$ rpki-client -vvf repo-rpki.idnic.net/repo/949c8680-bd0f-4a4f-996d-2102a0535374/0/323430343a343234303a3133383a3a2f34382d3438203d3e20313338313239.roa File: 323430343a343234303a3133383a3a2f34382d3438203d3e20313338313239.roa (raw, json) Hash identifier: Fq5zYbjTJ0/FkCGLpNsGsRowFiN3w336hqMcVhjrspg= Subject key identifier: B8:BB:91:4F:49:05:80:78:79:34:C3:71:18:25:33:7C:09:E6:DF:82 Certificate issuer: /CN=F558D9AA4E66D7B6E4CB29EC877953D3ED6CD766 Certificate serial: 618B3004783981FBF7835CDDAC327A82A9BC3CC9 Authority key identifier: F5:58:D9:AA:4E:66:D7:B6:E4:CB:29:EC:87:79:53:D3:ED:6C:D7:66 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F558D9AA4E66D7B6E4CB29EC877953D3ED6CD766.cer Subject info access: rsync://repo-rpki.idnic.net/repo/949c8680-bd0f-4a4f-996d-2102a0535374/0/323430343a343234303a3133383a3a2f34382d3438203d3e20313338313239.roa Signing time: Wed 11 Mar 2026 07:03:24 +0000 ROA not before: Wed 11 Mar 2026 06:58:24 +0000 ROA not after: Wed 10 Mar 2027 07:03:24 +0000 asID: 138129 IP address blocks: 2404:4240:138::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/949c8680-bd0f-4a4f-996d-2102a0535374/0/F558D9AA4E66D7B6E4CB29EC877953D3ED6CD766.crl rsync://repo-rpki.idnic.net/repo/949c8680-bd0f-4a4f-996d-2102a0535374/0/F558D9AA4E66D7B6E4CB29EC877953D3ED6CD766.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F558D9AA4E66D7B6E4CB29EC877953D3ED6CD766.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Mar 2026 19:10:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:8b:30:04:78:39:81:fb:f7:83:5c:dd:ac:32:7a:82:a9:bc:3c:c9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F558D9AA4E66D7B6E4CB29EC877953D3ED6CD766 Validity Not Before: Mar 11 06:58:24 2026 GMT Not After : Mar 10 07:03:24 2027 GMT Subject: CN=B8BB914F490580787934C3711825337C09E6DF82 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:6f:9d:79:d5:5b:d4:b3:b6:93:e1:7e:6a:37: d3:c6:c1:44:22:ae:5d:03:4c:f1:f7:a7:6a:65:36: c2:ac:46:59:d5:2f:24:22:64:fc:c8:a9:84:00:1b: 88:ad:bd:c9:ae:8f:35:d5:05:5b:9d:1a:18:a6:33: 82:e2:ff:9b:0b:d5:5e:4d:2f:e8:c3:17:9b:04:97: b3:a4:55:8b:1e:ff:7b:f0:53:de:58:11:08:89:dc: b3:71:b6:a2:cf:72:55:87:95:cc:b4:68:4c:dd:ce: ad:27:d1:eb:01:42:c7:18:b1:d3:41:de:0e:b4:d3: 5d:95:97:0e:9d:d6:98:7f:0a:54:c3:2d:d8:ae:b7: 33:47:5a:8f:b4:19:ff:f8:fc:9e:70:d3:db:d4:c7: 5b:d2:ad:a1:9b:22:5f:20:87:cd:ee:db:20:1d:5d: 35:d5:8c:4f:0e:44:e3:26:46:28:e4:cb:f2:21:a1: 2e:ab:ab:76:9f:b3:aa:d1:c8:dc:e7:37:0c:e6:4b: 2d:ce:1a:d0:cc:20:1f:de:59:74:97:d3:3b:1b:8e: 7b:b8:07:35:cf:f4:d9:6d:15:2f:6a:f7:1c:e9:c2: 5b:0b:b8:7a:b4:0c:0c:c1:67:18:5d:8e:fb:ab:ad: 34:e9:bb:35:d5:a9:72:3e:36:54:96:b4:ff:3d:c0: 80:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:BB:91:4F:49:05:80:78:79:34:C3:71:18:25:33:7C:09:E6:DF:82 X509v3 Authority Key Identifier: keyid:F5:58:D9:AA:4E:66:D7:B6:E4:CB:29:EC:87:79:53:D3:ED:6C:D7:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/949c8680-bd0f-4a4f-996d-2102a0535374/0/F558D9AA4E66D7B6E4CB29EC877953D3ED6CD766.