$ rpki-client -vvf repo-rpki.idnic.net/repo/6c4c64a9-3537-4bc7-8613-8e981629e4ca/0/323430323a3630303a633162313a3a2f34382d3438203d3e203338353135.roa File: 323430323a3630303a633162313a3a2f34382d3438203d3e203338353135.roa (raw, json) Hash identifier: fxhkmw6M/3NA6ih3vqQXgxCOakSYIOBo6H5o0RL0Hug= Subject key identifier: 97:23:23:A8:19:50:40:A1:7D:7B:72:76:CF:B4:83:6E:0F:0F:E4:F6 Certificate issuer: /CN=935DB2D4488FAE2C11E1BF3BDF20D82A2DDFD8F3 Certificate serial: 4AC560465AA4C0D6627FA3E6767AC36E702C31C1 Authority key identifier: 93:5D:B2:D4:48:8F:AE:2C:11:E1:BF:3B:DF:20:D8:2A:2D:DF:D8:F3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/935DB2D4488FAE2C11E1BF3BDF20D82A2DDFD8F3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6c4c64a9-3537-4bc7-8613-8e981629e4ca/0/323430323a3630303a633162313a3a2f34382d3438203d3e203338353135.roa Signing time: Wed 18 Mar 2026 05:00:02 +0000 ROA not before: Wed 18 Mar 2026 04:55:02 +0000 ROA not after: Wed 17 Mar 2027 05:00:02 +0000 asID: 38515 IP address blocks: 2402:600:c1b1::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6c4c64a9-3537-4bc7-8613-8e981629e4ca/0/935DB2D4488FAE2C11E1BF3BDF20D82A2DDFD8F3.crl rsync://repo-rpki.idnic.net/repo/6c4c64a9-3537-4bc7-8613-8e981629e4ca/0/935DB2D4488FAE2C11E1BF3BDF20D82A2DDFD8F3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/935DB2D4488FAE2C11E1BF3BDF20D82A2DDFD8F3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 06:29:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:c5:60:46:5a:a4:c0:d6:62:7f:a3:e6:76:7a:c3:6e:70:2c:31:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=935DB2D4488FAE2C11E1BF3BDF20D82A2DDFD8F3 Validity Not Before: Mar 18 04:55:02 2026 GMT Not After : Mar 17 05:00:02 2027 GMT Subject: CN=972323A8195040A17D7B7276CFB4836E0F0FE4F6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:f4:80:1a:dd:97:d9:2d:71:32:38:d2:8b:13: 96:ca:b2:d2:76:ff:5d:69:d0:19:2a:3c:33:d3:87: f7:d9:00:79:d1:f8:c7:45:c7:ef:cb:3b:f5:49:7a: 90:00:df:36:1f:91:4d:11:68:f8:fb:17:41:6b:e5: f9:2c:55:dd:e0:44:b6:89:44:43:8b:d1:71:47:9a: f8:fa:c5:91:7c:dc:bf:6e:45:05:d3:b0:7c:86:df: 7c:e9:69:74:62:5a:5e:bc:4e:d1:a2:d3:fe:12:01: fb:53:0b:6a:d3:5d:84:c6:f5:c4:61:c2:ea:ed:f9: ad:f9:19:b0:5a:e2:a1:91:56:b6:f7:d9:43:d1:f0: c9:7f:b5:ef:e1:20:59:39:39:99:5d:a4:1d:a3:64: 86:6f:ba:78:29:91:9f:de:a6:56:4e:02:74:fb:96: 6b:ad:ec:8c:89:df:8e:d1:72:86:ca:76:d8:5b:ff: 4f:30:b2:60:94:e1:4f:99:63:33:bd:67:dc:14:a7: 2b:50:0c:a6:b8:aa:0b:24:60:24:6e:27:5a:07:ef: 64:03:ad:dd:63:9c:64:f7:07:02:27:9f:cc:e5:ea: c5:60:81:78:9f:77:f0:a2:1e:02:5c:ee:35:44:fc: 4b:0d:a5:76:1d:af:ee:a6:b0:fa:e2:b4:50:91:c2: 81:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:23:23:A8:19:50:40:A1:7D:7B:72:76:CF:B4:83:6E:0F:0F:E4:F6 X509v3 Authority Key Identifier: keyid:93:5D:B2:D4:48:8F:AE:2C:11:E1:BF:3B:DF:20:D8:2A:2D:DF:D8:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6c4c64a9-3537-4bc7-8613-8e981629e4ca/0/935DB2D4488FAE2C11E1BF3BDF20D82A2DDFD8F3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/935DB2D4488FAE2C11E1BF3BDF20D82A2DDFD8F3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6c4c64a9-3537-4bc7-8613-8e981629e4ca/0/323430323a3630303a633162313a3a2f34382d3438203d3e203338353135.