$ rpki-client -vvf repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/323430353a616163303a31343a3a2f34382d3438203d3e20313339393439.roa File: 323430353a616163303a31343a3a2f34382d3438203d3e20313339393439.roa (raw, json) Hash identifier: g6hCZvDTLVDFyT2ub2AfNloqpP0Pv9QGIOi/mlCmzQM= Subject key identifier: 5C:84:8C:AA:CD:AF:BD:DA:2D:1A:24:37:AB:E5:30:E5:E1:9C:1F:F7 Certificate issuer: /CN=DA8766A90851AE44D76B8563D83586F0164FE5CF Certificate serial: 52EE3008DA4CF070C05C8EE3E56652264A4FBB23 Authority key identifier: DA:87:66:A9:08:51:AE:44:D7:6B:85:63:D8:35:86:F0:16:4F:E5:CF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA8766A90851AE44D76B8563D83586F0164FE5CF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/323430353a616163303a31343a3a2f34382d3438203d3e20313339393439.roa Signing time: Mon 23 Mar 2026 18:00:00 +0000 ROA not before: Mon 23 Mar 2026 17:55:00 +0000 ROA not after: Mon 22 Mar 2027 18:00:00 +0000 asID: 139949 IP address blocks: 2405:aac0:14::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/DA8766A90851AE44D76B8563D83586F0164FE5CF.crl rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/DA8766A90851AE44D76B8563D83586F0164FE5CF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA8766A90851AE44D76B8563D83586F0164FE5CF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 18:50:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:ee:30:08:da:4c:f0:70:c0:5c:8e:e3:e5:66:52:26:4a:4f:bb:23 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DA8766A90851AE44D76B8563D83586F0164FE5CF Validity Not Before: Mar 23 17:55:00 2026 GMT Not After : Mar 22 18:00:00 2027 GMT Subject: CN=5C848CAACDAFBDDA2D1A2437ABE530E5E19C1FF7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:99:19:74:ea:06:5e:09:0a:81:96:7b:8f:57: 32:99:f4:34:21:5f:97:a1:b7:4a:b9:b8:b8:d4:7a: 10:ae:2b:29:93:c2:61:e4:6d:9c:d9:5b:18:e8:f5: 1d:f7:d2:70:37:7a:b6:d6:5d:38:99:ed:85:f2:8e: a2:88:ca:d4:19:b6:f2:aa:c1:0f:83:11:41:a1:5d: d8:04:6d:60:3f:0b:50:32:a1:64:7a:26:17:84:f0: 21:42:c2:ba:01:4b:a2:c9:5c:4a:c1:07:48:f7:3a: 0d:bc:e5:e1:3c:48:bc:86:65:6a:c0:7d:a8:b0:ca: 48:0f:cb:a6:b0:93:a0:6f:ff:86:4c:82:2a:1d:33: 1a:c0:86:30:11:a5:d9:f9:46:e2:e0:ee:31:2e:17: 97:ee:ed:42:cf:86:a2:f1:2f:c2:69:2a:cf:e1:81: 27:2d:8d:c9:a5:4a:0e:2b:ac:59:7b:de:c9:4e:56: b6:df:40:63:8d:95:37:47:a7:9d:07:40:39:84:c5: 2a:7c:6f:1a:59:53:76:72:8c:6a:78:3e:ba:c2:16: 1b:90:ff:d7:9b:6c:4c:90:c6:70:31:71:23:c6:dd: ca:ad:98:50:04:50:92:a3:8e:be:56:3e:ca:e0:ca: a5:87:78:ba:b3:e3:82:14:eb:ab:ae:91:6e:de:99: f4:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:84:8C:AA:CD:AF:BD:DA:2D:1A:24:37:AB:E5:30:E5:E1:9C:1F:F7 X509v3 Authority Key Identifier: keyid:DA:87:66:A9:08:51:AE:44:D7:6B:85:63:D8:35:86:F0:16:4F:E5:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/DA8766A90851AE44D76B8563D83586F0164FE5CF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA8766A90851AE44D76B8563D83586F0164FE5CF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/323430353a616163303a31343a3a2f34382d3438203d3e20313339393439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:aac0:14::/48 