$ rpki-client -vvf repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a31303a3a2f34382d3438203d3e20313337333330.roa File: 323430323a616134303a31303a3a2f34382d3438203d3e20313337333330.roa (raw, json) Hash identifier: QVcEps8yiGL2UfFqAU6S0SwOvOL4GMwkoHsrt8b7xrI= Subject key identifier: 30:9D:EA:ED:8A:93:66:B1:B1:5B:67:DC:C8:04:4E:30:CD:72:E8:03 Certificate issuer: /CN=923D4A10E1DBBF6927183BF3419F512FE4C1D003 Certificate serial: 2E3992940117BE81FFC711147B149DEE0467C94F Authority key identifier: 92:3D:4A:10:E1:DB:BF:69:27:18:3B:F3:41:9F:51:2F:E4:C1:D0:03 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a31303a3a2f34382d3438203d3e20313337333330.roa Signing time: Thu 12 Mar 2026 06:00:01 +0000 ROA not before: Thu 12 Mar 2026 05:55:01 +0000 ROA not after: Thu 11 Mar 2027 06:00:01 +0000 asID: 137330 IP address blocks: 2402:aa40:10::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.crl rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Mar 2026 02:22:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:39:92:94:01:17:be:81:ff:c7:11:14:7b:14:9d:ee:04:67:c9:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=923D4A10E1DBBF6927183BF3419F512FE4C1D003 Validity Not Before: Mar 12 05:55:01 2026 GMT Not After : Mar 11 06:00:01 2027 GMT Subject: CN=309DEAED8A9366B1B15B67DCC8044E30CD72E803 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:db:55:29:1d:29:38:6b:a5:7f:8f:9b:33:01: c3:84:53:0e:f6:cb:e6:00:2a:8c:3c:ea:61:01:c8: 8e:2d:d1:c8:e9:9e:b3:d4:45:aa:a0:04:ad:6a:06: 09:11:0a:ae:0c:18:c0:aa:44:81:f1:69:b4:a5:58: 50:53:92:5c:aa:d5:c5:06:61:a9:e8:33:27:34:1d: a8:0a:fe:e9:1b:0a:ca:d4:b2:c6:95:73:97:f3:69: 34:70:bc:60:21:d6:dd:d2:1e:ea:c3:f6:32:16:08: 8d:1a:b3:3d:07:e6:6d:88:f7:1f:ae:5a:15:a9:ed: e3:82:9b:95:f0:19:49:f7:b8:c8:62:8b:c4:86:22: 7c:74:14:1c:c4:08:5e:bf:f6:a6:10:4e:7d:92:ed: 41:2c:95:bc:36:bc:1e:b7:80:b1:cd:63:e4:41:54: 14:f9:66:10:3b:64:32:5d:75:57:e5:e4:28:37:0d: 8b:00:1d:da:eb:fc:bf:24:02:0b:8a:18:c9:a5:58: 2e:a3:a2:4a:e1:ed:ab:81:57:ed:64:e5:a4:42:8a: 13:33:f0:1a:83:b9:15:b0:13:a9:f5:38:81:35:83: 6a:d4:54:7e:ab:f2:b7:c2:ac:f0:12:76:6c:6a:55: eb:99:8a:18:01:64:7d:73:5d:36:da:16:41:b6:69: 3b:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:9D:EA:ED:8A:93:66:B1:B1:5B:67:DC:C8:04:4E:30:CD:72:E8:03 X509v3 Authority Key Identifier: keyid:92:3D:4A:10:E1:DB:BF:69:27:18:3B:F3:41:9F:51:2F:E4:C1:D0:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a31303a3a2f34382d3438203d3e20313337333330.