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:600:c1b1::/48 Signature Algorithm: sha256WithRSAEncryption 5c:63:46:f1:25:af:fe:43:42:10:5c:8e:03:9d:e9:e6:5b:b1: e3:c9:c1:9d:6a:ab:59:9b:51:06:ef:8e:a8:6a:f2:ec:0d:64: 46:f3:1c:8f:b5:bd:cf:f3:ff:30:fb:31:74:74:06:b7:1d:93: f4:8f:db:01:9a:f0:05:cf:ec:10:e6:3a:2f:54:36:8e:56:f2: 5e:08:01:d2:de:7e:ba:74:70:d5:aa:e6:03:58:89:fa:6b:32: 1a:fb:fb:6b:4c:6f:50:e8:eb:aa:a5:b4:9e:02:2d:bb:a7:9a: 0e:68:d8:0c:60:f1:24:c9:a5:aa:29:27:ea:e2:b7:b9:ad:f5: 7f:1a:72:c2:4b:9e:c7:a2:6d:d6:c9:8d:1f:20:ff:be:49:90: d9:b5:7b:95:c6:cd:a9:7e:d7:56:c6:99:d7:7f:28:40:0c:90: 3f:2c:e1:96:d2:40:c8:4c:d5:8a:a9:84:42:e5:f4:b0:fd:0b: 10:e9:d4:68:b6:29:82:f9:c9:8d:56:21:d3:5b:31:52:22:60: 6c:63:ab:d3:24:cb:39:5c:99:a6:e6:e6:fc:19:6a:59:d3:60: 33:de:e7:1c:24:30:d2:38:33:78:2e:e3:f6:90:04:28:b0:96: 49:65:20:eb:d9:b5:82:a2:71:a0:0a:11:f3:d1:00:aa:ad:0a: 8a:f8:bb:97 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUSsVgRlqkwNZif6PmdnrDbnAsMcEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTM1REIyRDQ0ODhGQUUyQzExRTFCRjNCREYyMEQ4MkEy RERGRDhGMzAeFw0yNjAzMTgwNDU1MDJaFw0yNzAzMTcwNTAwMDJaMDMxMTAvBgNV BAMTKDk3MjMyM0E4MTk1MDQwQTE3RDdCNzI3NkNGQjQ4MzZFMEYwRkU0RjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDE9IAa3ZfZLXEyONKLE5bKstJ2 /11p0BkqPDPTh/fZAHnR+MdFx+/LO/VJepAA3zYfkU0RaPj7F0Fr5fksVd3gRLaJ REOL0XFHmvj6xZF83L9uRQXTsHyG33zpaXRiWl68TtGi0/4SAftTC2rTXYTG9cRh wurt+a35GbBa4qGRVrb32UPR8Ml/te/hIFk5OZldpB2jZIZvungpkZ/eplZOAnT7 lmut7IyJ347RcobKdthb/08wsmCU4U+ZYzO9Z9wUpytQDKa4qgskYCRuJ1oH72QD rd1jnGT3BwInn8zl6sVggXifd/CiHgJc7jVE/EsNpXYdr+6msPritFCRwoGHAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUlyMjqBlQQKF9e3J2z7SDbg8P5PYwHwYDVR0j BBgwFoAUk12y1EiPriwR4b873yDYKi3f2PMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 YzRjNjRhOS0zNTM3LTRiYzctODYxMy04ZTk4MTYyOWU0Y2EvMC85MzVEQjJENDQ4 OEZBRTJDMTFFMUJGM0JERjIwRDgyQTJEREZEOEYzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTM1REIyRDQ0ODhGQUUyQzExRTFCRjNCREYyMEQ4MkEyRERG RDhGMy5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZjNGM2NGE5LTM1MzctNGJjNy04 NjEzLThlOTgxNjI5ZTRjYS8wLzMyMzQzMDMyM2EzNjMwMzAzYTYzMzE2MjMxM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzMzODM1MzEzNS5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQCBgDB sTANBgkqhkiG9w0BAQsFAAOCAQEAXGNG8SWv/kNCEFyOA53p5lux48nBnWqrWZtR Bu+OqGry7A1kRvMcj7W9z/P/MPsxdHQGtx2T9I/bAZrwBc/sEOY6L1Q2jlbyXggB 0t5+unRw1armA1iJ+msyGvv7a0xvUOjrqqW0ngItu6eaDmjYDGDxJMmlqikn6uK3 ua31fxpywkuex6Jt1smNHyD/vkmQ2bV7lcbNqX7XVsaZ138oQAyQPyzhltJAyEzV iqmEQuX0sP0LEOnUaLYpgvnJjVYh01sxUiJgbGOr0yTLOVyZpubm/BlqWdNgM97n HCQw0jgzeC7j9pAEKLCWSWUg69m1gqJxoAoR89EAqq0Kivi7lw== -----END CERTIFICATE-----Generated at Thu Mar 26 19:50:39 2026 by rpki-client