$ rpki-client -vvf repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a31313a3a2f34382d3438203d3e20313337333330.roa File: 323430323a616134303a31313a3a2f34382d3438203d3e20313337333330.roa (raw, json) Hash identifier: ix6QVYHLLnfJn7tGXN1RpfnIGSyzbAedxPhWyf6Iui0= Subject key identifier: 0F:C0:D1:DB:8B:60:27:7C:F0:15:68:2B:7D:43:09:FB:D2:5E:3B:12 Certificate issuer: /CN=923D4A10E1DBBF6927183BF3419F512FE4C1D003 Certificate serial: 6DABAB6B86C3942EDFF7709FC12E0046A5A03C73 Authority key identifier: 92:3D:4A:10:E1:DB:BF:69:27:18:3B:F3:41:9F:51:2F:E4:C1:D0:03 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a31313a3a2f34382d3438203d3e20313337333330.roa Signing time: Thu 12 Mar 2026 05:00:01 +0000 ROA not before: Thu 12 Mar 2026 04:55:01 +0000 ROA not after: Thu 11 Mar 2027 05:00:01 +0000 asID: 137330 IP address blocks: 2402:aa40:11::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.crl rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Mar 2026 02:22:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:ab:ab:6b:86:c3:94:2e:df:f7:70:9f:c1:2e:00:46:a5:a0:3c:73 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=923D4A10E1DBBF6927183BF3419F512FE4C1D003 Validity Not Before: Mar 12 04:55:01 2026 GMT Not After : Mar 11 05:00:01 2027 GMT Subject: CN=0FC0D1DB8B60277CF015682B7D4309FBD25E3B12 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:47:c5:c3:a3:2c:96:bf:7e:74:a0:52:28:94: eb:ff:6d:f0:76:eb:9c:5a:e1:d1:20:99:b9:64:d5: 89:78:0d:33:e7:b5:eb:77:8c:af:89:68:bb:38:d3: 4a:f7:cb:a0:61:0b:28:ee:13:36:98:56:cf:ab:b9: d3:52:c7:51:39:e6:08:9b:05:c3:6b:10:1d:f2:2f: 04:4b:eb:2c:a7:79:74:38:40:e2:d6:57:79:ec:c4: 27:4c:2b:15:fc:b2:03:99:8a:a7:0a:c1:e2:c6:d2: 49:01:0b:68:3d:86:34:cc:44:d3:38:ca:69:3d:b0: 29:b0:81:9e:e0:28:f1:a1:68:13:6b:87:63:b0:b6: 5b:68:da:a7:a7:30:c3:99:04:d4:1f:09:dd:24:b1: 40:c3:3f:c8:3d:6c:23:22:be:45:41:73:c3:82:1a: e4:7d:eb:83:76:21:21:d8:94:66:a3:68:eb:26:ac: 93:89:26:9b:ef:9e:19:88:d0:57:19:29:a9:ba:82: ff:db:3b:e8:aa:cd:f4:18:6c:5a:77:9f:00:d3:12: 24:c4:9b:d5:6c:3c:07:ad:e0:83:d0:c8:22:85:7d: 02:f1:01:15:f4:37:74:7e:d8:02:a6:0f:78:73:cc: f2:1b:e7:f1:b8:78:03:11:1b:0b:61:a1:4c:2b:7f: 96:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:C0:D1:DB:8B:60:27:7C:F0:15:68:2B:7D:43:09:FB:D2:5E:3B:12 X509v3 Authority Key Identifier: keyid:92:3D:4A:10:E1:DB:BF:69:27:18:3B:F3:41:9F:51:2F:E4:C1:D0:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a31313a3a2f34382d3438203d3e20313337333330.