$ rpki-client -vvf repo-rpki.idnic.net/repo/6c4c64a9-3537-4bc7-8613-8e981629e4ca/0/323430323a3630303a313a3a2f34382d3438203d3e203338353135.roa File: 323430323a3630303a313a3a2f34382d3438203d3e203338353135.roa (raw, json) Hash identifier: U7aoS+ZDjD04WA35v0XFr9rp6t4n4DPAvPOkq97XyG4= Subject key identifier: 4B:26:A9:C1:AE:0E:04:30:14:79:55:BE:1C:E8:CD:E9:E9:15:A9:1F Certificate issuer: /CN=935DB2D4488FAE2C11E1BF3BDF20D82A2DDFD8F3 Certificate serial: 0678391971A3BD666515690051ECF57FD6DDB077 Authority key identifier: 93:5D:B2:D4:48:8F:AE:2C:11:E1:BF:3B:DF:20:D8:2A:2D:DF:D8:F3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/935DB2D4488FAE2C11E1BF3BDF20D82A2DDFD8F3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6c4c64a9-3537-4bc7-8613-8e981629e4ca/0/323430323a3630303a313a3a2f34382d3438203d3e203338353135.roa Signing time: Wed 18 Mar 2026 05:00:00 +0000 ROA not before: Wed 18 Mar 2026 04:55:00 +0000 ROA not after: Wed 17 Mar 2027 05:00:00 +0000 asID: 38515 IP address blocks: 2402:600:1::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6c4c64a9-3537-4bc7-8613-8e981629e4ca/0/935DB2D4488FAE2C11E1BF3BDF20D82A2DDFD8F3.crl rsync://repo-rpki.idnic.net/repo/6c4c64a9-3537-4bc7-8613-8e981629e4ca/0/935DB2D4488FAE2C11E1BF3BDF20D82A2DDFD8F3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/935DB2D4488FAE2C11E1BF3BDF20D82A2DDFD8F3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 06:29:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:78:39:19:71:a3:bd:66:65:15:69:00:51:ec:f5:7f:d6:dd:b0:77 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=935DB2D4488FAE2C11E1BF3BDF20D82A2DDFD8F3 Validity Not Before: Mar 18 04:55:00 2026 GMT Not After : Mar 17 05:00:00 2027 GMT Subject: CN=4B26A9C1AE0E0430147955BE1CE8CDE9E915A91F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:65:3a:31:c7:b3:56:38:4f:6c:d9:d3:93:7c: e7:d4:92:0d:4e:3d:1c:5f:fa:e6:50:17:c7:ae:be: 7c:ad:44:cf:db:b8:f5:f7:fb:1f:c3:4d:57:55:f7: da:32:28:04:0a:00:56:30:dc:3f:3d:05:ab:28:de: b5:42:d4:a9:87:21:7c:db:70:dc:be:47:cc:4f:d1: 70:fe:36:ba:d9:80:17:99:b7:28:83:71:1e:08:45: cd:7e:de:ab:81:8e:c7:fd:26:c2:e2:ba:1c:d8:2d: a0:97:8e:bc:db:52:ef:19:74:d5:9b:58:6a:4f:7e: 56:e8:f9:1a:87:97:03:e0:df:ea:34:ff:7d:35:2c: 72:3d:3c:0b:18:80:0b:96:73:d2:48:d1:77:9a:96: 32:df:ab:cb:4f:4b:a6:b2:40:fb:33:83:be:e2:57: ba:a1:d7:23:6d:c1:64:d2:dc:30:48:ee:ef:2f:71: 44:35:ad:7e:97:27:3e:f9:44:d8:81:4e:7a:da:85: e2:14:2c:16:e0:e0:88:b3:39:9b:35:99:80:c2:04: fe:10:09:8b:de:84:42:ac:e7:1b:c8:34:af:8c:8c: 81:33:76:8e:dd:d7:63:44:f9:9b:73:1e:49:ee:26: aa:c0:40:8a:55:52:75:1c:62:e4:a9:e7:27:2e:b6: 8c:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:26:A9:C1:AE:0E:04:30:14:79:55:BE:1C:E8:CD:E9:E9:15:A9:1F X509v3 Authority Key Identifier: keyid:93:5D:B2:D4:48:8F:AE:2C:11:E1:BF:3B:DF:20:D8:2A:2D:DF:D8:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6c4c64a9-3537-4bc7-8613-8e981629e4ca/0/935DB2D4488FAE2C11E1BF3BDF20D82A2DDFD8F3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/935DB2D4488FAE2C11E1BF3BDF20D82A2DDFD8F3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6c4c64a9-3537-4bc7-8613-8e981629e4ca/0/323430323a3630303a313a3a2f34382d3438203d3e203338353135.