$ rpki-client -vvf repo-rpki.idnic.net/repo/957b0d7e-eade-4318-ab20-8c7f2d5be69f/0/323430313a383434303a3133313a3a2f34382d3438203d3e20313336313331.roa File: 323430313a383434303a3133313a3a2f34382d3438203d3e20313336313331.roa (raw, json) Hash identifier: +nlrtI9AN/zzRQRbSnxtN71LuVqGUhlVEh4O5UiaJPQ= Subject key identifier: A7:03:87:40:0E:E7:BE:7F:68:51:C4:8F:96:B2:2B:30:64:0C:84:3D Certificate issuer: /CN=7D64B8F4CFB687141137D10F9E73FFD0BAB93F67 Certificate serial: 1F5130A553F73531B405FC55D68BF3BB3095B1A4 Authority key identifier: 7D:64:B8:F4:CF:B6:87:14:11:37:D1:0F:9E:73:FF:D0:BA:B9:3F:67 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7D64B8F4CFB687141137D10F9E73FFD0BAB93F67.cer Subject info access: rsync://repo-rpki.idnic.net/repo/957b0d7e-eade-4318-ab20-8c7f2d5be69f/0/323430313a383434303a3133313a3a2f34382d3438203d3e20313336313331.roa Signing time: Wed 18 Mar 2026 11:00:01 +0000 ROA not before: Wed 18 Mar 2026 10:55:01 +0000 ROA not after: Wed 17 Mar 2027 11:00:01 +0000 asID: 136131 IP address blocks: 2401:8440:131::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/957b0d7e-eade-4318-ab20-8c7f2d5be69f/0/7D64B8F4CFB687141137D10F9E73FFD0BAB93F67.crl rsync://repo-rpki.idnic.net/repo/957b0d7e-eade-4318-ab20-8c7f2d5be69f/0/7D64B8F4CFB687141137D10F9E73FFD0BAB93F67.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7D64B8F4CFB687141137D10F9E73FFD0BAB93F67.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 18:43:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:51:30:a5:53:f7:35:31:b4:05:fc:55:d6:8b:f3:bb:30:95:b1:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7D64B8F4CFB687141137D10F9E73FFD0BAB93F67 Validity Not Before: Mar 18 10:55:01 2026 GMT Not After : Mar 17 11:00:01 2027 GMT Subject: CN=A70387400EE7BE7F6851C48F96B22B30640C843D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:39:11:f7:01:01:cf:b3:fc:0b:22:01:3c:b1: 8a:54:06:b9:70:c8:80:3a:a8:aa:bb:ee:63:bf:65: 4b:8b:b4:fd:9b:d0:89:d2:6b:ab:30:52:1f:32:50: 48:f1:eb:5d:50:bd:c4:a4:1f:77:0e:d1:a4:20:77: 08:59:83:a5:d3:25:f2:4e:9d:7e:e6:25:23:e5:6b: 20:6f:87:58:ea:4c:5c:ee:79:3a:b7:7c:88:93:ed: 83:b5:1b:9d:b2:29:d0:88:3f:eb:69:6c:2c:3b:c7: 3e:b5:f9:8b:d4:f8:1c:0e:56:76:e6:a9:a6:5b:6c: 37:14:7e:05:0d:17:c1:57:16:c0:91:5a:59:d7:da: 55:d1:86:30:47:4f:80:32:5a:7e:50:c5:59:f9:4c: 84:95:37:de:1e:c7:77:a4:4f:75:36:d6:67:50:42: 70:e6:b4:01:cd:ea:e2:3a:2f:3a:72:17:41:94:45: 97:fb:2f:d5:8f:e9:a1:77:09:17:26:5a:10:94:47: 51:29:b8:f2:7b:3f:56:38:33:d8:ca:b5:58:74:ea: 07:70:3b:50:70:3f:f6:f3:3b:38:23:e0:e6:6f:f7: ac:d9:cf:3f:a6:46:4e:6f:aa:8b:d8:c5:c7:81:6d: 91:62:72:60:88:c4:09:b4:5d:1c:7f:08:d7:33:af: 52:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:03:87:40:0E:E7:BE:7F:68:51:C4:8F:96:B2:2B:30:64:0C:84:3D X509v3 Authority Key Identifier: keyid:7D:64:B8:F4:CF:B6:87:14:11:37:D1:0F:9E:73:FF:D0:BA:B9:3F:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/957b0d7e-eade-4318-ab20-8c7f2d5be69f/0/7D64B8F4CFB687141137D10F9E73FFD0BAB93F67.