$ rpki-client -vvf repo-rpki.idnic.net/repo/14ed8d6c-f0fa-47cc-aeaa-b4e3ee116882/1/323030313a6466333a643234303a3a2f34382d3438203d3e20313336303839.roa File: 323030313a6466333a643234303a3a2f34382d3438203d3e20313336303839.roa (raw, json) Hash identifier: kKN+3++yNXZd6oKl1xNvK2Vl4Y5qQJY0ovvc0CrxF3s= Subject key identifier: 25:16:6A:55:A2:A9:D1:04:8F:0D:30:0D:EC:53:C2:9F:B0:67:5A:1B Certificate issuer: /CN=780A63837871EA9CE6D017414F6F1C5ABA3EF7D9 Certificate serial: 211A7D25D872128A8C9B2D2E8A566EB9C518D961 Authority key identifier: 78:0A:63:83:78:71:EA:9C:E6:D0:17:41:4F:6F:1C:5A:BA:3E:F7:D9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/780A63837871EA9CE6D017414F6F1C5ABA3EF7D9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/14ed8d6c-f0fa-47cc-aeaa-b4e3ee116882/1/323030313a6466333a643234303a3a2f34382d3438203d3e20313336303839.roa Signing time: Thu 26 Mar 2026 14:00:02 +0000 ROA not before: Thu 26 Mar 2026 13:55:02 +0000 ROA not after: Thu 25 Mar 2027 14:00:02 +0000 asID: 136089 IP address blocks: 2001:df3:d240::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/14ed8d6c-f0fa-47cc-aeaa-b4e3ee116882/1/780A63837871EA9CE6D017414F6F1C5ABA3EF7D9.crl rsync://repo-rpki.idnic.net/repo/14ed8d6c-f0fa-47cc-aeaa-b4e3ee116882/1/780A63837871EA9CE6D017414F6F1C5ABA3EF7D9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/780A63837871EA9CE6D017414F6F1C5ABA3EF7D9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 30 Mar 2026 00:32:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:1a:7d:25:d8:72:12:8a:8c:9b:2d:2e:8a:56:6e:b9:c5:18:d9:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=780A63837871EA9CE6D017414F6F1C5ABA3EF7D9 Validity Not Before: Mar 26 13:55:02 2026 GMT Not After : Mar 25 14:00:02 2027 GMT Subject: CN=25166A55A2A9D1048F0D300DEC53C29FB0675A1B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:ae:a6:6d:0c:1b:83:de:e9:49:ca:84:58:a0: 4b:98:ed:f3:d7:77:46:ba:54:08:df:96:f5:4f:54: 40:6c:ae:c1:54:18:b9:94:30:22:66:14:77:b6:68: 2f:48:75:63:78:bb:a9:05:5b:73:32:18:2e:e8:52: 44:64:69:44:e5:40:c9:08:fd:46:1a:a4:e5:b5:82: 1e:7a:cd:f0:b6:b1:7b:43:f2:ed:28:ec:60:6f:7b: aa:46:2e:80:6c:f8:0d:c5:43:48:a5:25:36:f3:47: 89:c1:fb:d0:a5:1b:c0:33:a3:8f:8b:73:f7:03:e1: e7:7f:30:a5:fc:07:6e:0f:f4:ea:12:07:7a:1b:a4: 58:fb:03:53:fe:d4:bd:a9:6f:67:6b:9c:77:53:c9: fd:33:76:8b:2a:ee:46:32:08:dd:41:02:47:c4:c0: e1:c8:40:26:00:17:2f:c9:26:82:46:af:1a:eb:40: 90:7e:07:f5:9a:34:2e:90:82:3d:31:ad:6c:a6:ef: b6:e7:89:42:3f:9f:8a:a3:f4:af:0d:03:17:72:3f: 86:15:0e:06:cc:84:e8:d0:8f:b4:95:a2:9d:58:9b: 12:d6:f7:ba:56:81:ee:57:0b:ca:71:f4:07:9d:72: bc:8a:d8:73:06:39:20:1d:aa:d0:bd:2f:65:83:45: 6c:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:16:6A:55:A2:A9:D1:04:8F:0D:30:0D:EC:53:C2:9F:B0:67:5A:1B X509v3 Authority Key Identifier: keyid:78:0A:63:83:78:71:EA:9C:E6:D0:17:41:4F:6F:1C:5A:BA:3E:F7:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/14ed8d6c-f0fa-47cc-aeaa-b4e3ee116882/1/780A63837871EA9CE6D017414F6F1C5ABA3EF7D9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/780A63837871EA9CE6D017414F6F1C5ABA3EF7D9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/14ed8d6c-f0fa-47cc-aeaa-b4e3ee116882/1/323030313a6466333a643234303a3a2f34382d3438203d3e20313336303839.