$ rpki-client -vvf repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a31383a3a2f34382d3438203d3e20313337333330.roa File: 323430323a616134303a31383a3a2f34382d3438203d3e20313337333330.roa (raw, json) Hash identifier: Nbj2OeR+uWV2WwV2WDCkzfCUJ0UTXPC/nTipHdsGOoc= Subject key identifier: 67:23:92:9E:D0:4E:46:75:56:C7:23:FA:AF:B1:26:7D:7B:77:BB:91 Certificate issuer: /CN=923D4A10E1DBBF6927183BF3419F512FE4C1D003 Certificate serial: 5FA0D29D19AD4CC96817E074E0A7C8777264367C Authority key identifier: 92:3D:4A:10:E1:DB:BF:69:27:18:3B:F3:41:9F:51:2F:E4:C1:D0:03 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a31383a3a2f34382d3438203d3e20313337333330.roa Signing time: Fri 13 Mar 2026 00:12:31 +0000 ROA not before: Fri 13 Mar 2026 00:07:31 +0000 ROA not after: Fri 12 Mar 2027 00:12:31 +0000 asID: 137330 IP address blocks: 2402:aa40:18::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.crl rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Mar 2026 02:22:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:a0:d2:9d:19:ad:4c:c9:68:17:e0:74:e0:a7:c8:77:72:64:36:7c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=923D4A10E1DBBF6927183BF3419F512FE4C1D003 Validity Not Before: Mar 13 00:07:31 2026 GMT Not After : Mar 12 00:12:31 2027 GMT Subject: CN=6723929ED04E467556C723FAAFB1267D7B77BB91 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:86:71:65:8e:db:b1:90:99:34:7c:37:39:07: b5:a3:a0:ad:ae:e7:e9:ec:bf:7d:41:5b:f6:98:2f: 7b:fb:7a:24:36:f4:59:7f:4f:fa:e5:ad:e1:db:63: 3f:b8:a8:4c:30:d9:92:fc:3c:82:8a:e8:cf:7b:64: d4:6b:5d:1a:72:be:be:f8:03:58:14:15:71:4d:7d: 24:73:a9:2f:1d:ba:eb:6e:53:34:fc:1b:94:9d:e3: a5:30:61:6f:9b:59:8d:c9:ed:70:cc:a3:39:d4:70: 1a:d4:1d:e1:63:9f:dc:4f:ee:3d:5b:fd:b2:d8:14: 0f:0e:2e:cd:47:99:71:0a:b8:95:37:f6:79:24:95: c3:38:3c:f6:dc:c0:03:61:a1:ba:9b:e8:2e:6e:6d: f9:5b:a0:24:04:c8:4b:db:19:7e:73:81:e0:e1:04: 84:7d:82:89:ae:39:97:bb:07:36:d3:42:d4:db:9d: ec:62:2b:ae:a0:3f:60:eb:c4:ee:c7:6e:95:55:bc: 1c:88:9c:2d:28:48:51:74:19:cb:90:61:ed:d5:b7: 01:af:ca:a6:06:80:b3:1e:19:66:04:34:99:86:96: 1e:f7:d6:d3:de:3a:91:16:fc:c9:5c:e8:70:4a:6f: f1:23:3c:76:33:c8:b1:db:2b:39:43:91:23:7c:8f: 7c:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:23:92:9E:D0:4E:46:75:56:C7:23:FA:AF:B1:26:7D:7B:77:BB:91 X509v3 Authority Key Identifier: keyid:92:3D:4A:10:E1:DB:BF:69:27:18:3B:F3:41:9F:51:2F:E4:C1:D0:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a31383a3a2f34382d3438203d3e20313337333330.