$ rpki-client -vvf repo-rpki.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/323430333a653063303a323a3a2f34382d3438203d3e20313338303839.roa File: 323430333a653063303a323a3a2f34382d3438203d3e20313338303839.roa (raw, json) Hash identifier: EADkNzeGnGCmwQU5JKqfE+M8ZMnucERvk9U//gfvfYM= Subject key identifier: 76:BB:80:8E:86:EC:8A:49:17:66:7F:ED:74:97:26:B0:CA:2A:6A:F8 Certificate issuer: /CN=7D4F0D007B60134996AC3198B9E5B71EAF70E733 Certificate serial: 3D1BF84E619D188F493C186C5C8B41A263A916EA Authority key identifier: 7D:4F:0D:00:7B:60:13:49:96:AC:31:98:B9:E5:B7:1E:AF:70:E7:33 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7D4F0D007B60134996AC3198B9E5B71EAF70E733.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/323430333a653063303a323a3a2f34382d3438203d3e20313338303839.roa Signing time: Tue 03 Mar 2026 02:00:00 +0000 ROA not before: Tue 03 Mar 2026 01:55:00 +0000 ROA not after: Tue 02 Mar 2027 02:00:00 +0000 asID: 138089 IP address blocks: 2403:e0c0:2::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/7D4F0D007B60134996AC3198B9E5B71EAF70E733.crl rsync://repo-rpki.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/7D4F0D007B60134996AC3198B9E5B71EAF70E733.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7D4F0D007B60134996AC3198B9E5B71EAF70E733.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Mar 2026 03:47:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:1b:f8:4e:61:9d:18:8f:49:3c:18:6c:5c:8b:41:a2:63:a9:16:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7D4F0D007B60134996AC3198B9E5B71EAF70E733 Validity Not Before: Mar 3 01:55:00 2026 GMT Not After : Mar 2 02:00:00 2027 GMT Subject: CN=76BB808E86EC8A4917667FED749726B0CA2A6AF8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:ce:f4:c5:b9:86:ef:d1:3c:cf:c6:6c:06:74: 3a:41:25:9e:21:3e:99:39:45:4b:6a:8f:4e:a0:cf: b9:7b:ac:71:98:8b:43:a4:fa:2c:e3:39:82:60:cc: d8:7a:6e:5a:de:14:4a:64:a3:ef:f7:90:4a:34:20: 8c:ad:e1:a5:df:77:ab:bc:b5:51:ca:22:34:9b:29: 1a:4e:7e:6f:2e:e0:1a:0d:19:38:a8:a7:03:bc:e0: ae:23:db:da:6b:6d:43:34:9d:4f:d9:7e:28:5f:c3: bd:47:55:00:b9:f7:b9:22:b0:11:b4:01:1b:77:22: 19:4d:31:6c:63:c2:f2:af:a6:b2:f9:a4:87:06:da: 55:87:10:0e:f3:e0:4a:1c:76:a1:54:15:dd:f4:8d: 16:f5:29:5e:e6:6b:67:ff:d6:81:b1:e9:ab:c2:18: 51:c9:7a:15:a2:b3:9c:e2:e6:02:bb:b3:47:9d:13: 0a:7d:2d:9a:3d:5a:e2:20:84:c9:08:b2:3e:ee:a9: 03:03:ef:ad:f2:f2:20:6b:b9:78:57:c4:bb:8d:29: a7:cd:08:49:0f:2f:c9:da:5f:ff:70:ff:0d:7f:73: 09:c5:aa:84:6f:d8:53:78:89:65:6e:a3:8b:68:5b: 99:ed:1d:35:72:44:82:fb:45:50:a1:f7:5c:ed:07: 2d:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:BB:80:8E:86:EC:8A:49:17:66:7F:ED:74:97:26:B0:CA:2A:6A:F8 X509v3 Authority Key Identifier: keyid:7D:4F:0D:00:7B:60:13:49:96:AC:31:98:B9:E5:B7:1E:AF:70:E7:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/7D4F0D007B60134996AC3198B9E5B71EAF70E733.