$ rpki-client -vvf repo-rpki.idnic.net/repo/d7d15d53-a4b4-4435-a1da-52d0212ef33d/0/323030313a6466333a313834303a3a2f34382d3438203d3e20313531343034.roa File: 323030313a6466333a313834303a3a2f34382d3438203d3e20313531343034.roa (raw, json) Hash identifier: EPE7DC1Kr7GtAUP/AXj99tKi8EG7tH37Q4Z89gjD05g= Subject key identifier: 96:6F:90:F0:DF:B4:71:8F:27:4A:C4:2C:45:8A:71:94:03:5C:EB:F7 Certificate issuer: /CN=9E6AD12E8763F68692055BC4EE5A1741D489D240 Certificate serial: 6CC04F016EC79B69C4A6F0AC805BC3A575325622 Authority key identifier: 9E:6A:D1:2E:87:63:F6:86:92:05:5B:C4:EE:5A:17:41:D4:89:D2:40 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9E6AD12E8763F68692055BC4EE5A1741D489D240.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d7d15d53-a4b4-4435-a1da-52d0212ef33d/0/323030313a6466333a313834303a3a2f34382d3438203d3e20313531343034.roa Signing time: Mon 23 Mar 2026 04:00:56 +0000 ROA not before: Mon 23 Mar 2026 03:55:56 +0000 ROA not after: Mon 22 Mar 2027 04:00:56 +0000 asID: 151404 IP address blocks: 2001:df3:1840::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d7d15d53-a4b4-4435-a1da-52d0212ef33d/0/9E6AD12E8763F68692055BC4EE5A1741D489D240.crl rsync://repo-rpki.idnic.net/repo/d7d15d53-a4b4-4435-a1da-52d0212ef33d/0/9E6AD12E8763F68692055BC4EE5A1741D489D240.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9E6AD12E8763F68692055BC4EE5A1741D489D240.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 18:09:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:c0:4f:01:6e:c7:9b:69:c4:a6:f0:ac:80:5b:c3:a5:75:32:56:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9E6AD12E8763F68692055BC4EE5A1741D489D240 Validity Not Before: Mar 23 03:55:56 2026 GMT Not After : Mar 22 04:00:56 2027 GMT Subject: CN=966F90F0DFB4718F274AC42C458A7194035CEBF7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:48:de:72:ec:3a:04:c9:cf:30:58:a4:9d:9e: 5e:58:e4:b7:12:9f:c4:b9:f7:1a:ee:05:b1:ba:88: ed:76:96:a2:f3:64:d4:11:05:c6:81:92:c0:29:0a: e4:5d:55:c1:13:4b:ad:2a:7a:da:8e:71:a8:0f:b9: d5:3e:e4:d0:44:fb:fb:c6:f7:b5:a8:a7:1f:fb:76: e1:38:4d:12:fb:0f:a1:71:54:88:63:6e:7e:46:44: 0b:16:d2:5a:63:4f:b0:46:0f:8e:7e:8d:de:58:be: f1:2f:34:32:e3:3c:48:db:6e:d2:fe:a4:37:d9:9f: e1:d0:87:f2:c5:f5:46:94:74:1d:6c:63:6b:58:e9: b5:56:7e:15:b5:82:34:d8:48:54:8c:95:7e:87:b7: 17:78:02:6c:7f:da:0c:c3:57:e2:20:4c:5c:53:f3: ec:42:74:21:05:bc:ff:dc:bd:be:d1:3f:d2:6d:aa: 03:33:82:2d:05:0f:4d:c7:e7:14:1b:7a:97:24:14: 04:5e:07:3b:82:24:c2:b1:99:96:a5:fb:5b:17:24: 9c:a8:82:54:e1:46:e2:b4:22:0b:0f:fa:55:dd:c1: a6:e3:ea:2b:e4:8f:8d:c7:53:7b:7f:54:4f:fd:a0: dc:f0:6a:c2:f5:5b:9a:29:97:c7:7d:f8:0c:bd:dc: 1d:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:6F:90:F0:DF:B4:71:8F:27:4A:C4:2C:45:8A:71:94:03:5C:EB:F7 X509v3 Authority Key Identifier: keyid:9E:6A:D1:2E:87:63:F6:86:92:05:5B:C4:EE:5A:17:41:D4:89:D2:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d7d15d53-a4b4-4435-a1da-52d0212ef33d/0/9E6AD12E8763F68692055BC4EE5A1741D489D240.