$ rpki-client -vvf repo-rpki.idnic.net/repo/7cf01ec6-8e89-402a-90c7-50c6f14cd242/1/323030313a6466333a643934303a3a2f34382d3438203d3e20313532373732.roa File: 323030313a6466333a643934303a3a2f34382d3438203d3e20313532373732.roa (raw, json) Hash identifier: LeLneOQVqT8nH1sSpsfTnxgLUumewJs3lygRvnJGU1E= Subject key identifier: 11:15:CE:2E:04:4D:EF:3F:AC:E1:71:F7:C9:D8:BD:1F:13:DA:27:5F Certificate issuer: /CN=798A229C42DA54D0690064D264AA7AA2375D0419 Certificate serial: 2D56A41B78135FFCE936A5818985304B1B1C55C8 Authority key identifier: 79:8A:22:9C:42:DA:54:D0:69:00:64:D2:64:AA:7A:A2:37:5D:04:19 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/798A229C42DA54D0690064D264AA7AA2375D0419.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7cf01ec6-8e89-402a-90c7-50c6f14cd242/1/323030313a6466333a643934303a3a2f34382d3438203d3e20313532373732.roa Signing time: Sun 19 Apr 2026 18:00:02 +0000 ROA not before: Sun 19 Apr 2026 17:55:02 +0000 ROA not after: Sun 18 Apr 2027 18:00:02 +0000 asID: 152772 IP address blocks: 2001:df3:d940::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7cf01ec6-8e89-402a-90c7-50c6f14cd242/1/798A229C42DA54D0690064D264AA7AA2375D0419.crl rsync://repo-rpki.idnic.net/repo/7cf01ec6-8e89-402a-90c7-50c6f14cd242/1/798A229C42DA54D0690064D264AA7AA2375D0419.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/798A229C42DA54D0690064D264AA7AA2375D0419.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Apr 2026 00:20:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:56:a4:1b:78:13:5f:fc:e9:36:a5:81:89:85:30:4b:1b:1c:55:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=798A229C42DA54D0690064D264AA7AA2375D0419 Validity Not Before: Apr 19 17:55:02 2026 GMT Not After : Apr 18 18:00:02 2027 GMT Subject: CN=1115CE2E044DEF3FACE171F7C9D8BD1F13DA275F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:38:a9:3b:ee:fc:7d:b6:53:b6:c9:b6:fb:64: e9:71:7f:81:f9:41:e2:3f:7e:55:07:26:50:5f:f5: cb:10:ef:ca:d0:7e:6e:a6:01:e6:c3:9d:90:f8:97: e4:e2:ac:e1:68:85:0f:b4:90:e7:ae:c5:1d:91:c3: 2d:82:7d:bd:c2:eb:2b:8c:1d:4e:fc:7b:35:46:29: 7a:41:39:30:29:56:c6:d7:6b:b9:69:da:a1:cf:4d: 91:68:ae:55:fb:a6:df:96:42:0a:4d:f1:e7:f6:1e: 70:84:92:55:06:07:3b:85:cb:a3:ed:8d:b9:e0:b9: 4a:5e:35:8d:db:10:ec:ce:5d:4d:55:d5:8b:30:f4: 68:f7:f6:8c:da:29:da:5f:69:2e:51:8e:fc:36:b2: 61:cd:37:70:60:ab:9f:72:73:65:94:81:52:dc:42: 78:ac:a7:f7:f4:db:c7:5c:c2:fc:24:56:6a:ac:bc: 78:3f:c7:10:30:1e:70:28:11:d2:eb:59:c0:8e:1d: 6f:9d:fd:a4:b0:27:f2:e0:34:ff:01:11:e6:b8:f9: 6b:ce:89:46:36:87:7d:43:dd:d5:5d:8b:5e:a7:04: 72:98:95:42:2b:7a:ba:9b:1c:a1:9b:cf:da:87:68: ce:cc:3f:2d:91:4d:c0:49:df:88:72:74:e7:e1:47: 33:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:15:CE:2E:04:4D:EF:3F:AC:E1:71:F7:C9:D8:BD:1F:13:DA:27:5F X509v3 Authority Key Identifier: keyid:79:8A:22:9C:42:DA:54:D0:69:00:64:D2:64:AA:7A:A2:37:5D:04:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7cf01ec6-8e89-402a-90c7-50c6f14cd242/1/798A229C42DA54D0690064D264AA7AA2375D0419.