$ rpki-client -vvf repo-rpki.idnic.net/repo/400ec43b-433d-407d-bdee-eea6216a6ff4/0/323030313a6466333a393534303a3a2f34382d3438203d3e203539313333.roa File: 323030313a6466333a393534303a3a2f34382d3438203d3e203539313333.roa (raw, json) Hash identifier: HtSy/5HUrfmuURhjLye2h6FMfd+aaA8JtS3m07xJtIU= Subject key identifier: CC:AA:FF:AF:69:DB:3E:C2:DE:91:7B:A3:E1:43:F9:95:D4:97:70:92 Certificate issuer: /CN=34C47ECC8EDFAA05EFFF41FBFF0F6A466FA31869 Certificate serial: 02A3DE0FA489CF40EA580447C44E59B06B6CE07F Authority key identifier: 34:C4:7E:CC:8E:DF:AA:05:EF:FF:41:FB:FF:0F:6A:46:6F:A3:18:69 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/34C47ECC8EDFAA05EFFF41FBFF0F6A466FA31869.cer Subject info access: rsync://repo-rpki.idnic.net/repo/400ec43b-433d-407d-bdee-eea6216a6ff4/0/323030313a6466333a393534303a3a2f34382d3438203d3e203539313333.roa Signing time: Fri 20 Mar 2026 10:02:45 +0000 ROA not before: Fri 20 Mar 2026 09:57:45 +0000 ROA not after: Fri 19 Mar 2027 10:02:45 +0000 asID: 59133 IP address blocks: 2001:df3:9540::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/400ec43b-433d-407d-bdee-eea6216a6ff4/0/34C47ECC8EDFAA05EFFF41FBFF0F6A466FA31869.crl rsync://repo-rpki.idnic.net/repo/400ec43b-433d-407d-bdee-eea6216a6ff4/0/34C47ECC8EDFAA05EFFF41FBFF0F6A466FA31869.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/34C47ECC8EDFAA05EFFF41FBFF0F6A466FA31869.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 06:13:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:a3:de:0f:a4:89:cf:40:ea:58:04:47:c4:4e:59:b0:6b:6c:e0:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=34C47ECC8EDFAA05EFFF41FBFF0F6A466FA31869 Validity Not Before: Mar 20 09:57:45 2026 GMT Not After : Mar 19 10:02:45 2027 GMT Subject: CN=CCAAFFAF69DB3EC2DE917BA3E143F995D4977092 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:4f:fd:07:4b:1a:51:7a:79:dc:f0:53:c7:6d: ab:77:7f:69:b2:ef:96:ad:5f:88:86:ed:ae:87:2a: 06:6e:1f:5e:78:5b:84:8b:b8:69:8c:b9:2a:00:86: c5:7f:a1:d6:fa:b4:21:87:6f:95:5f:90:f5:4e:87: e4:55:66:af:42:27:b2:1e:c4:d3:b8:60:89:e8:b6: 53:71:96:f0:c4:41:b0:2e:4c:66:4e:5c:bf:2e:bd: c9:5d:a9:8a:33:28:45:fb:73:8d:35:b3:d9:f0:c9: ad:a8:e4:ec:00:0c:4b:f5:bc:28:ff:91:bf:40:b4: d5:bd:79:74:24:a4:29:14:20:c8:bc:3c:d0:56:3d: 74:38:e5:c7:63:30:39:ae:fc:10:c0:83:84:01:e7: 0b:41:f6:2c:8a:8f:ce:23:3d:5f:b8:9f:fb:96:6b: 3e:4e:3c:6c:bf:90:84:44:72:cf:b0:8a:f4:d9:a7: da:0b:43:3a:64:3a:29:91:5f:fa:32:8b:c7:a7:55: b5:8d:80:3c:50:44:fb:61:97:3b:46:ab:57:45:84: 82:cf:c8:8a:f8:e1:9c:4c:50:24:a5:3c:2f:24:f7: a2:d0:57:80:1f:34:d6:4f:3f:a9:3e:8d:b5:fd:87: e8:af:96:6d:a5:2d:d9:4a:18:bd:2a:02:94:79:32: 2e:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:AA:FF:AF:69:DB:3E:C2:DE:91:7B:A3:E1:43:F9:95:D4:97:70:92 X509v3 Authority Key Identifier: keyid:34:C4:7E:CC:8E:DF:AA:05:EF:FF:41:FB:FF:0F:6A:46:6F:A3:18:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/400ec43b-433d-407d-bdee-eea6216a6ff4/0/34C47ECC8EDFAA05EFFF41FBFF0F6A466FA31869.