$ rpki-client -vvf repo-rpki.idnic.net/repo/957b0d7e-eade-4318-ab20-8c7f2d5be69f/0/323430313a383434303a33313a3a2f34382d3438203d3e20313336313331.roa File: 323430313a383434303a33313a3a2f34382d3438203d3e20313336313331.roa (raw, json) Hash identifier: ie2aVkcGBvpyHvTZRIvr00IO8XIdu6Ng+9HehgFo7MQ= Subject key identifier: 8F:0C:52:7C:33:5B:F4:2A:2D:C7:56:53:92:4E:66:55:2E:19:02:89 Certificate issuer: /CN=7D64B8F4CFB687141137D10F9E73FFD0BAB93F67 Certificate serial: 454ACEFD8CD33FE9175644C7C538316CA8489E4C Authority key identifier: 7D:64:B8:F4:CF:B6:87:14:11:37:D1:0F:9E:73:FF:D0:BA:B9:3F:67 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7D64B8F4CFB687141137D10F9E73FFD0BAB93F67.cer Subject info access: rsync://repo-rpki.idnic.net/repo/957b0d7e-eade-4318-ab20-8c7f2d5be69f/0/323430313a383434303a33313a3a2f34382d3438203d3e20313336313331.roa Signing time: Wed 18 Mar 2026 11:00:01 +0000 ROA not before: Wed 18 Mar 2026 10:55:01 +0000 ROA not after: Wed 17 Mar 2027 11:00:01 +0000 asID: 136131 IP address blocks: 2401:8440:31::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/957b0d7e-eade-4318-ab20-8c7f2d5be69f/0/7D64B8F4CFB687141137D10F9E73FFD0BAB93F67.crl rsync://repo-rpki.idnic.net/repo/957b0d7e-eade-4318-ab20-8c7f2d5be69f/0/7D64B8F4CFB687141137D10F9E73FFD0BAB93F67.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7D64B8F4CFB687141137D10F9E73FFD0BAB93F67.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 18:43:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:4a:ce:fd:8c:d3:3f:e9:17:56:44:c7:c5:38:31:6c:a8:48:9e:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7D64B8F4CFB687141137D10F9E73FFD0BAB93F67 Validity Not Before: Mar 18 10:55:01 2026 GMT Not After : Mar 17 11:00:01 2027 GMT Subject: CN=8F0C527C335BF42A2DC75653924E66552E190289 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:51:25:f0:1e:16:8d:41:0c:53:6b:75:cf:1c: ee:4e:59:1a:79:57:2e:04:d5:a7:fe:39:fe:5e:12: 19:6a:29:fc:79:0a:6f:8f:27:b1:85:b7:30:aa:f4: bf:28:cc:74:6c:22:c0:f4:47:fc:c4:cd:8d:64:6f: 42:88:13:0a:32:8f:e3:ef:cd:cf:38:fe:dc:4c:bd: a7:87:dd:31:7b:a7:36:46:45:7a:1c:c3:ed:f6:ca: a4:8e:2d:18:41:de:5b:46:74:f0:34:44:80:37:2a: 64:84:11:40:50:db:c0:71:16:db:3a:f9:f9:33:09: 18:e6:9c:53:b9:c4:95:a9:53:b3:c7:9a:50:1a:02: 38:df:68:38:04:14:93:df:04:5a:eb:19:64:52:79: a6:43:03:01:8c:9a:db:ae:d0:03:83:f9:39:0e:51: 16:7a:c3:91:7d:ad:4f:36:ce:1d:87:45:64:2d:6c: fc:c7:77:52:b8:8e:6e:e6:56:0a:cc:67:72:92:f0: 83:5e:fa:8c:2d:f3:87:07:6e:22:31:76:eb:37:da: c2:8b:35:11:89:5d:48:75:ce:bc:db:16:01:58:25: f6:6b:97:cd:bb:9b:af:d0:7d:02:12:33:d2:ff:7b: 2b:df:26:f2:0e:0b:9f:18:79:7b:bb:5f:18:f8:c7: 84:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:0C:52:7C:33:5B:F4:2A:2D:C7:56:53:92:4E:66:55:2E:19:02:89 X509v3 Authority Key Identifier: keyid:7D:64:B8:F4:CF:B6:87:14:11:37:D1:0F:9E:73:FF:D0:BA:B9:3F:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/957b0d7e-eade-4318-ab20-8c7f2d5be69f/0/7D64B8F4CFB687141137D10F9E73FFD0BAB93F67.