$ rpki-client -vvf repo-rpki.idnic.net/repo/c9e36056-f097-49a7-bd23-3d711e89f305/0/323430313a333234303a3a2f33322d3438203d3e203633343930.roa File: 323430313a333234303a3a2f33322d3438203d3e203633343930.roa (raw, json) Hash identifier: /esJ4QHuGYNozWN9Hvfv3B2ZqpQ1+3oi2eA/pMpl2no= Subject key identifier: B5:4B:4D:22:87:B2:27:84:CD:D5:FC:89:6A:B7:66:4C:71:D7:2F:A3 Certificate issuer: /CN=1D996206B24E67937CEF2CE40882DBFAD893F1FB Certificate serial: 3DBF9D7BF7AFE1C2010C905F0498D93B7920D527 Authority key identifier: 1D:99:62:06:B2:4E:67:93:7C:EF:2C:E4:08:82:DB:FA:D8:93:F1:FB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1D996206B24E67937CEF2CE40882DBFAD893F1FB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c9e36056-f097-49a7-bd23-3d711e89f305/0/323430313a333234303a3a2f33322d3438203d3e203633343930.roa Signing time: Tue 10 Mar 2026 04:02:59 +0000 ROA not before: Tue 10 Mar 2026 03:57:59 +0000 ROA not after: Tue 09 Mar 2027 04:02:59 +0000 asID: 63490 IP address blocks: 2401:3240::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c9e36056-f097-49a7-bd23-3d711e89f305/0/1D996206B24E67937CEF2CE40882DBFAD893F1FB.crl rsync://repo-rpki.idnic.net/repo/c9e36056-f097-49a7-bd23-3d711e89f305/0/1D996206B24E67937CEF2CE40882DBFAD893F1FB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1D996206B24E67937CEF2CE40882DBFAD893F1FB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Mar 2026 15:28:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:bf:9d:7b:f7:af:e1:c2:01:0c:90:5f:04:98:d9:3b:79:20:d5:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1D996206B24E67937CEF2CE40882DBFAD893F1FB Validity Not Before: Mar 10 03:57:59 2026 GMT Not After : Mar 9 04:02:59 2027 GMT Subject: CN=B54B4D2287B22784CDD5FC896AB7664C71D72FA3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:36:7a:b5:8b:03:5b:3c:80:f8:41:93:2e:8c: e1:cc:c2:e2:14:21:5b:a5:2f:fc:00:26:52:a9:ac: 12:f9:00:34:be:04:dc:12:54:fc:c6:17:ca:ba:c4: 03:eb:c9:d5:bc:d1:6d:85:f4:c1:9a:aa:38:9d:a9: 49:45:fa:d4:05:ce:60:5e:f4:41:89:7c:00:e8:36: f1:86:68:2b:32:5c:9b:f6:23:03:81:fe:c2:21:55: a3:b0:37:f1:95:19:88:de:f5:5a:f9:f4:a7:42:83: 36:57:77:e5:d9:96:fd:da:62:b2:9b:5b:05:6d:aa: 62:85:0d:a4:86:61:6c:07:e6:f6:8e:f8:a7:9a:57: c7:43:63:a6:39:14:32:ab:71:77:e9:db:55:a9:10: 17:85:3b:1e:94:63:d5:32:35:eb:c2:62:99:09:6e: 66:92:9b:08:49:64:2d:f6:c5:c4:a0:f3:df:1a:14: 7c:0b:aa:3c:8e:c9:18:4b:ba:5d:4e:06:92:bb:e9: c1:a2:c2:4c:fa:8f:6a:ef:8a:ea:7f:3d:1e:74:92: e5:c9:20:60:b6:d3:85:1a:15:8f:46:20:34:45:97: 9e:44:8b:a0:0b:7b:be:7b:bb:de:4f:53:ea:1f:c6: 11:2e:29:99:37:f1:47:c0:83:a1:b8:aa:bb:f3:62: 32:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:4B:4D:22:87:B2:27:84:CD:D5:FC:89:6A:B7:66:4C:71:D7:2F:A3 X509v3 Authority Key Identifier: keyid:1D:99:62:06:B2:4E:67:93:7C:EF:2C:E4:08:82:DB:FA:D8:93:F1:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c9e36056-f097-49a7-bd23-3d711e89f305/0/1D996206B24E67937CEF2CE40882DBFAD893F1FB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1D996206B24E67937CEF2CE40882DBFAD893F1FB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c9e36056-f097-49a7-bd23-3d711e89f305/0/323430313a333234303a3a2f33322d3438203d3e203633343930.