$ rpki-client -vvf repo-rpki.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/323430343a3838303a3a2f34382d3438203d3e203338373530.roa File: 323430343a3838303a3a2f34382d3438203d3e203338373530.roa (raw, json) Hash identifier: 6LIXTMzQc/lghuTmByqypLyfUbvgb0HreytMEaQ8ub8= Subject key identifier: DE:8E:87:68:06:E6:E3:50:A2:25:F8:37:62:05:9C:FA:7D:21:7E:2A Certificate issuer: /CN=D55BE8217A22212F977BD95B41F7C9EE9DE3201B Certificate serial: 3A6DE21ABEFA68EF9C86DFEB38AA74E4BDAEF722 Authority key identifier: D5:5B:E8:21:7A:22:21:2F:97:7B:D9:5B:41:F7:C9:EE:9D:E3:20:1B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/323430343a3838303a3a2f34382d3438203d3e203338373530.roa Signing time: Thu 26 Mar 2026 04:31:20 +0000 ROA not before: Thu 26 Mar 2026 04:26:20 +0000 ROA not after: Thu 25 Mar 2027 04:31:20 +0000 asID: 38750 IP address blocks: 2404:880::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.crl rsync://repo-rpki.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Mar 2026 10:24:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:6d:e2:1a:be:fa:68:ef:9c:86:df:eb:38:aa:74:e4:bd:ae:f7:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D55BE8217A22212F977BD95B41F7C9EE9DE3201B Validity Not Before: Mar 26 04:26:20 2026 GMT Not After : Mar 25 04:31:20 2027 GMT Subject: CN=DE8E876806E6E350A225F83762059CFA7D217E2A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:5d:a4:c2:39:1b:37:93:8a:95:5d:08:08:05: 20:bf:05:b3:77:68:03:f8:e8:a3:79:d9:81:17:54: 21:4f:e8:2f:57:16:9a:8b:f1:91:15:ad:32:38:00: 81:d8:5e:cb:77:39:73:8b:69:f5:cd:3c:08:4e:59: 8a:37:7d:12:df:7a:8f:0e:71:60:f5:4f:1b:18:ae: 61:47:db:2d:ef:90:2b:b0:08:fc:4c:73:25:1f:30: 0a:93:14:a9:22:b9:8a:52:6c:a0:7b:a3:ee:63:86: 98:f3:47:c4:3d:12:af:c9:88:b4:b8:d4:0d:1e:d3: a1:cd:91:3a:c4:70:6c:4d:5e:43:a8:73:13:03:05: 17:1a:04:aa:00:18:11:d4:aa:8d:20:b2:11:6f:d8: 46:ce:5f:18:90:b8:82:a9:29:73:6d:1a:6c:61:6f: 52:ee:26:15:ef:20:3a:88:ab:cb:95:14:5a:db:36: 28:d6:cf:58:e0:50:27:9e:b2:db:ff:45:7b:f3:b1: a7:9c:f6:cd:fe:07:38:ad:13:0d:3f:97:eb:36:93: f0:f4:64:a4:4b:4e:78:22:00:62:6d:7e:ef:de:16: 0f:00:96:2d:1a:a2:4c:b5:a4:e9:eb:71:66:35:99: 82:ed:c8:82:a2:12:4b:03:99:e2:f2:1b:86:40:25: a5:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:8E:87:68:06:E6:E3:50:A2:25:F8:37:62:05:9C:FA:7D:21:7E:2A X509v3 Authority Key Identifier: keyid:D5:5B:E8:21:7A:22:21:2F:97:7B:D9:5B:41:F7:C9:EE:9D:E3:20:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/323430343a3838303a3a2f34382d3438203d3e203338373530.