$ rpki-client -vvf repo-rpki.idnic.net/repo/6c4c64a9-3537-4bc7-8613-8e981629e4ca/0/323430323a3630303a633a3a2f34382d3438203d3e203338353135.roa File: 323430323a3630303a633a3a2f34382d3438203d3e203338353135.roa (raw, json) Hash identifier: /eDKHajHFOwJ7jJrsDZ36waZjs4TsIbLgAifleggnC4= Subject key identifier: 6A:AA:B7:5D:84:2E:E3:4F:DC:21:62:5F:98:B1:20:AB:9C:35:41:A1 Certificate issuer: /CN=935DB2D4488FAE2C11E1BF3BDF20D82A2DDFD8F3 Certificate serial: 1D7B8A05DA6669C395A9BCF53D62CDEC9E3501BE Authority key identifier: 93:5D:B2:D4:48:8F:AE:2C:11:E1:BF:3B:DF:20:D8:2A:2D:DF:D8:F3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/935DB2D4488FAE2C11E1BF3BDF20D82A2DDFD8F3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6c4c64a9-3537-4bc7-8613-8e981629e4ca/0/323430323a3630303a633a3a2f34382d3438203d3e203338353135.roa Signing time: Wed 18 Mar 2026 05:00:01 +0000 ROA not before: Wed 18 Mar 2026 04:55:01 +0000 ROA not after: Wed 17 Mar 2027 05:00:01 +0000 asID: 38515 IP address blocks: 2402:600:c::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6c4c64a9-3537-4bc7-8613-8e981629e4ca/0/935DB2D4488FAE2C11E1BF3BDF20D82A2DDFD8F3.crl rsync://repo-rpki.idnic.net/repo/6c4c64a9-3537-4bc7-8613-8e981629e4ca/0/935DB2D4488FAE2C11E1BF3BDF20D82A2DDFD8F3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/935DB2D4488FAE2C11E1BF3BDF20D82A2DDFD8F3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 06:29:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:7b:8a:05:da:66:69:c3:95:a9:bc:f5:3d:62:cd:ec:9e:35:01:be Signature Algorithm: sha256WithRSAEncryption Issuer: CN=935DB2D4488FAE2C11E1BF3BDF20D82A2DDFD8F3 Validity Not Before: Mar 18 04:55:01 2026 GMT Not After : Mar 17 05:00:01 2027 GMT Subject: CN=6AAAB75D842EE34FDC21625F98B120AB9C3541A1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:85:1c:36:c6:2e:df:2e:3e:7b:6b:d8:35:37: cc:f8:39:b8:6f:a4:ff:cf:73:fe:f4:39:d4:6e:6e: 2c:60:4e:58:b1:6c:8e:00:37:4e:a1:ed:88:37:93: 2b:ef:bf:59:a2:6b:ef:3d:bb:d6:2f:4d:02:7f:30: 39:e2:7c:56:38:63:79:0f:be:c7:f5:97:25:37:26: 39:72:ca:c5:f5:4a:07:4b:b1:51:a5:ff:95:72:b2: 97:18:d3:85:f8:b5:20:f3:7f:65:4e:ca:73:b9:d5: 86:00:2a:5a:ca:42:f5:47:e8:8c:7e:f6:e4:23:17: c9:f9:35:94:bd:d7:66:6f:39:46:d5:98:5c:dd:87: aa:12:6a:bd:4d:c3:68:25:6c:7b:5e:fc:47:1d:0b: fc:e0:47:41:58:43:d3:80:61:d4:5d:4b:82:2d:da: 52:59:78:e4:13:9f:16:fd:87:e6:af:87:09:de:39: 4b:74:73:c4:e9:b2:a8:cb:6c:0b:34:c1:63:47:bd: 09:84:69:5f:21:e0:20:8d:d0:6d:59:5a:62:12:b3: 0d:34:8a:04:7b:f2:5e:6c:28:ba:cb:8b:f4:d2:10: b2:aa:10:8d:6b:c8:8a:0e:2b:42:ce:b1:dd:71:49: 40:0a:22:96:67:b4:86:9c:1f:cb:09:59:48:a5:d7: af:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:AA:B7:5D:84:2E:E3:4F:DC:21:62:5F:98:B1:20:AB:9C:35:41:A1 X509v3 Authority Key Identifier: keyid:93:5D:B2:D4:48:8F:AE:2C:11:E1:BF:3B:DF:20:D8:2A:2D:DF:D8:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6c4c64a9-3537-4bc7-8613-8e981629e4ca/0/935DB2D4488FAE2C11E1BF3BDF20D82A2DDFD8F3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/935DB2D4488FAE2C11E1BF3BDF20D82A2DDFD8F3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6c4c64a9-3537-4bc7-8613-8e981629e4ca/0/323430323a3630303a633a3a2f34382d3438203d3e203338353135.