$ rpki-client -vvf repo-rpki.idnic.net/repo/925cda36-693a-4c1a-ba9e-e0e178112140/0/323430343a326363303a34633a3a2f34362d3436203d3e20313331373336.roa File: 323430343a326363303a34633a3a2f34362d3436203d3e20313331373336.roa (raw, json) Hash identifier: IYKQVNRoQRqNvogZPmlDdgm67DSs3++0URey1SE7htE= Subject key identifier: 9B:79:1E:43:BC:46:AC:B2:D9:AC:D5:6A:65:42:E9:08:95:9B:35:15 Certificate issuer: /CN=DF8EF2994CB54209F2C2A39A7BCE7DA0D9C34E4A Certificate serial: 7335001044736B232CEC620DE657814264211DCF Authority key identifier: DF:8E:F2:99:4C:B5:42:09:F2:C2:A3:9A:7B:CE:7D:A0:D9:C3:4E:4A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DF8EF2994CB54209F2C2A39A7BCE7DA0D9C34E4A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/925cda36-693a-4c1a-ba9e-e0e178112140/0/323430343a326363303a34633a3a2f34362d3436203d3e20313331373336.roa Signing time: Fri 06 Mar 2026 14:54:04 +0000 ROA not before: Fri 06 Mar 2026 14:49:04 +0000 ROA not after: Fri 05 Mar 2027 14:54:04 +0000 asID: 131736 IP address blocks: 2404:2cc0:4c::/46 maxlen: 46 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/925cda36-693a-4c1a-ba9e-e0e178112140/0/DF8EF2994CB54209F2C2A39A7BCE7DA0D9C34E4A.crl rsync://repo-rpki.idnic.net/repo/925cda36-693a-4c1a-ba9e-e0e178112140/0/DF8EF2994CB54209F2C2A39A7BCE7DA0D9C34E4A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DF8EF2994CB54209F2C2A39A7BCE7DA0D9C34E4A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 07:29:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:35:00:10:44:73:6b:23:2c:ec:62:0d:e6:57:81:42:64:21:1d:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DF8EF2994CB54209F2C2A39A7BCE7DA0D9C34E4A Validity Not Before: Mar 6 14:49:04 2026 GMT Not After : Mar 5 14:54:04 2027 GMT Subject: CN=9B791E43BC46ACB2D9ACD56A6542E908959B3515 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:6b:ce:23:12:70:db:b3:18:0a:40:ab:63:a4: 99:a4:fa:eb:b1:81:63:2f:7e:58:d5:8b:6f:72:da: b1:cb:73:4d:b8:83:b0:7e:b7:e1:f1:11:02:f5:b9: 17:cf:d2:4e:b1:b2:1a:9e:fb:b9:d7:3c:7b:22:fa: 8b:dc:dd:d9:23:81:1f:63:4a:94:f3:ff:de:1f:fa: dc:1e:97:b7:1d:2f:be:d7:61:b0:0d:a0:ad:68:c5: 90:2f:81:e1:d0:fa:6d:c3:dd:bd:98:13:21:84:2d: b5:7d:f5:44:79:40:97:13:f7:31:95:fb:87:c4:a9: e6:09:0e:3c:09:ba:b8:d1:c6:9a:58:d7:a2:0b:8c: 13:83:df:00:0b:ed:d3:75:4a:a7:c2:07:b7:24:f6: 78:56:ab:6d:63:af:2f:08:8c:a3:ae:c9:93:d1:0f: ea:46:5f:99:fc:e7:3f:32:61:8a:f9:54:bc:34:22: 1d:bd:bc:6f:5d:e7:a0:47:1b:e3:85:e2:44:48:57: 58:dd:e6:e6:dc:b6:9a:f3:da:fc:ea:b8:90:fb:fa: 89:28:c6:2c:a0:b9:31:c0:c7:fc:bc:66:09:78:46: c0:8d:3b:ce:57:23:c9:57:a3:41:1b:1b:ac:07:85: 26:4c:f5:2c:0c:36:a7:14:c1:9d:fe:2e:df:9a:2a: 64:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:79:1E:43:BC:46:AC:B2:D9:AC:D5:6A:65:42:E9:08:95:9B:35:15 X509v3 Authority Key Identifier: keyid:DF:8E:F2:99:4C:B5:42:09:F2:C2:A3:9A:7B:CE:7D:A0:D9:C3:4E:4A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/925cda36-693a-4c1a-ba9e-e0e178112140/0/DF8EF2994CB54209F2C2A39A7BCE7DA0D9C34E4A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DF8EF2994CB54209F2C2A39A7BCE7DA0D9C34E4A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/925cda36-693a-4c1a-ba9e-e0e178112140/0/323430343a326363303a34633a3a2f34362d3436203d3e20313331373336.