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/34C47ECC8EDFAA05EFFF41FBFF0F6A466FA31869.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/400ec43b-433d-407d-bdee-eea6216a6ff4/0/323030313a6466333a393534303a3a2f34382d3438203d3e203539313333.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df3:9540::/48 Signature Algorithm: sha256WithRSAEncryption 67:47:0e:b2:9c:07:04:3e:88:12:1d:f0:1d:4f:51:16:aa:46: 92:7a:90:b1:50:ec:4a:bb:64:48:9a:24:40:6a:1e:c8:c6:92: 06:f7:32:51:76:bb:dc:ef:06:29:fc:c0:57:14:71:b2:ba:a9: cc:c6:bc:f2:3e:3a:d3:9d:6b:94:9e:02:36:61:7e:a0:07:5f: 4c:88:13:ad:59:41:ba:c4:5f:b6:e9:f2:d1:cf:c1:70:24:05: f1:22:e4:a6:fa:82:f3:fb:84:ed:7d:78:f1:13:68:2b:6d:ce: 70:a1:cb:82:15:6b:99:aa:e5:26:b8:b4:97:92:09:06:1e:f7: c4:0d:de:c9:b7:bb:f2:aa:61:ea:74:82:59:b2:d2:98:57:c3: ae:2d:1b:7f:e0:07:1f:43:1b:c8:3b:da:94:bf:13:7e:6b:ec: e2:b4:10:0e:76:7d:8f:ab:bf:3e:ef:12:0c:d5:21:2a:76:b5: d5:df:c6:fd:70:1e:85:95:e0:77:2e:c4:ca:63:fa:7e:7c:7d: 39:b2:2f:18:8b:75:53:f7:5c:1b:18:13:b0:e1:2e:95:b9:80: c7:aa:f8:5b:91:fa:dd:ce:e9:88:b2:11:ae:9a:ad:4f:ae:12: 87:a1:0b:5f:d8:01:95:28:d0:68:cb:30:b0:ec:bf:6f:1e:e5: d4:22:c2:20 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUAqPeD6SJz0DqWARHxE5ZsGts4H8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzRDNDdFQ0M4RURGQUEwNUVGRkY0MUZCRkYwRjZBNDY2 RkEzMTg2OTAeFw0yNjAzMjAwOTU3NDVaFw0yNzAzMTkxMDAyNDVaMDMxMTAvBgNV BAMTKENDQUFGRkFGNjlEQjNFQzJERTkxN0JBM0UxNDNGOTk1RDQ5NzcwOTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDtT/0HSxpRennc8FPHbat3f2my 75atX4iG7a6HKgZuH154W4SLuGmMuSoAhsV/odb6tCGHb5VfkPVOh+RVZq9CJ7Ie xNO4YInotlNxlvDEQbAuTGZOXL8uvcldqYozKEX7c401s9nwya2o5OwADEv1vCj/ kb9AtNW9eXQkpCkUIMi8PNBWPXQ45cdjMDmu/BDAg4QB5wtB9iyKj84jPV+4n/uW az5OPGy/kIREcs+wivTZp9oLQzpkOimRX/oyi8enVbWNgDxQRPthlztGq1dFhILP yIr44ZxMUCSlPC8k96LQV4AfNNZPP6k+jbX9h+ivlm2lLdlKGL0qApR5Mi6LAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUzKr/r2nbPsLekXuj4UP5ldSXcJIwHwYDVR0j BBgwFoAUNMR+zI7fqgXv/0H7/w9qRm+jGGkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 MDBlYzQzYi00MzNkLTQwN2QtYmRlZS1lZWE2MjE2YTZmZjQvMC8zNEM0N0VDQzhF REZBQTA1RUZGRjQxRkJGRjBGNkE0NjZGQTMxODY5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzRDNDdFQ0M4RURGQUEwNUVGRkY0MUZCRkYwRjZBNDY2RkEz MTg2OS5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQwMGVjNDNiLTQzM2QtNDA3ZC1i ZGVlLWVlYTYyMTZhNmZmNC8wLzMyMzAzMDMxM2E2NDY2MzMzYTM5MzUzNDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzUzOTMxMzMzMy5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACABDfOV QDANBgkqhkiG9w0BAQsFAAOCAQEAZ0cOspwHBD6IEh3wHU9RFqpGknqQsVDsSrtk SJokQGoeyMaSBvcyUXa73O8GKfzAVxRxsrqpzMa88j46051rlJ4CNmF+oAdfTIgT rVlBusRftuny0c/BcCQF8SLkpvqC8/uE7X148RNoK23OcKHLghVrmarlJri0l5IJ Bh73xA3eybe78qph6nSCWbLSmFfDri0bf+AHH0MbyDvalL8Tfmvs4rQQDnZ9j6u/ Pu8SDNUhKna11d/G/XAehZXgdy7EymP6fnx9ObIvGIt1U/dcGxgTsOEulbmAx6r4 W5H63c7piLIRrpqtT64Sh6ELX9gBlSjQaMswsOy/bx7l1CLCIA== -----END CERTIFICATE-----Generated at Fri Mar 27 00:36:38 2026 by rpki-client