$ rpki-client -vvf repo-rpki.idnic.net/repo/e95f5f11-57ae-4ac3-a039-e0456bccf44c/0/323030313a6466373a316130303a3a2f34382d3438203d3e203634333135.roa File: 323030313a6466373a316130303a3a2f34382d3438203d3e203634333135.roa (raw, json) Hash identifier: VgYiziNBiIzR8dBk4RaeUns3KxiivfYgyqDNj3fVYac= Subject key identifier: 69:8C:FE:FD:08:75:17:32:BF:D3:D8:42:AF:93:11:F6:E9:7F:66:21 Certificate issuer: /CN=5782DE79396EB62186D082F936F3AB7084CB59CB Certificate serial: 085BDB617893BA85A89EFB27282C137B0BBE5CDD Authority key identifier: 57:82:DE:79:39:6E:B6:21:86:D0:82:F9:36:F3:AB:70:84:CB:59:CB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5782DE79396EB62186D082F936F3AB7084CB59CB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e95f5f11-57ae-4ac3-a039-e0456bccf44c/0/323030313a6466373a316130303a3a2f34382d3438203d3e203634333135.roa Signing time: Wed 25 Mar 2026 08:00:01 +0000 ROA not before: Wed 25 Mar 2026 07:55:01 +0000 ROA not after: Wed 24 Mar 2027 08:00:01 +0000 asID: 64315 IP address blocks: 2001:df7:1a00::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e95f5f11-57ae-4ac3-a039-e0456bccf44c/0/5782DE79396EB62186D082F936F3AB7084CB59CB.crl rsync://repo-rpki.idnic.net/repo/e95f5f11-57ae-4ac3-a039-e0456bccf44c/0/5782DE79396EB62186D082F936F3AB7084CB59CB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5782DE79396EB62186D082F936F3AB7084CB59CB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 11:40:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:5b:db:61:78:93:ba:85:a8:9e:fb:27:28:2c:13:7b:0b:be:5c:dd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5782DE79396EB62186D082F936F3AB7084CB59CB Validity Not Before: Mar 25 07:55:01 2026 GMT Not After : Mar 24 08:00:01 2027 GMT Subject: CN=698CFEFD08751732BFD3D842AF9311F6E97F6621 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:5d:bd:1a:f1:57:a2:98:ac:42:e2:7e:18:98: 82:40:e3:5f:1c:95:fb:b6:af:e8:b4:69:06:bb:a1: f4:8f:f2:ea:95:62:2f:c2:03:96:af:af:a0:a9:40: 53:e4:28:52:62:db:f4:7f:d9:23:70:06:9f:ec:71: 0c:95:85:f5:c6:a9:91:7b:1d:e0:74:08:77:5a:c3: 20:7f:16:a5:a2:28:43:cd:26:c0:85:4a:3a:b0:03: 61:97:a1:bc:10:ad:dd:8d:66:30:40:97:b5:a1:f4: 26:c0:8b:dc:5c:59:54:a7:55:43:5f:6c:59:e2:36: 76:76:1f:27:4e:57:76:ca:e8:e7:1e:2a:66:f6:f7: f4:7f:9b:76:d8:75:b9:f6:d7:01:79:79:ea:e8:5b: da:8d:42:32:ad:ee:97:98:97:3d:a0:07:9d:a7:f3: 83:e3:78:6a:9b:37:eb:5f:8d:d4:28:2a:48:c0:f1: e2:f0:08:f2:04:10:b2:05:5d:e2:70:79:b0:d3:06: fe:00:1a:8b:78:21:9e:db:a1:01:35:c0:64:f6:2c: d8:05:09:90:ad:49:54:bf:7a:df:11:8b:12:9a:e2: a3:e8:4d:27:e0:b2:8d:63:3b:d2:50:08:96:74:32: 24:a5:62:63:d6:d0:69:3f:ca:0a:b4:6f:2c:50:52: 04:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:8C:FE:FD:08:75:17:32:BF:D3:D8:42:AF:93:11:F6:E9:7F:66:21 X509v3 Authority Key Identifier: keyid:57:82:DE:79:39:6E:B6:21:86:D0:82:F9:36:F3:AB:70:84:CB:59:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e95f5f11-57ae-4ac3-a039-e0456bccf44c/0/5782DE79396EB62186D082F936F3AB7084CB59CB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5782DE79396EB62186D082F936F3AB7084CB59CB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e95f5f11-57ae-4ac3-a039-e0456bccf44c/0/323030313a6466373a316130303a3a2f34382d3438203d3e203634333135.