$ rpki-client -vvf repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/323430343a393538303a33313a3a2f34382d3438203d3e203633353136.roa File: 323430343a393538303a33313a3a2f34382d3438203d3e203633353136.roa (raw, json) Hash identifier: xAVHkwUJuceUhm1gZEhKbi4kqCLmB1DeBBYoJxsoYjY= Subject key identifier: C4:C8:AF:E7:03:B0:6C:8A:00:F6:35:22:3E:D6:2B:D2:19:0F:42:88 Certificate issuer: /CN=DD29F5E4CE561760A0212F0448987AFBE75263D7 Certificate serial: 79F54271EC245678E013614C996A3DEB6526149F Authority key identifier: DD:29:F5:E4:CE:56:17:60:A0:21:2F:04:48:98:7A:FB:E7:52:63:D7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DD29F5E4CE561760A0212F0448987AFBE75263D7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/323430343a393538303a33313a3a2f34382d3438203d3e203633353136.roa Signing time: Sun 01 Mar 2026 16:52:00 +0000 ROA not before: Sun 01 Mar 2026 16:47:00 +0000 ROA not after: Sun 28 Feb 2027 16:52:00 +0000 asID: 63516 IP address blocks: 2404:9580:31::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/DD29F5E4CE561760A0212F0448987AFBE75263D7.crl rsync://repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/DD29F5E4CE561760A0212F0448987AFBE75263D7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DD29F5E4CE561760A0212F0448987AFBE75263D7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 04:09:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:f5:42:71:ec:24:56:78:e0:13:61:4c:99:6a:3d:eb:65:26:14:9f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DD29F5E4CE561760A0212F0448987AFBE75263D7 Validity Not Before: Mar 1 16:47:00 2026 GMT Not After : Feb 28 16:52:00 2027 GMT Subject: CN=C4C8AFE703B06C8A00F635223ED62BD2190F4288 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:eb:81:38:29:1e:28:80:f9:64:b3:9b:88:08: 7e:64:30:73:f3:f4:92:e8:85:51:08:f9:32:86:5f: 79:38:99:6e:c3:15:a0:cc:b3:27:f3:e4:0e:67:2e: 03:ce:ea:b5:1d:11:cc:7a:33:32:da:9f:7a:70:ca: e2:fe:bf:00:a5:4a:ae:83:1f:89:1a:33:e6:4b:c9: 00:93:0d:c4:55:96:16:d6:55:f3:f6:97:f1:db:54: ba:25:be:42:11:82:fd:84:24:47:da:60:05:8f:95: e6:6d:ee:42:13:2f:e5:43:5d:32:7f:f2:04:06:9c: d4:ef:f7:de:5d:8a:92:18:81:f6:3e:b3:cd:c8:0c: 58:d4:22:98:b0:32:60:b1:48:9f:3a:87:2a:7c:2b: 2d:0e:b6:22:d6:fe:02:35:f8:b7:09:bc:ce:06:15: 64:05:28:03:4f:6d:1c:f6:08:64:c9:3f:9d:ab:6c: ba:74:c1:ee:de:f5:7e:9f:d9:1b:14:17:1c:10:06: 02:e6:89:92:d7:78:74:28:7e:c6:ca:70:02:71:65: 71:c1:94:18:a2:66:13:13:54:d7:7b:43:d0:c8:23: 40:2b:4d:fe:cc:62:cd:dc:36:f1:3a:2a:69:60:6e: 07:de:a7:49:67:c3:0f:ed:b7:dc:32:b8:72:4a:7e: 2c:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:C8:AF:E7:03:B0:6C:8A:00:F6:35:22:3E:D6:2B:D2:19:0F:42:88 X509v3 Authority Key Identifier: keyid:DD:29:F5:E4:CE:56:17:60:A0:21:2F:04:48:98:7A:FB:E7:52:63:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/DD29F5E4CE561760A0212F0448987AFBE75263D7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DD29F5E4CE561760A0212F0448987AFBE75263D7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/323430343a393538303a33313a3a2f34382d3438203d3e203633353136.