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:aa40:10::/48 Signature Algorithm: sha256WithRSAEncryption 5a:d1:16:0a:b6:19:b6:62:0d:40:a8:8f:fe:e1:7f:42:aa:81: 46:d8:bb:6e:09:83:d6:e2:5d:45:3b:ef:b8:e8:87:16:b6:0a: bd:a9:11:55:e1:93:ce:62:94:40:39:42:1a:6d:07:21:50:fb: 78:5a:d3:51:57:fd:5d:6c:46:69:80:79:ec:31:7f:87:34:2e: d6:e2:70:24:22:63:2a:bd:7a:b7:4a:78:5f:d1:01:93:00:9b: af:d5:4d:86:81:16:e5:d2:d1:d4:a9:48:00:b2:0c:d5:5b:66: a6:12:80:4e:06:e0:ed:c6:65:b4:f1:d8:41:42:64:d6:26:9e: f1:5e:8d:5a:50:bc:27:24:94:ae:a0:53:b4:49:03:2b:8e:ce: 6a:04:d1:79:7f:30:47:c9:58:97:df:6e:b9:61:e5:17:dd:29: 6c:98:61:4a:f1:52:41:33:a0:e7:a3:92:f3:50:4d:eb:2c:73: 82:ac:d9:49:99:37:6e:bd:52:2b:68:82:d9:ec:f5:1a:9b:b2: 87:9f:bc:67:18:13:bf:4c:a3:e6:0a:db:54:09:80:85:25:1a: 87:e0:c0:f0:5e:53:15:b0:a2:0d:54:71:0d:ce:29:3e:03:3a: 69:f6:0b:af:47:77:9b:c0:1d:9f:5c:3f:39:80:24:ac:cf:dd: ab:e8:be:17 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIULjmSlAEXvoH/xxEUexSd7gRnyU8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTIzRDRBMTBFMURCQkY2OTI3MTgzQkYzNDE5RjUxMkZF NEMxRDAwMzAeFw0yNjAzMTIwNTU1MDFaFw0yNzAzMTEwNjAwMDFaMDMxMTAvBgNV BAMTKDMwOURFQUVEOEE5MzY2QjFCMTVCNjdEQ0M4MDQ0RTMwQ0Q3MkU4MDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDF21UpHSk4a6V/j5szAcOEUw72 y+YAKow86mEByI4t0cjpnrPURaqgBK1qBgkRCq4MGMCqRIHxabSlWFBTklyq1cUG YanoMyc0HagK/ukbCsrUssaVc5fzaTRwvGAh1t3SHurD9jIWCI0asz0H5m2I9x+u WhWp7eOCm5XwGUn3uMhii8SGInx0FBzECF6/9qYQTn2S7UEslbw2vB63gLHNY+RB VBT5ZhA7ZDJddVfl5Cg3DYsAHdrr/L8kAguKGMmlWC6jokrh7auBV+1k5aRCihMz 8BqDuRWwE6n1OIE1g2rUVH6r8rfCrPASdmxqVeuZihgBZH1zXTbaFkG2aTvVAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUMJ3q7YqTZrGxW2fcyAROMM1y6AMwHwYDVR0j BBgwFoAUkj1KEOHbv2knGDvzQZ9RL+TB0AMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w YzM0ZmYwOC1kMjFmLTQyMGItODdkZi01MzEwM2I2ZGMyNTMvMC85MjNENEExMEUx REJCRjY5MjcxODNCRjM0MTlGNTEyRkU0QzFEMDAzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTIzRDRBMTBFMURCQkY2OTI3MTgzQkYzNDE5RjUxMkZFNEMx RDAwMy5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBjMzRmZjA4LWQyMWYtNDIwYi04 N2RmLTUzMTAzYjZkYzI1My8wLzMyMzQzMDMyM2E2MTYxMzQzMDNhMzEzMDNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzMzNzMzMzMzMC5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQCqkAA EDANBgkqhkiG9w0BAQsFAAOCAQEAWtEWCrYZtmINQKiP/uF/QqqBRti7bgmD1uJd RTvvuOiHFrYKvakRVeGTzmKUQDlCGm0HIVD7eFrTUVf9XWxGaYB57DF/hzQu1uJw JCJjKr16t0p4X9EBkwCbr9VNhoEW5dLR1KlIALIM1VtmphKATgbg7cZltPHYQUJk 1iae8V6NWlC8JySUrqBTtEkDK47OagTReX8wR8lYl99uuWHlF90pbJhhSvFSQTOg 56OS81BN6yxzgqzZSZk3br1SK2iC2ez1Gpuyh5+8ZxgTv0yj5grbVAmAhSUah+DA 8F5TFbCiDVRxDc4pPgM6afYLr0d3m8Adn1w/OYAkrM/dq+i+Fw== -----END CERTIFICATE-----Generated at Fri Mar 27 03:50:08 2026 by rpki-client