$ rpki-client -vvf repo-rpki.idnic.net/repo/2a496082-a0aa-4836-b587-973dd7e297af/0/323430303a393134303a3a2f33322d3332203d3e203535363632.roa File: 323430303a393134303a3a2f33322d3332203d3e203535363632.roa (raw, json) Hash identifier: omacf/MlMTOtJi7pgs2aPCZclto1hvc9zlwr6k9i/3s= Subject key identifier: 4E:FE:25:35:AB:61:8E:64:74:06:6D:C3:7C:0E:3E:3F:FD:3A:60:AB Certificate issuer: /CN=87CE66700720FB0B31EA1EA3295AF636C6F3B2F9 Certificate serial: 04AD5D47EE8E179321C2B8A0F2F2DA4D480A1F01 Authority key identifier: 87:CE:66:70:07:20:FB:0B:31:EA:1E:A3:29:5A:F6:36:C6:F3:B2:F9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/87CE66700720FB0B31EA1EA3295AF636C6F3B2F9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2a496082-a0aa-4836-b587-973dd7e297af/0/323430303a393134303a3a2f33322d3332203d3e203535363632.roa Signing time: Tue 17 Mar 2026 09:03:23 +0000 ROA not before: Tue 17 Mar 2026 08:58:23 +0000 ROA not after: Tue 16 Mar 2027 09:03:23 +0000 asID: 55662 IP address blocks: 2400:9140::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2a496082-a0aa-4836-b587-973dd7e297af/0/87CE66700720FB0B31EA1EA3295AF636C6F3B2F9.crl rsync://repo-rpki.idnic.net/repo/2a496082-a0aa-4836-b587-973dd7e297af/0/87CE66700720FB0B31EA1EA3295AF636C6F3B2F9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/87CE66700720FB0B31EA1EA3295AF636C6F3B2F9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Mar 2026 15:01:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:ad:5d:47:ee:8e:17:93:21:c2:b8:a0:f2:f2:da:4d:48:0a:1f:01 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=87CE66700720FB0B31EA1EA3295AF636C6F3B2F9 Validity Not Before: Mar 17 08:58:23 2026 GMT Not After : Mar 16 09:03:23 2027 GMT Subject: CN=4EFE2535AB618E6474066DC37C0E3E3FFD3A60AB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:39:10:54:dd:2f:f9:e5:80:73:8f:6f:69:89: 45:3e:dc:67:e1:e0:c8:1a:78:e6:13:fb:46:69:f3: 73:3a:b2:92:23:a8:3a:af:c2:3e:19:61:3d:10:1d: 34:6c:65:90:97:e9:f2:58:73:06:7b:3c:56:43:fd: 51:9d:d9:af:74:c3:01:3d:7a:17:08:bd:bf:48:03: 4c:f7:bc:1a:7a:56:88:30:7b:a3:b0:be:49:b1:e9: b6:82:93:2a:1c:d2:7b:93:88:f4:fe:7b:d8:4d:34: 6f:55:9b:e7:73:c1:51:74:77:17:2e:72:bc:96:41: 93:b4:a1:83:81:0a:c7:c8:27:23:5c:57:fa:3e:4c: a5:27:7f:0d:f4:3d:6b:c6:42:98:8c:92:02:c0:b2: cd:46:42:9f:0f:dc:10:2e:3a:06:37:3a:f5:5e:c0: 79:cf:99:64:e6:f6:76:79:6b:d6:57:5f:ca:60:a5: 64:91:f7:a4:3d:d7:ed:ac:ef:bc:c4:2f:3d:eb:cc: f0:74:b3:64:9d:93:43:6d:ac:e7:4d:97:8a:ad:19: cb:d3:ef:2e:42:ee:5f:85:ea:f6:df:29:47:fb:b3: 95:d9:84:d1:76:d1:46:1c:18:5d:92:93:e8:b6:41: a0:e8:b9:64:2c:75:3c:f7:63:1a:6b:6c:c2:5c:de: 3c:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:FE:25:35:AB:61:8E:64:74:06:6D:C3:7C:0E:3E:3F:FD:3A:60:AB X509v3 Authority Key Identifier: keyid:87:CE:66:70:07:20:FB:0B:31:EA:1E:A3:29:5A:F6:36:C6:F3:B2:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2a496082-a0aa-4836-b587-973dd7e297af/0/87CE66700720FB0B31EA1EA3295AF636C6F3B2F9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/87CE66700720FB0B31EA1EA3295AF636C6F3B2F9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2a496082-a0aa-4836-b587-973dd7e297af/0/323430303a393134303a3a2f33322d3332203d3e203535363632.