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:9580:31::/48 Signature Algorithm: sha256WithRSAEncryption 74:3e:f2:b7:bd:a4:4c:a3:6c:55:3c:ec:94:88:81:25:08:d4: 40:50:6e:d7:4f:16:90:d2:33:e6:03:a5:a0:8c:ba:e1:35:8e: 66:5b:03:6c:c9:b9:19:2a:2e:26:c3:6e:57:fc:44:6c:41:09: 1d:94:11:ff:97:73:76:69:e9:cb:db:f6:c0:30:9f:3d:92:74: eb:e2:57:29:7a:56:ab:ab:39:b4:5c:93:78:4a:59:d7:97:2a: f4:67:fc:0d:d1:ff:14:48:d1:66:bb:d9:72:89:c5:91:f2:96: d1:0b:85:bd:95:bc:70:27:30:90:43:eb:0d:04:55:a2:5c:20: c9:64:c1:7d:5a:33:6d:c7:51:e4:19:c4:e5:55:fc:06:06:d3: f3:ff:b8:2c:3a:45:31:63:f6:8b:bb:fb:8e:d9:08:a1:ae:e4: 00:36:74:1f:19:f9:02:2f:30:f8:83:5d:2c:df:fa:cf:58:b8: 3f:50:05:30:1f:39:af:90:a9:65:20:ea:78:e2:1f:26:d2:00: d7:af:69:e7:7f:c0:6c:ab:4c:3b:ae:11:bb:b4:b3:40:4d:28: cd:be:ff:cf:48:df:d4:4b:df:4b:df:4e:f3:b8:42:d6:6c:c0: 1d:40:46:a6:45:b3:41:cb:c3:20:91:19:97:a7:25:77:23:db: e6:ff:5e:fa -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUefVCcewkVnjgE2FMmWo962UmFJ8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREQyOUY1RTRDRTU2MTc2MEEwMjEyRjA0NDg5ODdBRkJF NzUyNjNENzAeFw0yNjAzMDExNjQ3MDBaFw0yNzAyMjgxNjUyMDBaMDMxMTAvBgNV BAMTKEM0QzhBRkU3MDNCMDZDOEEwMEY2MzUyMjNFRDYyQkQyMTkwRjQyODgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC864E4KR4ogPlks5uICH5kMHPz 9JLohVEI+TKGX3k4mW7DFaDMsyfz5A5nLgPO6rUdEcx6MzLan3pwyuL+vwClSq6D H4kaM+ZLyQCTDcRVlhbWVfP2l/HbVLolvkIRgv2EJEfaYAWPleZt7kITL+VDXTJ/ 8gQGnNTv995dipIYgfY+s83IDFjUIpiwMmCxSJ86hyp8Ky0OtiLW/gI1+LcJvM4G FWQFKANPbRz2CGTJP52rbLp0we7e9X6f2RsUFxwQBgLmiZLXeHQofsbKcAJxZXHB lBiiZhMTVNd7Q9DII0ArTf7MYs3cNvE6Kmlgbgfep0lnww/tt9wyuHJKfiwpAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUxMiv5wOwbIoA9jUiPtYr0hkPQogwHwYDVR0j BBgwFoAU3Sn15M5WF2CgIS8ESJh6++dSY9cwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NjI0MDUyZS0yMjA1LTQ4ZjMtYTNjYi1jZThiMzI2YjhmNzEvMC9ERDI5RjVFNENF NTYxNzYwQTAyMTJGMDQ0ODk4N0FGQkU3NTI2M0Q3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREQyOUY1RTRDRTU2MTc2MEEwMjEyRjA0NDg5ODdBRkJFNzUy NjNENy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA2MjQwNTJlLTIyMDUtNDhmMy1h M2NiLWNlOGIzMjZiOGY3MS8wLzMyMzQzMDM0M2EzOTM1MzgzMDNhMzMzMTNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDM2MzMzNTMxMzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBJWAADEw DQYJKoZIhvcNAQELBQADggEBAHQ+8re9pEyjbFU87JSIgSUI1EBQbtdPFpDSM+YD paCMuuE1jmZbA2zJuRkqLibDblf8RGxBCR2UEf+Xc3Zp6cvb9sAwnz2SdOviVyl6 VqurObRck3hKWdeXKvRn/A3R/xRI0Wa72XKJxZHyltELhb2VvHAnMJBD6w0EVaJc IMlkwX1aM23HUeQZxOVV/AYG0/P/uCw6RTFj9ou7+47ZCKGu5AA2dB8Z+QIvMPiD XSzf+s9YuD9QBTAfOa+QqWUg6njiHybSANevaed/wGyrTDuuEbu0s0BNKM2+/89I 39RL30vfTvO4QtZswB1ARqZFs0HLwyCRGZenJXcj2+b/Xvo= -----END CERTIFICATE-----Generated at Mon Mar 2 14:58:03 2026 by rpki-client