$ rpki-client -vvf repo-rpki.idnic.net/repo/bd5c4715-282e-457f-b89e-041bf9110af8/0/323430303a396338303a38383a3a2f34382d3438203d3e203538333936.roa File: 323430303a396338303a38383a3a2f34382d3438203d3e203538333936.roa (raw, json) Hash identifier: Wer0ygubTEBGlto9fXJe3cVeD0dGml7jpTGbO8Ws75A= Subject key identifier: 0B:0C:7A:23:B2:D0:49:E6:EF:0F:FA:5A:A7:F1:34:66:C5:60:0F:42 Certificate issuer: /CN=019C4E26EEC252EA61FBB09FD856CDD057CEAD8C Certificate serial: 2BA7E2E4EB8FD9F9F7EF85EE70A5A6C23AADE8CE Authority key identifier: 01:9C:4E:26:EE:C2:52:EA:61:FB:B0:9F:D8:56:CD:D0:57:CE:AD:8C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/019C4E26EEC252EA61FBB09FD856CDD057CEAD8C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/bd5c4715-282e-457f-b89e-041bf9110af8/0/323430303a396338303a38383a3a2f34382d3438203d3e203538333936.roa Signing time: Fri 24 Apr 2026 16:00:02 +0000 ROA not before: Fri 24 Apr 2026 15:55:02 +0000 ROA not after: Fri 23 Apr 2027 16:00:02 +0000 asID: 58396 IP address blocks: 2400:9c80:88::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/bd5c4715-282e-457f-b89e-041bf9110af8/0/019C4E26EEC252EA61FBB09FD856CDD057CEAD8C.crl rsync://repo-rpki.idnic.net/repo/bd5c4715-282e-457f-b89e-041bf9110af8/0/019C4E26EEC252EA61FBB09FD856CDD057CEAD8C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/019C4E26EEC252EA61FBB09FD856CDD057CEAD8C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 30 Apr 2026 12:54:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:a7:e2:e4:eb:8f:d9:f9:f7:ef:85:ee:70:a5:a6:c2:3a:ad:e8:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=019C4E26EEC252EA61FBB09FD856CDD057CEAD8C Validity Not Before: Apr 24 15:55:02 2026 GMT Not After : Apr 23 16:00:02 2027 GMT Subject: CN=0B0C7A23B2D049E6EF0FFA5AA7F13466C5600F42 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:78:6e:85:c6:fd:cc:d2:b0:2a:3c:60:25:cb: a0:b3:5e:bb:f4:de:be:ab:0c:64:e7:cb:d0:96:f7: 56:82:23:66:a2:a7:9c:90:52:c7:d2:c9:47:2e:1b: a1:93:a2:d2:15:b0:04:fd:a8:f2:39:87:2c:1f:8e: 29:04:25:ac:91:c5:2f:b6:52:00:67:e1:76:2c:7a: 05:e4:d6:51:d1:bb:69:bf:1a:a4:b6:bf:e8:d9:b3: 45:7f:c7:d1:2a:73:9f:28:17:12:8c:75:1a:6f:2c: dd:9e:d1:6c:39:82:00:59:02:4c:53:76:41:50:06: a3:7a:ce:66:63:29:87:5e:4f:c2:20:c9:0e:81:22: 8c:54:ea:05:d7:52:14:76:dd:fd:f9:3d:54:0d:38: 04:e3:be:1a:d4:32:63:02:d0:6d:d3:e0:a9:6e:a1: d9:25:84:e6:e1:d4:cf:bc:0d:b6:b2:90:01:d4:49: 0b:16:5f:e4:c9:8d:bb:b2:c4:9a:cf:90:e6:d3:9a: e3:52:c3:f6:93:06:cc:e4:b9:cc:5f:e3:db:1c:85: 98:c9:67:f5:1e:ff:6f:d9:e0:8e:44:5e:dc:71:fe: 07:93:05:2c:88:43:52:b8:46:8f:84:43:66:38:a4: 28:a6:cc:1e:7e:36:11:9c:3d:ed:30:72:3d:d5:c2: 51:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:0C:7A:23:B2:D0:49:E6:EF:0F:FA:5A:A7:F1:34:66:C5:60:0F:42 X509v3 Authority Key Identifier: keyid:01:9C:4E:26:EE:C2:52:EA:61:FB:B0:9F:D8:56:CD:D0:57:CE:AD:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/bd5c4715-282e-457f-b89e-041bf9110af8/0/019C4E26EEC252EA61FBB09FD856CDD057CEAD8C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/019C4E26EEC252EA61FBB09FD856CDD057CEAD8C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/bd5c4715-282e-457f-b89e-041bf9110af8/0/323430303a396338303a38383a3a2f34382d3438203d3e203538333936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:9c80:88::/48 Signature Algorithm: sha256WithRSAEncryption 91:5c:82:4c:51:53:c5:00:58:34:0b:60:fb:7a:f0:db:0c:50: e7:95:34:57:d2:5c:19:e5:a9:67:d0:ea:70:d4:52:dd:2d:fb: e3:2c:52:b9:dd:a4:54:77:dc:18:1d:e9:f8:73:d3:8f:fe:56: 5e:eb:f2:21:31:0a:61:50:66:be:94:4b:12:e2:0b:f3:6b:bb: f0:8d:01:39:93:5d:2a:ef:bd:cf:c6:89:01:d1:71:ef:34:fe: 2a:e7:51:d6:2c:a6:4d:5d:1b:89:74:f5:bd:69:ac:18:f6:b3: 5d:d3:50:cf:0c:75:61:93:26:22:3d:c1:ac:1f:2c:9b:e0:b1: fc:7c:5d:85:25:02:a8:77:1e:af:d5:d3:be:63:d9:49:35:b6: 40:8f:63:d3:fe:95:f5:9a:4d:5b:e2:87:24:f2:04:01:02:fd: f5:b7:37:69:38:62:af:9b:9f:fc:58:e7:1e:f1:a6:70:51:a9: 0f:d4:3e:49:cd:4a:c4:70:70:1c:c0:74:bf:bd:5f:c9:27:1a: 14:e3:88:4f:af:10:22:1a:4a:be:46:cf:89:b0:80:ad:2e:20: 62:2b:4b:54:23:38:ce:87:0b:05:89:24:3a:7a:c4:8c:cb:cf: 62:f6:bd:a8:a0:7a:ca:a1:fc:5e:2d:c9:9c:33:f5:6c:1f:5b: 3e:d1:4c:db -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUK6fi5OuP2fn374XucKWmwjqt6M4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDE5QzRFMjZFRUMyNTJFQTYxRkJCMDlGRDg1NkNERDA1 N0NFQUQ4QzAeFw0yNjA0MjQxNTU1MDJaFw0yNzA0MjMxNjAwMDJaMDMxMTAvBgNV BAMTKDBCMEM3QTIzQjJEMDQ5RTZFRjBGRkE1QUE3RjEzNDY2QzU2MDBGNDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDkeG6Fxv3M0rAqPGAly6CzXrv0 3r6rDGTny9CW91aCI2aip5yQUsfSyUcuG6GTotIVsAT9qPI5hywfjikEJayRxS+2 UgBn4XYsegXk1lHRu2m/GqS2v+jZs0V/x9Eqc58oFxKMdRpvLN2e0Ww5ggBZAkxT dkFQBqN6zmZjKYdeT8IgyQ6BIoxU6gXXUhR23f35PVQNOATjvhrUMmMC0G3T4Klu odklhObh1M+8DbaykAHUSQsWX+TJjbuyxJrPkObTmuNSw/aTBszkucxf49schZjJ Z/Ue/2/Z4I5EXtxx/geTBSyIQ1K4Ro+EQ2Y4pCimzB5+NhGcPe0wcj3VwlEdAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUCwx6I7LQSebvD/pap/E0ZsVgD0IwHwYDVR0j BBgwFoAUAZxOJu7CUuph+7Cf2FbN0FfOrYwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i ZDVjNDcxNS0yODJlLTQ1N2YtYjg5ZS0wNDFiZjkxMTBhZjgvMC8wMTlDNEUyNkVF QzI1MkVBNjFGQkIwOUZEODU2Q0REMDU3Q0VBRDhDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDE5QzRFMjZFRUMyNTJFQTYxRkJCMDlGRDg1NkNERDA1N0NF QUQ4Qy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2JkNWM0NzE1LTI4MmUtNDU3Zi1i ODllLTA0MWJmOTExMGFmOC8wLzMyMzQzMDMwM2EzOTYzMzgzMDNhMzgzODNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzgzMzM5MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkAJyAAIgw DQYJKoZIhvcNAQELBQADggEBAJFcgkxRU8UAWDQLYPt68NsMUOeVNFfSXBnlqWfQ 6nDUUt0t++MsUrndpFR33Bgd6fhz04/+Vl7r8iExCmFQZr6USxLiC/Nru/CNATmT XSrvvc/GiQHRce80/irnUdYspk1dG4l09b1prBj2s13TUM8MdWGTJiI9wawfLJvg sfx8XYUlAqh3Hq/V075j2Uk1tkCPY9P+lfWaTVvihyTyBAEC/fW3N2k4Yq+bn/xY 5x7xpnBRqQ/UPknNSsRwcBzAdL+9X8knGhTjiE+vECIaSr5Gz4mwgK0uIGIrS1Qj OM6HCwWJJDp6xIzLz2L2vaigesqh/F4tyZwz9WwfWz7RTNs= -----END CERTIFICATE-----Generated at Mon Apr 27 19:50:04 2026 by rpki-client