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df7:1a00::/48 Signature Algorithm: sha256WithRSAEncryption 7a:ae:ad:6a:75:aa:f3:c8:3b:ca:9b:49:e7:bf:1f:32:47:44: 81:37:cd:9b:ff:b2:69:84:f7:d1:38:d4:56:8d:31:eb:1b:81: 10:1b:f4:dd:c3:fc:49:90:bf:bd:fd:e1:e2:b8:67:70:a8:ff: 44:66:b7:25:da:f6:fe:80:ab:36:56:b4:27:c1:d6:f9:a7:52: d7:cb:17:59:fb:30:66:2b:39:18:74:d4:15:b5:9f:74:b5:6d: 2f:c6:98:bd:6c:75:71:0c:26:4a:fd:85:01:9c:12:2a:49:bc: 5a:d6:be:37:0d:5b:bd:c9:ce:e7:73:ae:77:cb:bb:6c:e1:61: d1:fa:35:37:31:5a:22:36:cb:29:d9:a3:7d:4e:0c:01:9b:27: b2:bd:f3:5f:cd:cd:e8:12:05:1b:6e:44:8e:bf:4d:cd:ce:b4: e6:83:ce:81:a5:b9:d9:eb:b4:f0:cd:ab:ee:45:f5:e9:f4:2b: e4:ef:21:ab:90:73:c5:1d:60:ef:15:a9:61:b4:87:52:a5:64: a6:38:00:ad:7b:b0:1c:c4:a3:d6:44:cc:fe:8f:55:9a:9e:05: 58:4f:28:43:00:88:c0:69:2a:cf:11:3f:62:9b:e6:29:d4:ff: 7c:2e:c3:93:72:df:fa:02:e5:33:22:ed:ae:56:d4:12:e6:65: 42:9f:97:99 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUCFvbYXiTuoWonvsnKCwTewu+XN0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTc4MkRFNzkzOTZFQjYyMTg2RDA4MkY5MzZGM0FCNzA4 NENCNTlDQjAeFw0yNjAzMjUwNzU1MDFaFw0yNzAzMjQwODAwMDFaMDMxMTAvBgNV BAMTKDY5OENGRUZEMDg3NTE3MzJCRkQzRDg0MkFGOTMxMUY2RTk3RjY2MjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpXb0a8VeimKxC4n4YmIJA418c lfu2r+i0aQa7ofSP8uqVYi/CA5avr6CpQFPkKFJi2/R/2SNwBp/scQyVhfXGqZF7 HeB0CHdawyB/FqWiKEPNJsCFSjqwA2GXobwQrd2NZjBAl7Wh9CbAi9xcWVSnVUNf bFniNnZ2HydOV3bK6OceKmb29/R/m3bYdbn21wF5eeroW9qNQjKt7peYlz2gB52n 84PjeGqbN+tfjdQoKkjA8eLwCPIEELIFXeJwebDTBv4AGot4IZ7boQE1wGT2LNgF CZCtSVS/et8RixKa4qPoTSfgso1jO9JQCJZ0MiSlYmPW0Gk/ygq0byxQUgTzAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUaYz+/Qh1FzK/09hCr5MR9ul/ZiEwHwYDVR0j BBgwFoAUV4LeeTlutiGG0IL5NvOrcITLWcswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l OTVmNWYxMS01N2FlLTRhYzMtYTAzOS1lMDQ1NmJjY2Y0NGMvMC81NzgyREU3OTM5 NkVCNjIxODZEMDgyRjkzNkYzQUI3MDg0Q0I1OUNCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTc4MkRFNzkzOTZFQjYyMTg2RDA4MkY5MzZGM0FCNzA4NENC NTlDQi5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U5NWY1ZjExLTU3YWUtNGFjMy1h MDM5LWUwNDU2YmNjZjQ0Yy8wLzMyMzAzMDMxM2E2NDY2MzczYTMxNjEzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzYzNDMzMzEzNS5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACABDfca ADANBgkqhkiG9w0BAQsFAAOCAQEAeq6tanWq88g7yptJ578fMkdEgTfNm/+yaYT3 0TjUVo0x6xuBEBv03cP8SZC/vf3h4rhncKj/RGa3Jdr2/oCrNla0J8HW+adS18sX WfswZis5GHTUFbWfdLVtL8aYvWx1cQwmSv2FAZwSKkm8Wta+Nw1bvcnO53Oud8u7 bOFh0fo1NzFaIjbLKdmjfU4MAZsnsr3zX83N6BIFG25Ejr9Nzc605oPOgaW52eu0 8M2r7kX16fQr5O8hq5BzxR1g7xWpYbSHUqVkpjgArXuwHMSj1kTM/o9Vmp4FWE8o QwCIwGkqzxE/YpvmKdT/fC7Dk3Lf+gLlMyLtrlbUEuZlQp+XmQ== -----END CERTIFICATE-----Generated at Thu Mar 26 20:46:37 2026 by rpki-client