$ rpki-client -vvf repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a31373a3a2f34382d3438203d3e20313337333330.roa File: 323430323a616134303a31373a3a2f34382d3438203d3e20313337333330.roa (raw, json) Hash identifier: R28MIfUaJCnc4/MfDxXrHUmk9cJ89tiWvymn3ICC4cM= Subject key identifier: 1B:F8:32:A9:26:6C:D0:0A:C5:31:39:31:06:AD:27:39:A8:5C:4C:6F Certificate issuer: /CN=923D4A10E1DBBF6927183BF3419F512FE4C1D003 Certificate serial: 0B96FA922B34AA0E736B54BA308A6F0EB23C6E5A Authority key identifier: 92:3D:4A:10:E1:DB:BF:69:27:18:3B:F3:41:9F:51:2F:E4:C1:D0:03 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a31373a3a2f34382d3438203d3e20313337333330.roa Signing time: Fri 13 Mar 2026 00:12:17 +0000 ROA not before: Fri 13 Mar 2026 00:07:17 +0000 ROA not after: Fri 12 Mar 2027 00:12:17 +0000 asID: 137330 IP address blocks: 2402:aa40:17::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.crl rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Mar 2026 02:22:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:96:fa:92:2b:34:aa:0e:73:6b:54:ba:30:8a:6f:0e:b2:3c:6e:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=923D4A10E1DBBF6927183BF3419F512FE4C1D003 Validity Not Before: Mar 13 00:07:17 2026 GMT Not After : Mar 12 00:12:17 2027 GMT Subject: CN=1BF832A9266CD00AC531393106AD2739A85C4C6F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:c1:fa:61:fd:c6:f3:7d:8f:ad:f0:1a:59:74: b3:13:5f:54:4f:52:98:89:00:87:fa:bf:ba:b5:b5: cf:26:aa:19:7d:e7:09:86:b3:45:e8:f1:5d:80:6e: 91:5a:8a:91:d6:b3:f8:aa:70:41:a0:15:62:27:80: a0:c8:fc:bb:8a:e0:7a:3a:f2:61:2d:67:f3:6a:f1: 38:83:80:c0:3e:eb:49:6b:2c:67:90:7a:0d:1a:59: 49:56:5c:2e:df:1f:15:93:57:95:49:f9:2d:08:db: 51:e5:ff:eb:47:93:87:c1:a5:60:60:0f:80:1d:3d: 12:cf:9f:ec:da:75:fb:01:17:20:67:1c:58:c3:09: 5d:42:8d:51:96:e2:a1:4a:dc:ab:35:a1:54:f9:54: e6:ac:48:07:f9:97:6f:49:de:9f:1b:b0:a8:d5:0c: 9f:b3:87:b8:45:48:da:9b:b5:44:2d:99:d0:ce:2c: f6:4d:a4:80:ef:fb:fc:65:ea:3e:d6:43:0d:53:16: 69:5f:d0:24:9e:05:07:71:9d:a1:c5:30:21:76:54: 1d:5f:72:22:7a:3f:55:ce:ba:23:bb:11:e5:30:7c: b8:df:88:c5:23:92:73:89:ca:91:10:76:e7:e2:71: 33:3b:c6:6f:4f:ab:03:9f:3e:01:ce:1e:07:0d:7a: 5c:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:F8:32:A9:26:6C:D0:0A:C5:31:39:31:06:AD:27:39:A8:5C:4C:6F X509v3 Authority Key Identifier: keyid:92:3D:4A:10:E1:DB:BF:69:27:18:3B:F3:41:9F:51:2F:E4:C1:D0:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a31373a3a2f34382d3438203d3e20313337333330.