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F558D9AA4E66D7B6E4CB29EC877953D3ED6CD766.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/949c8680-bd0f-4a4f-996d-2102a0535374/0/323430343a343234303a3133383a3a2f34382d3438203d3e20313338313239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:4240:138::/48 Signature Algorithm: sha256WithRSAEncryption d9:9d:4e:55:15:8d:f4:29:f5:09:98:5e:71:09:8a:d2:89:2a: ff:bb:ac:a1:6d:8b:da:77:bf:c5:1f:65:0c:ac:9a:14:90:40: 89:50:76:87:0b:b0:9b:3e:ad:75:79:0a:5e:42:2d:d0:8b:cd: f5:cf:38:2f:06:38:1c:52:3e:04:44:ff:6a:fa:d5:1b:f1:38: 4b:e0:5f:65:60:f6:2e:9a:98:a1:e4:62:14:f3:36:08:c6:30: c8:f1:e7:62:58:04:f8:14:d1:5d:af:fc:d3:db:82:67:c4:6d: 80:d8:de:36:a9:3b:b1:87:af:fb:0a:e7:26:38:3b:ce:e6:43: 34:ed:ae:ff:6f:47:17:d5:f2:f9:6d:8d:70:a4:17:5d:2d:d9: bd:8a:a6:84:7e:0e:ba:18:dd:2a:6e:15:93:3c:84:b4:8d:d3: 6a:70:7f:81:b1:ce:2c:4b:26:78:c3:8f:c0:b5:ac:24:19:2b: 8d:74:bf:bc:45:2d:05:4b:13:aa:6f:36:7a:39:d9:60:6a:0e: 28:05:b1:c9:a4:02:44:27:43:db:db:d7:20:c4:0d:97:3b:de: 7d:4f:e9:27:af:58:0f:e5:a3:55:e6:c3:ef:c7:0f:6a:44:55: 31:16:58:e4:fb:c4:22:eb:cb:e7:13:32:27:00:03:98:3a:e9: 75:40:8f:3d -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUYYswBHg5gfv3g1zdrDJ6gqm8PMkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjU1OEQ5QUE0RTY2RDdCNkU0Q0IyOUVDODc3OTUzRDNF RDZDRDc2NjAeFw0yNjAzMTEwNjU4MjRaFw0yNzAzMTAwNzAzMjRaMDMxMTAvBgNV BAMTKEI4QkI5MTRGNDkwNTgwNzg3OTM0QzM3MTE4MjUzMzdDMDlFNkRGODIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDeb5151VvUs7aT4X5qN9PGwUQi rl0DTPH3p2plNsKsRlnVLyQiZPzIqYQAG4itvcmujzXVBVudGhimM4Li/5sL1V5N L+jDF5sEl7OkVYse/3vwU95YEQiJ3LNxtqLPclWHlcy0aEzdzq0n0esBQscYsdNB 3g60012Vlw6d1ph/ClTDLdiutzNHWo+0Gf/4/J5w09vUx1vSraGbIl8gh83u2yAd XTXVjE8OROMmRijky/IhoS6rq3afs6rRyNznNwzmSy3OGtDMIB/eWXSX0zsbjnu4 BzXP9NltFS9q9xzpwlsLuHq0DAzBZxhdjvurrTTpuzXVqXI+NlSWtP89wICTAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUuLuRT0kFgHh5NMNxGCUzfAnm34IwHwYDVR0j BBgwFoAU9VjZqk5m17bkyynsh3lT0+1s12YwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 NDljODY4MC1iZDBmLTRhNGYtOTk2ZC0yMTAyYTA1MzUzNzQvMC9GNTU4RDlBQTRF NjZEN0I2RTRDQjI5RUM4Nzc5NTNEM0VENkNENzY2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjU1OEQ5QUE0RTY2RDdCNkU0Q0IyOUVDODc3OTUzRDNFRDZD RDc2Ni5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk0OWM4NjgwLWJkMGYtNGE0Zi05 OTZkLTIxMDJhMDUzNTM3NC8wLzMyMzQzMDM0M2EzNDMyMzQzMDNhMzEzMzM4M2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM4MzEzMjM5LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJARC QAE4MA0GCSqGSIb3DQEBCwUAA4IBAQDZnU5VFY30KfUJmF5xCYrSiSr/u6yhbYva d7/FH2UMrJoUkECJUHaHC7CbPq11eQpeQi3Qi831zzgvBjgcUj4ERP9q+tUb8ThL 4F9lYPYumpih5GIU8zYIxjDI8ediWAT4FNFdr/zT24JnxG2A2N42qTuxh6/7Cucm ODvO5kM07a7/b0cX1fL5bY1wpBddLdm9iqaEfg66GN0qbhWTPIS0jdNqcH+Bsc4s SyZ4w4/AtawkGSuNdL+8RS0FSxOqbzZ6Odlgag4oBbHJpAJEJ0Pb29cgxA2XO959 T+knr1gP5aNV5sPvxw9qRFUxFljk+8Qi68vnEzInAAOYOul1QI89 -----END CERTIFICATE-----Generated at Thu Mar 26 22:56:10 2026 by rpki-client