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:600:c::/48 Signature Algorithm: sha256WithRSAEncryption 0a:4c:b5:4e:42:c3:bd:e5:ba:bc:7c:27:7b:df:ff:67:44:79: 0a:7b:2d:e6:7c:b4:ec:0d:72:02:c5:a0:92:15:0b:3a:ac:5c: cb:fe:d0:79:a2:59:e4:5d:6a:20:77:16:86:61:58:91:3c:29: 00:ec:a8:14:a7:71:bf:c1:ef:bb:54:a0:79:ea:b5:29:0b:bd: 75:7d:39:a4:17:c5:ab:73:72:c6:df:fd:56:b6:25:d1:7e:4c: a3:09:4e:cf:eb:6b:c3:a9:0b:2d:66:88:54:2d:76:1d:71:61: d0:bb:15:7f:6a:df:0d:54:00:4f:ee:76:0d:84:33:a5:ce:c2: fd:35:01:75:8f:d4:b3:b2:42:c2:50:5a:1a:82:c5:cf:14:3c: ba:54:08:35:4d:00:52:5b:a4:5c:23:99:18:3b:2b:a6:29:37: 0e:13:54:ec:6b:bc:66:ec:cb:de:17:7a:95:a4:e2:93:0d:35: a3:c8:e3:bd:59:65:8b:43:aa:f6:0e:c7:01:5f:d9:f4:51:e5: 67:0d:6e:dd:21:7a:07:06:7a:34:81:48:53:e9:07:c3:ec:f6: de:8d:8a:94:7d:a9:ec:19:7f:0c:06:fd:92:85:cb:5d:14:9b: 31:73:b2:86:83:ef:9c:5b:23:7e:ac:6e:a5:c8:08:c2:f5:9e: 73:15:98:41 -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgIUHXuKBdpmacOVqbz1PWLN7J41Ab4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTM1REIyRDQ0ODhGQUUyQzExRTFCRjNCREYyMEQ4MkEy RERGRDhGMzAeFw0yNjAzMTgwNDU1MDFaFw0yNzAzMTcwNTAwMDFaMDMxMTAvBgNV BAMTKDZBQUFCNzVEODQyRUUzNEZEQzIxNjI1Rjk4QjEyMEFCOUMzNTQxQTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCfhRw2xi7fLj57a9g1N8z4Obhv pP/Pc/70OdRubixgTlixbI4AN06h7Yg3kyvvv1mia+89u9YvTQJ/MDnifFY4Y3kP vsf1lyU3JjlyysX1SgdLsVGl/5VyspcY04X4tSDzf2VOynO51YYAKlrKQvVH6Ix+ 9uQjF8n5NZS912ZvOUbVmFzdh6oSar1Nw2glbHte/EcdC/zgR0FYQ9OAYdRdS4It 2lJZeOQTnxb9h+avhwneOUt0c8TpsqjLbAs0wWNHvQmEaV8h4CCN0G1ZWmISsw00 igR78l5sKLrLi/TSELKqEI1ryIoOK0LOsd1xSUAKIpZntIacH8sJWUil1687AgMB AAGjggI1MIICMTAdBgNVHQ4EFgQUaqq3XYQu40/cIWJfmLEgq5w1QaEwHwYDVR0j BBgwFoAUk12y1EiPriwR4b873yDYKi3f2PMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 YzRjNjRhOS0zNTM3LTRiYzctODYxMy04ZTk4MTYyOWU0Y2EvMC85MzVEQjJENDQ4 OEZBRTJDMTFFMUJGM0JERjIwRDgyQTJEREZEOEYzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTM1REIyRDQ0ODhGQUUyQzExRTFCRjNCREYyMEQ4MkEyRERG RDhGMy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZjNGM2NGE5LTM1MzctNGJjNy04 NjEzLThlOTgxNjI5ZTRjYS8wLzMyMzQzMDMyM2EzNjMwMzAzYTYzM2EzYTJmMzQz ODJkMzQzODIwM2QzZTIwMzMzODM1MzEzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQCBgAADDANBgkq hkiG9w0BAQsFAAOCAQEACky1TkLDveW6vHwne9//Z0R5Cnst5ny07A1yAsWgkhUL Oqxcy/7QeaJZ5F1qIHcWhmFYkTwpAOyoFKdxv8Hvu1Sgeeq1KQu9dX05pBfFq3Ny xt/9VrYl0X5MowlOz+trw6kLLWaIVC12HXFh0LsVf2rfDVQAT+52DYQzpc7C/TUB dY/Us7JCwlBaGoLFzxQ8ulQINU0AUlukXCOZGDsrpik3DhNU7Gu8ZuzL3hd6laTi kw01o8jjvVlli0Oq9g7HAV/Z9FHlZw1u3SF6BwZ6NIFIU+kHw+z23o2KlH2p7Bl/ DAb9koXLXRSbMXOyhoPvnFsjfqxupcgIwvWecxWYQQ== -----END CERTIFICATE-----Generated at Thu Mar 26 22:20:03 2026 by rpki-client