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7D4F0D007B60134996AC3198B9E5B71EAF70E733.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/323430333a653063303a323a3a2f34382d3438203d3e20313338303839.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:e0c0:2::/48 Signature Algorithm: sha256WithRSAEncryption 16:2d:5c:3c:32:ae:05:41:63:ef:33:24:c2:db:5b:24:6a:65: 07:b5:2c:1e:0e:db:15:3c:55:6e:05:22:46:24:22:5d:51:ff: ca:dc:bf:50:c3:76:d2:ed:8c:ec:8e:60:61:06:f5:1b:ab:f8: 79:be:f0:c6:52:5d:b2:19:cd:66:b0:85:24:dc:d4:9c:3a:37: c2:2d:41:53:7a:68:60:1a:b6:c2:72:c4:86:1c:89:bb:82:c6: 7f:cf:5b:c0:a4:a0:d4:33:2f:85:98:ee:f0:2c:4f:46:b6:71: 67:1e:4c:15:83:19:a8:46:69:a3:68:80:bd:8c:c9:d5:55:aa: ba:54:85:e2:a3:42:31:2f:55:64:5c:7a:a7:66:94:a0:44:42: cd:28:8e:c7:04:dc:7f:a4:05:1a:68:3f:4b:21:13:b6:b4:6f: b1:37:39:d0:de:5b:65:36:23:84:56:d7:b9:e1:9f:85:b4:eb: f7:16:df:63:b0:00:91:d3:d7:95:fb:eb:7e:2c:d7:e9:49:ee: f2:fe:3d:34:62:1b:fd:41:1d:e7:3e:4b:f7:b9:0a:d9:2d:cb: 1e:c6:83:0f:92:eb:34:31:cd:59:51:7c:67:2a:38:be:96:b5: 91:8c:5f:64:67:30:01:57:c0:43:6c:a6:23:74:1a:97:03:32: 08:e2:94:87 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUPRv4TmGdGI9JPBhsXItBomOpFuowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0Q0RjBEMDA3QjYwMTM0OTk2QUMzMTk4QjlFNUI3MUVB RjcwRTczMzAeFw0yNjAzMDMwMTU1MDBaFw0yNzAzMDIwMjAwMDBaMDMxMTAvBgNV BAMTKDc2QkI4MDhFODZFQzhBNDkxNzY2N0ZFRDc0OTcyNkIwQ0EyQTZBRjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIzvTFuYbv0TzPxmwGdDpBJZ4h Ppk5RUtqj06gz7l7rHGYi0Ok+izjOYJgzNh6blreFEpko+/3kEo0IIyt4aXfd6u8 tVHKIjSbKRpOfm8u4BoNGTiopwO84K4j29prbUM0nU/Zfihfw71HVQC597kisBG0 ARt3IhlNMWxjwvKvprL5pIcG2lWHEA7z4EocdqFUFd30jRb1KV7ma2f/1oGx6avC GFHJehWis5zi5gK7s0edEwp9LZo9WuIghMkIsj7uqQMD763y8iBruXhXxLuNKafN CEkPL8naX/9w/w1/cwnFqoRv2FN4iWVuo4toW5ntHTVyRIL7RVCh91ztBy2tAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUdruAjobsikkXZn/tdJcmsMoqavgwHwYDVR0j BBgwFoAUfU8NAHtgE0mWrDGYueW3Hq9w5zMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YWJhNGU1OS1mYjMxLTQxYjUtODhlNy0wYjJjZWQxZjIwMWMvMC83RDRGMEQwMDdC NjAxMzQ5OTZBQzMxOThCOUU1QjcxRUFGNzBFNzMzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0Q0RjBEMDA3QjYwMTM0OTk2QUMzMTk4QjlFNUI3MUVBRjcw RTczMy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVhYmE0ZTU5LWZiMzEtNDFiNS04 OGU3LTBiMmNlZDFmMjAxYy8wLzMyMzQzMDMzM2E2NTMwNjMzMDNhMzIzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTMzMzgzMDM4Mzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkA+DAAAIw DQYJKoZIhvcNAQELBQADggEBABYtXDwyrgVBY+8zJMLbWyRqZQe1LB4O2xU8VW4F IkYkIl1R/8rcv1DDdtLtjOyOYGEG9Rur+Hm+8MZSXbIZzWawhSTc1Jw6N8ItQVN6 aGAatsJyxIYcibuCxn/PW8CkoNQzL4WY7vAsT0a2cWceTBWDGahGaaNogL2MydVV qrpUheKjQjEvVWRceqdmlKBEQs0ojscE3H+kBRpoP0shE7a0b7E3OdDeW2U2I4RW 17nhn4W06/cW32OwAJHT15X7634s1+lJ7vL+PTRiG/1BHec+S/e5Ctktyx7Ggw+S 6zQxzVlRfGcqOL6WtZGMX2RnMAFXwENspiN0GpcDMgjilIc= -----END CERTIFICATE-----Generated at Wed Mar 4 14:23:12 2026 by rpki-client