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:aa40:17::/48 Signature Algorithm: sha256WithRSAEncryption 08:f5:40:a4:bd:99:88:3a:74:30:9a:f0:1c:b6:af:45:2c:7a: 5d:35:7a:eb:f2:e4:15:d2:49:73:d1:b9:66:9e:65:46:86:03: d7:ca:f6:61:c0:6a:f1:13:c6:10:3c:52:58:36:28:fb:10:46: 8a:ab:b8:cb:d3:8d:cf:1a:7b:d6:c8:fc:84:e2:7e:52:e8:64: a8:8c:bb:c3:db:f1:4e:89:c8:a6:7f:c8:df:9d:d8:06:bf:3c: 88:ea:75:14:82:c7:dd:8c:1d:51:2c:28:c6:79:7f:86:98:1e: 33:50:a0:95:77:30:a0:e1:52:5e:d2:f4:9a:ef:61:8d:66:0f: 1a:39:ab:ee:be:80:f9:7b:55:23:88:ff:e2:f8:e1:e9:22:5b: 0c:eb:92:b8:30:91:60:fc:3f:3b:fc:4f:a9:f1:75:b6:f0:e1: 6d:cc:cc:13:31:8e:cb:ec:0a:10:b1:a2:d5:e1:ad:fb:e5:c2: 31:95:fc:08:f3:ea:ee:2a:34:0f:a8:3b:ab:27:d8:56:c5:90: 14:66:d3:60:72:15:73:59:05:b2:1a:2e:b0:9e:ab:26:a5:a4: 68:e9:d3:1a:da:fc:fb:6c:dd:26:0c:a7:bb:a7:9f:a5:51:4f: 96:c8:fd:33:93:a4:cb:7d:f6:68:64:4c:a7:fe:fa:a6:94:68: 78:fd:6b:3d -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUC5b6kis0qg5za1S6MIpvDrI8blowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTIzRDRBMTBFMURCQkY2OTI3MTgzQkYzNDE5RjUxMkZF NEMxRDAwMzAeFw0yNjAzMTMwMDA3MTdaFw0yNzAzMTIwMDEyMTdaMDMxMTAvBgNV BAMTKDFCRjgzMkE5MjY2Q0QwMEFDNTMxMzkzMTA2QUQyNzM5QTg1QzRDNkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDcwfph/cbzfY+t8BpZdLMTX1RP UpiJAIf6v7q1tc8mqhl95wmGs0Xo8V2AbpFaipHWs/iqcEGgFWIngKDI/LuK4Ho6 8mEtZ/Nq8TiDgMA+60lrLGeQeg0aWUlWXC7fHxWTV5VJ+S0I21Hl/+tHk4fBpWBg D4AdPRLPn+zadfsBFyBnHFjDCV1CjVGW4qFK3Ks1oVT5VOasSAf5l29J3p8bsKjV DJ+zh7hFSNqbtUQtmdDOLPZNpIDv+/xl6j7WQw1TFmlf0CSeBQdxnaHFMCF2VB1f ciJ6P1XOuiO7EeUwfLjfiMUjknOJypEQduficTM7xm9PqwOfPgHOHgcNelyhAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUG/gyqSZs0ArFMTkxBq0nOahcTG8wHwYDVR0j BBgwFoAUkj1KEOHbv2knGDvzQZ9RL+TB0AMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w YzM0ZmYwOC1kMjFmLTQyMGItODdkZi01MzEwM2I2ZGMyNTMvMC85MjNENEExMEUx REJCRjY5MjcxODNCRjM0MTlGNTEyRkU0QzFEMDAzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTIzRDRBMTBFMURCQkY2OTI3MTgzQkYzNDE5RjUxMkZFNEMx RDAwMy5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBjMzRmZjA4LWQyMWYtNDIwYi04 N2RmLTUzMTAzYjZkYzI1My8wLzMyMzQzMDMyM2E2MTYxMzQzMDNhMzEzNzNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzMzNzMzMzMzMC5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQCqkAA FzANBgkqhkiG9w0BAQsFAAOCAQEACPVApL2ZiDp0MJrwHLavRSx6XTV66/LkFdJJ c9G5Zp5lRoYD18r2YcBq8RPGEDxSWDYo+xBGiqu4y9ONzxp71sj8hOJ+UuhkqIy7 w9vxTonIpn/I353YBr88iOp1FILH3YwdUSwoxnl/hpgeM1CglXcwoOFSXtL0mu9h jWYPGjmr7r6A+XtVI4j/4vjh6SJbDOuSuDCRYPw/O/xPqfF1tvDhbczMEzGOy+wK ELGi1eGt++XCMZX8CPPq7io0D6g7qyfYVsWQFGbTYHIVc1kFshousJ6rJqWkaOnT Gtr8+2zdJgynu6efpVFPlsj9M5Oky332aGRMp/76ppRoeP1rPQ== -----END CERTIFICATE-----Generated at Fri Mar 27 02:16:26 2026 by rpki-client