$ rpki-client -vvf repo-rpki.idnic.net/repo/cb63f771-a95f-4b53-87bc-8bff504da1f4/0/323430313a626538303a3a2f33322d3332203d3e20313333373939.roa File: 323430313a626538303a3a2f33322d3332203d3e20313333373939.roa (raw, json) Hash identifier: ylV8IEJ3lwV0WCMtlAlERcBMFz/TQP3ymIMtXkYk6Q4= Subject key identifier: 72:23:C8:87:02:42:39:8A:52:7D:5F:BB:97:BA:CB:55:20:8E:E3:F6 Certificate issuer: /CN=108261B2B5A1F3CC828EF2A532ED94DFC1202853 Certificate serial: 46CB13449AE78EE6C8BD175A8163E607907785A9 Authority key identifier: 10:82:61:B2:B5:A1:F3:CC:82:8E:F2:A5:32:ED:94:DF:C1:20:28:53 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/108261B2B5A1F3CC828EF2A532ED94DFC1202853.cer Subject info access: rsync://repo-rpki.idnic.net/repo/cb63f771-a95f-4b53-87bc-8bff504da1f4/0/323430313a626538303a3a2f33322d3332203d3e20313333373939.roa Signing time: Sat 07 Mar 2026 18:00:01 +0000 ROA not before: Sat 07 Mar 2026 17:55:01 +0000 ROA not after: Sat 06 Mar 2027 18:00:01 +0000 asID: 133799 IP address blocks: 2401:be80::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/cb63f771-a95f-4b53-87bc-8bff504da1f4/0/108261B2B5A1F3CC828EF2A532ED94DFC1202853.crl rsync://repo-rpki.idnic.net/repo/cb63f771-a95f-4b53-87bc-8bff504da1f4/0/108261B2B5A1F3CC828EF2A532ED94DFC1202853.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/108261B2B5A1F3CC828EF2A532ED94DFC1202853.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Mar 2026 14:56:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:cb:13:44:9a:e7:8e:e6:c8:bd:17:5a:81:63:e6:07:90:77:85:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=108261B2B5A1F3CC828EF2A532ED94DFC1202853 Validity Not Before: Mar 7 17:55:01 2026 GMT Not After : Mar 6 18:00:01 2027 GMT Subject: CN=7223C8870242398A527D5FBB97BACB55208EE3F6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:8b:13:e8:80:48:50:bc:10:87:f3:6e:49:79: f7:21:15:66:73:d3:87:e7:30:55:ad:75:a0:8a:f5: d0:0b:12:aa:03:9c:1b:0c:c8:e2:02:26:91:83:a8: 5b:ec:a9:8a:94:a4:42:f0:2e:b2:40:30:e0:56:ce: ed:f6:4e:08:4b:9d:17:f1:94:fa:b1:f6:5e:b6:52: 51:b8:fe:7d:02:61:c3:33:2a:92:0c:91:9d:e4:6e: f5:d2:c0:c0:2a:a0:5b:0b:e0:00:51:ff:4e:a6:43: f3:a2:8a:91:38:42:1e:79:16:5e:ad:ba:2b:cd:a4: 68:dd:1c:c4:f6:18:4d:63:68:7e:1a:25:12:e0:79: 93:5f:85:4d:1c:d8:b0:3b:4f:27:9c:4a:80:c3:ff: a9:1e:11:37:cd:3b:db:92:1e:5a:3b:54:da:b0:e1: 84:21:ce:5f:bf:56:75:62:18:3e:82:92:40:12:e6: 6e:05:33:dc:5d:7e:f7:3d:24:f1:8b:82:8d:d2:a9: d5:b8:e0:e7:a1:68:22:c7:c7:eb:2a:a3:cb:9b:bc: 68:53:11:e4:e8:4c:f8:b7:c3:73:fc:e8:41:67:44: 98:45:42:56:ee:5b:eb:7c:05:7f:15:52:49:0c:7f: 52:0b:22:d0:d7:82:6b:20:98:22:87:ea:21:2c:f0: 0c:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:23:C8:87:02:42:39:8A:52:7D:5F:BB:97:BA:CB:55:20:8E:E3:F6 X509v3 Authority Key Identifier: keyid:10:82:61:B2:B5:A1:F3:CC:82:8E:F2:A5:32:ED:94:DF:C1:20:28:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/cb63f771-a95f-4b53-87bc-8bff504da1f4/0/108261B2B5A1F3CC828EF2A532ED94DFC1202853.