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:aa40:11::/48 Signature Algorithm: sha256WithRSAEncryption a6:b2:b9:0c:52:f5:7e:26:02:ae:f2:39:db:6d:b7:67:32:53: f3:22:05:8f:ea:a5:ee:60:93:32:33:74:78:c6:19:52:f6:ee: 5d:ae:4c:36:44:c7:b3:2f:97:af:ea:c0:15:51:57:07:a6:2c: 1a:eb:4c:53:15:b6:20:b7:1b:4a:41:54:f0:bc:04:46:61:bd: 1b:be:65:94:65:26:57:18:a7:b2:0b:57:21:4f:26:fe:a1:aa: a9:03:ad:79:88:1c:f6:0b:83:1f:c2:4b:6d:58:e7:00:a7:1e: f8:3f:f7:69:89:8a:f6:d3:a0:66:f2:f2:3b:16:03:c9:06:9f: 25:a0:af:7e:e2:ad:58:86:f5:e4:47:83:e2:1e:8a:c9:a6:2a: 28:49:5d:c7:d6:cc:5e:37:91:8a:e4:72:43:1d:e0:95:62:9e: ad:4f:6c:0c:b9:0d:af:60:f5:fe:d3:16:6d:de:2a:5b:41:8c: 10:57:a9:cd:a4:bf:44:af:c8:57:bf:96:dd:1c:77:14:0a:f2: 96:6d:54:5d:8d:bd:3a:c2:01:90:50:10:fd:4a:8c:2e:2d:48: d4:4e:c1:39:54:8a:2c:65:2e:2e:1b:d9:7c:86:5b:14:e2:41: 3a:41:ef:0b:e7:a9:0d:61:c1:70:f1:9b:cd:ae:cb:1f:4a:02: 69:6a:bf:80 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUbaura4bDlC7f93CfwS4ARqWgPHMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTIzRDRBMTBFMURCQkY2OTI3MTgzQkYzNDE5RjUxMkZF NEMxRDAwMzAeFw0yNjAzMTIwNDU1MDFaFw0yNzAzMTEwNTAwMDFaMDMxMTAvBgNV BAMTKDBGQzBEMURCOEI2MDI3N0NGMDE1NjgyQjdENDMwOUZCRDI1RTNCMTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqR8XDoyyWv350oFIolOv/bfB2 65xa4dEgmblk1Yl4DTPntet3jK+JaLs400r3y6BhCyjuEzaYVs+rudNSx1E55gib BcNrEB3yLwRL6yyneXQ4QOLWV3nsxCdMKxX8sgOZiqcKweLG0kkBC2g9hjTMRNM4 ymk9sCmwgZ7gKPGhaBNrh2Owtlto2qenMMOZBNQfCd0ksUDDP8g9bCMivkVBc8OC GuR964N2ISHYlGajaOsmrJOJJpvvnhmI0FcZKam6gv/bO+iqzfQYbFp3nwDTEiTE m9VsPAet4IPQyCKFfQLxARX0N3R+2AKmD3hzzPIb5/G4eAMRGwthoUwrf5bxAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUD8DR24tgJ3zwFWgrfUMJ+9JeOxIwHwYDVR0j BBgwFoAUkj1KEOHbv2knGDvzQZ9RL+TB0AMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w YzM0ZmYwOC1kMjFmLTQyMGItODdkZi01MzEwM2I2ZGMyNTMvMC85MjNENEExMEUx REJCRjY5MjcxODNCRjM0MTlGNTEyRkU0QzFEMDAzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTIzRDRBMTBFMURCQkY2OTI3MTgzQkYzNDE5RjUxMkZFNEMx RDAwMy5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBjMzRmZjA4LWQyMWYtNDIwYi04 N2RmLTUzMTAzYjZkYzI1My8wLzMyMzQzMDMyM2E2MTYxMzQzMDNhMzEzMTNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzMzNzMzMzMzMC5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQCqkAA ETANBgkqhkiG9w0BAQsFAAOCAQEAprK5DFL1fiYCrvI52223ZzJT8yIFj+ql7mCT MjN0eMYZUvbuXa5MNkTHsy+Xr+rAFVFXB6YsGutMUxW2ILcbSkFU8LwERmG9G75l lGUmVxinsgtXIU8m/qGqqQOteYgc9guDH8JLbVjnAKce+D/3aYmK9tOgZvLyOxYD yQafJaCvfuKtWIb15EeD4h6KyaYqKEldx9bMXjeRiuRyQx3glWKerU9sDLkNr2D1 /tMWbd4qW0GMEFepzaS/RK/IV7+W3Rx3FArylm1UXY29OsIBkFAQ/UqMLi1I1E7B OVSKLGUuLhvZfIZbFOJBOkHvC+epDWHBcPGbza7LH0oCaWq/gA== -----END CERTIFICATE-----Generated at Thu Mar 26 20:14:57 2026 by rpki-client