$ rpki-client -vvf repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/323430323a3738303a343a3a2f34382d3438203d3e203435373235.roa File: 323430323a3738303a343a3a2f34382d3438203d3e203435373235.roa (raw, json) Hash identifier: 7RYpboN17UqNJ6ftXIb7G7NF8lTIu/BEppA52Tn56ec= Subject key identifier: E0:11:86:F9:D2:D6:88:43:4C:AB:E2:12:FA:80:8D:85:22:F6:05:4B Certificate issuer: /CN=BE7F813F3C6CA289A9CDAC5630975B7627458103 Certificate serial: 31D35DFC5ECF78F4CA9E5FFC541924C4B7674A43 Authority key identifier: BE:7F:81:3F:3C:6C:A2:89:A9:CD:AC:56:30:97:5B:76:27:45:81:03 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE7F813F3C6CA289A9CDAC5630975B7627458103.cer Subject info access: rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/323430323a3738303a343a3a2f34382d3438203d3e203435373235.roa Signing time: Sun 08 Mar 2026 16:00:01 +0000 ROA not before: Sun 08 Mar 2026 15:55:01 +0000 ROA not after: Sun 07 Mar 2027 16:00:01 +0000 asID: 45725 IP address blocks: 2402:780:4::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/BE7F813F3C6CA289A9CDAC5630975B7627458103.crl rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/BE7F813F3C6CA289A9CDAC5630975B7627458103.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE7F813F3C6CA289A9CDAC5630975B7627458103.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 30 Mar 2026 01:32:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:d3:5d:fc:5e:cf:78:f4:ca:9e:5f:fc:54:19:24:c4:b7:67:4a:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BE7F813F3C6CA289A9CDAC5630975B7627458103 Validity Not Before: Mar 8 15:55:01 2026 GMT Not After : Mar 7 16:00:01 2027 GMT Subject: CN=E01186F9D2D688434CABE212FA808D8522F6054B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:dc:a2:3e:11:b6:41:12:66:33:3a:f0:18:0d: 3c:61:80:b1:f7:03:bc:7f:54:b5:75:1a:95:0e:fc: a0:02:89:e1:56:5e:c8:7e:b2:4f:9a:3f:46:84:5d: 02:74:54:19:c7:76:44:5a:78:9e:28:b3:1e:7b:f7: d7:a6:53:e2:72:41:12:94:20:71:c8:f3:cf:5d:5f: 5e:41:2b:e5:11:f7:67:fc:96:20:02:33:b5:14:11: f3:57:07:47:80:8c:ad:0d:51:9f:76:ac:a0:24:78: 98:ed:6f:79:8f:5a:1e:80:00:15:e4:03:d4:f2:d7: 10:10:15:59:56:45:5f:07:ff:45:1d:b7:1c:90:23: 74:a4:5e:84:0a:04:66:ff:a8:f8:d0:5b:b6:8c:56: 50:63:ba:72:7e:f6:fc:a7:00:0e:76:5d:dc:78:25: 06:25:25:c4:2d:59:40:d7:55:8c:eb:e0:95:8b:82: 3d:37:3a:7c:a4:32:19:90:68:6b:5f:3e:b1:d9:1d: 50:84:2d:4f:e5:01:b9:4e:13:b5:62:cb:b1:3b:e2: 36:33:c6:53:23:77:3a:bf:37:78:4b:15:cf:73:c7: e1:0c:0d:ed:74:86:0e:dc:8d:c1:b6:71:30:8a:6b: 42:89:2a:55:37:81:0f:88:56:f4:58:dc:ff:0a:f1: 1b:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:11:86:F9:D2:D6:88:43:4C:AB:E2:12:FA:80:8D:85:22:F6:05:4B X509v3 Authority Key Identifier: keyid:BE:7F:81:3F:3C:6C:A2:89:A9:CD:AC:56:30:97:5B:76:27:45:81:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/BE7F813F3C6CA289A9CDAC5630975B7627458103.