$ rpki-client -vvf repo-rpki.idnic.net/repo/ff2506b1-396d-499e-b7f5-5d9f8e7e0bee/0/323430363a373663303a3a2f33322d3438203d3e203538383231.roa File: 323430363a373663303a3a2f33322d3438203d3e203538383231.roa (raw, json) Hash identifier: bNw8LF5Ec6WuKsnsnBnZzpsFS6CBddKmbeAtnWBKzS8= Subject key identifier: 2F:78:12:E0:A8:90:4E:F8:29:1C:39:A8:06:72:13:F7:04:0F:5E:A4 Certificate issuer: /CN=58BB439F406646053DA2029A1FDBBE942B381419 Certificate serial: 2086909732D84C4E8EBBB0AC05049B18D405A336 Authority key identifier: 58:BB:43:9F:40:66:46:05:3D:A2:02:9A:1F:DB:BE:94:2B:38:14:19 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58BB439F406646053DA2029A1FDBBE942B381419.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ff2506b1-396d-499e-b7f5-5d9f8e7e0bee/0/323430363a373663303a3a2f33322d3438203d3e203538383231.roa Signing time: Sat 13 Sep 2025 06:02:24 +0000 ROA not before: Sat 13 Sep 2025 05:57:24 +0000 ROA not after: Sat 12 Sep 2026 06:02:24 +0000 asID: 58821 IP address blocks: 2406:76c0::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ff2506b1-396d-499e-b7f5-5d9f8e7e0bee/0/58BB439F406646053DA2029A1FDBBE942B381419.crl rsync://repo-rpki.idnic.net/repo/ff2506b1-396d-499e-b7f5-5d9f8e7e0bee/0/58BB439F406646053DA2029A1FDBBE942B381419.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58BB439F406646053DA2029A1FDBBE942B381419.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 31 Oct 2025 02:21:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:86:90:97:32:d8:4c:4e:8e:bb:b0:ac:05:04:9b:18:d4:05:a3:36 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=58BB439F406646053DA2029A1FDBBE942B381419 Validity Not Before: Sep 13 05:57:24 2025 GMT Not After : Sep 12 06:02:24 2026 GMT Subject: CN=2F7812E0A8904EF8291C39A8067213F7040F5EA4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:5d:6b:ff:29:12:ca:11:09:1f:69:0e:82:a3: 10:d5:e8:fa:9c:bf:55:fc:b0:97:35:2f:77:44:9d: 3a:e5:0b:62:5a:c7:9b:f6:19:a0:37:f2:f1:5e:cc: ce:5d:45:4a:2f:f5:98:f2:4b:94:43:53:25:ec:54: 9e:e1:77:00:a0:38:35:90:bb:d3:01:c4:dc:a0:f8: da:c9:dd:4f:3b:60:96:c6:1d:c6:2e:0b:e8:df:00: 05:57:3b:6e:d9:d7:d4:08:a3:81:0d:a4:e5:d0:87: eb:e7:57:c8:90:e3:b5:41:e8:01:a5:38:af:bc:e6: 1b:e2:2c:11:f7:cd:83:09:15:c6:31:6f:77:5c:d8: 89:3a:75:89:f2:e3:f5:80:e4:81:5f:1f:e2:06:c2: fd:50:d9:24:5a:79:1a:b6:53:af:22:39:13:a8:79: 07:9b:d3:b3:c6:7a:c8:06:d7:22:9e:6d:eb:67:06: 96:81:c6:e0:d9:62:f7:27:79:29:c9:e0:70:3c:89: 95:0e:10:b0:44:2d:a9:35:7e:3d:eb:3e:42:f3:91: 33:1a:19:96:c5:fc:5d:d5:86:65:50:36:18:69:4a: f4:70:31:c3:ca:ab:2a:91:fd:02:75:7e:7e:9c:2e: f8:f9:a6:ff:f7:92:48:77:60:0f:2b:ac:10:b1:e2: 12:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:78:12:E0:A8:90:4E:F8:29:1C:39:A8:06:72:13:F7:04:0F:5E:A4 X509v3 Authority Key Identifier: keyid:58:BB:43:9F:40:66:46:05:3D:A2:02:9A:1F:DB:BE:94:2B:38:14:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ff2506b1-396d-499e-b7f5-5d9f8e7e0bee/0/58BB439F406646053DA2029A1FDBBE942B381419.