$ rpki-client -vvf repo-rpki.idnic.net/repo/e1c48756-b662-468a-906d-6cd461cb6e42/0/323030313a6466323a336130303a3a2f34382d3438203d3e20313337333432.roa File: 323030313a6466323a336130303a3a2f34382d3438203d3e20313337333432.roa (raw, json) Hash identifier: Sh/ySovraK/6CDGLCZn+KlD/GjLGpw2SU/yd9xmA9I4= Subject key identifier: 09:8C:01:E9:5E:42:1F:C8:51:AD:FC:89:9B:4F:FE:7D:D1:3D:D9:B1 Certificate issuer: /CN=EFD20919B96F4E34FA9E4A0CCC2347A4BCD9EA26 Certificate serial: 14DE690B6DDE795397D7BDB5A5BFEAA4751C03A7 Authority key identifier: EF:D2:09:19:B9:6F:4E:34:FA:9E:4A:0C:CC:23:47:A4:BC:D9:EA:26 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EFD20919B96F4E34FA9E4A0CCC2347A4BCD9EA26.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e1c48756-b662-468a-906d-6cd461cb6e42/0/323030313a6466323a336130303a3a2f34382d3438203d3e20313337333432.roa Signing time: Thu 12 Mar 2026 09:00:02 +0000 ROA not before: Thu 12 Mar 2026 08:55:02 +0000 ROA not after: Thu 11 Mar 2027 09:00:02 +0000 asID: 137342 IP address blocks: 2001:df2:3a00::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e1c48756-b662-468a-906d-6cd461cb6e42/0/EFD20919B96F4E34FA9E4A0CCC2347A4BCD9EA26.crl rsync://repo-rpki.idnic.net/repo/e1c48756-b662-468a-906d-6cd461cb6e42/0/EFD20919B96F4E34FA9E4A0CCC2347A4BCD9EA26.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EFD20919B96F4E34FA9E4A0CCC2347A4BCD9EA26.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Mar 2026 02:42:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:de:69:0b:6d:de:79:53:97:d7:bd:b5:a5:bf:ea:a4:75:1c:03:a7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EFD20919B96F4E34FA9E4A0CCC2347A4BCD9EA26 Validity Not Before: Mar 12 08:55:02 2026 GMT Not After : Mar 11 09:00:02 2027 GMT Subject: CN=098C01E95E421FC851ADFC899B4FFE7DD13DD9B1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:3d:ee:9c:e5:b5:50:49:1b:c3:a3:e1:55:ae: 5e:5e:34:bb:88:ba:b2:c3:20:a0:b5:6d:7e:f9:f6: e0:0b:43:f6:57:ba:39:c8:ae:7e:2f:b3:d0:84:42: 39:77:91:47:d2:82:78:8f:3d:dd:21:de:36:92:54: ab:ad:95:52:10:51:52:27:1a:80:37:75:9a:27:9c: f1:18:58:0c:54:4d:55:db:49:d6:42:5f:2d:80:ec: 3c:47:be:3b:06:cf:06:f5:8d:a3:c6:0b:b2:bd:bc: 23:ab:80:0a:fd:b7:d6:0f:9c:7a:17:47:01:ea:65: 54:f2:4c:a3:f2:4e:74:1d:8b:b2:6b:81:7a:94:79: 89:ea:d6:34:1c:fb:b8:67:50:36:e6:24:82:bb:9d: 21:e6:7c:93:5a:34:53:8e:db:7e:ac:14:f9:05:3c: e0:04:08:76:3b:f6:46:a3:df:f3:ca:ee:38:58:4b: 23:a2:f6:52:f2:d2:34:d7:ac:a6:ed:95:f4:33:e9: e9:64:2f:ed:07:02:2d:e9:df:30:50:1f:d6:0d:48: 26:92:8c:c4:18:bb:a6:45:17:e8:1f:3d:c7:5d:87: 4b:ab:2a:ce:82:85:2b:93:6a:fa:74:82:be:89:f6: b4:f1:1e:10:d6:e3:6b:de:b0:9f:35:3c:f5:25:ca: 50:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:8C:01:E9:5E:42:1F:C8:51:AD:FC:89:9B:4F:FE:7D:D1:3D:D9:B1 X509v3 Authority Key Identifier: keyid:EF:D2:09:19:B9:6F:4E:34:FA:9E:4A:0C:CC:23:47:A4:BC:D9:EA:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e1c48756-b662-468a-906d-6cd461cb6e42/0/EFD20919B96F4E34FA9E4A0CCC2347A4BCD9EA26.