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9E6AD12E8763F68692055BC4EE5A1741D489D240.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d7d15d53-a4b4-4435-a1da-52d0212ef33d/0/323030313a6466333a313834303a3a2f34382d3438203d3e20313531343034.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df3:1840::/48 Signature Algorithm: sha256WithRSAEncryption 93:0a:f1:3b:1c:7b:ea:3e:e7:90:2f:8d:62:da:c0:7b:5a:db: aa:10:9d:ab:51:3f:60:1d:93:d4:65:26:b4:b5:c4:bb:92:7c: d2:35:a9:2d:a4:73:77:e7:a1:e7:f4:87:aa:a2:73:ef:3d:2c: ac:48:04:b9:51:e6:8f:28:e5:3a:ae:b6:58:d9:d6:b0:28:87: d1:b1:11:78:2b:bf:a1:0f:5f:6d:50:ec:5d:ab:b5:29:3e:be: 3f:bd:61:b7:dc:f7:00:a9:c6:4e:b2:46:1c:ff:da:24:28:35: 13:58:20:13:29:cb:90:61:f0:5c:49:aa:28:80:4e:2d:72:45: f9:34:42:4b:0c:c4:8e:00:d1:e1:d0:ba:eb:62:36:f7:78:1e: b9:ef:b7:09:75:6c:2f:26:4b:8c:da:ba:a0:56:f1:34:d3:90: 6f:6e:1b:a6:be:c8:bd:38:bd:68:18:31:45:ff:7f:49:02:09: 1d:a3:c5:51:25:52:72:91:c8:e0:1d:fe:ec:ef:c4:40:de:5a: 25:7a:0a:3c:6b:94:84:f7:9f:2b:cb:4b:ca:45:24:33:fa:cc: 13:9b:5a:8c:35:b7:ce:4e:4a:d7:f5:94:ad:92:2b:71:e2:5f: dc:82:ca:d4:9c:2d:70:b3:47:23:87:8f:92:1c:4c:03:e9:03: e2:46:c3:0f -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUbMBPAW7Hm2nEpvCsgFvDpXUyViIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUU2QUQxMkU4NzYzRjY4NjkyMDU1QkM0RUU1QTE3NDFE NDg5RDI0MDAeFw0yNjAzMjMwMzU1NTZaFw0yNzAzMjIwNDAwNTZaMDMxMTAvBgNV BAMTKDk2NkY5MEYwREZCNDcxOEYyNzRBQzQyQzQ1OEE3MTk0MDM1Q0VCRjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDUSN5y7DoEyc8wWKSdnl5Y5LcS n8S59xruBbG6iO12lqLzZNQRBcaBksApCuRdVcETS60qetqOcagPudU+5NBE+/vG 97Wopx/7duE4TRL7D6FxVIhjbn5GRAsW0lpjT7BGD45+jd5YvvEvNDLjPEjbbtL+ pDfZn+HQh/LF9UaUdB1sY2tY6bVWfhW1gjTYSFSMlX6Htxd4Amx/2gzDV+IgTFxT 8+xCdCEFvP/cvb7RP9JtqgMzgi0FD03H5xQbepckFAReBzuCJMKxmZal+1sXJJyo glThRuK0IgsP+lXdwabj6ivkj43HU3t/VE/9oNzwasL1W5opl8d9+Ay93B3fAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUlm+Q8N+0cY8nSsQsRYpxlANc6/cwHwYDVR0j BBgwFoAUnmrRLodj9oaSBVvE7loXQdSJ0kAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k N2QxNWQ1My1hNGI0LTQ0MzUtYTFkYS01MmQwMjEyZWYzM2QvMC85RTZBRDEyRTg3 NjNGNjg2OTIwNTVCQzRFRTVBMTc0MUQ0ODlEMjQwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUU2QUQxMkU4NzYzRjY4NjkyMDU1QkM0RUU1QTE3NDFENDg5 RDI0MC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q3ZDE1ZDUzLWE0YjQtNDQzNS1h MWRhLTUyZDAyMTJlZjMzZC8wLzMyMzAzMDMxM2E2NDY2MzMzYTMxMzgzNDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNTMxMzQzMDM0LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8xhAMA0GCSqGSIb3DQEBCwUAA4IBAQCTCvE7HHvqPueQL41i2sB7WtuqEJ2rUT9g HZPUZSa0tcS7knzSNaktpHN356Hn9IeqonPvPSysSAS5UeaPKOU6rrZY2dawKIfR sRF4K7+hD19tUOxdq7UpPr4/vWG33PcAqcZOskYc/9okKDUTWCATKcuQYfBcSaoo gE4tckX5NEJLDMSOANHh0LrrYjb3eB6577cJdWwvJkuM2rqgVvE005Bvbhumvsi9 OL1oGDFF/39JAgkdo8VRJVJykcjgHf7s78RA3lolego8a5SE958ry0vKRSQz+swT m1qMNbfOTkrX9ZStkitx4l/cgsrUnC1ws0cjh4+SHEwD6QPiRsMP -----END CERTIFICATE-----Generated at Thu Mar 26 23:06:28 2026 by rpki-client