$ rpki-client -vvf repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/323430353a616163303a31323a3a2f34382d3438203d3e20313339393439.roa File: 323430353a616163303a31323a3a2f34382d3438203d3e20313339393439.roa (raw, json) Hash identifier: c+bUYxOSnstCwP11s+mgcbltV6e+WD6tQZ1mZnvFXQM= Subject key identifier: 2D:9B:F8:6E:D4:BB:7A:D1:A7:92:03:1C:25:D3:6B:47:D2:24:9B:7F Certificate issuer: /CN=DA8766A90851AE44D76B8563D83586F0164FE5CF Certificate serial: B4FB8C695029737F8AE6C78DB5B5EFF20A36D1 Authority key identifier: DA:87:66:A9:08:51:AE:44:D7:6B:85:63:D8:35:86:F0:16:4F:E5:CF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA8766A90851AE44D76B8563D83586F0164FE5CF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/323430353a616163303a31323a3a2f34382d3438203d3e20313339393439.roa Signing time: Tue 03 Mar 2026 21:00:00 +0000 ROA not before: Tue 03 Mar 2026 20:55:00 +0000 ROA not after: Tue 02 Mar 2027 21:00:00 +0000 asID: 139949 IP address blocks: 2405:aac0:12::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/DA8766A90851AE44D76B8563D83586F0164FE5CF.crl rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/DA8766A90851AE44D76B8563D83586F0164FE5CF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA8766A90851AE44D76B8563D83586F0164FE5CF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 15 Mar 2026 16:38:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: b4:fb:8c:69:50:29:73:7f:8a:e6:c7:8d:b5:b5:ef:f2:0a:36:d1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DA8766A90851AE44D76B8563D83586F0164FE5CF Validity Not Before: Mar 3 20:55:00 2026 GMT Not After : Mar 2 21:00:00 2027 GMT Subject: CN=2D9BF86ED4BB7AD1A792031C25D36B47D2249B7F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:46:46:75:49:de:4a:4f:b4:4b:13:a9:92:e9: 44:bb:a4:bd:bf:db:40:f2:72:ea:3b:c4:88:17:06: 0a:0d:4f:6b:ad:3b:0a:a8:e3:c3:c2:88:3e:f3:41: 4f:37:8b:19:44:2f:0d:c6:75:aa:0c:43:af:eb:dc: 2a:b9:7c:bd:a2:72:4e:f6:a9:2a:28:dd:10:9f:f2: 7c:ef:df:8c:9d:39:c8:24:d9:dd:ca:7b:46:16:5c: 54:e0:05:0c:5e:10:c6:e8:e4:f2:05:58:5b:1d:9a: 00:83:69:82:11:66:bf:80:7e:33:be:94:4e:25:e4: e0:3a:8e:b6:da:56:28:47:a6:41:9e:be:9b:4a:43: ca:ae:2e:4d:d4:36:e6:04:5e:ca:81:7d:be:b8:8c: b2:97:23:72:f6:3e:fb:eb:d5:01:c2:d5:a3:3b:f5: 38:22:0a:33:46:20:f0:3c:d8:86:8e:cb:80:4a:26: 22:b8:b6:be:85:31:fc:15:b6:b4:74:f4:ae:eb:6a: 6c:2d:c4:e2:33:20:05:dc:b2:dd:d9:da:0d:aa:99: d2:9d:2a:ac:a3:f7:eb:e0:37:e4:eb:72:69:8f:b0: 5e:8e:a9:66:c0:94:9c:2d:2f:de:32:ff:36:f1:2c: a8:db:62:bb:a3:4d:d3:b3:a0:5a:5e:5d:9f:92:37: cb:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:9B:F8:6E:D4:BB:7A:D1:A7:92:03:1C:25:D3:6B:47:D2:24:9B:7F X509v3 Authority Key Identifier: keyid:DA:87:66:A9:08:51:AE:44:D7:6B:85:63:D8:35:86:F0:16:4F:E5:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/DA8766A90851AE44D76B8563D83586F0164FE5CF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA8766A90851AE44D76B8563D83586F0164FE5CF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/323430353a616163303a31323a3a2f34382d3438203d3e20313339393439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:aac0:12::/48 Signature Algorithm: sha256WithRSAEncryption 1c:a5:7a:02:bb:ba:f9:89:af:e2:e7:a7:59:91:ba:6e:11:2b: 07:45:99:31:3d:2e:79:4c:82:ab:28:e6:0a:55:41:10:38:33: a2:07:fb:9c:9d:6d:5c:10:e9:8c:5f:74:28:26:f6:fb:94:b2: 38:41:e7:27:cb:dc:16:79:a7:f6:46:34:a8:af:31:54:32:6f: ec:83:7b:a5:37:31:95:24:9d:8b:11:5d:cb:97:8f:4d:7b:22: c8:4a:a6:41:22:1b:11:a3:ab:41:b7:28:6f:24:c6:e8:42:7f: 7f:72:ff:c8:65:fa:b9:ef:86:05:82:d4:95:ce:78:81:20:de: f6:64:cf:66:e6:39:bc:b1:fc:2c:40:1d:1a:a0:6a:8d:5d:fb: 95:63:75:0c:8e:93:26:c0:da:f6:62:12:8f:28:54:fb:68:20: 05:ce:19:07:c5:5d:8d:07:b0:e3:ab:68:40:23:4c:b6:96:4c: 0c:a3:b8:62:d6:9e:c1:4e:e0:cd:4d:61:c9:cd:6f:c5:ce:6e: cf:d9:e7:99:33:86:0b:bf:ec:84:16:a3:d0:28:76:9f:cc:71: 9b:c3:af:2a:a9:84:2e:bf:84:4b:31:40:b6:e0:6f:18:4e:a3: 45:dc:d9:da:da:4c:b1:f3:78:f0:1c:a4:d4:c9:a6:1c:dd:ae: 42:9d:b1:46 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUALT7jGlQKXN/iubHjbW17/IKNtEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREE4NzY2QTkwODUxQUU0NEQ3NkI4NTYzRDgzNTg2RjAx NjRGRTVDRjAeFw0yNjAzMDMyMDU1MDBaFw0yNzAzMDIyMTAwMDBaMDMxMTAvBgNV BAMTKDJEOUJGODZFRDRCQjdBRDFBNzkyMDMxQzI1RDM2QjQ3RDIyNDlCN0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCRkZ1Sd5KT7RLE6mS6US7pL2/ 20Dycuo7xIgXBgoNT2utOwqo48PCiD7zQU83ixlELw3GdaoMQ6/r3Cq5fL2ick72 qSoo3RCf8nzv34ydOcgk2d3Ke0YWXFTgBQxeEMbo5PIFWFsdmgCDaYIRZr+AfjO+ lE4l5OA6jrbaVihHpkGevptKQ8quLk3UNuYEXsqBfb64jLKXI3L2Pvvr1QHC1aM7 9TgiCjNGIPA82IaOy4BKJiK4tr6FMfwVtrR09K7ramwtxOIzIAXcst3Z2g2qmdKd Kqyj9+vgN+TrcmmPsF6OqWbAlJwtL94y/zbxLKjbYrujTdOzoFpeXZ+SN8sVAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQULZv4btS7etGnkgMcJdNrR9Ikm38wHwYDVR0j BBgwFoAU2odmqQhRrkTXa4Vj2DWG8BZP5c8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ZGVkYzAzMy1jZDRkLTQ2MjAtOTM3Mi1lNmUwMzlmYzA2YjkvMC9EQTg3NjZBOTA4 NTFBRTQ0RDc2Qjg1NjNEODM1ODZGMDE2NEZFNUNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREE4NzY2QTkwODUxQUU0NEQ3NkI4NTYzRDgzNTg2RjAxNjRG RTVDRi5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNkZWRjMDMzLWNkNGQtNDYyMC05 MzcyLWU2ZTAzOWZjMDZiOS8wLzMyMzQzMDM1M2E2MTYxNjMzMDNhMzEzMjNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzMzOTM5MzQzOS5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQFqsAA EjANBgkqhkiG9w0BAQsFAAOCAQEAHKV6Aru6+Ymv4uenWZG6bhErB0WZMT0ueUyC qyjmClVBEDgzogf7nJ1tXBDpjF90KCb2+5SyOEHnJ8vcFnmn9kY0qK8xVDJv7IN7 pTcxlSSdixFdy5ePTXsiyEqmQSIbEaOrQbcobyTG6EJ/f3L/yGX6ue+GBYLUlc54 gSDe9mTPZuY5vLH8LEAdGqBqjV37lWN1DI6TJsDa9mISjyhU+2ggBc4ZB8VdjQew 46toQCNMtpZMDKO4YtaewU7gzU1hyc1vxc5uz9nnmTOGC7/shBaj0Ch2n8xxm8Ov KqmELr+ESzFAtuBvGE6jRdzZ2tpMsfN48Byk1MmmHN2uQp2xRg== -----END CERTIFICATE-----Generated at Fri Mar 13 11:58:34 2026 by rpki-client