$ rpki-client -vvf repo-rpki.idnic.net/repo/5713fc17-57f1-4671-8a16-f858ddd7da43/0/323430353a363734303a3139303a3a2f34382d3438203d3e20313339343139.roa File: 323430353a363734303a3139303a3a2f34382d3438203d3e20313339343139.roa (raw, json) Hash identifier: JrzqCZ2W3zixGDlzSlopvMa8Mkim/eO8+TGGdft9KsE= Subject key identifier: CE:CA:46:A3:1E:92:A5:99:CF:9E:33:68:D9:67:0C:06:25:CB:9A:DF Certificate issuer: /CN=48CA7719CE7CE90570E1A1B6F443947AE9CAA74E Certificate serial: 6768CD7E3B24A4142693839753E38E5FE2FB539E Authority key identifier: 48:CA:77:19:CE:7C:E9:05:70:E1:A1:B6:F4:43:94:7A:E9:CA:A7:4E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/48CA7719CE7CE90570E1A1B6F443947AE9CAA74E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5713fc17-57f1-4671-8a16-f858ddd7da43/0/323430353a363734303a3139303a3a2f34382d3438203d3e20313339343139.roa Signing time: Wed 18 Mar 2026 10:00:00 +0000 ROA not before: Wed 18 Mar 2026 09:55:00 +0000 ROA not after: Wed 17 Mar 2027 10:00:00 +0000 asID: 139419 IP address blocks: 2405:6740:190::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5713fc17-57f1-4671-8a16-f858ddd7da43/0/48CA7719CE7CE90570E1A1B6F443947AE9CAA74E.crl rsync://repo-rpki.idnic.net/repo/5713fc17-57f1-4671-8a16-f858ddd7da43/0/48CA7719CE7CE90570E1A1B6F443947AE9CAA74E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/48CA7719CE7CE90570E1A1B6F443947AE9CAA74E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 10:54:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:68:cd:7e:3b:24:a4:14:26:93:83:97:53:e3:8e:5f:e2:fb:53:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=48CA7719CE7CE90570E1A1B6F443947AE9CAA74E Validity Not Before: Mar 18 09:55:00 2026 GMT Not After : Mar 17 10:00:00 2027 GMT Subject: CN=CECA46A31E92A599CF9E3368D9670C0625CB9ADF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:2b:ff:33:66:f5:ce:eb:77:10:d4:4e:0a:d2: 9e:64:ab:4f:5c:16:82:09:80:1c:ff:17:08:8c:dc: 7a:f7:a5:d6:7b:1a:7c:06:8e:85:ab:8e:09:44:09: af:d3:c2:b1:54:a1:98:b8:36:62:94:73:85:1d:97: af:10:2f:a5:e7:5a:eb:99:8a:7a:93:01:98:e7:31: 71:65:b3:bc:17:72:be:89:2e:8f:3f:c4:a8:5a:3d: b1:3f:98:0a:9b:62:3a:c8:cf:45:da:83:f2:cd:4c: c1:be:2e:81:96:3f:b6:63:57:8c:64:30:76:a2:08: 09:8b:6a:e3:4e:ae:7c:9d:0a:17:51:2e:e0:64:2e: 25:6d:72:97:c4:44:6e:dd:11:d6:e0:da:f1:0a:76: 82:ee:43:c0:c3:85:03:41:b2:0a:fa:f5:fd:aa:63: 6a:c6:ae:10:22:f0:8f:71:11:af:36:8f:64:09:f6: 40:f2:22:b5:af:d1:48:d8:ac:d3:e0:45:b7:47:39: 0d:d1:33:76:a1:43:d9:e2:63:5f:b9:cc:76:6d:84: 66:d3:b1:23:a4:82:ad:da:1e:57:6f:9f:9b:ed:16: b3:9c:95:60:19:16:a9:88:79:e8:60:da:f8:29:8a: 80:4f:1e:b1:c7:ba:09:9f:8c:87:00:45:d4:64:63: 9b:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:CA:46:A3:1E:92:A5:99:CF:9E:33:68:D9:67:0C:06:25:CB:9A:DF X509v3 Authority Key Identifier: keyid:48:CA:77:19:CE:7C:E9:05:70:E1:A1:B6:F4:43:94:7A:E9:CA:A7:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5713fc17-57f1-4671-8a16-f858ddd7da43/0/48CA7719CE7CE90570E1A1B6F443947AE9CAA74E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/48CA7719CE7CE90570E1A1B6F443947AE9CAA74E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5713fc17-57f1-4671-8a16-f858ddd7da43/0/323430353a363734303a3139303a3a2f34382d3438203d3e20313339343139.