$ rpki-client -vvf repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a31323a3a2f34382d3438203d3e20313337333330.roa File: 323430323a616134303a31323a3a2f34382d3438203d3e20313337333330.roa (raw, json) Hash identifier: zJ/IOktVnWhWz4jSOLDXtaH370UXngeNbW03Fgb+vvw= Subject key identifier: 5A:61:A7:CE:2D:36:CE:DF:D9:8A:A4:70:89:ED:56:A7:8C:80:4B:6A Certificate issuer: /CN=923D4A10E1DBBF6927183BF3419F512FE4C1D003 Certificate serial: 5FB6A379E7E192006EFD681D6C012A0F9A277510 Authority key identifier: 92:3D:4A:10:E1:DB:BF:69:27:18:3B:F3:41:9F:51:2F:E4:C1:D0:03 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a31323a3a2f34382d3438203d3e20313337333330.roa Signing time: Thu 12 Mar 2026 04:00:00 +0000 ROA not before: Thu 12 Mar 2026 03:55:00 +0000 ROA not after: Thu 11 Mar 2027 04:00:00 +0000 asID: 137330 IP address blocks: 2402:aa40:12::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.crl rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Mar 2026 02:22:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:b6:a3:79:e7:e1:92:00:6e:fd:68:1d:6c:01:2a:0f:9a:27:75:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=923D4A10E1DBBF6927183BF3419F512FE4C1D003 Validity Not Before: Mar 12 03:55:00 2026 GMT Not After : Mar 11 04:00:00 2027 GMT Subject: CN=5A61A7CE2D36CEDFD98AA47089ED56A78C804B6A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:b5:3f:23:8e:da:ea:40:84:47:6b:18:0d:4b: 04:bd:2c:3a:8d:56:06:d7:78:a2:fb:e1:29:5a:9f: d5:55:e3:bf:5b:48:21:40:8c:75:81:54:d6:93:79: 65:73:33:39:1e:6a:7e:8c:43:81:cf:02:7c:ad:21: f7:a4:8e:7d:4c:99:a0:6e:fd:52:b9:a1:7d:29:bd: e6:72:3c:c0:74:9b:e4:66:ad:27:2f:56:4d:51:e6: 8d:d7:ad:f9:3b:d9:73:b6:b8:72:f4:e6:5e:dd:43: c3:6b:bb:8e:ee:8a:c9:a9:33:26:38:b0:09:76:e2: ba:f8:6b:82:2c:1a:18:c1:f4:06:00:a7:7d:ab:bd: 56:b4:7a:f5:50:7c:d8:52:5c:80:53:dc:a5:1e:ef: e7:ca:fb:28:07:9e:5d:ad:38:7d:46:3e:30:de:46: 7e:73:28:50:dc:d8:f1:bb:11:5c:ed:de:32:e2:41: 64:f3:a7:d5:70:a3:45:26:1f:a9:cd:58:6b:91:ec: 02:ce:7f:71:17:55:6e:f6:d2:5d:03:22:8b:76:ff: 79:73:2e:3b:96:a1:a0:79:50:fb:74:04:c3:cb:cf: 29:11:75:d3:1e:b8:2a:20:fb:32:0a:ec:c8:cd:e7: 52:8a:e1:e7:8f:e0:fa:3e:a6:86:97:98:9c:e2:57: 43:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:61:A7:CE:2D:36:CE:DF:D9:8A:A4:70:89:ED:56:A7:8C:80:4B:6A X509v3 Authority Key Identifier: keyid:92:3D:4A:10:E1:DB:BF:69:27:18:3B:F3:41:9F:51:2F:E4:C1:D0:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a31323a3a2f34382d3438203d3e20313337333330.