$ rpki-client -vvf repo-rpki.idnic.net/repo/c596bcc8-38cd-4437-80b1-5bae9f857937/0/323430363a313334303a3a2f33322d3333203d3e20313430343037.roa File: 323430363a313334303a3a2f33322d3333203d3e20313430343037.roa (raw, json) Hash identifier: 8+EEy3ZTdoqMF3BoDCPowshhtIzBWGMgS2V31e+I5jc= Subject key identifier: 99:EB:09:8D:63:91:AD:2F:D9:18:39:20:2F:18:2D:0C:A0:24:FC:9B Certificate issuer: /CN=F10DEA85A199138D0AD96DC4D3CB537CDA662C53 Certificate serial: 04A77202734AA70935CDA1D49CF065BBA3E907DF Authority key identifier: F1:0D:EA:85:A1:99:13:8D:0A:D9:6D:C4:D3:CB:53:7C:DA:66:2C:53 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F10DEA85A199138D0AD96DC4D3CB537CDA662C53.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c596bcc8-38cd-4437-80b1-5bae9f857937/0/323430363a313334303a3a2f33322d3333203d3e20313430343037.roa Signing time: Wed 18 Mar 2026 09:02:52 +0000 ROA not before: Wed 18 Mar 2026 08:57:52 +0000 ROA not after: Wed 17 Mar 2027 09:02:52 +0000 asID: 140407 IP address blocks: 2406:1340::/32 maxlen: 33 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c596bcc8-38cd-4437-80b1-5bae9f857937/0/F10DEA85A199138D0AD96DC4D3CB537CDA662C53.crl rsync://repo-rpki.idnic.net/repo/c596bcc8-38cd-4437-80b1-5bae9f857937/0/F10DEA85A199138D0AD96DC4D3CB537CDA662C53.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F10DEA85A199138D0AD96DC4D3CB537CDA662C53.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 05:08:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:a7:72:02:73:4a:a7:09:35:cd:a1:d4:9c:f0:65:bb:a3:e9:07:df Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F10DEA85A199138D0AD96DC4D3CB537CDA662C53 Validity Not Before: Mar 18 08:57:52 2026 GMT Not After : Mar 17 09:02:52 2027 GMT Subject: CN=99EB098D6391AD2FD91839202F182D0CA024FC9B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:bc:97:c9:6a:32:59:8f:f3:75:85:60:79:2d: 80:20:37:3e:03:8d:89:93:50:4b:fe:4e:de:00:94: 50:63:bf:5c:6a:52:f9:52:8b:fd:ad:80:2e:32:bb: c7:40:d8:f1:14:02:7c:1a:6b:49:07:8e:d6:18:ab: f2:7b:08:6e:64:71:4c:d6:8a:9f:0f:0f:04:44:11: 27:f7:3e:41:43:9c:31:21:01:ce:3b:33:55:82:c8: 36:b1:de:8d:09:c9:6e:23:e5:26:ed:c9:ed:8b:5c: c4:c2:f0:14:a6:a0:85:3f:c9:2c:d0:3a:a9:23:83: 7a:3f:45:7d:cb:0f:32:ec:63:00:80:a6:7d:5f:96: 9c:96:04:77:fd:fc:7e:10:74:7b:7c:2a:1e:24:3a: 37:7e:24:51:07:93:a5:8b:42:7f:ec:cc:cd:a1:c2: 61:6e:3c:69:d7:a3:2d:7e:25:e8:2c:10:cb:6b:b0: aa:65:aa:0a:35:24:c1:77:2d:9e:1a:a1:b3:10:e8: 9a:fd:d8:36:c7:8c:37:89:92:a6:cd:1d:16:bf:98: ee:62:f1:3d:e8:7a:d1:62:c2:77:94:9a:56:ad:57: c1:e1:db:21:2c:3a:d5:d3:7d:60:50:de:16:2c:0a: f3:52:bc:d8:55:b2:68:0b:15:46:6f:6c:42:2e:b6: d0:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:EB:09:8D:63:91:AD:2F:D9:18:39:20:2F:18:2D:0C:A0:24:FC:9B X509v3 Authority Key Identifier: keyid:F1:0D:EA:85:A1:99:13:8D:0A:D9:6D:C4:D3:CB:53:7C:DA:66:2C:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c596bcc8-38cd-4437-80b1-5bae9f857937/0/F10DEA85A199138D0AD96DC4D3CB537CDA662C53.