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/798A229C42DA54D0690064D264AA7AA2375D0419.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7cf01ec6-8e89-402a-90c7-50c6f14cd242/1/323030313a6466333a643934303a3a2f34382d3438203d3e20313532373732.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df3:d940::/48 Signature Algorithm: sha256WithRSAEncryption 0d:de:58:56:dd:bf:94:97:f1:72:5d:e6:cc:a9:86:c7:0a:bb: d7:2c:36:09:23:70:e1:eb:da:a3:3c:d2:8e:ab:90:16:4d:95: 05:7d:d6:f3:3a:75:f3:7d:99:94:fb:a6:bf:7f:83:49:40:a5: f3:03:e8:02:93:af:7d:a8:ec:68:d7:50:95:3b:ed:c7:d4:79: 7e:1d:2d:fa:79:b6:51:eb:2f:a1:72:2a:59:43:ea:ad:50:d9: 50:1b:b3:48:64:2c:02:89:f9:07:e5:8b:5d:ec:c7:54:d9:1b: c2:5b:bc:aa:b6:20:e9:12:e9:c7:66:73:f6:8b:51:47:23:f9: 5b:11:c2:39:8a:d5:af:7d:b7:a0:b0:a0:b8:f4:5a:b4:5a:a3: 56:e9:e1:e9:14:2a:30:67:a5:67:06:be:b3:fc:13:3b:00:98: b7:46:f9:10:07:f4:36:d0:93:08:66:10:7e:99:a2:31:21:98: 0e:7a:d9:47:bf:2b:fe:01:c5:27:70:87:b7:8b:26:d4:b8:78: d1:12:dc:50:cc:8d:7c:7f:86:91:fc:4b:31:33:10:d2:a8:d7: f4:d5:37:50:29:44:29:a4:75:1b:cd:d8:7f:39:a5:35:49:34: 68:d5:8a:fa:94:02:e7:20:b7:c8:5d:20:a6:3e:e5:db:fe:66: 96:71:4c:66 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIULVakG3gTX/zpNqWBiYUwSxscVcgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzk4QTIyOUM0MkRBNTREMDY5MDA2NEQyNjRBQTdBQTIz NzVEMDQxOTAeFw0yNjA0MTkxNzU1MDJaFw0yNzA0MTgxODAwMDJaMDMxMTAvBgNV BAMTKDExMTVDRTJFMDQ0REVGM0ZBQ0UxNzFGN0M5RDhCRDFGMTNEQTI3NUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3OKk77vx9tlO2ybb7ZOlxf4H5 QeI/flUHJlBf9csQ78rQfm6mAebDnZD4l+TirOFohQ+0kOeuxR2Rwy2Cfb3C6yuM HU78ezVGKXpBOTApVsbXa7lp2qHPTZForlX7pt+WQgpN8ef2HnCEklUGBzuFy6Pt jbnguUpeNY3bEOzOXU1V1Ysw9Gj39ozaKdpfaS5Rjvw2smHNN3Bgq59yc2WUgVLc Qnisp/f028dcwvwkVmqsvHg/xxAwHnAoEdLrWcCOHW+d/aSwJ/LgNP8BEea4+WvO iUY2h31D3dVdi16nBHKYlUIrerqbHKGbz9qHaM7MPy2RTcBJ34hydOfhRzMDAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUERXOLgRN7z+s4XH3ydi9HxPaJ18wHwYDVR0j BBgwFoAUeYoinELaVNBpAGTSZKp6ojddBBkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 Y2YwMWVjNi04ZTg5LTQwMmEtOTBjNy01MGM2ZjE0Y2QyNDIvMS83OThBMjI5QzQy REE1NEQwNjkwMDY0RDI2NEFBN0FBMjM3NUQwNDE5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzk4QTIyOUM0MkRBNTREMDY5MDA2NEQyNjRBQTdBQTIzNzVE MDQxOS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdjZjAxZWM2LThlODktNDAyYS05 MGM3LTUwYzZmMTRjZDI0Mi8xLzMyMzAzMDMxM2E2NDY2MzMzYTY0MzkzNDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNTMyMzczNzMyLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 89lAMA0GCSqGSIb3DQEBCwUAA4IBAQAN3lhW3b+Ul/FyXebMqYbHCrvXLDYJI3Dh 69qjPNKOq5AWTZUFfdbzOnXzfZmU+6a/f4NJQKXzA+gCk699qOxo11CVO+3H1Hl+ HS36ebZR6y+hcipZQ+qtUNlQG7NIZCwCifkH5Ytd7MdU2RvCW7yqtiDpEunHZnP2 i1FHI/lbEcI5itWvfbegsKC49Fq0WqNW6eHpFCowZ6VnBr6z/BM7AJi3RvkQB/Q2 0JMIZhB+maIxIZgOetlHvyv+AcUncIe3iybUuHjREtxQzI18f4aR/EsxMxDSqNf0 1TdQKUQppHUbzdh/OaU1STRo1Yr6lALnILfIXSCmPuXb/maWcUxm -----END CERTIFICATE-----Generated at Wed Apr 22 08:44:30 2026 by rpki-client