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58BB439F406646053DA2029A1FDBBE942B381419.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ff2506b1-396d-499e-b7f5-5d9f8e7e0bee/0/323430363a373663303a3a2f33322d3438203d3e203538383231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:76c0::/32 Signature Algorithm: sha256WithRSAEncryption 4a:97:a6:09:1f:f7:f3:4d:c9:7f:ef:6a:b1:01:6e:0c:b8:b4: 75:61:f2:ee:db:93:76:af:7e:7e:e7:cc:7d:68:88:c5:dc:6c: 16:f8:f3:d4:d3:f1:d1:81:fd:b8:a5:98:3b:b7:c2:c3:15:5c: 5d:ac:20:68:ec:1e:91:5c:5f:e8:ed:a9:6c:85:97:a1:f5:40: 26:f5:d5:5d:42:6c:64:a4:de:d3:85:83:a1:41:bc:0b:56:ee: 8f:34:0d:7e:09:fa:ba:42:0e:22:5d:9a:d6:f0:db:cd:ad:81: 37:14:b9:35:2f:0b:2b:f8:0f:25:20:93:bc:d4:d3:cd:91:f2: 89:9d:4e:ee:21:27:9b:72:0e:1f:ff:0a:6d:f5:0b:1e:83:17: a4:14:a1:f0:c2:1c:9f:68:e7:18:39:e0:1d:cc:ab:22:d8:3d: 74:14:49:6b:c0:a1:49:2c:bf:7b:dd:6f:c2:f8:94:e4:c3:a6: 6a:2f:b0:bd:10:a4:bf:45:ec:16:c1:30:5f:96:59:d4:44:48: 70:48:71:8b:04:7e:ac:f2:bf:d3:73:d7:cb:47:b9:94:69:f1: a6:c9:b6:2f:d7:df:93:42:26:d6:83:b6:77:6e:d7:45:17:3b: 7d:cd:ae:0a:ea:a1:5f:05:c1:8d:94:50:b6:22:9d:62:56:d9: 45:48:07:51 -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUIIaQlzLYTE6Ou7CsBQSbGNQFozYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNThCQjQzOUY0MDY2NDYwNTNEQTIwMjlBMUZEQkJFOTQy QjM4MTQxOTAeFw0yNTA5MTMwNTU3MjRaFw0yNjA5MTIwNjAyMjRaMDMxMTAvBgNV BAMTKDJGNzgxMkUwQTg5MDRFRjgyOTFDMzlBODA2NzIxM0Y3MDQwRjVFQTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQXWv/KRLKEQkfaQ6CoxDV6Pqc v1X8sJc1L3dEnTrlC2Jax5v2GaA38vFezM5dRUov9ZjyS5RDUyXsVJ7hdwCgODWQ u9MBxNyg+NrJ3U87YJbGHcYuC+jfAAVXO27Z19QIo4ENpOXQh+vnV8iQ47VB6AGl OK+85hviLBH3zYMJFcYxb3dc2Ik6dYny4/WA5IFfH+IGwv1Q2SRaeRq2U68iOROo eQeb07PGesgG1yKebetnBpaBxuDZYvcneSnJ4HA8iZUOELBELak1fj3rPkLzkTMa GZbF/F3VhmVQNhhpSvRwMcPKqyqR/QJ1fn6cLvj5pv/3kkh3YA8rrBCx4hJzAgMB AAGjggIxMIICLTAdBgNVHQ4EFgQUL3gS4KiQTvgpHDmoBnIT9wQPXqQwHwYDVR0j BBgwFoAUWLtDn0BmRgU9ogKaH9u+lCs4FBkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m ZjI1MDZiMS0zOTZkLTQ5OWUtYjdmNS01ZDlmOGU3ZTBiZWUvMC81OEJCNDM5RjQw NjY0NjA1M0RBMjAyOUExRkRCQkU5NDJCMzgxNDE5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNThCQjQzOUY0MDY2NDYwNTNEQTIwMjlBMUZEQkJFOTQyQjM4 MTQxOS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ZmMjUwNmIxLTM5NmQtNDk5ZS1i N2Y1LTVkOWY4ZTdlMGJlZS8wLzMyMzQzMDM2M2EzNzM2NjMzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDM1MzgzODMyMzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkBnbAMA0GCSqGSIb3 DQEBCwUAA4IBAQBKl6YJH/fzTcl/72qxAW4MuLR1YfLu25N2r35+58x9aIjF3GwW +PPU0/HRgf24pZg7t8LDFVxdrCBo7B6RXF/o7alshZeh9UAm9dVdQmxkpN7ThYOh QbwLVu6PNA1+Cfq6Qg4iXZrW8NvNrYE3FLk1Lwsr+A8lIJO81NPNkfKJnU7uISeb cg4f/wpt9QsegxekFKHwwhyfaOcYOeAdzKsi2D10FElrwKFJLL973W/C+JTkw6Zq L7C9EKS/RewWwTBfllnUREhwSHGLBH6s8r/Tc9fLR7mUafGmybYv19+TQibWg7Z3 btdFFzt9za4K6qFfBcGNlFC2Ip1iVtlFSAdR -----END CERTIFICATE-----Generated at Tue Oct 28 06:22:32 2025 by rpki-client