:4B:21:3E:E2:F2:28:FD:D9:00:4E:AC:58:48:D3:6F:A6:3B:9C X509v3 Authority Key Identifier: keyid:B6:F0:13:15:10:E6:2F:73:E5:F2:92:46:F9:C8:F6:91:81:1A:70:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a323a3a2f34382d3438203d3e203535363835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:e100:2::/48 Signature Algorithm: sha256WithRSAEncryption 70:57:9c:85:ed:b5:3d:a1:db:35:99:9d:cf:2a:4a:76:c9:ea: a3:5b:e4:e5:e1:46:d2:d9:3f:8e:30:4b:db:73:f0:cf:66:3f: 3f:88:96:d3:77:f3:a5:d7:87:0c:cb:77:d1:d1:bc:b4:94:ae: 72:af:02:03:48:70:27:66:6a:b7:54:3e:9f:3f:f1:9f:a8:0a: 55:5d:4c:67:98:9b:c2:b5:c2:1c:fe:f2:44:2d:d0:59:48:75: 48:e9:b3:35:7e:47:ce:20:91:2f:d2:88:ad:ba:51:d6:86:ee: db:22:83:25:af:90:f5:4f:02:94:ea:0a:38:cf:7a:41:3a:a5: cc:5f:20:fe:cc:2f:6a:00:b0:93:22:8f:8a:34:3c:45:19:db: 02:f4:ac:7c:b3:25:a6:4c:ce:02:08:bc:81:93:8d:78:12:9c: 2f:60:76:eb:44:4f:cb:96:7f:0b:28:a5:54:58:d4:23:fd:af: 84:f3:5a:bf:2b:03:6a:22:e3:76:6e:2e:76:1a:0a:39:51:75: 44:51:0f:d5:50:19:1e:63:c9:18:b2:52:d8:aa:c4:51:21:39: 2f:97:b1:14:8e:3a:dd:32:1f:af:d0:26:08:ac:55:cc:0e:3d: 57:cc:d7:8f:b4:32:e1:83:ec:d4:4a:ba:2d:e0:6a:22:56:a5: 58:fb:de:bf -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUaBN/5WplEbfExMLllsey2jPD940wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjZGMDEzMTUxMEU2MkY3M0U1RjI5MjQ2RjlDOEY2OTE4 MTFBNzA0RDAeFw0yNTA4MjYwNjU3MDZaFw0yNjA4MjUwNzAyMDZaMDMxMTAvBgNV BAMTKDAzNEI0QjIxM0VFMkYyMjhGREQ5MDA0RUFDNTg0OEQzNkZBNjNCOUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQChZilRtuTqvXG2AQbUQB9qPj9Z luFw9dxcTLSpCKt+pH3t7bULmXuysgBiFmz/NLOT4HcuvxHtnZB/a2U50QxtWe3R DUM6TR+VpnnDRF0jy4F9EWz/XvdYed2ckc/0fXpjKQMzrXFzLV30K//orkB1nSCw qxcxIbX3AE4hnrlI0AqRFkJQgfOO1BKq+OxwzDjOmedcP2Xn//BjuZ45izozwdIp gCMoubNWzVZ/6ebhNpcqYdcUCZMPvrtUT8uIcikmBRfRsngLFKPSwIuuUUEF74/Q CtxYqACM2kw/q33ARA+lQgvHFArBvwlsmxhWV9GrBuQOchFSxojoGn8GQn5rAgMB AAGjggI3MIICMzAdBgNVHQ4EFgQUA0tLIT7i8ij92QBOrFhI02+mO5wwHwYDVR0j BBgwFoAUtvATFRDmL3Pl8pJG+cj2kYEacE0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NWQ4ZGFiNC04YmI2LTRlZDAtOGRhYi01YTQwNjE2N2I5OWQvMC9CNkYwMTMxNTEw RTYyRjczRTVGMjkyNDZGOUM4RjY5MTgxMUE3MDRELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjZGMDEzMTUxMEU2MkY3M0U1RjI5MjQ2RjlDOEY2OTE4MTFB NzA0RC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg1ZDhkYWI0LThiYjYtNGVkMC04 ZGFiLTVhNDA2MTY3Yjk5ZC8wLzMyMzQzMDM0M2E2NTMxMzAzMDNhMzIzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzNTM1MzYzODM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAThAAACMA0G CSqGSIb3DQEBCwUAA4IBAQBwV5yF7bU9ods1mZ3PKkp2yeqjW+Tl4UbS2T+OMEvb c/DPZj8/iJbTd/Ol14cMy3fR0by0lK5yrwIDSHAnZmq3VD6fP/GfqApVXUxnmJvC tcIc/vJELdBZSHVI6bM1fkfOIJEv0oitulHWhu7bIoMlr5D1TwKU6go4z3pBOqXM XyD+zC9qALCTIo+KNDxFGdsC9Kx8syWmTM4CCLyBk414EpwvYHbrRE/Lln8LKKVU WNQj/a+E81q/KwNqIuN2bi52Ggo5UXVEUQ/VUBkeY8kYslLYqsRRITkvl7EUjjrd Mh+v0CYIrFXMDj1XzNePtDLhg+zUSrot4GoiVqVY+96/ -----END CERTIFICATE-----Generated at Mon Sep 8 10:45:19 2025 by rpki-client