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:aa40:18::/48 Signature Algorithm: sha256WithRSAEncryption 6f:5e:81:d4:67:b2:17:88:20:65:5a:3a:c6:08:2f:48:f3:e1: ae:6f:c2:53:50:7e:43:9a:f1:e8:cb:f2:2c:a3:19:dc:e3:79: 1b:19:9e:ad:c8:83:a8:58:d6:06:83:3e:ad:9d:f0:7c:9f:ff: a7:30:0e:4f:36:36:1b:f0:3d:2f:b2:fd:e1:a6:6b:a7:72:82: 1b:ca:6b:b3:75:45:f3:57:e5:96:06:94:23:f2:22:60:3e:90: 79:86:3c:f2:81:76:f1:26:3a:cc:69:f5:5b:c8:6d:9c:3f:ca: 76:00:d3:3d:ba:f9:d0:f4:24:da:e1:71:46:c1:a1:ae:98:90: c5:59:b5:25:e3:79:6b:12:55:4c:86:7a:c9:19:30:37:79:fc: 2d:27:1c:cf:36:43:f7:fe:30:93:93:65:81:01:d8:c2:7f:03: 40:04:ff:0b:35:e5:31:a9:3b:59:85:a0:69:20:cb:6c:78:c0: de:5b:dc:a4:a9:77:7c:71:fd:a6:9b:e2:85:ed:cd:8e:42:a0: 89:16:49:ba:80:2b:b4:1e:c3:2e:45:a2:e6:45:57:9d:b3:68: 21:ab:d4:c4:43:a9:e1:d0:7c:98:75:14:fd:9f:0a:8a:02:d9: 6c:f1:57:99:5e:3b:9b:ee:86:3b:e4:4c:58:90:bb:a6:87:c4: a4:79:63:e5 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUX6DSnRmtTMloF+B04KfId3JkNnwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTIzRDRBMTBFMURCQkY2OTI3MTgzQkYzNDE5RjUxMkZF NEMxRDAwMzAeFw0yNjAzMTMwMDA3MzFaFw0yNzAzMTIwMDEyMzFaMDMxMTAvBgNV BAMTKDY3MjM5MjlFRDA0RTQ2NzU1NkM3MjNGQUFGQjEyNjdEN0I3N0JCOTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDfhnFljtuxkJk0fDc5B7WjoK2u 5+nsv31BW/aYL3v7eiQ29Fl/T/rlreHbYz+4qEww2ZL8PIKK6M97ZNRrXRpyvr74 A1gUFXFNfSRzqS8duutuUzT8G5Sd46UwYW+bWY3J7XDMoznUcBrUHeFjn9xP7j1b /bLYFA8OLs1HmXEKuJU39nkklcM4PPbcwANhobqb6C5ubflboCQEyEvbGX5zgeDh BIR9gomuOZe7BzbTQtTbnexiK66gP2DrxO7HbpVVvByInC0oSFF0GcuQYe3VtwGv yqYGgLMeGWYENJmGlh731tPeOpEW/Mlc6HBKb/EjPHYzyLHbKzlDkSN8j3zvAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUZyOSntBORnVWxyP6r7EmfXt3u5EwHwYDVR0j BBgwFoAUkj1KEOHbv2knGDvzQZ9RL+TB0AMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w YzM0ZmYwOC1kMjFmLTQyMGItODdkZi01MzEwM2I2ZGMyNTMvMC85MjNENEExMEUx REJCRjY5MjcxODNCRjM0MTlGNTEyRkU0QzFEMDAzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTIzRDRBMTBFMURCQkY2OTI3MTgzQkYzNDE5RjUxMkZFNEMx RDAwMy5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBjMzRmZjA4LWQyMWYtNDIwYi04 N2RmLTUzMTAzYjZkYzI1My8wLzMyMzQzMDMyM2E2MTYxMzQzMDNhMzEzODNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzMzNzMzMzMzMC5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQCqkAA GDANBgkqhkiG9w0BAQsFAAOCAQEAb16B1GeyF4ggZVo6xggvSPPhrm/CU1B+Q5rx 6MvyLKMZ3ON5GxmerciDqFjWBoM+rZ3wfJ//pzAOTzY2G/A9L7L94aZrp3KCG8pr s3VF81fllgaUI/IiYD6QeYY88oF28SY6zGn1W8htnD/KdgDTPbr50PQk2uFxRsGh rpiQxVm1JeN5axJVTIZ6yRkwN3n8LScczzZD9/4wk5NlgQHYwn8DQAT/CzXlMak7 WYWgaSDLbHjA3lvcpKl3fHH9ppvihe3NjkKgiRZJuoArtB7DLkWi5kVXnbNoIavU xEOp4dB8mHUU/Z8KigLZbPFXmV47m+6GO+RMWJC7pofEpHlj5Q== -----END CERTIFICATE-----Generated at Thu Mar 26 19:43:14 2026 by rpki-client