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:600:1::/48 Signature Algorithm: sha256WithRSAEncryption ab:10:a7:b1:81:bd:85:59:95:a1:f1:df:65:17:76:c9:9f:7a: 83:80:80:fa:39:57:d8:cc:9b:1c:e0:b6:fa:8e:4a:66:16:f6: fb:e5:f3:af:8d:6b:e2:de:0a:6e:ae:06:69:a1:37:cf:5f:60: 32:e6:11:3c:ef:73:74:02:4d:ba:24:89:a8:18:a5:58:d7:fe: 18:2e:49:60:21:65:4d:b8:4c:8a:9a:6b:8c:59:b6:5c:be:7e: 9e:c2:59:eb:79:05:e4:46:47:de:2b:b5:b2:ef:23:7e:0b:ee: 1a:8c:b8:76:7f:22:b1:fc:ff:33:d5:09:a3:6e:f2:7d:25:99: 33:11:fc:fd:94:8b:bf:a3:5a:8a:2d:8b:c4:ce:f5:5c:ec:63: 11:aa:e1:52:20:67:b5:e0:5e:70:ff:20:de:6d:ad:cf:ce:2d: aa:47:fd:0f:b2:2c:8f:d3:81:ff:4b:80:2b:ed:25:c9:cd:4d: 83:61:91:54:da:b5:0c:0b:e0:be:98:79:a5:be:cd:54:ba:cc: db:31:03:46:e8:f7:82:c5:28:01:03:fe:72:08:77:d1:a5:6e: 9f:d7:43:a9:94:ad:e6:14:82:e6:e5:f9:97:1d:46:45:2a:29: a8:0d:a2:39:2d:60:af:c2:a5:3d:cc:6f:01:d7:15:d4:41:e1: 28:ba:47:67 -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgIUBng5GXGjvWZlFWkAUez1f9bdsHcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTM1REIyRDQ0ODhGQUUyQzExRTFCRjNCREYyMEQ4MkEy RERGRDhGMzAeFw0yNjAzMTgwNDU1MDBaFw0yNzAzMTcwNTAwMDBaMDMxMTAvBgNV BAMTKDRCMjZBOUMxQUUwRTA0MzAxNDc5NTVCRTFDRThDREU5RTkxNUE5MUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKZToxx7NWOE9s2dOTfOfUkg1O PRxf+uZQF8euvnytRM/buPX3+x/DTVdV99oyKAQKAFYw3D89Baso3rVC1KmHIXzb cNy+R8xP0XD+NrrZgBeZtyiDcR4IRc1+3quBjsf9JsLiuhzYLaCXjrzbUu8ZdNWb WGpPflbo+RqHlwPg3+o0/301LHI9PAsYgAuWc9JI0XealjLfq8tPS6ayQPszg77i V7qh1yNtwWTS3DBI7u8vcUQ1rX6XJz75RNiBTnraheIULBbg4IizOZs1mYDCBP4Q CYvehEKs5xvINK+MjIEzdo7d12NE+ZtzHknuJqrAQIpVUnUcYuSp5ycutowPAgMB AAGjggI1MIICMTAdBgNVHQ4EFgQUSyapwa4OBDAUeVW+HOjN6ekVqR8wHwYDVR0j BBgwFoAUk12y1EiPriwR4b873yDYKi3f2PMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 YzRjNjRhOS0zNTM3LTRiYzctODYxMy04ZTk4MTYyOWU0Y2EvMC85MzVEQjJENDQ4 OEZBRTJDMTFFMUJGM0JERjIwRDgyQTJEREZEOEYzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTM1REIyRDQ0ODhGQUUyQzExRTFCRjNCREYyMEQ4MkEyRERG RDhGMy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZjNGM2NGE5LTM1MzctNGJjNy04 NjEzLThlOTgxNjI5ZTRjYS8wLzMyMzQzMDMyM2EzNjMwMzAzYTMxM2EzYTJmMzQz ODJkMzQzODIwM2QzZTIwMzMzODM1MzEzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQCBgAAATANBgkq hkiG9w0BAQsFAAOCAQEAqxCnsYG9hVmVofHfZRd2yZ96g4CA+jlX2MybHOC2+o5K Zhb2++Xzr41r4t4Kbq4GaaE3z19gMuYRPO9zdAJNuiSJqBilWNf+GC5JYCFlTbhM ipprjFm2XL5+nsJZ63kF5EZH3iu1su8jfgvuGoy4dn8isfz/M9UJo27yfSWZMxH8 /ZSLv6Naii2LxM71XOxjEarhUiBnteBecP8g3m2tz84tqkf9D7Isj9OB/0uAK+0l yc1Ng2GRVNq1DAvgvph5pb7NVLrM2zEDRuj3gsUoAQP+cgh30aVun9dDqZSt5hSC 5uX5lx1GRSopqA2iOS1gr8KlPcxvAdcV1EHhKLpHZw== -----END CERTIFICATE-----Generated at Thu Mar 26 21:57:56 2026 by rpki-client