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:880::/48 Signature Algorithm: sha256WithRSAEncryption 49:7d:7b:f6:c9:87:3d:4e:cb:cb:cb:ec:1d:c0:8a:86:56:af: 46:ef:90:4e:10:cf:a3:87:b5:26:31:e8:f8:56:dd:db:98:90: 96:7c:77:47:a7:47:b8:2a:96:5e:30:0d:29:53:3a:d3:78:0f: 88:eb:c0:6f:ad:35:53:d2:b0:f5:a0:ca:f6:c3:7d:39:93:d3: da:d3:5f:d0:39:c3:51:d4:8e:6f:bd:00:26:4e:e8:a2:29:51: c2:b7:1f:c9:0e:f8:a0:1f:17:f2:1c:0d:69:5d:ad:cb:0b:83: bd:52:13:7f:4d:99:06:71:d3:f1:22:26:42:20:aa:f2:e3:07: ef:7c:79:61:cc:31:ed:99:e9:79:a8:d8:a9:eb:e1:d1:d4:1f: fb:67:da:33:0f:72:c0:aa:ae:69:45:10:b2:3e:90:c2:90:9d: 9e:9d:8e:9a:32:f2:10:9e:bf:2b:a4:2d:a3:26:e9:af:c6:93: ff:79:24:41:ca:47:01:89:e9:34:fe:fb:5a:ed:8e:2d:f9:be: 45:52:8b:e5:9a:ad:6c:4b:dc:37:19:2b:b9:46:88:cf:97:92: 54:a8:3d:40:7c:54:41:05:e2:af:ef:60:7c:53:d1:2e:d7:e1: b1:09:02:c3:6e:b6:a0:c7:cd:3c:35:9b:fd:13:24:3c:0e:23: c4:05:cd:2e -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUOm3iGr76aO+cht/rOKp05L2u9yIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDU1QkU4MjE3QTIyMjEyRjk3N0JEOTVCNDFGN0M5RUU5 REUzMjAxQjAeFw0yNjAzMjYwNDI2MjBaFw0yNzAzMjUwNDMxMjBaMDMxMTAvBgNV BAMTKERFOEU4NzY4MDZFNkUzNTBBMjI1RjgzNzYyMDU5Q0ZBN0QyMTdFMkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDgXaTCORs3k4qVXQgIBSC/BbN3 aAP46KN52YEXVCFP6C9XFpqL8ZEVrTI4AIHYXst3OXOLafXNPAhOWYo3fRLfeo8O cWD1TxsYrmFH2y3vkCuwCPxMcyUfMAqTFKkiuYpSbKB7o+5jhpjzR8Q9Eq/JiLS4 1A0e06HNkTrEcGxNXkOocxMDBRcaBKoAGBHUqo0gshFv2EbOXxiQuIKpKXNtGmxh b1LuJhXvIDqIq8uVFFrbNijWz1jgUCeestv/RXvzsaec9s3+BzitEw0/l+s2k/D0 ZKRLTngiAGJtfu/eFg8Ali0aoky1pOnrcWY1mYLtyIKiEksDmeLyG4ZAJaU1AgMB AAGjggIwMIICLDAdBgNVHQ4EFgQU3o6HaAbm41CiJfg3YgWc+n0hfiowHwYDVR0j BBgwFoAU1VvoIXoiIS+Xe9lbQffJ7p3jIBswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 MGY1Y2ZkYi03OTg3LTQzNTEtYmMyZS02NmMyNGY0OWY0NDAvMC9ENTVCRTgyMTdB MjIyMTJGOTc3QkQ5NUI0MUY3QzlFRTlERTMyMDFCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDU1QkU4MjE3QTIyMjEyRjk3N0JEOTVCNDFGN0M5RUU5REUz MjAxQi5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNzBmNWNmZGItNzk4Ny00MzUxLWJj MmUtNjZjMjRmNDlmNDQwLzAvMzIzNDMwMzQzYTM4MzgzMDNhM2EyZjM0MzgyZDM0 MzgyMDNkM2UyMDMzMzgzNzM1MzAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBAiAAAAwDQYJKoZIhvcN AQELBQADggEBAEl9e/bJhz1Oy8vL7B3AioZWr0bvkE4Qz6OHtSYx6PhW3duYkJZ8 d0enR7gqll4wDSlTOtN4D4jrwG+tNVPSsPWgyvbDfTmT09rTX9A5w1HUjm+9ACZO 6KIpUcK3H8kO+KAfF/IcDWldrcsLg71SE39NmQZx0/EiJkIgqvLjB+98eWHMMe2Z 6Xmo2Knr4dHUH/tn2jMPcsCqrmlFELI+kMKQnZ6djpoy8hCevyukLaMm6a/Gk/95 JEHKRwGJ6TT++1rtji35vkVSi+WarWxL3DcZK7lGiM+XklSoPUB8VEEF4q/vYHxT 0S7X4bEJAsNutqDHzTw1m/0TJDwOI8QFzS4= -----END CERTIFICATE-----Generated at Thu Mar 26 13:03:46 2026 by rpki-client