$ rpki-client -vvf repo-rpki.idnic.net/repo/6c4c64a9-3537-4bc7-8613-8e981629e4ca/0/323430323a3630303a643a3a2f34382d3438203d3e203338353135.roa File: 323430323a3630303a643a3a2f34382d3438203d3e203338353135.roa (raw, json) Hash identifier: 5DrbsD5s1OGHdVIvUiJdnaIWDqw3qLZNpHD1NHRL8sA= Subject key identifier: A7:A8:E5:FA:FF:73:06:6B:D0:F0:53:34:07:A3:A2:3B:43:E8:93:76 Certificate issuer: /CN=935DB2D4488FAE2C11E1BF3BDF20D82A2DDFD8F3 Certificate serial: 1793CC16E2E1F6AD16364F747826776630AFEB74 Authority key identifier: 93:5D:B2:D4:48:8F:AE:2C:11:E1:BF:3B:DF:20:D8:2A:2D:DF:D8:F3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/935DB2D4488FAE2C11E1BF3BDF20D82A2DDFD8F3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6c4c64a9-3537-4bc7-8613-8e981629e4ca/0/323430323a3630303a643a3a2f34382d3438203d3e203338353135.roa Signing time: Wed 18 Mar 2026 05:00:02 +0000 ROA not before: Wed 18 Mar 2026 04:55:02 +0000 ROA not after: Wed 17 Mar 2027 05:00:02 +0000 asID: 38515 IP address blocks: 2402:600:d::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6c4c64a9-3537-4bc7-8613-8e981629e4ca/0/935DB2D4488FAE2C11E1BF3BDF20D82A2DDFD8F3.crl rsync://repo-rpki.idnic.net/repo/6c4c64a9-3537-4bc7-8613-8e981629e4ca/0/935DB2D4488FAE2C11E1BF3BDF20D82A2DDFD8F3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/935DB2D4488FAE2C11E1BF3BDF20D82A2DDFD8F3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 06:29:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:93:cc:16:e2:e1:f6:ad:16:36:4f:74:78:26:77:66:30:af:eb:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=935DB2D4488FAE2C11E1BF3BDF20D82A2DDFD8F3 Validity Not Before: Mar 18 04:55:02 2026 GMT Not After : Mar 17 05:00:02 2027 GMT Subject: CN=A7A8E5FAFF73066BD0F0533407A3A23B43E89376 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:91:75:af:62:84:4c:d7:aa:ff:3b:3d:c3:c3: 3c:08:a7:66:44:7d:02:42:d7:03:94:0b:eb:11:de: a4:fc:cc:95:57:d1:df:ca:f1:78:c4:f0:f1:1d:fe: 7e:06:8e:e2:1f:51:0d:32:f3:26:bb:8f:eb:37:8f: 77:6d:0d:51:c5:df:79:6b:69:fa:a4:3c:ab:b7:26: bd:fc:11:bc:eb:a7:18:f3:ad:c9:a6:53:42:09:ba: 15:d7:5d:ce:11:9a:c1:72:de:63:9d:fd:55:61:1e: 5d:cb:49:8b:1d:aa:c5:e7:b2:6a:5d:07:60:57:47: b4:89:9c:7c:ec:17:60:0d:2a:8b:b9:ed:33:de:1d: e4:7e:5a:1b:1d:22:e4:e7:c9:2a:0a:5c:24:b3:22: 33:09:ff:b0:40:5f:e4:6c:61:e9:f1:58:c2:f9:6b: 2b:da:e1:53:56:1e:4a:2c:a6:67:ce:34:16:b2:36: 27:00:7a:33:e9:b4:f0:33:0c:dd:a2:b2:20:33:d4: 27:4b:9b:92:87:a9:80:b2:ea:07:6a:1c:d2:ca:0e: 9d:5a:ad:64:8c:9a:ec:81:e2:2a:5d:26:9e:eb:1b: 91:15:69:1d:12:d8:be:65:92:1c:87:c9:ad:be:70: 9d:13:51:0f:69:a4:8c:30:bd:00:eb:b4:c4:a9:73: 5c:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:A8:E5:FA:FF:73:06:6B:D0:F0:53:34:07:A3:A2:3B:43:E8:93:76 X509v3 Authority Key Identifier: keyid:93:5D:B2:D4:48:8F:AE:2C:11:E1:BF:3B:DF:20:D8:2A:2D:DF:D8:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6c4c64a9-3537-4bc7-8613-8e981629e4ca/0/935DB2D4488FAE2C11E1BF3BDF20D82A2DDFD8F3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/935DB2D4488FAE2C11E1BF3BDF20D82A2DDFD8F3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6c4c64a9-3537-4bc7-8613-8e981629e4ca/0/323430323a3630303a643a3a2f34382d3438203d3e203338353135.