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/108261B2B5A1F3CC828EF2A532ED94DFC1202853.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/cb63f771-a95f-4b53-87bc-8bff504da1f4/0/323430313a626538303a3a2f33322d3332203d3e20313333373939.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:be80::/32 Signature Algorithm: sha256WithRSAEncryption dc:08:db:42:05:5e:79:ea:6a:1e:70:cf:2d:fe:69:9d:cb:ac: 0e:bc:28:67:5b:f6:02:5b:3c:94:d9:a3:f1:c9:05:3e:37:52: b0:35:d3:50:2a:33:3c:e7:a2:fa:31:d9:b3:ab:39:ea:f7:11: fe:72:7d:a7:0c:9f:d0:ee:cf:09:8e:91:f6:c6:2b:02:13:aa: b2:aa:bb:50:e7:fd:a2:22:41:5d:8c:44:cc:b4:bf:50:54:07: 00:0a:06:95:0f:57:70:87:b2:00:7a:a1:78:91:3c:0a:6f:d7: 2f:04:f1:6a:6d:13:2c:bb:3a:86:52:7e:b2:29:06:9b:08:4a: 7e:e9:23:dc:1d:9b:b3:11:86:36:0b:31:38:39:3f:3b:8e:e3: 79:0d:87:9a:d5:1f:67:25:69:8e:86:c2:d8:a3:20:ba:c5:46: 64:a3:25:72:6d:63:52:38:83:3f:c4:ed:2f:72:f5:93:7a:db: 94:90:28:2d:0a:df:0c:04:11:21:51:2d:e0:23:b1:8c:e4:7a: 73:f2:ac:81:34:30:95:d8:66:fa:2a:a2:87:71:ca:09:a6:17: 52:1b:61:88:52:a3:36:8c:2a:ea:0c:5d:a0:95:c6:b7:aa:97: f7:89:2e:81:4a:ff:b0:39:b9:47:92:8b:b7:06:5e:94:f9:45: 05:27:d1:cb -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIURssTRJrnjubIvRdagWPmB5B3hakwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTA4MjYxQjJCNUExRjNDQzgyOEVGMkE1MzJFRDk0REZD MTIwMjg1MzAeFw0yNjAzMDcxNzU1MDFaFw0yNzAzMDYxODAwMDFaMDMxMTAvBgNV BAMTKDcyMjNDODg3MDI0MjM5OEE1MjdENUZCQjk3QkFDQjU1MjA4RUUzRjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9ixPogEhQvBCH825JefchFWZz 04fnMFWtdaCK9dALEqoDnBsMyOICJpGDqFvsqYqUpELwLrJAMOBWzu32TghLnRfx lPqx9l62UlG4/n0CYcMzKpIMkZ3kbvXSwMAqoFsL4ABR/06mQ/OiipE4Qh55Fl6t uivNpGjdHMT2GE1jaH4aJRLgeZNfhU0c2LA7TyecSoDD/6keETfNO9uSHlo7VNqw 4YQhzl+/VnViGD6CkkAS5m4FM9xdfvc9JPGLgo3SqdW44OehaCLHx+sqo8ubvGhT EeToTPi3w3P86EFnRJhFQlbuW+t8BX8VUkkMf1ILItDXgmsgmCKH6iEs8AyjAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUciPIhwJCOYpSfV+7l7rLVSCO4/YwHwYDVR0j BBgwFoAUEIJhsrWh88yCjvKlMu2U38EgKFMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j YjYzZjc3MS1hOTVmLTRiNTMtODdiYy04YmZmNTA0ZGExZjQvMC8xMDgyNjFCMkI1 QTFGM0NDODI4RUYyQTUzMkVEOTRERkMxMjAyODUzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTA4MjYxQjJCNUExRjNDQzgyOEVGMkE1MzJFRDk0REZDMTIw Mjg1My5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NiNjNmNzcxLWE5NWYtNGI1My04 N2JjLThiZmY1MDRkYTFmNC8wLzMyMzQzMDMxM2E2MjY1MzgzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzMzMzM3MzkzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQBvoAwDQYJKoZI hvcNAQELBQADggEBANwI20IFXnnqah5wzy3+aZ3LrA68KGdb9gJbPJTZo/HJBT43 UrA101AqMzznovox2bOrOer3Ef5yfacMn9DuzwmOkfbGKwITqrKqu1Dn/aIiQV2M RMy0v1BUBwAKBpUPV3CHsgB6oXiRPApv1y8E8WptEyy7OoZSfrIpBpsISn7pI9wd m7MRhjYLMTg5PzuO43kNh5rVH2claY6GwtijILrFRmSjJXJtY1I4gz/E7S9y9ZN6 25SQKC0K3wwEESFRLeAjsYzkenPyrIE0MJXYZvoqoodxygmmF1IbYYhSozaMKuoM XaCVxreql/eJLoFK/7A5uUeSi7cGXpT5RQUn0cs= -----END CERTIFICATE-----Generated at Thu Mar 26 20:17:24 2026 by rpki-client