$ rpki-client -vvf repo-rpki.idnic.net/repo/f2d66d10-b857-4bef-9395-45d5ab2c44f9/0/323430353a636534303a3a2f33322d3438203d3e20313339393838.roa File: 323430353a636534303a3a2f33322d3438203d3e20313339393838.roa (raw, json) Hash identifier: 77asK98Y6FwjqdnTI49OxJf732MTRMb0e9/FzCcCblc= Subject key identifier: 88:B5:CA:77:1D:CA:8A:18:E9:C6:39:31:DA:9C:19:1C:37:62:65:22 Certificate issuer: /CN=5335076B95F2978BE3ACDB39360AE5A22D0D4B55 Certificate serial: 3BB08F1F2457FFE6EBA444E21AAF463F6764BDD1 Authority key identifier: 53:35:07:6B:95:F2:97:8B:E3:AC:DB:39:36:0A:E5:A2:2D:0D:4B:55 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5335076B95F2978BE3ACDB39360AE5A22D0D4B55.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f2d66d10-b857-4bef-9395-45d5ab2c44f9/0/323430353a636534303a3a2f33322d3438203d3e20313339393838.roa Signing time: Fri 13 Mar 2026 08:01:00 +0000 ROA not before: Fri 13 Mar 2026 07:56:00 +0000 ROA not after: Fri 12 Mar 2027 08:01:00 +0000 asID: 139988 IP address blocks: 2405:ce40::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f2d66d10-b857-4bef-9395-45d5ab2c44f9/0/5335076B95F2978BE3ACDB39360AE5A22D0D4B55.crl rsync://repo-rpki.idnic.net/repo/f2d66d10-b857-4bef-9395-45d5ab2c44f9/0/5335076B95F2978BE3ACDB39360AE5A22D0D4B55.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5335076B95F2978BE3ACDB39360AE5A22D0D4B55.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 09:53:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:b0:8f:1f:24:57:ff:e6:eb:a4:44:e2:1a:af:46:3f:67:64:bd:d1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5335076B95F2978BE3ACDB39360AE5A22D0D4B55 Validity Not Before: Mar 13 07:56:00 2026 GMT Not After : Mar 12 08:01:00 2027 GMT Subject: CN=88B5CA771DCA8A18E9C63931DA9C191C37626522 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:35:27:ad:f7:e8:89:76:07:b1:a8:d7:2b:18: 9e:df:03:95:24:6c:52:05:e5:a1:db:07:68:1a:56: b5:f3:e0:6e:b7:5f:c1:f1:3d:e6:41:cb:fc:e0:f3: b4:27:68:b9:f8:91:a7:d4:d6:e9:9c:42:87:f2:ee: 10:ef:7b:1a:54:8b:d5:cd:03:2a:6c:9e:3d:00:24: 05:74:9a:35:03:07:d5:fa:1d:c6:05:ee:22:e4:7e: ae:02:b6:bb:ee:25:a7:41:01:96:95:66:ba:82:07: 63:9f:81:bd:28:c8:ba:9b:69:cd:37:71:88:62:7a: aa:c5:99:0c:e1:6a:9d:6a:e9:1a:08:70:72:67:56: 90:b0:53:45:07:56:cb:4d:cb:f6:12:62:72:0c:a9: 67:80:43:80:36:7d:a7:7a:85:0d:97:03:57:02:6f: 8a:90:f8:48:f9:b0:25:14:5b:a2:b4:2b:96:ff:89: 9d:c1:48:8f:ed:25:93:e7:8e:94:20:3d:1d:08:83: 36:cd:65:5d:51:04:75:fa:c7:f3:77:b3:14:bf:f3: 26:a5:65:08:2e:76:1f:13:73:f8:80:2c:d3:ef:01: eb:7d:df:d1:dc:9e:d2:df:97:74:c2:8f:5a:64:4d: 6d:d9:ed:70:7e:2d:0b:e3:ba:c4:0e:44:e1:22:83: 50:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:B5:CA:77:1D:CA:8A:18:E9:C6:39:31:DA:9C:19:1C:37:62:65:22 X509v3 Authority Key Identifier: keyid:53:35:07:6B:95:F2:97:8B:E3:AC:DB:39:36:0A:E5:A2:2D:0D:4B:55 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f2d66d10-b857-4bef-9395-45d5ab2c44f9/0/5335076B95F2978BE3ACDB39360AE5A22D0D4B55.