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:aa40:12::/48 Signature Algorithm: sha256WithRSAEncryption 84:ce:2f:93:fa:4b:27:11:85:1e:39:bd:93:7c:1d:4f:e6:f0: b1:4a:e5:3f:67:7b:ef:62:bc:e5:5b:74:92:64:5d:62:68:9c: 6f:ad:cf:fe:5d:3a:71:a0:cb:21:92:11:12:4f:b8:10:f4:d2: af:20:61:eb:d6:3a:af:1a:03:73:f7:80:52:f1:3b:bd:50:02: df:fb:85:04:b1:db:de:b2:14:55:2e:de:eb:09:ee:ba:c0:99: 32:8e:ea:d9:0d:2d:0b:8f:50:19:a2:aa:fb:8a:e5:ce:53:66: ed:10:55:c1:64:88:cd:68:26:99:d3:c5:aa:e6:03:8f:7f:c9: 7a:43:2c:93:99:1f:03:7a:2c:39:18:8d:85:0f:96:ed:63:e6: 50:e5:17:cf:67:57:fd:2e:21:fe:e3:ef:1b:36:c8:35:0a:a0: 6c:fb:62:a1:c8:1b:b8:44:2f:ec:58:39:89:f6:25:60:30:ff: c1:fd:01:5f:85:3f:3e:73:79:80:78:a3:1f:76:b1:c1:c6:43: cf:1e:a8:0a:19:ee:97:06:95:4f:76:43:a9:60:b8:a6:d3:69: 52:ad:b7:e0:f4:c7:5d:f3:84:8a:ca:70:8e:64:3b:14:97:61: af:28:5b:92:33:e5:8e:5c:c7:53:6c:f2:86:b1:31:ad:87:68: be:92:a2:92 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUX7ajeefhkgBu/WgdbAEqD5ondRAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTIzRDRBMTBFMURCQkY2OTI3MTgzQkYzNDE5RjUxMkZF NEMxRDAwMzAeFw0yNjAzMTIwMzU1MDBaFw0yNzAzMTEwNDAwMDBaMDMxMTAvBgNV BAMTKDVBNjFBN0NFMkQzNkNFREZEOThBQTQ3MDg5RUQ1NkE3OEM4MDRCNkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3tT8jjtrqQIRHaxgNSwS9LDqN VgbXeKL74Slan9VV479bSCFAjHWBVNaTeWVzMzkean6MQ4HPAnytIfekjn1MmaBu /VK5oX0pveZyPMB0m+RmrScvVk1R5o3Xrfk72XO2uHL05l7dQ8Nru47uismpMyY4 sAl24rr4a4IsGhjB9AYAp32rvVa0evVQfNhSXIBT3KUe7+fK+ygHnl2tOH1GPjDe Rn5zKFDc2PG7EVzt3jLiQWTzp9Vwo0UmH6nNWGuR7ALOf3EXVW720l0DIot2/3lz LjuWoaB5UPt0BMPLzykRddMeuCog+zIK7MjN51KK4eeP4Po+poaXmJziV0M/AgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUWmGnzi02zt/ZiqRwie1Wp4yAS2owHwYDVR0j BBgwFoAUkj1KEOHbv2knGDvzQZ9RL+TB0AMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w YzM0ZmYwOC1kMjFmLTQyMGItODdkZi01MzEwM2I2ZGMyNTMvMC85MjNENEExMEUx REJCRjY5MjcxODNCRjM0MTlGNTEyRkU0QzFEMDAzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTIzRDRBMTBFMURCQkY2OTI3MTgzQkYzNDE5RjUxMkZFNEMx RDAwMy5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBjMzRmZjA4LWQyMWYtNDIwYi04 N2RmLTUzMTAzYjZkYzI1My8wLzMyMzQzMDMyM2E2MTYxMzQzMDNhMzEzMjNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzMzNzMzMzMzMC5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQCqkAA EjANBgkqhkiG9w0BAQsFAAOCAQEAhM4vk/pLJxGFHjm9k3wdT+bwsUrlP2d772K8 5Vt0kmRdYmicb63P/l06caDLIZIREk+4EPTSryBh69Y6rxoDc/eAUvE7vVAC3/uF BLHb3rIUVS7e6wnuusCZMo7q2Q0tC49QGaKq+4rlzlNm7RBVwWSIzWgmmdPFquYD j3/JekMsk5kfA3osORiNhQ+W7WPmUOUXz2dX/S4h/uPvGzbINQqgbPtiocgbuEQv 7Fg5ifYlYDD/wf0BX4U/PnN5gHijH3axwcZDzx6oChnulwaVT3ZDqWC4ptNpUq23 4PTHXfOEispwjmQ7FJdhryhbkjPljlzHU2zyhrExrYdovpKikg== -----END CERTIFICATE-----Generated at Thu Mar 26 20:15:02 2026 by rpki-client