$ rpki-client -vvf repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/323430323a3738303a3a2f34382d3438203d3e203435373235.roa File: 323430323a3738303a3a2f34382d3438203d3e203435373235.roa (raw, json) Hash identifier: PRH29ny13nHsjeQMR0cN2HRWDvKReJ45zJz39Xn7QNM= Subject key identifier: 5C:F3:0B:14:F2:8D:E6:70:4B:0D:AA:FD:21:A5:FB:DF:97:4B:EF:78 Certificate issuer: /CN=BE7F813F3C6CA289A9CDAC5630975B7627458103 Certificate serial: 2625136C08727820E52358CF0051700B49766B58 Authority key identifier: BE:7F:81:3F:3C:6C:A2:89:A9:CD:AC:56:30:97:5B:76:27:45:81:03 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE7F813F3C6CA289A9CDAC5630975B7627458103.cer Subject info access: rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/323430323a3738303a3a2f34382d3438203d3e203435373235.roa Signing time: Sun 08 Mar 2026 16:00:02 +0000 ROA not before: Sun 08 Mar 2026 15:55:02 +0000 ROA not after: Sun 07 Mar 2027 16:00:02 +0000 asID: 45725 IP address blocks: 2402:780::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/BE7F813F3C6CA289A9CDAC5630975B7627458103.crl rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/BE7F813F3C6CA289A9CDAC5630975B7627458103.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE7F813F3C6CA289A9CDAC5630975B7627458103.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Mar 2026 21:55:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:25:13:6c:08:72:78:20:e5:23:58:cf:00:51:70:0b:49:76:6b:58 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BE7F813F3C6CA289A9CDAC5630975B7627458103 Validity Not Before: Mar 8 15:55:02 2026 GMT Not After : Mar 7 16:00:02 2027 GMT Subject: CN=5CF30B14F28DE6704B0DAAFD21A5FBDF974BEF78 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:cb:50:f6:5a:32:03:c8:79:7e:42:a0:ad:2c: 5f:5d:12:c6:76:d7:88:a6:a0:5b:a0:99:ad:2e:4c: a2:98:1d:fe:6b:f4:54:83:d0:9b:b7:00:9b:70:c9: c1:d3:a8:40:c4:0a:ec:e2:d4:9a:05:58:fa:91:a4: e9:8b:18:67:fb:45:32:5c:7b:c1:c4:e7:9d:b9:5f: b6:19:5f:2a:f9:34:5a:4f:6d:92:14:4e:3a:66:24: 88:fe:ce:91:d5:b5:c6:84:d5:da:29:a7:50:9b:c4: 29:a3:0e:0f:ab:42:8d:16:db:41:c8:f5:6c:fb:f6: dd:11:fa:a1:e4:10:33:33:2e:c1:18:0d:1f:55:09: 52:81:96:1d:8b:33:ca:a4:96:28:04:77:2f:bd:8d: 9a:a3:b0:08:1d:5b:f9:44:d5:46:24:53:17:4f:55: 82:34:0c:07:d0:7c:e1:14:1e:c6:df:f4:7f:98:43: a5:46:64:f2:1c:25:d7:39:65:57:f4:7f:23:08:94: 69:2e:8e:f8:13:e8:6e:83:a4:95:fa:0a:47:fd:08: 67:0a:26:b6:ed:89:bc:d6:b1:5e:17:5d:92:f8:d3: 28:89:ca:3e:5a:e8:8a:35:d1:11:9f:30:61:d0:7f: 84:c0:9a:d0:17:29:51:af:f1:1e:bc:ca:4c:6f:57: a6:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:F3:0B:14:F2:8D:E6:70:4B:0D:AA:FD:21:A5:FB:DF:97:4B:EF:78 X509v3 Authority Key Identifier: keyid:BE:7F:81:3F:3C:6C:A2:89:A9:CD:AC:56:30:97:5B:76:27:45:81:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/BE7F813F3C6CA289A9CDAC5630975B7627458103.