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df3:d240::/48 Signature Algorithm: sha256WithRSAEncryption 79:c5:5a:b5:aa:5f:b1:74:1c:8d:ec:a3:0b:ad:35:37:eb:3f: 28:46:a8:1f:ae:6c:ae:24:b2:e1:61:06:27:79:77:08:b3:80: 93:2b:9f:42:36:69:12:fd:96:69:8a:87:06:5c:90:65:80:47: 4e:dd:40:ae:5b:65:ed:a2:cb:b4:4a:de:e4:8e:bf:72:bb:7e: dd:c1:fc:61:1a:6d:e8:6d:b7:59:5e:53:58:21:0e:1e:f6:a5: f1:2a:f7:94:41:52:ba:37:e8:fe:d4:c7:ff:0b:f8:95:bd:e3: 5a:91:42:5c:cc:a7:a0:55:c8:b6:72:d8:79:d6:8a:dc:24:fc: 3c:10:22:e2:1c:08:42:81:f4:28:3f:ad:70:a2:86:22:c9:74: 31:1b:74:d7:c6:0d:ea:cf:c3:fc:76:08:92:2c:78:e4:17:25: e0:54:f3:de:e3:05:3c:18:10:65:9f:07:34:fe:05:13:e8:ed: 20:2c:bf:da:8c:90:11:a1:a4:58:bf:a8:67:8f:76:ec:4c:a3: cc:8a:2b:3c:67:0d:07:dd:a2:16:08:0c:14:9f:2a:88:d6:40: 6f:a2:84:a4:5c:cf:19:1c:dd:52:27:76:f0:e8:eb:34:89:99: ac:4c:cf:df:cc:9a:37:67:28:a8:94:ea:ac:0f:b0:37:17:fb: 17:ec:92:1e -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUIRp9JdhyEoqMmy0uilZuucUY2WEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzgwQTYzODM3ODcxRUE5Q0U2RDAxNzQxNEY2RjFDNUFC QTNFRjdEOTAeFw0yNjAzMjYxMzU1MDJaFw0yNzAzMjUxNDAwMDJaMDMxMTAvBgNV BAMTKDI1MTY2QTU1QTJBOUQxMDQ4RjBEMzAwREVDNTNDMjlGQjA2NzVBMUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD3rqZtDBuD3ulJyoRYoEuY7fPX d0a6VAjflvVPVEBsrsFUGLmUMCJmFHe2aC9IdWN4u6kFW3MyGC7oUkRkaUTlQMkI /UYapOW1gh56zfC2sXtD8u0o7GBve6pGLoBs+A3FQ0ilJTbzR4nB+9ClG8Azo4+L c/cD4ed/MKX8B24P9OoSB3obpFj7A1P+1L2pb2drnHdTyf0zdosq7kYyCN1BAkfE wOHIQCYAFy/JJoJGrxrrQJB+B/WaNC6Qgj0xrWym77bniUI/n4qj9K8NAxdyP4YV DgbMhOjQj7SVop1YmxLW97pWge5XC8px9AedcryK2HMGOSAdqtC9L2WDRWy1AgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUJRZqVaKp0QSPDTAN7FPCn7BnWhswHwYDVR0j BBgwFoAUeApjg3hx6pzm0BdBT28cWro+99kwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x NGVkOGQ2Yy1mMGZhLTQ3Y2MtYWVhYS1iNGUzZWUxMTY4ODIvMS83ODBBNjM4Mzc4 NzFFQTlDRTZEMDE3NDE0RjZGMUM1QUJBM0VGN0Q5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzgwQTYzODM3ODcxRUE5Q0U2RDAxNzQxNEY2RjFDNUFCQTNF RjdEOS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE0ZWQ4ZDZjLWYwZmEtNDdjYy1h ZWFhLWI0ZTNlZTExNjg4Mi8xLzMyMzAzMDMxM2E2NDY2MzMzYTY0MzIzNDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM2MzAzODM5LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 89JAMA0GCSqGSIb3DQEBCwUAA4IBAQB5xVq1ql+xdByN7KMLrTU36z8oRqgfrmyu JLLhYQYneXcIs4CTK59CNmkS/ZZpiocGXJBlgEdO3UCuW2Xtosu0St7kjr9yu37d wfxhGm3obbdZXlNYIQ4e9qXxKveUQVK6N+j+1Mf/C/iVveNakUJczKegVci2cth5 1orcJPw8ECLiHAhCgfQoP61wooYiyXQxG3TXxg3qz8P8dgiSLHjkFyXgVPPe4wU8 GBBlnwc0/gUT6O0gLL/ajJARoaRYv6hnj3bsTKPMiis8Zw0H3aIWCAwUnyqI1kBv ooSkXM8ZHN1SJ3bw6Os0iZmsTM/fzJo3ZyiolOqsD7A3F/sX7JIe -----END CERTIFICATE-----Generated at Thu Mar 26 19:48:06 2026 by rpki-client