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7D64B8F4CFB687141137D10F9E73FFD0BAB93F67.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/957b0d7e-eade-4318-ab20-8c7f2d5be69f/0/323430313a383434303a3133313a3a2f34382d3438203d3e20313336313331.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:8440:131::/48 Signature Algorithm: sha256WithRSAEncryption 8b:e5:c2:88:c2:32:8f:dd:28:26:74:20:a0:2e:77:f3:7e:29: 17:89:13:4b:8b:52:be:44:35:a0:3b:30:e8:4a:cd:98:18:77: f6:7b:49:ff:d0:6c:25:08:ed:d7:eb:04:2d:eb:b8:f6:a9:f1: fb:0a:0e:e0:6d:11:83:5f:db:d8:64:0c:e9:02:1d:70:55:e8: 81:69:5c:dd:0d:e4:00:92:e6:cb:7d:aa:a1:eb:df:64:7f:95: f3:ea:10:05:5c:8f:18:cd:55:40:fc:16:b4:73:34:9a:e5:bf: e3:38:88:d5:46:eb:c0:5b:56:df:a5:8e:49:ff:bc:c3:e2:4a: ca:9d:47:0e:fc:ba:3b:99:61:b9:27:d4:1d:0f:76:fc:9f:6d: 1e:26:07:e9:25:38:80:ab:13:9e:94:e3:c1:51:b5:f8:72:e8: 4d:8c:9f:6b:22:bb:bd:af:f8:ac:e2:40:64:c6:43:3c:32:b3: 4a:dd:9e:7c:91:c9:f4:a3:40:ab:57:e3:4c:85:06:0e:3e:75: 45:4a:cd:f4:e2:81:32:88:cd:bb:ad:ee:9d:10:e9:39:b4:18: 7c:8b:22:f1:ed:b9:1f:ed:66:88:73:71:ed:c4:99:4a:e5:d2: dc:f3:36:ac:a3:b2:a0:02:7b:53:4a:d1:2f:58:d7:53:5f:d5: 57:7d:51:0b -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUH1EwpVP3NTG0BfxV1ovzuzCVsaQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0Q2NEI4RjRDRkI2ODcxNDExMzdEMTBGOUU3M0ZGRDBC QUI5M0Y2NzAeFw0yNjAzMTgxMDU1MDFaFw0yNzAzMTcxMTAwMDFaMDMxMTAvBgNV BAMTKEE3MDM4NzQwMEVFN0JFN0Y2ODUxQzQ4Rjk2QjIyQjMwNjQwQzg0M0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwORH3AQHPs/wLIgE8sYpUBrlw yIA6qKq77mO/ZUuLtP2b0InSa6swUh8yUEjx611QvcSkH3cO0aQgdwhZg6XTJfJO nX7mJSPlayBvh1jqTFzueTq3fIiT7YO1G52yKdCIP+tpbCw7xz61+YvU+BwOVnbm qaZbbDcUfgUNF8FXFsCRWlnX2lXRhjBHT4AyWn5QxVn5TISVN94ex3ekT3U21mdQ QnDmtAHN6uI6LzpyF0GURZf7L9WP6aF3CRcmWhCUR1EpuPJ7P1Y4M9jKtVh06gdw O1BwP/bzOzgj4OZv96zZzz+mRk5vqovYxceBbZFicmCIxAm0XRx/CNczr1I7AgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUpwOHQA7nvn9oUcSPlrIrMGQMhD0wHwYDVR0j BBgwFoAUfWS49M+2hxQRN9EPnnP/0Lq5P2cwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 NTdiMGQ3ZS1lYWRlLTQzMTgtYWIyMC04YzdmMmQ1YmU2OWYvMC83RDY0QjhGNENG QjY4NzE0MTEzN0QxMEY5RTczRkZEMEJBQjkzRjY3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0Q2NEI4RjRDRkI2ODcxNDExMzdEMTBGOUU3M0ZGRDBCQUI5 M0Y2Ny5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk1N2IwZDdlLWVhZGUtNDMxOC1h YjIwLThjN2YyZDViZTY5Zi8wLzMyMzQzMDMxM2EzODM0MzQzMDNhMzEzMzMxM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM2MzEzMzMxLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAGE QAExMA0GCSqGSIb3DQEBCwUAA4IBAQCL5cKIwjKP3SgmdCCgLnfzfikXiRNLi1K+ RDWgOzDoSs2YGHf2e0n/0GwlCO3X6wQt67j2qfH7Cg7gbRGDX9vYZAzpAh1wVeiB aVzdDeQAkubLfaqh699kf5Xz6hAFXI8YzVVA/Ba0czSa5b/jOIjVRuvAW1bfpY5J /7zD4krKnUcO/Lo7mWG5J9QdD3b8n20eJgfpJTiAqxOelOPBUbX4cuhNjJ9rIru9 r/is4kBkxkM8MrNK3Z58kcn0o0CrV+NMhQYOPnVFSs304oEyiM27re6dEOk5tBh8 iyLx7bkf7WaIc3HtxJlK5dLc8zaso7KgAntTStEvWNdTX9VXfVEL -----END CERTIFICATE-----Generated at Thu Mar 26 17:25:12 2026 by rpki-client