$ rpki-client -vvf repo-rpki.idnic.net/repo/c596bcc8-38cd-4437-80b1-5bae9f857937/0/323430363a313334303a3a2f33322d3332203d3e20313430343037.roa File: 323430363a313334303a3a2f33322d3332203d3e20313430343037.roa (raw, json) Hash identifier: Hyks02vm+IrJfJlkt2pLKSjbWcHdF+X+d5q3JiqywOI= Subject key identifier: 6A:EE:5B:6C:49:6C:9B:CF:9A:6A:1B:65:7A:E8:E3:2D:0E:38:E9:74 Certificate issuer: /CN=F10DEA85A199138D0AD96DC4D3CB537CDA662C53 Certificate serial: 288846C7D29E00EFDB5E5CBB603D47A148460933 Authority key identifier: F1:0D:EA:85:A1:99:13:8D:0A:D9:6D:C4:D3:CB:53:7C:DA:66:2C:53 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F10DEA85A199138D0AD96DC4D3CB537CDA662C53.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c596bcc8-38cd-4437-80b1-5bae9f857937/0/323430363a313334303a3a2f33322d3332203d3e20313430343037.roa Signing time: Wed 18 Mar 2026 09:02:52 +0000 ROA not before: Wed 18 Mar 2026 08:57:52 +0000 ROA not after: Wed 17 Mar 2027 09:02:52 +0000 asID: 140407 IP address blocks: 2406:1340::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c596bcc8-38cd-4437-80b1-5bae9f857937/0/F10DEA85A199138D0AD96DC4D3CB537CDA662C53.crl rsync://repo-rpki.idnic.net/repo/c596bcc8-38cd-4437-80b1-5bae9f857937/0/F10DEA85A199138D0AD96DC4D3CB537CDA662C53.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F10DEA85A199138D0AD96DC4D3CB537CDA662C53.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 05:08:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:88:46:c7:d2:9e:00:ef:db:5e:5c:bb:60:3d:47:a1:48:46:09:33 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F10DEA85A199138D0AD96DC4D3CB537CDA662C53 Validity Not Before: Mar 18 08:57:52 2026 GMT Not After : Mar 17 09:02:52 2027 GMT Subject: CN=6AEE5B6C496C9BCF9A6A1B657AE8E32D0E38E974 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:7e:03:92:4a:6f:cf:10:ad:e0:97:c6:99:27: 54:45:70:c7:33:7c:90:0c:97:e7:73:e5:69:a6:c2: 14:e8:eb:39:5c:7b:7e:9d:4e:36:d1:1d:17:72:51: 97:73:8f:c2:29:fb:f5:1e:26:c7:3a:0e:20:62:68: 2b:b8:78:f9:21:32:35:ce:2d:5c:0b:47:fa:43:6b: 38:e7:0a:7f:44:09:be:89:18:b1:f0:a8:e2:0d:3c: fb:84:20:f6:d6:e3:a0:cc:6c:17:c9:10:30:59:39: 8b:2d:22:6a:05:46:9f:e2:2d:c8:18:ba:ce:48:a4: c6:1f:4f:48:25:00:cb:04:f3:c0:d0:59:9b:7c:c5: c6:f9:3e:ce:8b:08:96:92:5e:fd:af:1b:b3:90:5a: ba:d4:f9:d5:59:30:99:7d:56:bb:aa:6a:53:07:f1: 10:a3:85:90:7f:d4:b7:32:13:c1:c9:a9:b7:81:e6: 89:88:b0:4e:d3:3b:49:26:13:98:45:70:30:52:fb: bd:9b:b2:d5:4c:5a:7a:95:26:36:3b:a9:08:96:18: 23:89:c5:5e:85:f5:3e:1c:4c:7d:74:3b:c0:a7:16: 70:4d:b0:bd:b6:44:11:36:1e:61:b3:69:01:3e:96: 1c:ee:33:68:95:97:94:09:23:05:57:ed:7a:8e:a2: 54:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:EE:5B:6C:49:6C:9B:CF:9A:6A:1B:65:7A:E8:E3:2D:0E:38:E9:74 X509v3 Authority Key Identifier: keyid:F1:0D:EA:85:A1:99:13:8D:0A:D9:6D:C4:D3:CB:53:7C:DA:66:2C:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c596bcc8-38cd-4437-80b1-5bae9f857937/0/F10DEA85A199138D0AD96DC4D3CB537CDA662C53.