$ rpki-client -vvf repo-rpki.idnic.net/repo/fc568b5b-b6ae-453e-8e16-d55dd635460b/0/323430363a343934303a3a2f33322d3332203d3e20313430343639.roa File: 323430363a343934303a3a2f33322d3332203d3e20313430343639.roa (raw, json) Hash identifier: ceBLgXby2aRGoAlIoNZmevBafi2ZgxeFVTgfIExcxzY= Subject key identifier: B0:D9:1D:D3:6E:62:80:22:AE:B4:F2:79:C7:9E:F3:1A:67:51:0E:E0 Certificate issuer: /CN=10C3E17639C8B193629F97DCBD1EF4332CC9A8AD Certificate serial: 03A9F443C29F415702540A436DA3472788F2AE08 Authority key identifier: 10:C3:E1:76:39:C8:B1:93:62:9F:97:DC:BD:1E:F4:33:2C:C9:A8:AD Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10C3E17639C8B193629F97DCBD1EF4332CC9A8AD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/fc568b5b-b6ae-453e-8e16-d55dd635460b/0/323430363a343934303a3a2f33322d3332203d3e20313430343639.roa Signing time: Tue 21 Oct 2025 06:00:02 +0000 ROA not before: Tue 21 Oct 2025 05:55:02 +0000 ROA not after: Tue 20 Oct 2026 06:00:02 +0000 asID: 140469 IP address blocks: 2406:4940::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/fc568b5b-b6ae-453e-8e16-d55dd635460b/0/10C3E17639C8B193629F97DCBD1EF4332CC9A8AD.crl rsync://repo-rpki.idnic.net/repo/fc568b5b-b6ae-453e-8e16-d55dd635460b/0/10C3E17639C8B193629F97DCBD1EF4332CC9A8AD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10C3E17639C8B193629F97DCBD1EF4332CC9A8AD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 31 Oct 2025 09:51:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:a9:f4:43:c2:9f:41:57:02:54:0a:43:6d:a3:47:27:88:f2:ae:08 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=10C3E17639C8B193629F97DCBD1EF4332CC9A8AD Validity Not Before: Oct 21 05:55:02 2025 GMT Not After : Oct 20 06:00:02 2026 GMT Subject: CN=B0D91DD36E628022AEB4F279C79EF31A67510EE0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:e6:10:b4:29:6c:b6:50:fb:d6:4b:73:63:f4: fd:f8:c1:00:73:77:c5:7a:51:c3:1a:16:9e:24:3a: d3:93:a1:68:bd:50:ba:07:45:24:ac:e9:7b:36:dc: 88:4e:59:15:7b:5c:6a:09:63:8a:89:1b:12:96:92: b1:b8:23:57:45:cf:6e:1b:8c:c1:c4:07:97:34:dd: 46:a7:ee:64:cc:9a:0c:c2:e0:86:ab:f9:f2:19:dd: d3:e8:8d:40:bb:b5:00:52:75:b6:ef:d1:29:6e:f5: ce:1c:2d:77:46:82:ca:f5:d1:07:7d:76:93:f4:33: 63:a4:f7:53:3f:d6:d6:a7:4c:15:ed:81:c6:6c:ee: 3a:72:c3:dc:d9:d5:28:97:8f:97:0f:14:36:f9:4d: 93:10:49:c9:ca:a4:02:4e:21:80:b8:df:d0:2c:b3: b5:82:f8:9d:12:b2:d9:f4:53:b6:e6:3b:6a:c0:26: 3b:de:ab:6c:8f:81:d8:f8:0b:17:a6:c5:e3:15:07: bf:de:25:37:80:16:19:1b:ee:83:16:23:81:8d:37: 30:c3:ef:d4:14:63:13:fb:07:ba:6d:67:90:89:6d: 78:ae:80:22:bf:f5:5f:67:22:2a:d9:a7:66:5a:5a: 11:fa:16:e8:75:86:38:c5:93:fd:31:f3:e1:0a:35: 8f:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:D9:1D:D3:6E:62:80:22:AE:B4:F2:79:C7:9E:F3:1A:67:51:0E:E0 X509v3 Authority Key Identifier: keyid:10:C3:E1:76:39:C8:B1:93:62:9F:97:DC:BD:1E:F4:33:2C:C9:A8:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/fc568b5b-b6ae-453e-8e16-d55dd635460b/0/10C3E17639C8B193629F97DCBD1EF4332CC9A8AD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10C3E17639C8B193629F97DCBD1EF4332CC9A8AD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/fc568b5b-b6ae-453e-8e16-d55dd635460b/0/323430363a343934303a3a2f33322d3332203d3e20313430343639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:4940::/32 Signature Algorithm: sha256WithRSAEncryption 54:a3:55:23:03:ec:cc:9d:b7:89:fb:92:9e:f6:c0:0f:0e:00: 54:a9:cd:3e:36:34:e3:84:e7:07:90:91:b0:e0:45:de:25:de: 4a:7c:fa:28:54:e0:ed:59:8c:52:51:4e:ae:94:e4:6c:63:4b: 00:c8:11:9e:08:ed:2c:e4:f5:52:44:00:e3:23:e6:99:5a:ff: fc:0f:a2:1c:e3:90:23:16:de:1a:ae:9b:55:0a:1a:c3:f5:fe: 4f:a1:bb:e7:a1:43:b2:8e:ba:97:31:9c:db:90:98:38:e2:63: a2:47:29:b6:aa:7b:8c:68:c4:75:ca:9c:e8:c6:6e:f7:4b:db: e3:c4:e6:52:4b:8f:d0:0a:04:c1:b3:44:8a:3a:ec:b1:f2:37: 86:13:d8:14:97:fc:3f:0e:b5:ad:25:d2:1b:a8:4a:89:95:a0: 7b:d3:01:c7:47:92:1a:5b:4e:f5:7a:b1:0d:39:bc:14:a0:e3: c9:bf:e1:33:b6:cf:bc:c5:cd:ec:9e:cd:8e:72:5a:52:6b:9e: 9f:91:ed:e8:4d:ac:fc:57:ba:35:68:ae:2c:1e:ef:34:c5:af: 00:97:86:a0:20:3f:ef:ab:a5:71:7d:bd:47:ae:54:8b:2b:e3: 0b:63:61:4f:8b:4c:ee:55:93:1a:05:2f:84:09:9c:0e:04:bf: 54:ae:ef:cd -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUA6n0Q8KfQVcCVApDbaNHJ4jyrggwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTBDM0UxNzYzOUM4QjE5MzYyOUY5N0RDQkQxRUY0MzMy Q0M5QThBRDAeFw0yNTEwMjEwNTU1MDJaFw0yNjEwMjAwNjAwMDJaMDMxMTAvBgNV BAMTKEIwRDkxREQzNkU2MjgwMjJBRUI0RjI3OUM3OUVGMzFBNjc1MTBFRTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC75hC0KWy2UPvWS3Nj9P34wQBz d8V6UcMaFp4kOtOToWi9ULoHRSSs6Xs23IhOWRV7XGoJY4qJGxKWkrG4I1dFz24b jMHEB5c03Uan7mTMmgzC4Iar+fIZ3dPojUC7tQBSdbbv0Slu9c4cLXdGgsr10Qd9 dpP0M2Ok91M/1tanTBXtgcZs7jpyw9zZ1SiXj5cPFDb5TZMQScnKpAJOIYC439As s7WC+J0Sstn0U7bmO2rAJjveq2yPgdj4CxemxeMVB7/eJTeAFhkb7oMWI4GNNzDD 79QUYxP7B7ptZ5CJbXiugCK/9V9nIirZp2ZaWhH6Fuh1hjjFk/0x8+EKNY8/AgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUsNkd025igCKutPJ5x57zGmdRDuAwHwYDVR0j BBgwFoAUEMPhdjnIsZNin5fcvR70MyzJqK0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m YzU2OGI1Yi1iNmFlLTQ1M2UtOGUxNi1kNTVkZDYzNTQ2MGIvMC8xMEMzRTE3NjM5 QzhCMTkzNjI5Rjk3RENCRDFFRjQzMzJDQzlBOEFELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTBDM0UxNzYzOUM4QjE5MzYyOUY5N0RDQkQxRUY0MzMyQ0M5 QThBRC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ZjNTY4YjViLWI2YWUtNDUzZS04 ZTE2LWQ1NWRkNjM1NDYwYi8wLzMyMzQzMDM2M2EzNDM5MzQzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzQzMDM0MzYzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQGSUAwDQYJKoZI hvcNAQELBQADggEBAFSjVSMD7Mydt4n7kp72wA8OAFSpzT42NOOE5weQkbDgRd4l 3kp8+ihU4O1ZjFJRTq6U5GxjSwDIEZ4I7Szk9VJEAOMj5pla//wPohzjkCMW3hqu m1UKGsP1/k+hu+ehQ7KOupcxnNuQmDjiY6JHKbaqe4xoxHXKnOjGbvdL2+PE5lJL j9AKBMGzRIo67LHyN4YT2BSX/D8Ota0l0huoSomVoHvTAcdHkhpbTvV6sQ05vBSg 48m/4TO2z7zFzeyezY5yWlJrnp+R7ehNrPxXujVoriwe7zTFrwCXhqAgP++rpXF9 vUeuVIsr4wtjYU+LTO5VkxoFL4QJnA4Ev1Su780= -----END CERTIFICATE-----Generated at Thu Oct 30 02:55:18 2025 by rpki-client