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE7F813F3C6CA289A9CDAC5630975B7627458103.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/323430323a3738303a343a3a2f34382d3438203d3e203435373235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:780:4::/48 Signature Algorithm: sha256WithRSAEncryption 3a:5a:a9:29:bd:46:2d:f9:9f:91:fc:c5:ca:d0:82:22:d7:6c: 3a:07:ab:9a:f8:07:f6:7c:d2:53:4b:f8:92:2a:da:be:c3:7a: 41:59:6d:a7:df:c6:a5:4c:0d:4c:05:4e:58:6c:fe:a1:a5:26: 4c:c0:51:4a:de:66:c9:63:5c:61:5f:33:9a:6a:79:6b:3d:ab: e5:2f:d6:23:59:11:dc:c7:79:97:53:e5:be:02:87:03:35:15: 06:75:e6:ce:3d:e7:cd:78:44:5b:b2:65:4b:f9:9a:5b:e9:ce: 1a:d4:ff:25:69:4e:57:07:74:ee:e0:21:f9:72:d5:5e:7f:be: e4:6a:ab:c7:2d:5c:dc:2b:81:ad:75:7c:38:6e:91:9a:e2:af: 12:c2:e7:d1:1e:02:07:5b:da:ed:e5:d5:f9:41:bf:3b:fe:99: 2a:97:00:6f:1c:f8:f5:77:a8:90:09:27:c0:29:98:5c:86:41: 88:a1:39:0d:35:1d:77:dc:d9:9b:ed:21:9d:c1:63:8a:5a:62: 8c:4a:a6:60:01:24:9f:a5:c0:8f:04:81:cc:43:f1:52:78:b1: 20:12:8b:c6:46:a1:08:e1:ac:4f:b0:54:13:23:21:fd:a4:a4: 16:3b:22:a0:04:ce:00:f3:60:05:52:fc:d4:2d:80:11:b0:58: c8:e0:d2:75 -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgIUMdNd/F7PePTKnl/8VBkkxLdnSkMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkU3RjgxM0YzQzZDQTI4OUE5Q0RBQzU2MzA5NzVCNzYy NzQ1ODEwMzAeFw0yNjAzMDgxNTU1MDFaFw0yNzAzMDcxNjAwMDFaMDMxMTAvBgNV BAMTKEUwMTE4NkY5RDJENjg4NDM0Q0FCRTIxMkZBODA4RDg1MjJGNjA1NEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC23KI+EbZBEmYzOvAYDTxhgLH3 A7x/VLV1GpUO/KACieFWXsh+sk+aP0aEXQJ0VBnHdkRaeJ4osx5799emU+JyQRKU IHHI889dX15BK+UR92f8liACM7UUEfNXB0eAjK0NUZ92rKAkeJjtb3mPWh6AABXk A9Ty1xAQFVlWRV8H/0UdtxyQI3SkXoQKBGb/qPjQW7aMVlBjunJ+9vynAA52Xdx4 JQYlJcQtWUDXVYzr4JWLgj03OnykMhmQaGtfPrHZHVCELU/lAblOE7Viy7E74jYz xlMjdzq/N3hLFc9zx+EMDe10hg7cjcG2cTCKa0KJKlU3gQ+IVvRY3P8K8RszAgMB AAGjggI1MIICMTAdBgNVHQ4EFgQU4BGG+dLWiENMq+IS+oCNhSL2BUswHwYDVR0j BBgwFoAUvn+BPzxsoompzaxWMJdbdidFgQMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 NDQyMTZkOC03MGNlLTQ5MDgtYTcyYi1lYzI3M2Y0M2JiYzIvMC9CRTdGODEzRjND NkNBMjg5QTlDREFDNTYzMDk3NUI3NjI3NDU4MTAzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkU3RjgxM0YzQzZDQTI4OUE5Q0RBQzU2MzA5NzVCNzYyNzQ1 ODEwMy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY0NDIxNmQ4LTcwY2UtNDkwOC1h NzJiLWVjMjczZjQzYmJjMi8wLzMyMzQzMDMyM2EzNzM4MzAzYTM0M2EzYTJmMzQz ODJkMzQzODIwM2QzZTIwMzQzNTM3MzIzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQCB4AABDANBgkq hkiG9w0BAQsFAAOCAQEAOlqpKb1GLfmfkfzFytCCItdsOgermvgH9nzSU0v4kira vsN6QVltp9/GpUwNTAVOWGz+oaUmTMBRSt5myWNcYV8zmmp5az2r5S/WI1kR3Md5 l1PlvgKHAzUVBnXmzj3nzXhEW7JlS/maW+nOGtT/JWlOVwd07uAh+XLVXn++5Gqr xy1c3CuBrXV8OG6RmuKvEsLn0R4CB1va7eXV+UG/O/6ZKpcAbxz49XeokAknwCmY XIZBiKE5DTUdd9zZm+0hncFjilpijEqmYAEkn6XAjwSBzEPxUnixIBKLxkahCOGs T7BUEyMh/aSkFjsioATOAPNgBVL81C2AEbBYyODSdQ== -----END CERTIFICATE-----Generated at Fri Mar 27 07:03:58 2026 by rpki-client