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:6740:190::/48 Signature Algorithm: sha256WithRSAEncryption 48:b3:01:9a:d1:de:72:f1:77:31:ff:46:8c:74:57:9d:71:69: 1d:b4:64:20:c7:c6:43:fa:cf:35:ae:6b:1c:ac:80:62:68:a2: af:71:d7:4a:9b:b3:66:6f:c1:f9:1c:33:d2:64:dc:a7:a1:6d: c0:c7:2c:bd:73:52:ab:b8:07:df:82:80:fc:2c:b5:4a:87:c1: 6f:86:20:65:3b:d0:94:28:85:ae:95:3e:5e:28:1b:49:4a:e1: 28:79:57:95:ca:ee:77:7c:e5:d8:72:a1:52:2d:0b:8d:7e:b5: 9f:4d:e2:42:01:6b:00:14:6d:ab:56:68:15:26:88:ea:27:5d: 0b:54:e7:fe:d8:ec:53:5b:36:e0:cd:c5:01:86:09:11:81:47: 9a:20:f3:b4:9a:e3:18:25:95:2e:65:c2:bb:9e:6c:21:f1:48: 36:4e:c6:d4:fc:a4:de:34:85:f0:1c:21:8b:6c:f2:eb:c6:10: f5:a4:29:8b:21:b5:2c:52:6d:a4:8c:a1:6e:70:0b:cf:97:12: 29:c4:b2:97:a4:21:74:59:bc:01:12:61:1b:a0:6f:74:6e:2d: c8:61:8a:4a:dd:22:83:0e:07:9d:3e:d8:d1:e1:a0:30:c9:24: e4:be:c4:d2:99:e2:77:6d:c5:87:24:d2:c2:20:25:ca:83:b3: 43:d3:29:86 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUZ2jNfjskpBQmk4OXU+OOX+L7U54wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDhDQTc3MTlDRTdDRTkwNTcwRTFBMUI2RjQ0Mzk0N0FF OUNBQTc0RTAeFw0yNjAzMTgwOTU1MDBaFw0yNzAzMTcxMDAwMDBaMDMxMTAvBgNV BAMTKENFQ0E0NkEzMUU5MkE1OTlDRjlFMzM2OEQ5NjcwQzA2MjVDQjlBREYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpK/8zZvXO63cQ1E4K0p5kq09c FoIJgBz/FwiM3Hr3pdZ7GnwGjoWrjglECa/TwrFUoZi4NmKUc4Udl68QL6XnWuuZ inqTAZjnMXFls7wXcr6JLo8/xKhaPbE/mAqbYjrIz0Xag/LNTMG+LoGWP7ZjV4xk MHaiCAmLauNOrnydChdRLuBkLiVtcpfERG7dEdbg2vEKdoLuQ8DDhQNBsgr69f2q Y2rGrhAi8I9xEa82j2QJ9kDyIrWv0UjYrNPgRbdHOQ3RM3ahQ9niY1+5zHZthGbT sSOkgq3aHldvn5vtFrOclWAZFqmIeehg2vgpioBPHrHHugmfjIcARdRkY5svAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUzspGox6SpZnPnjNo2WcMBiXLmt8wHwYDVR0j BBgwFoAUSMp3Gc586QVw4aG29EOUeunKp04wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 NzEzZmMxNy01N2YxLTQ2NzEtOGExNi1mODU4ZGRkN2RhNDMvMC80OENBNzcxOUNF N0NFOTA1NzBFMUExQjZGNDQzOTQ3QUU5Q0FBNzRFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDhDQTc3MTlDRTdDRTkwNTcwRTFBMUI2RjQ0Mzk0N0FFOUNB QTc0RS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU3MTNmYzE3LTU3ZjEtNDY3MS04 YTE2LWY4NThkZGQ3ZGE0My8wLzMyMzQzMDM1M2EzNjM3MzQzMDNhMzEzOTMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM5MzQzMTM5LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAVn QAGQMA0GCSqGSIb3DQEBCwUAA4IBAQBIswGa0d5y8Xcx/0aMdFedcWkdtGQgx8ZD +s81rmscrIBiaKKvcddKm7Nmb8H5HDPSZNynoW3Axyy9c1KruAffgoD8LLVKh8Fv hiBlO9CUKIWulT5eKBtJSuEoeVeVyu53fOXYcqFSLQuNfrWfTeJCAWsAFG2rVmgV JojqJ10LVOf+2OxTWzbgzcUBhgkRgUeaIPO0muMYJZUuZcK7nmwh8Ug2TsbU/KTe NIXwHCGLbPLrxhD1pCmLIbUsUm2kjKFucAvPlxIpxLKXpCF0WbwBEmEboG90bi3I YYpK3SKDDgedPtjR4aAwySTkvsTSmeJ3bcWHJNLCICXKg7ND0ymG -----END CERTIFICATE-----Generated at Thu Mar 26 21:42:44 2026 by rpki-client