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EFD20919B96F4E34FA9E4A0CCC2347A4BCD9EA26.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e1c48756-b662-468a-906d-6cd461cb6e42/0/323030313a6466323a336130303a3a2f34382d3438203d3e20313337333432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df2:3a00::/48 Signature Algorithm: sha256WithRSAEncryption 02:f9:db:22:41:9e:e4:4e:81:c9:86:b0:18:6f:a6:50:13:d0: 74:15:31:2c:04:c1:c1:c3:d9:35:3b:87:64:9e:7b:74:c8:68: ee:0b:4e:4f:2a:57:8a:4a:cc:da:ca:cf:70:d3:4f:d6:48:03: 6e:f0:08:06:1f:0d:80:ef:8d:59:87:3f:c7:39:b6:fe:46:2f: cb:92:18:b7:74:aa:e0:47:96:61:e0:1c:cf:0a:a2:70:67:a4: 40:2b:dd:ff:e8:fb:d7:81:1f:2b:81:bf:f6:29:3e:2e:dc:ab: fc:c5:81:b7:e0:f7:71:cc:dc:fd:1b:df:69:24:4b:ba:ee:49: 34:20:3c:1a:2c:d7:e4:1c:ed:bf:52:bf:df:34:c8:5d:13:55: 49:05:a4:cf:fd:51:0a:1c:c5:b3:69:af:7d:d1:b2:01:52:b2: 6d:97:bf:ad:aa:90:12:24:b2:31:d4:4f:33:e3:97:ce:b6:93: c4:6d:fe:2f:88:35:72:14:39:d7:06:7a:b8:7f:1a:eb:83:9e: c1:8c:0d:b3:f8:a1:a4:27:d8:fe:b4:9c:0e:6a:3d:24:f2:52: 49:4e:b1:ae:4c:dd:7b:96:c8:cb:e2:10:23:3e:62:71:3a:25: 01:19:4d:74:68:32:67:88:00:07:eb:74:4b:b8:46:ca:1b:ea: d6:1b:10:3e -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUFN5pC23eeVOX1721pb/qpHUcA6cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRUZEMjA5MTlCOTZGNEUzNEZBOUU0QTBDQ0MyMzQ3QTRC Q0Q5RUEyNjAeFw0yNjAzMTIwODU1MDJaFw0yNzAzMTEwOTAwMDJaMDMxMTAvBgNV BAMTKDA5OEMwMUU5NUU0MjFGQzg1MUFERkM4OTlCNEZGRTdERDEzREQ5QjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCPe6c5bVQSRvDo+FVrl5eNLuI urLDIKC1bX759uALQ/ZXujnIrn4vs9CEQjl3kUfSgniPPd0h3jaSVKutlVIQUVIn GoA3dZonnPEYWAxUTVXbSdZCXy2A7DxHvjsGzwb1jaPGC7K9vCOrgAr9t9YPnHoX RwHqZVTyTKPyTnQdi7JrgXqUeYnq1jQc+7hnUDbmJIK7nSHmfJNaNFOO236sFPkF POAECHY79kaj3/PK7jhYSyOi9lLy0jTXrKbtlfQz6elkL+0HAi3p3zBQH9YNSCaS jMQYu6ZFF+gfPcddh0urKs6ChSuTavp0gr6J9rTxHhDW42vesJ81PPUlylA3AgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUCYwB6V5CH8hRrfyJm0/+fdE92bEwHwYDVR0j BBgwFoAU79IJGblvTjT6nkoMzCNHpLzZ6iYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l MWM0ODc1Ni1iNjYyLTQ2OGEtOTA2ZC02Y2Q0NjFjYjZlNDIvMC9FRkQyMDkxOUI5 NkY0RTM0RkE5RTRBMENDQzIzNDdBNEJDRDlFQTI2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRUZEMjA5MTlCOTZGNEUzNEZBOUU0QTBDQ0MyMzQ3QTRCQ0Q5 RUEyNi5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2UxYzQ4NzU2LWI2NjItNDY4YS05 MDZkLTZjZDQ2MWNiNmU0Mi8wLzMyMzAzMDMxM2E2NDY2MzIzYTMzNjEzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM3MzMzNDMyLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8joAMA0GCSqGSIb3DQEBCwUAA4IBAQAC+dsiQZ7kToHJhrAYb6ZQE9B0FTEsBMHB w9k1O4dknnt0yGjuC05PKleKSszays9w00/WSANu8AgGHw2A741Zhz/HObb+Ri/L khi3dKrgR5Zh4BzPCqJwZ6RAK93/6PvXgR8rgb/2KT4u3Kv8xYG34PdxzNz9G99p JEu67kk0IDwaLNfkHO2/Ur/fNMhdE1VJBaTP/VEKHMWzaa990bIBUrJtl7+tqpAS JLIx1E8z45fOtpPEbf4viDVyFDnXBnq4fxrrg57BjA2z+KGkJ9j+tJwOaj0k8lJJ TrGuTN17lsjL4hAjPmJxOiUBGU10aDJniAAH63RLuEbKG+rWGxA+ -----END CERTIFICATE-----Generated at Thu Mar 26 20:01:05 2026 by rpki-client