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:600:d::/48 Signature Algorithm: sha256WithRSAEncryption 8b:a7:84:3e:0d:af:4d:bf:a4:35:0a:9a:23:43:8f:73:bd:fe: 76:f8:0b:9c:a5:2f:b2:2d:1d:68:19:ff:78:e5:69:50:f3:2f: 95:be:7a:db:ec:a4:37:3c:b3:e4:e3:dc:83:05:29:5a:4d:f0: e1:23:12:06:7d:31:ff:ef:23:2a:03:3f:f5:37:4c:08:64:e8: d1:0f:44:a5:43:d3:80:8b:d5:38:92:b0:e5:bf:71:b8:bf:43: 2f:5f:6b:a9:70:3f:da:38:3c:f8:a8:de:0c:03:83:79:b3:e1: 94:c8:4b:67:d8:d7:8b:04:f6:14:8e:8a:21:af:26:50:4f:6d: 58:b0:eb:89:76:ef:d5:a9:35:a2:a1:bf:e7:2a:5e:8c:29:2f: 5a:a6:92:aa:e8:be:cd:68:d0:e7:06:cf:82:a4:95:ae:8e:4c: 56:1d:4c:83:08:10:c6:ad:87:0c:b2:99:b6:8f:01:e5:f3:b1: d7:6d:cc:61:2e:be:95:9e:a3:4a:1e:dc:bd:3a:29:6f:ef:d2: 61:fc:f3:51:38:9a:f5:68:4e:44:2a:7d:14:bb:24:ec:c3:41: d3:2a:40:e1:a9:06:29:7a:27:f6:c2:bf:57:bf:cd:12:9d:3f: 48:f4:68:d2:d1:4e:a2:ed:b6:8f:d5:ae:5f:c9:35:93:d9:3e: d4:31:c2:50 -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgIUF5PMFuLh9q0WNk90eCZ3ZjCv63QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTM1REIyRDQ0ODhGQUUyQzExRTFCRjNCREYyMEQ4MkEy RERGRDhGMzAeFw0yNjAzMTgwNDU1MDJaFw0yNzAzMTcwNTAwMDJaMDMxMTAvBgNV BAMTKEE3QThFNUZBRkY3MzA2NkJEMEYwNTMzNDA3QTNBMjNCNDNFODkzNzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDYkXWvYoRM16r/Oz3DwzwIp2ZE fQJC1wOUC+sR3qT8zJVX0d/K8XjE8PEd/n4GjuIfUQ0y8ya7j+s3j3dtDVHF33lr afqkPKu3Jr38EbzrpxjzrcmmU0IJuhXXXc4RmsFy3mOd/VVhHl3LSYsdqsXnsmpd B2BXR7SJnHzsF2ANKou57TPeHeR+WhsdIuTnySoKXCSzIjMJ/7BAX+RsYenxWML5 ayva4VNWHkospmfONBayNicAejPptPAzDN2isiAz1CdLm5KHqYCy6gdqHNLKDp1a rWSMmuyB4ipdJp7rG5EVaR0S2L5lkhyHya2+cJ0TUQ9ppIwwvQDrtMSpc1x9AgMB AAGjggI1MIICMTAdBgNVHQ4EFgQUp6jl+v9zBmvQ8FM0B6OiO0Pok3YwHwYDVR0j BBgwFoAUk12y1EiPriwR4b873yDYKi3f2PMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 YzRjNjRhOS0zNTM3LTRiYzctODYxMy04ZTk4MTYyOWU0Y2EvMC85MzVEQjJENDQ4 OEZBRTJDMTFFMUJGM0JERjIwRDgyQTJEREZEOEYzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTM1REIyRDQ0ODhGQUUyQzExRTFCRjNCREYyMEQ4MkEyRERG RDhGMy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZjNGM2NGE5LTM1MzctNGJjNy04 NjEzLThlOTgxNjI5ZTRjYS8wLzMyMzQzMDMyM2EzNjMwMzAzYTY0M2EzYTJmMzQz ODJkMzQzODIwM2QzZTIwMzMzODM1MzEzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQCBgAADTANBgkq hkiG9w0BAQsFAAOCAQEAi6eEPg2vTb+kNQqaI0OPc73+dvgLnKUvsi0daBn/eOVp UPMvlb562+ykNzyz5OPcgwUpWk3w4SMSBn0x/+8jKgM/9TdMCGTo0Q9EpUPTgIvV OJKw5b9xuL9DL19rqXA/2jg8+KjeDAODebPhlMhLZ9jXiwT2FI6KIa8mUE9tWLDr iXbv1ak1oqG/5ypejCkvWqaSqui+zWjQ5wbPgqSVro5MVh1MgwgQxq2HDLKZto8B 5fOx123MYS6+lZ6jSh7cvTopb+/SYfzzUTia9WhORCp9FLsk7MNB0ypA4akGKXon 9sK/V7/NEp0/SPRo0tFOou22j9WuX8k1k9k+1DHCUA== -----END CERTIFICATE-----Generated at Thu Mar 26 18:30:15 2026 by rpki-client