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:2cc0:4c::/46 Signature Algorithm: sha256WithRSAEncryption 8b:db:82:01:4e:18:8d:c2:ab:3f:78:3a:9a:d9:be:56:54:43: ec:b4:1b:6e:f6:34:ef:15:c1:4b:ef:47:59:d9:2a:07:99:bf: 9b:a9:f1:5e:a9:21:18:ca:eb:22:b6:c8:01:1f:14:d1:99:de: c9:62:5e:da:89:66:18:ff:0f:f7:0c:ff:05:04:6a:94:30:84: 31:76:cb:6e:d7:3c:59:eb:97:f8:0a:c1:cc:90:ed:cf:ad:60: 94:e5:78:75:31:e0:e3:83:2d:ab:70:cb:88:a9:7b:e9:37:ca: 84:73:08:30:44:9c:ff:96:64:7d:54:5f:82:e5:ce:a6:1e:37: 93:29:bf:9f:f1:83:91:64:33:b3:9f:cb:68:70:f4:4d:d3:66: a6:39:ae:50:5b:35:59:fa:44:48:3b:1f:9f:aa:29:53:f9:8e: 57:55:f4:7a:46:75:79:83:6a:65:46:57:f0:7b:f3:5e:84:6c: 76:c2:15:40:c1:1a:ce:23:d3:5e:6b:48:59:ff:5c:76:bb:72: 0d:4f:36:4d:6d:16:36:33:0b:e9:cb:31:80:6f:c5:40:e5:e7: 83:b0:23:43:f5:95:69:45:0c:20:eb:f2:fe:4d:81:ac:c8:06: fd:e6:a4:cf:ec:f9:f7:93:99:ec:7f:3a:a6:21:31:bc:0d:88: 84:9f:4e:38 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUczUAEERzayMs7GIN5leBQmQhHc8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREY4RUYyOTk0Q0I1NDIwOUYyQzJBMzlBN0JDRTdEQTBE OUMzNEU0QTAeFw0yNjAzMDYxNDQ5MDRaFw0yNzAzMDUxNDU0MDRaMDMxMTAvBgNV BAMTKDlCNzkxRTQzQkM0NkFDQjJEOUFDRDU2QTY1NDJFOTA4OTU5QjM1MTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/a84jEnDbsxgKQKtjpJmk+uux gWMvfljVi29y2rHLc024g7B+t+HxEQL1uRfP0k6xshqe+7nXPHsi+ovc3dkjgR9j SpTz/94f+twel7cdL77XYbANoK1oxZAvgeHQ+m3D3b2YEyGELbV99UR5QJcT9zGV +4fEqeYJDjwJurjRxppY16ILjBOD3wAL7dN1SqfCB7ck9nhWq21jry8IjKOuyZPR D+pGX5n85z8yYYr5VLw0Ih29vG9d56BHG+OF4kRIV1jd5ubctprz2vzquJD7+oko xiyguTHAx/y8Zgl4RsCNO85XI8lXo0EbG6wHhSZM9SwMNqcUwZ3+Lt+aKmQhAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUm3keQ7xGrLLZrNVqZULpCJWbNRUwHwYDVR0j BBgwFoAU347ymUy1QgnywqOae859oNnDTkowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 MjVjZGEzNi02OTNhLTRjMWEtYmE5ZS1lMGUxNzgxMTIxNDAvMC9ERjhFRjI5OTRD QjU0MjA5RjJDMkEzOUE3QkNFN0RBMEQ5QzM0RTRBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREY4RUYyOTk0Q0I1NDIwOUYyQzJBMzlBN0JDRTdEQTBEOUMz NEU0QS5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzkyNWNkYTM2LTY5M2EtNGMxYS1i YTllLWUwZTE3ODExMjE0MC8wLzMyMzQzMDM0M2EzMjYzNjMzMDNhMzQ2MzNhM2Ey ZjM0MzYyZDM0MzYyMDNkM2UyMDMxMzMzMTM3MzMzNi5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHAiQELMAA TDANBgkqhkiG9w0BAQsFAAOCAQEAi9uCAU4YjcKrP3g6mtm+VlRD7LQbbvY07xXB S+9HWdkqB5m/m6nxXqkhGMrrIrbIAR8U0ZneyWJe2olmGP8P9wz/BQRqlDCEMXbL btc8WeuX+ArBzJDtz61glOV4dTHg44Mtq3DLiKl76TfKhHMIMESc/5ZkfVRfguXO ph43kym/n/GDkWQzs5/LaHD0TdNmpjmuUFs1WfpESDsfn6opU/mOV1X0ekZ1eYNq ZUZX8HvzXoRsdsIVQMEaziPTXmtIWf9cdrtyDU82TW0WNjML6csxgG/FQOXng7Aj Q/WVaUUMIOvy/k2BrMgG/eakz+z595OZ7H86piExvA2IhJ9OOA== -----END CERTIFICATE-----Generated at Thu Mar 26 18:33:10 2026 by rpki-client