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F10DEA85A199138D0AD96DC4D3CB537CDA662C53.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c596bcc8-38cd-4437-80b1-5bae9f857937/0/323430363a313334303a3a2f33322d3333203d3e20313430343037.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:1340::/32 Signature Algorithm: sha256WithRSAEncryption 7d:28:44:77:36:1c:bc:94:8d:04:9b:69:0f:03:20:2c:7f:f9: 48:06:20:51:c2:0f:cc:bd:d4:a4:0c:92:96:79:35:3b:02:65: f8:02:fa:2e:49:55:69:b2:49:0c:51:0c:6c:09:9a:97:5c:1b: 90:81:30:de:d9:94:a8:0f:66:35:59:43:48:ce:6d:d7:c3:4e: 94:01:13:0d:0d:c1:71:78:9e:aa:5b:63:50:ba:78:25:35:ab: 4b:39:6f:ad:f1:1b:de:dc:22:47:21:49:e4:5d:ac:49:07:d2: a5:07:6f:20:94:be:64:f5:23:e7:f1:99:c6:0c:98:9f:23:8e: cc:4c:d2:e7:20:fe:aa:8f:4e:e3:c5:a4:ca:a7:6f:67:e5:ff: 03:87:3b:e9:f7:00:9e:ed:eb:e5:e4:b8:35:9e:0f:6e:81:4e: 05:0f:20:a3:f8:c5:43:09:bd:ab:91:f3:a7:00:ba:39:bc:85: 2b:1d:3b:92:0a:d8:b8:fa:5b:31:88:90:22:fa:a0:56:d1:60: 2d:be:81:72:ee:5a:c5:a3:37:68:4d:99:6d:62:65:96:7e:7c: f0:d0:79:4d:16:38:76:a7:f2:75:d3:f5:5b:8d:0d:6b:f5:ae: 8b:c2:f2:18:81:11:69:37:28:28:ba:1e:dc:af:8a:2c:3a:74: 6e:0c:8d:4e -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUBKdyAnNKpwk1zaHUnPBlu6PpB98wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjEwREVBODVBMTk5MTM4RDBBRDk2REM0RDNDQjUzN0NE QTY2MkM1MzAeFw0yNjAzMTgwODU3NTJaFw0yNzAzMTcwOTAyNTJaMDMxMTAvBgNV BAMTKDk5RUIwOThENjM5MUFEMkZEOTE4MzkyMDJGMTgyRDBDQTAyNEZDOUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDzvJfJajJZj/N1hWB5LYAgNz4D jYmTUEv+Tt4AlFBjv1xqUvlSi/2tgC4yu8dA2PEUAnwaa0kHjtYYq/J7CG5kcUzW ip8PDwREESf3PkFDnDEhAc47M1WCyDax3o0JyW4j5Sbtye2LXMTC8BSmoIU/ySzQ Oqkjg3o/RX3LDzLsYwCApn1flpyWBHf9/H4QdHt8Kh4kOjd+JFEHk6WLQn/szM2h wmFuPGnXoy1+JegsEMtrsKplqgo1JMF3LZ4aobMQ6Jr92DbHjDeJkqbNHRa/mO5i 8T3oetFiwneUmlatV8Hh2yEsOtXTfWBQ3hYsCvNSvNhVsmgLFUZvbEIuttBbAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUmesJjWORrS/ZGDkgLxgtDKAk/JswHwYDVR0j BBgwFoAU8Q3qhaGZE40K2W3E08tTfNpmLFMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j NTk2YmNjOC0zOGNkLTQ0MzctODBiMS01YmFlOWY4NTc5MzcvMC9GMTBERUE4NUEx OTkxMzhEMEFEOTZEQzREM0NCNTM3Q0RBNjYyQzUzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjEwREVBODVBMTk5MTM4RDBBRDk2REM0RDNDQjUzN0NEQTY2 MkM1My5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M1OTZiY2M4LTM4Y2QtNDQzNy04 MGIxLTViYWU5Zjg1NzkzNy8wLzMyMzQzMDM2M2EzMTMzMzQzMDNhM2EyZjMzMzIy ZDMzMzMyMDNkM2UyMDMxMzQzMDM0MzAzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQGE0AwDQYJKoZI hvcNAQELBQADggEBAH0oRHc2HLyUjQSbaQ8DICx/+UgGIFHCD8y91KQMkpZ5NTsC ZfgC+i5JVWmySQxRDGwJmpdcG5CBMN7ZlKgPZjVZQ0jObdfDTpQBEw0NwXF4nqpb Y1C6eCU1q0s5b63xG97cIkchSeRdrEkH0qUHbyCUvmT1I+fxmcYMmJ8jjsxM0ucg /qqPTuPFpMqnb2fl/wOHO+n3AJ7t6+XkuDWeD26BTgUPIKP4xUMJvauR86cAujm8 hSsdO5IK2Lj6WzGIkCL6oFbRYC2+gXLuWsWjN2hNmW1iZZZ+fPDQeU0WOHan8nXT 9VuNDWv1rovC8hiBEWk3KCi6Htyviiw6dG4MjU4= -----END CERTIFICATE-----Generated at Thu Mar 26 19:16:13 2026 by rpki-client