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:3240::/32 Signature Algorithm: sha256WithRSAEncryption 4f:b7:1d:54:74:ba:00:8e:7e:07:0b:83:7d:47:89:79:3e:d0: 72:b8:39:72:f7:51:f3:99:70:b5:0e:98:69:c5:ee:3b:25:04: 92:cb:6a:b4:37:16:a6:c4:dd:98:9f:f2:2f:98:19:35:1e:1f: c3:82:b2:50:5a:ed:7c:ba:c7:26:76:cf:b0:20:6f:57:f8:8d: 6f:e5:db:be:4e:04:71:6e:81:03:28:52:62:1e:62:08:e9:1b: 05:73:ff:e4:5b:fc:da:15:3f:e4:99:a6:27:6f:57:71:9f:3d: c8:a7:19:1d:e4:95:a5:b2:ad:5a:7d:53:c6:16:60:fb:ed:5c: 9c:04:05:5b:ed:23:28:30:eb:b7:6b:20:a7:9a:ce:4c:a9:50: df:74:a3:a1:6b:e9:4b:d2:52:bc:e4:8d:45:14:ea:fd:67:ba: fe:f3:f5:2f:81:f6:3c:bc:e6:74:1b:a2:b3:b7:9d:c2:49:6c: 68:7a:bf:ee:d6:e4:d0:dc:c0:3a:70:b5:d4:92:ff:44:cd:b7: 9e:89:b2:1e:35:fa:2d:85:d4:60:d0:ba:34:0b:fc:a2:75:4c: a2:60:18:fe:f6:a4:bd:c2:db:df:80:3c:69:84:a7:2e:6e:c6: 74:31:e6:96:7c:37:c4:0c:13:03:49:a1:79:4f:93:f8:66:ac: 7e:19:a2:50 -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUPb+de/ev4cIBDJBfBJjZO3kg1ScwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUQ5OTYyMDZCMjRFNjc5MzdDRUYyQ0U0MDg4MkRCRkFE ODkzRjFGQjAeFw0yNjAzMTAwMzU3NTlaFw0yNzAzMDkwNDAyNTlaMDMxMTAvBgNV BAMTKEI1NEI0RDIyODdCMjI3ODRDREQ1RkM4OTZBQjc2NjRDNzFENzJGQTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTNnq1iwNbPID4QZMujOHMwuIU IVulL/wAJlKprBL5ADS+BNwSVPzGF8q6xAPrydW80W2F9MGaqjidqUlF+tQFzmBe 9EGJfADoNvGGaCsyXJv2IwOB/sIhVaOwN/GVGYje9Vr59KdCgzZXd+XZlv3aYrKb WwVtqmKFDaSGYWwH5vaO+KeaV8dDY6Y5FDKrcXfp21WpEBeFOx6UY9UyNevCYpkJ bmaSmwhJZC32xcSg898aFHwLqjyOyRhLul1OBpK76cGiwkz6j2rviup/PR50kuXJ IGC204UaFY9GIDRFl55Ei6ALe757u95PU+ofxhEuKZk38UfAg6G4qrvzYjJtAgMB AAGjggIxMIICLTAdBgNVHQ4EFgQUtUtNIoeyJ4TN1fyJardmTHHXL6MwHwYDVR0j BBgwFoAUHZliBrJOZ5N87yzkCILb+tiT8fswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j OWUzNjA1Ni1mMDk3LTQ5YTctYmQyMy0zZDcxMWU4OWYzMDUvMC8xRDk5NjIwNkIy NEU2NzkzN0NFRjJDRTQwODgyREJGQUQ4OTNGMUZCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMUQ5OTYyMDZCMjRFNjc5MzdDRUYyQ0U0MDg4MkRCRkFEODkz RjFGQi5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M5ZTM2MDU2LWYwOTctNDlhNy1i ZDIzLTNkNzExZTg5ZjMwNS8wLzMyMzQzMDMxM2EzMzMyMzQzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDM2MzMzNDM5MzAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkATJAMA0GCSqGSIb3 DQEBCwUAA4IBAQBPtx1UdLoAjn4HC4N9R4l5PtByuDly91HzmXC1Dphpxe47JQSS y2q0NxamxN2Yn/IvmBk1Hh/DgrJQWu18uscmds+wIG9X+I1v5du+TgRxboEDKFJi HmII6RsFc//kW/zaFT/kmaYnb1dxnz3Ipxkd5JWlsq1afVPGFmD77VycBAVb7SMo MOu3ayCnms5MqVDfdKOha+lL0lK85I1FFOr9Z7r+8/UvgfY8vOZ0G6Kzt53CSWxo er/u1uTQ3MA6cLXUkv9EzbeeibIeNfothdRg0Lo0C/yidUyiYBj+9qS9wtvfgDxp hKcubsZ0MeaWfDfEDBMDSaF5T5P4Zqx+GaJQ -----END CERTIFICATE-----Generated at Fri Mar 27 02:36:19 2026 by rpki-client