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:9140::/32 Signature Algorithm: sha256WithRSAEncryption 24:2e:cb:c5:f3:2c:6e:7a:93:35:1a:61:65:ee:9f:0c:75:54: 30:f5:c5:62:54:69:58:4f:d8:a1:6f:aa:a8:92:c6:78:84:d3: a0:73:5d:c7:9e:25:41:cd:d9:3f:0b:db:29:89:75:b7:b6:79: 73:bb:ed:07:35:33:ee:fe:49:f9:41:6b:88:5b:fc:d9:01:04: 96:5a:a4:21:f8:68:6e:84:e2:6f:36:d4:4d:e7:9d:05:80:a7: 67:40:e0:03:61:0a:bb:f1:af:9b:56:ca:84:5c:11:12:e4:bf: d6:44:2e:91:c1:0a:0e:7a:48:63:35:a3:5a:5d:7e:f1:93:fb: 25:63:d8:73:d6:c7:dd:2d:3a:23:9b:64:8a:69:95:79:53:b5: e0:fd:8d:2e:ba:41:1d:ea:1e:65:72:b7:5e:c7:85:b5:c7:26: cb:f6:5a:7e:55:7e:a0:bc:59:c1:5e:fb:4f:ca:8d:d3:8d:ce: 18:8c:dc:a0:6b:f0:f4:40:e4:64:bb:2d:14:c4:ae:4b:a1:68: fd:18:c0:a9:82:88:ac:65:db:4b:b4:6f:bf:7a:d4:c8:63:88: 56:6c:0c:15:3c:0d:55:33:ae:73:40:53:f2:fa:7d:26:35:47: 1f:2e:20:40:71:8a:ee:a6:05:a3:41:f8:4d:9b:25:c6:dc:90: b4:05:72:14 -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUBK1dR+6OF5Mhwrig8vLaTUgKHwEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODdDRTY2NzAwNzIwRkIwQjMxRUExRUEzMjk1QUY2MzZD NkYzQjJGOTAeFw0yNjAzMTcwODU4MjNaFw0yNzAzMTYwOTAzMjNaMDMxMTAvBgNV BAMTKDRFRkUyNTM1QUI2MThFNjQ3NDA2NkRDMzdDMEUzRTNGRkQzQTYwQUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDxORBU3S/55YBzj29piUU+3Gfh 4MgaeOYT+0Zp83M6spIjqDqvwj4ZYT0QHTRsZZCX6fJYcwZ7PFZD/VGd2a90wwE9 ehcIvb9IA0z3vBp6Vogwe6Owvkmx6baCkyoc0nuTiPT+e9hNNG9Vm+dzwVF0dxcu cryWQZO0oYOBCsfIJyNcV/o+TKUnfw30PWvGQpiMkgLAss1GQp8P3BAuOgY3OvVe wHnPmWTm9nZ5a9ZXX8pgpWSR96Q91+2s77zELz3rzPB0s2Sdk0NtrOdNl4qtGcvT 7y5C7l+F6vbfKUf7s5XZhNF20UYcGF2Sk+i2QaDouWQsdTz3YxprbMJc3jz5AgMB AAGjggIxMIICLTAdBgNVHQ4EFgQUTv4lNathjmR0Bm3DfA4+P/06YKswHwYDVR0j BBgwFoAUh85mcAcg+wsx6h6jKVr2NsbzsvkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y YTQ5NjA4Mi1hMGFhLTQ4MzYtYjU4Ny05NzNkZDdlMjk3YWYvMC84N0NFNjY3MDA3 MjBGQjBCMzFFQTFFQTMyOTVBRjYzNkM2RjNCMkY5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODdDRTY2NzAwNzIwRkIwQjMxRUExRUEzMjk1QUY2MzZDNkYz QjJGOS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJhNDk2MDgyLWEwYWEtNDgzNi1i NTg3LTk3M2RkN2UyOTdhZi8wLzMyMzQzMDMwM2EzOTMxMzQzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDM1MzUzNjM2MzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkAJFAMA0GCSqGSIb3 DQEBCwUAA4IBAQAkLsvF8yxuepM1GmFl7p8MdVQw9cViVGlYT9ihb6qoksZ4hNOg c13HniVBzdk/C9spiXW3tnlzu+0HNTPu/kn5QWuIW/zZAQSWWqQh+GhuhOJvNtRN 550FgKdnQOADYQq78a+bVsqEXBES5L/WRC6RwQoOekhjNaNaXX7xk/slY9hz1sfd LTojm2SKaZV5U7Xg/Y0uukEd6h5lcrdex4W1xybL9lp+VX6gvFnBXvtPyo3Tjc4Y jNyga/D0QORkuy0UxK5LoWj9GMCpgoisZdtLtG+/etTIY4hWbAwVPA1VM65zQFPy +n0mNUcfLiBAcYrupgWjQfhNmyXG3JC0BXIU -----END CERTIFICATE-----Generated at Thu Mar 19 11:26:12 2026 by rpki-client