$ rpki-client -vvf repo-rpki.idnic.net/repo/b450d956-9b00-46c1-a631-3564e186a079/0/323430363a373563303a3a2f33322d3332203d3e20313431303639.roa File: 323430363a373563303a3a2f33322d3332203d3e20313431303639.roa (raw, json) Hash identifier: OhCikhmCmpxJ179Dz3jD3MYaX472XabuwFiYuL+ycvU= Subject key identifier: D3:59:BF:85:E5:D0:AF:CD:AC:53:DA:3A:4C:A0:C7:1D:8D:03:22:B7 Certificate issuer: /CN=98FF48FFAD3CC9E9878D3FA74E0EEA79CA13F0FA Certificate serial: 05984016F55203AC05F5C68887BD1599297A8F5B Authority key identifier: 98:FF:48:FF:AD:3C:C9:E9:87:8D:3F:A7:4E:0E:EA:79:CA:13:F0:FA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/98FF48FFAD3CC9E9878D3FA74E0EEA79CA13F0FA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b450d956-9b00-46c1-a631-3564e186a079/0/323430363a373563303a3a2f33322d3332203d3e20313431303639.roa Signing time: Thu 19 Mar 2026 08:00:00 +0000 ROA not before: Thu 19 Mar 2026 07:55:00 +0000 ROA not after: Thu 18 Mar 2027 08:00:00 +0000 asID: 141069 IP address blocks: 2406:75c0::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b450d956-9b00-46c1-a631-3564e186a079/0/98FF48FFAD3CC9E9878D3FA74E0EEA79CA13F0FA.crl rsync://repo-rpki.idnic.net/repo/b450d956-9b00-46c1-a631-3564e186a079/0/98FF48FFAD3CC9E9878D3FA74E0EEA79CA13F0FA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/98FF48FFAD3CC9E9878D3FA74E0EEA79CA13F0FA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Mar 2026 19:47:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:98:40:16:f5:52:03:ac:05:f5:c6:88:87:bd:15:99:29:7a:8f:5b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=98FF48FFAD3CC9E9878D3FA74E0EEA79CA13F0FA Validity Not Before: Mar 19 07:55:00 2026 GMT Not After : Mar 18 08:00:00 2027 GMT Subject: CN=D359BF85E5D0AFCDAC53DA3A4CA0C71D8D0322B7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:d9:eb:92:f8:e6:b2:1e:fc:45:1a:7d:2a:91: 35:e4:bd:aa:f0:f0:7a:ae:75:d8:ba:ee:99:8b:84: 79:9d:fd:6c:14:c2:96:d7:51:06:a6:8a:7f:b0:ee: 93:47:39:48:45:43:46:17:8e:fb:33:b4:0c:aa:f0: 5a:c0:b2:4d:4c:1f:13:91:69:20:0d:c8:b5:b5:3b: 53:60:31:1e:c8:af:0c:a5:6f:ce:53:31:aa:5f:bc: 00:ec:e2:40:24:4c:8a:74:f0:66:fa:4f:66:97:49: 6a:a2:5c:a6:7b:1f:12:bf:67:a1:3f:c2:0a:a9:74: f7:21:9b:aa:8b:e7:3f:70:cd:e5:07:19:d2:37:9c: f6:a6:bf:65:07:31:15:f1:47:e1:7a:bb:86:a2:b6: e2:55:8f:fb:3c:dd:58:62:b3:cc:29:1b:96:1b:c1: 39:88:ab:51:3a:a7:b6:1e:72:3d:a6:23:4a:0d:81: 3a:99:ab:88:d3:24:03:79:cf:81:d9:3c:a5:90:45: 4e:dd:6d:98:63:bb:21:d5:ba:1a:64:e0:82:4b:6e: 54:0a:35:d9:98:96:32:9c:69:25:2a:9a:cd:51:3b: 55:62:96:80:16:24:ba:8c:9d:49:06:96:d0:65:57: bb:47:0b:86:43:70:8d:91:cb:59:ba:ff:d4:71:e5: ce:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:59:BF:85:E5:D0:AF:CD:AC:53:DA:3A:4C:A0:C7:1D:8D:03:22:B7 X509v3 Authority Key Identifier: keyid:98:FF:48:FF:AD:3C:C9:E9:87:8D:3F:A7:4E:0E:EA:79:CA:13:F0:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b450d956-9b00-46c1-a631-3564e186a079/0/98FF48FFAD3CC9E9878D3FA74E0EEA79CA13F0FA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/98FF48FFAD3CC9E9878D3FA74E0EEA79CA13F0FA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b450d956-9b00-46c1-a631-3564e186a079/0/323430363a373563303a3a2f33322d3332203d3e20313431303639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:75c0::/32 Signature Algorithm: sha256WithRSAEncryption 4b:f7:37:19:00:cf:5c:a2:af:dd:4d:9e:a8:a5:cf:1d:69:df: 02:81:75:f5:0d:14:08:69:fd:2c:5c:38:7c:93:1b:f4:21:2d: a8:c4:62:91:e1:76:92:91:b2:88:a6:8c:f3:06:14:f1:2f:9b: a8:35:d1:e7:28:04:a5:73:a6:2d:1f:cc:3e:53:e2:d6:bd:03: 5b:73:8d:57:7d:b2:7e:ef:a2:fb:20:c7:59:a2:2a:20:74:a0: c5:77:fb:0a:6b:79:22:3a:34:fb:bc:b1:39:aa:d8:21:51:15: cc:e8:c4:5b:bd:a6:ec:e5:8c:dc:4c:20:69:b8:56:dd:7e:53: 19:d8:e8:30:6e:4c:65:d2:c5:79:45:a7:b7:2e:a5:f0:67:7e: 40:f9:c9:84:8f:81:26:4a:72:7d:6b:ad:f1:2a:ee:4d:9a:d8: 57:1a:56:a9:05:a7:14:4f:88:8e:87:2f:6f:a2:3b:4d:73:f1: f3:d4:36:82:dc:7e:9a:50:c2:6d:75:9c:67:9c:7d:4f:ad:6e: 4b:34:7a:d4:e3:e7:9a:33:1e:38:83:10:4c:7a:94:5d:49:b2: fe:b0:12:c5:37:a8:5b:41:7c:be:4d:af:90:58:97:ff:ad:ff: 58:53:af:cc:06:be:c6:f7:da:95:b1:fc:16:f8:a0:c6:f6:12: fa:c9:bc:37 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUBZhAFvVSA6wF9caIh70VmSl6j1swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOThGRjQ4RkZBRDNDQzlFOTg3OEQzRkE3NEUwRUVBNzlD QTEzRjBGQTAeFw0yNjAzMTkwNzU1MDBaFw0yNzAzMTgwODAwMDBaMDMxMTAvBgNV BAMTKEQzNTlCRjg1RTVEMEFGQ0RBQzUzREEzQTRDQTBDNzFEOEQwMzIyQjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC92euS+OayHvxFGn0qkTXkvarw 8Hquddi67pmLhHmd/WwUwpbXUQamin+w7pNHOUhFQ0YXjvsztAyq8FrAsk1MHxOR aSANyLW1O1NgMR7Irwylb85TMapfvADs4kAkTIp08Gb6T2aXSWqiXKZ7HxK/Z6E/ wgqpdPchm6qL5z9wzeUHGdI3nPamv2UHMRXxR+F6u4aituJVj/s83Vhis8wpG5Yb wTmIq1E6p7Yecj2mI0oNgTqZq4jTJAN5z4HZPKWQRU7dbZhjuyHVuhpk4IJLblQK NdmYljKcaSUqms1RO1ViloAWJLqMnUkGltBlV7tHC4ZDcI2Ry1m6/9Rx5c4fAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQU01m/heXQr82sU9o6TKDHHY0DIrcwHwYDVR0j BBgwFoAUmP9I/608yemHjT+nTg7qecoT8PowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i NDUwZDk1Ni05YjAwLTQ2YzEtYTYzMS0zNTY0ZTE4NmEwNzkvMC85OEZGNDhGRkFE M0NDOUU5ODc4RDNGQTc0RTBFRUE3OUNBMTNGMEZBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOThGRjQ4RkZBRDNDQzlFOTg3OEQzRkE3NEUwRUVBNzlDQTEz RjBGQS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I0NTBkOTU2LTliMDAtNDZjMS1h NjMxLTM1NjRlMTg2YTA3OS8wLzMyMzQzMDM2M2EzNzM1NjMzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzQzMTMwMzYzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQGdcAwDQYJKoZI hvcNAQELBQADggEBAEv3NxkAz1yir91Nnqilzx1p3wKBdfUNFAhp/SxcOHyTG/Qh LajEYpHhdpKRsoimjPMGFPEvm6g10ecoBKVzpi0fzD5T4ta9A1tzjVd9sn7vovsg x1miKiB0oMV3+wpreSI6NPu8sTmq2CFRFczoxFu9puzljNxMIGm4Vt1+UxnY6DBu TGXSxXlFp7cupfBnfkD5yYSPgSZKcn1rrfEq7k2a2FcaVqkFpxRPiI6HL2+iO01z 8fPUNoLcfppQwm11nGecfU+tbks0etTj55ozHjiDEEx6lF1Jsv6wEsU3qFtBfL5N r5BYl/+t/1hTr8wGvsb32pWx/Bb4oMb2EvrJvDc= -----END CERTIFICATE-----Generated at Thu Mar 26 21:22:04 2026 by rpki-client