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE7F813F3C6CA289A9CDAC5630975B7627458103.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/323430323a3738303a3a2f34382d3438203d3e203435373235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:780::/48 Signature Algorithm: sha256WithRSAEncryption d0:a8:a9:56:95:e7:26:71:3e:37:51:0a:2b:dd:44:07:91:97: 5f:e7:6e:b6:51:a1:ad:0f:e3:3e:ad:a3:43:5d:fb:39:45:a8: 2e:c7:cc:a4:22:89:15:41:b8:db:1b:d5:1b:7c:80:99:dc:c0: 05:23:10:8d:c1:bf:9b:1a:cf:f2:30:0e:52:c2:07:a6:f6:ce: 07:3f:bd:87:d9:e6:8e:2e:f5:28:85:66:c0:59:0b:8e:3a:ce: 1a:7e:20:81:aa:78:73:d4:21:ae:86:83:35:ef:9c:f1:37:b4: 42:d5:e0:69:90:9b:58:10:c1:1a:d5:c7:ef:05:20:35:2a:f9: f2:4a:f2:67:4d:11:7f:9c:56:93:58:d4:66:b3:13:82:44:2c: fe:b2:96:44:4d:87:ab:1d:c6:23:0f:8b:6f:1e:5a:68:bc:c2: 0b:0e:11:6f:1b:cc:a7:19:27:45:57:25:e1:db:41:3c:d8:85: bb:b2:29:0b:c4:da:8d:2b:2b:1f:d7:b0:a8:d9:18:08:56:eb: 68:dd:42:9d:e7:87:03:ad:3f:f9:d4:d9:59:73:8b:3a:47:be: 94:c9:55:e5:99:5c:05:5a:72:34:de:53:46:da:3b:0c:7a:5a: 83:8a:21:44:8c:23:db:5f:22:c6:0a:05:fb:8a:d9:f3:41:30: ca:b8:77:8e -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUJiUTbAhyeCDlI1jPAFFwC0l2a1gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkU3RjgxM0YzQzZDQTI4OUE5Q0RBQzU2MzA5NzVCNzYy NzQ1ODEwMzAeFw0yNjAzMDgxNTU1MDJaFw0yNzAzMDcxNjAwMDJaMDMxMTAvBgNV BAMTKDVDRjMwQjE0RjI4REU2NzA0QjBEQUFGRDIxQTVGQkRGOTc0QkVGNzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHy1D2WjIDyHl+QqCtLF9dEsZ2 14imoFugma0uTKKYHf5r9FSD0Ju3AJtwycHTqEDECuzi1JoFWPqRpOmLGGf7RTJc e8HE5525X7YZXyr5NFpPbZIUTjpmJIj+zpHVtcaE1dopp1CbxCmjDg+rQo0W20HI 9Wz79t0R+qHkEDMzLsEYDR9VCVKBlh2LM8qkligEdy+9jZqjsAgdW/lE1UYkUxdP VYI0DAfQfOEUHsbf9H+YQ6VGZPIcJdc5ZVf0fyMIlGkujvgT6G6DpJX6Ckf9CGcK JrbtibzWsV4XXZL40yiJyj5a6Io10RGfMGHQf4TAmtAXKVGv8R68ykxvV6bLAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUXPMLFPKN5nBLDar9IaX735dL73gwHwYDVR0j BBgwFoAUvn+BPzxsoompzaxWMJdbdidFgQMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 NDQyMTZkOC03MGNlLTQ5MDgtYTcyYi1lYzI3M2Y0M2JiYzIvMC9CRTdGODEzRjND NkNBMjg5QTlDREFDNTYzMDk3NUI3NjI3NDU4MTAzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkU3RjgxM0YzQzZDQTI4OUE5Q0RBQzU2MzA5NzVCNzYyNzQ1 ODEwMy5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNjQ0MjE2ZDgtNzBjZS00OTA4LWE3 MmItZWMyNzNmNDNiYmMyLzAvMzIzNDMwMzIzYTM3MzgzMDNhM2EyZjM0MzgyZDM0 MzgyMDNkM2UyMDM0MzUzNzMyMzUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkAgeAAAAwDQYJKoZIhvcN AQELBQADggEBANCoqVaV5yZxPjdRCivdRAeRl1/nbrZRoa0P4z6to0Nd+zlFqC7H zKQiiRVBuNsb1Rt8gJncwAUjEI3Bv5saz/IwDlLCB6b2zgc/vYfZ5o4u9SiFZsBZ C446zhp+IIGqeHPUIa6GgzXvnPE3tELV4GmQm1gQwRrVx+8FIDUq+fJK8mdNEX+c VpNY1GazE4JELP6ylkRNh6sdxiMPi28eWmi8wgsOEW8bzKcZJ0VXJeHbQTzYhbuy KQvE2o0rKx/XsKjZGAhW62jdQp3nhwOtP/nU2VlzizpHvpTJVeWZXAVacjTeU0ba Owx6WoOKIUSMI9tfIsYKBfuK2fNBMMq4d44= -----END CERTIFICATE-----Generated at Thu Mar 26 21:59:00 2026 by rpki-client