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F10DEA85A199138D0AD96DC4D3CB537CDA662C53.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c596bcc8-38cd-4437-80b1-5bae9f857937/0/323430363a313334303a3a2f33322d3332203d3e20313430343037.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:1340::/32 Signature Algorithm: sha256WithRSAEncryption 7f:ff:cc:14:18:33:4e:f7:5c:d7:a5:f4:fc:12:a3:e8:2c:06: 16:e9:61:5d:d2:ce:4a:a2:8c:6f:c4:fc:f4:95:af:b6:f9:44: 59:dd:00:3f:d2:ce:5a:87:dc:d0:e4:c5:15:a8:7a:cf:ae:e9: e1:40:9f:2b:92:8c:1d:fd:00:be:08:22:9e:04:d8:27:6b:ff: 8b:a3:6c:ae:9f:57:bb:d1:18:43:ba:c1:3d:06:51:c8:e9:94: 36:8a:73:4f:77:2e:f4:5e:22:2d:6b:40:b3:a9:f0:28:5f:50: 17:1c:11:d4:a6:a6:3c:d5:79:26:c7:e1:2a:0c:7b:74:ea:4d: b4:d4:d7:a2:07:17:c9:97:5a:9f:c9:57:6d:9b:fe:db:b4:8a: c2:db:67:cd:9f:ba:5d:03:b6:a3:85:23:72:bc:dd:0c:17:b8: 4e:53:c9:6e:b5:22:cf:7c:03:33:15:42:59:04:be:85:e1:64: 35:b9:90:9d:66:35:b4:fb:d5:89:13:5c:9d:69:89:39:e8:d5: 79:00:53:3a:e4:22:78:33:83:bd:c2:4f:6c:4f:d1:71:20:a8: ec:12:a7:9c:2b:10:99:2f:be:8f:b6:84:4a:ae:8b:45:7f:fc: fa:68:df:03:77:4e:02:b8:ce:85:8f:ed:93:0a:e3:66:64:97: 22:7f:05:1c -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUKIhGx9KeAO/bXly7YD1HoUhGCTMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjEwREVBODVBMTk5MTM4RDBBRDk2REM0RDNDQjUzN0NE QTY2MkM1MzAeFw0yNjAzMTgwODU3NTJaFw0yNzAzMTcwOTAyNTJaMDMxMTAvBgNV BAMTKDZBRUU1QjZDNDk2QzlCQ0Y5QTZBMUI2NTdBRThFMzJEMEUzOEU5NzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDYfgOSSm/PEK3gl8aZJ1RFcMcz fJAMl+dz5WmmwhTo6zlce36dTjbRHRdyUZdzj8Ip+/UeJsc6DiBiaCu4ePkhMjXO LVwLR/pDazjnCn9ECb6JGLHwqOINPPuEIPbW46DMbBfJEDBZOYstImoFRp/iLcgY us5IpMYfT0glAMsE88DQWZt8xcb5Ps6LCJaSXv2vG7OQWrrU+dVZMJl9VruqalMH 8RCjhZB/1LcyE8HJqbeB5omIsE7TO0kmE5hFcDBS+72bstVMWnqVJjY7qQiWGCOJ xV6F9T4cTH10O8CnFnBNsL22RBE2HmGzaQE+lhzuM2iVl5QJIwVX7XqOolTzAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUau5bbElsm8+aahtleujjLQ446XQwHwYDVR0j BBgwFoAU8Q3qhaGZE40K2W3E08tTfNpmLFMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j NTk2YmNjOC0zOGNkLTQ0MzctODBiMS01YmFlOWY4NTc5MzcvMC9GMTBERUE4NUEx OTkxMzhEMEFEOTZEQzREM0NCNTM3Q0RBNjYyQzUzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjEwREVBODVBMTk5MTM4RDBBRDk2REM0RDNDQjUzN0NEQTY2 MkM1My5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M1OTZiY2M4LTM4Y2QtNDQzNy04 MGIxLTViYWU5Zjg1NzkzNy8wLzMyMzQzMDM2M2EzMTMzMzQzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzQzMDM0MzAzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQGE0AwDQYJKoZI hvcNAQELBQADggEBAH//zBQYM073XNel9PwSo+gsBhbpYV3SzkqijG/E/PSVr7b5 RFndAD/SzlqH3NDkxRWoes+u6eFAnyuSjB39AL4IIp4E2Cdr/4ujbK6fV7vRGEO6 wT0GUcjplDaKc093LvReIi1rQLOp8ChfUBccEdSmpjzVeSbH4SoMe3TqTbTU16IH F8mXWp/JV22b/tu0isLbZ82ful0DtqOFI3K83QwXuE5TyW61Is98AzMVQlkEvoXh ZDW5kJ1mNbT71YkTXJ1piTno1XkAUzrkIngzg73CT2xP0XEgqOwSp5wrEJkvvo+2 hEqui0V//Ppo3wN3TgK4zoWP7ZMK42ZklyJ/BRw= -----END CERTIFICATE-----Generated at Thu Mar 26 19:17:05 2026 by rpki-client