Signature Algorithm: sha256WithRSAEncryption 79:68:2c:71:f9:d5:d9:a8:53:ea:cc:9c:f8:03:33:bd:35:01: ba:8a:89:6f:1c:3c:16:d3:79:fa:93:fe:90:db:c2:22:da:8d: b4:35:8d:9f:93:f5:59:9b:4d:37:ee:fc:1b:ee:f4:7b:ca:7b: 41:5d:9d:f0:75:c8:63:c0:79:8b:2b:4b:7e:35:ea:31:ee:95: 6f:c2:c5:e5:8e:2b:66:53:61:a1:26:14:b0:e5:7d:80:99:cd: 85:80:ed:93:8d:d9:8c:7d:2c:e7:a6:90:65:c2:0e:1b:83:d9: ca:0c:7c:7f:ca:61:dd:4c:bb:78:ac:5b:53:07:40:3d:38:d0: 71:0c:07:79:33:af:2d:49:e9:35:54:73:3e:9e:6d:f2:21:d1: 9d:d8:66:64:ac:85:d5:99:e7:3d:08:85:88:b7:10:11:5a:ff: 69:7e:23:60:81:ce:63:08:1c:ba:2a:01:56:30:4d:aa:10:3b: 30:e0:13:69:e5:58:7e:dd:9e:25:d1:7e:8f:d8:f6:9e:bc:14: 74:97:15:c7:89:22:8b:ac:80:43:ea:5d:52:69:8a:88:cc:28: eb:c1:7f:e1:32:ad:b9:8e:5f:83:27:d2:a1:2d:eb:3f:a4:b7: 56:19:b3:6c:b7:ce:7e:7b:5c:be:8a:39:c5:e6:bc:a9:38:f0: 29:94:86:65 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUUu4wCNpM8HDAXI7j5WZSJkpPuyMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREE4NzY2QTkwODUxQUU0NEQ3NkI4NTYzRDgzNTg2RjAx NjRGRTVDRjAeFw0yNjAzMjMxNzU1MDBaFw0yNzAzMjIxODAwMDBaMDMxMTAvBgNV BAMTKDVDODQ4Q0FBQ0RBRkJEREEyRDFBMjQzN0FCRTUzMEU1RTE5QzFGRjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEmRl06gZeCQqBlnuPVzKZ9DQh X5eht0q5uLjUehCuKymTwmHkbZzZWxjo9R330nA3erbWXTiZ7YXyjqKIytQZtvKq wQ+DEUGhXdgEbWA/C1AyoWR6JheE8CFCwroBS6LJXErBB0j3Og285eE8SLyGZWrA faiwykgPy6awk6Bv/4ZMgiodMxrAhjARpdn5RuLg7jEuF5fu7ULPhqLxL8JpKs/h gSctjcmlSg4rrFl73slOVrbfQGONlTdHp50HQDmExSp8bxpZU3ZyjGp4PrrCFhuQ /9ebbEyQxnAxcSPG3cqtmFAEUJKjjr5WPsrgyqWHeLqz44IU66uukW7emfTbAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUXISMqs2vvdotGiQ3q+Uw5eGcH/cwHwYDVR0j BBgwFoAU2odmqQhRrkTXa4Vj2DWG8BZP5c8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ZGVkYzAzMy1jZDRkLTQ2MjAtOTM3Mi1lNmUwMzlmYzA2YjkvMC9EQTg3NjZBOTA4 NTFBRTQ0RDc2Qjg1NjNEODM1ODZGMDE2NEZFNUNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREE4NzY2QTkwODUxQUU0NEQ3NkI4NTYzRDgzNTg2RjAxNjRG RTVDRi5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNkZWRjMDMzLWNkNGQtNDYyMC05 MzcyLWU2ZTAzOWZjMDZiOS8wLzMyMzQzMDM1M2E2MTYxNjMzMDNhMzEzNDNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzMzOTM5MzQzOS5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQFqsAA FDANBgkqhkiG9w0BAQsFAAOCAQEAeWgscfnV2ahT6syc+AMzvTUBuoqJbxw8FtN5 +pP+kNvCItqNtDWNn5P1WZtNN+78G+70e8p7QV2d8HXIY8B5iytLfjXqMe6Vb8LF 5Y4rZlNhoSYUsOV9gJnNhYDtk43ZjH0s56aQZcIOG4PZygx8f8ph3Uy7eKxbUwdA PTjQcQwHeTOvLUnpNVRzPp5t8iHRndhmZKyF1ZnnPQiFiLcQEVr/aX4jYIHOYwgc uioBVjBNqhA7MOATaeVYft2eJdF+j9j2nrwUdJcVx4kii6yAQ+pdUmmKiMwo68F/ 4TKtuY5fgyfSoS3rP6S3VhmzbLfOfntcvoo5xea8qTjwKZSGZQ== -----END CERTIFICATE-----Generated at Thu Mar 26 19:46:37 2026 by rpki-client