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7D64B8F4CFB687141137D10F9E73FFD0BAB93F67.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/957b0d7e-eade-4318-ab20-8c7f2d5be69f/0/323430313a383434303a33313a3a2f34382d3438203d3e20313336313331.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:8440:31::/48 Signature Algorithm: sha256WithRSAEncryption a1:11:48:1f:29:a9:42:e8:b7:9b:c6:49:e7:8d:e3:b6:a0:36: 5f:6b:1d:67:39:a1:42:e2:10:f4:56:03:52:1c:e8:82:91:78: 55:f9:76:86:42:c6:79:47:c8:10:26:87:f4:df:cc:3a:b2:38: 32:f7:12:65:92:ba:75:7b:6d:19:27:c7:5a:2e:90:56:d8:4d: 67:ea:71:53:e7:07:92:69:6f:48:06:b9:ea:b8:18:8a:0e:28: 2e:a4:c5:b5:46:b8:4b:77:53:c0:a2:65:ca:86:f2:89:90:95: 5e:23:b7:de:07:05:1f:f6:97:a3:3c:32:0d:97:c2:27:9b:1f: 65:35:15:6c:23:8e:02:c2:d8:e1:34:07:80:24:29:5d:ed:79: 97:28:7c:26:a8:40:7f:80:cd:84:c0:45:d7:dd:71:77:a2:ec: d6:e8:32:96:38:a9:6a:2a:15:4a:19:f4:13:d0:29:c6:d2:50: 66:f7:ae:ee:2d:6a:e0:90:2a:61:da:79:2d:4f:0c:2a:c3:14: f1:75:1c:e7:c1:79:4b:74:78:60:16:39:65:d8:e2:d7:a9:7e: c9:8d:74:cd:91:c9:51:38:07:13:68:15:1c:49:77:bb:22:d7: ad:43:8c:7f:a2:e2:28:67:1a:c6:a4:b4:a8:06:5e:4e:81:fe: d9:7a:6a:b3 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIURUrO/YzTP+kXVkTHxTgxbKhInkwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0Q2NEI4RjRDRkI2ODcxNDExMzdEMTBGOUU3M0ZGRDBC QUI5M0Y2NzAeFw0yNjAzMTgxMDU1MDFaFw0yNzAzMTcxMTAwMDFaMDMxMTAvBgNV BAMTKDhGMEM1MjdDMzM1QkY0MkEyREM3NTY1MzkyNEU2NjU1MkUxOTAyODkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4USXwHhaNQQxTa3XPHO5OWRp5 Vy4E1af+Of5eEhlqKfx5Cm+PJ7GFtzCq9L8ozHRsIsD0R/zEzY1kb0KIEwoyj+Pv zc84/txMvaeH3TF7pzZGRXocw+32yqSOLRhB3ltGdPA0RIA3KmSEEUBQ28BxFts6 +fkzCRjmnFO5xJWpU7PHmlAaAjjfaDgEFJPfBFrrGWRSeaZDAwGMmtuu0AOD+TkO URZ6w5F9rU82zh2HRWQtbPzHd1K4jm7mVgrMZ3KS8INe+owt84cHbiIxdus32sKL NRGJXUh1zrzbFgFYJfZrl827m6/QfQISM9L/eyvfJvIOC58YeXu7Xxj4x4ThAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUjwxSfDNb9Cotx1ZTkk5mVS4ZAokwHwYDVR0j BBgwFoAUfWS49M+2hxQRN9EPnnP/0Lq5P2cwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 NTdiMGQ3ZS1lYWRlLTQzMTgtYWIyMC04YzdmMmQ1YmU2OWYvMC83RDY0QjhGNENG QjY4NzE0MTEzN0QxMEY5RTczRkZEMEJBQjkzRjY3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0Q2NEI4RjRDRkI2ODcxNDExMzdEMTBGOUU3M0ZGRDBCQUI5 M0Y2Ny5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk1N2IwZDdlLWVhZGUtNDMxOC1h YjIwLThjN2YyZDViZTY5Zi8wLzMyMzQzMDMxM2EzODM0MzQzMDNhMzMzMTNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzMzNjMxMzMzMS5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQBhEAA MTANBgkqhkiG9w0BAQsFAAOCAQEAoRFIHympQui3m8ZJ543jtqA2X2sdZzmhQuIQ 9FYDUhzogpF4Vfl2hkLGeUfIECaH9N/MOrI4MvcSZZK6dXttGSfHWi6QVthNZ+px U+cHkmlvSAa56rgYig4oLqTFtUa4S3dTwKJlyobyiZCVXiO33gcFH/aXozwyDZfC J5sfZTUVbCOOAsLY4TQHgCQpXe15lyh8JqhAf4DNhMBF191xd6Ls1ugyljipaioV Shn0E9ApxtJQZveu7i1q4JAqYdp5LU8MKsMU8XUc58F5S3R4YBY5Zdji16l+yY10 zZHJUTgHE2gVHEl3uyLXrUOMf6LiKGcaxqS0qAZeToH+2Xpqsw== -----END CERTIFICATE-----Generated at Thu Mar 26 17:10:56 2026 by rpki-client