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5335076B95F2978BE3ACDB39360AE5A22D0D4B55.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f2d66d10-b857-4bef-9395-45d5ab2c44f9/0/323430353a636534303a3a2f33322d3438203d3e20313339393838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:ce40::/32 Signature Algorithm: sha256WithRSAEncryption 2c:b8:4b:9a:13:30:2b:27:af:4d:ca:bb:d8:3d:89:d1:c2:f8: 3f:df:22:7d:d2:d3:d7:15:32:bc:6c:17:a9:20:4b:6a:2d:a7: a6:35:0a:7c:bf:c5:7d:b6:cb:e1:da:77:95:3f:ec:2f:09:7b: 88:c9:8c:e4:cc:b5:3d:8a:7a:d3:20:ad:e2:0e:e6:0c:90:7b: 21:2f:94:01:0a:8e:08:e4:ef:ba:aa:9b:b2:2e:d3:ed:2a:e6: 7d:8f:52:65:43:54:51:c8:71:4e:b3:1e:b1:6f:6d:a7:a5:cd: b8:77:d1:53:6d:11:ed:61:ab:8e:ad:34:14:b9:90:cb:20:80: fc:cf:ed:8b:d9:6a:c9:1e:17:24:e0:13:3a:22:2e:43:94:a6: a6:45:cf:29:26:23:6c:45:e9:6b:77:6c:a7:55:9a:31:48:9d: a7:a9:50:72:2e:99:68:9b:5f:9a:87:bf:e3:1a:dd:a7:8e:4a: c6:2b:74:27:c0:57:16:83:6c:3a:2b:cc:cd:81:23:a8:dd:a2: b9:80:85:8b:4b:3b:a3:09:82:d7:7e:b8:10:a6:3e:8d:79:7b: 64:57:db:93:f4:35:1e:ff:7e:28:cd:79:ff:fb:e7:1f:01:43: 38:65:84:27:6a:01:05:0e:d5:38:e6:33:99:ad:20:ad:29:eb: fb:25:e4:9a -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUO7CPHyRX/+brpETiGq9GP2dkvdEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTMzNTA3NkI5NUYyOTc4QkUzQUNEQjM5MzYwQUU1QTIy RDBENEI1NTAeFw0yNjAzMTMwNzU2MDBaFw0yNzAzMTIwODAxMDBaMDMxMTAvBgNV BAMTKDg4QjVDQTc3MURDQThBMThFOUM2MzkzMURBOUMxOTFDMzc2MjY1MjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/NSet9+iJdgexqNcrGJ7fA5Uk bFIF5aHbB2gaVrXz4G63X8HxPeZBy/zg87QnaLn4kafU1umcQofy7hDvexpUi9XN Aypsnj0AJAV0mjUDB9X6HcYF7iLkfq4CtrvuJadBAZaVZrqCB2Ofgb0oyLqbac03 cYhieqrFmQzhap1q6RoIcHJnVpCwU0UHVstNy/YSYnIMqWeAQ4A2fad6hQ2XA1cC b4qQ+Ej5sCUUW6K0K5b/iZ3BSI/tJZPnjpQgPR0IgzbNZV1RBHX6x/N3sxS/8yal ZQgudh8Tc/iALNPvAet939HcntLfl3TCj1pkTW3Z7XB+LQvjusQOROEig1CbAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUiLXKdx3Kihjpxjkx2pwZHDdiZSIwHwYDVR0j BBgwFoAUUzUHa5Xyl4vjrNs5Ngrloi0NS1UwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MmQ2NmQxMC1iODU3LTRiZWYtOTM5NS00NWQ1YWIyYzQ0ZjkvMC81MzM1MDc2Qjk1 RjI5NzhCRTNBQ0RCMzkzNjBBRTVBMjJEMEQ0QjU1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTMzNTA3NkI5NUYyOTc4QkUzQUNEQjM5MzYwQUU1QTIyRDBE NEI1NS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YyZDY2ZDEwLWI4NTctNGJlZi05 Mzk1LTQ1ZDVhYjJjNDRmOS8wLzMyMzQzMDM1M2E2MzY1MzQzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMxMzMzOTM5MzgzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQFzkAwDQYJKoZI hvcNAQELBQADggEBACy4S5oTMCsnr03Ku9g9idHC+D/fIn3S09cVMrxsF6kgS2ot p6Y1Cny/xX22y+Had5U/7C8Je4jJjOTMtT2KetMgreIO5gyQeyEvlAEKjgjk77qq m7Iu0+0q5n2PUmVDVFHIcU6zHrFvbaelzbh30VNtEe1hq46tNBS5kMsggPzP7YvZ askeFyTgEzoiLkOUpqZFzykmI2xF6Wt3bKdVmjFInaepUHIumWibX5qHv+Ma3aeO SsYrdCfAVxaDbDorzM2BI6jdormAhYtLO6MJgtd+uBCmPo15e2RX25P0NR7/fijN ef/75x8BQzhlhCdqAQUO1TjmM5mtIK0p6/sl5Jo= -----END CERTIFICATE-----Generated at Thu Mar 26 23:53:40 2026 by rpki-client