$ rpki-client -vvf repo-rpki.idnic.net/repo/12ea77b5-88f7-4085-b331-975024cd046d/0/323430313a663563303a3a2f33322d3438203d3e20313336383631.roa File: 323430313a663563303a3a2f33322d3438203d3e20313336383631.roa (raw, json) Hash identifier: VzAxOazFH4cH+yZVwakXwHOeCoKQcZ2rVk8WcBQdAeg= Subject key identifier: 2F:34:C7:0B:0C:AA:E9:B9:22:15:05:8C:8B:92:A9:48:2A:AF:8B:BA Certificate issuer: /CN=74D4F2785CA261D018C909BA622D8244292BCB3E Certificate serial: 4BC0EB09344FC8B320BEEB6ABEC3B27DD2F33DE7 Authority key identifier: 74:D4:F2:78:5C:A2:61:D0:18:C9:09:BA:62:2D:82:44:29:2B:CB:3E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/74D4F2785CA261D018C909BA622D8244292BCB3E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/12ea77b5-88f7-4085-b331-975024cd046d/0/323430313a663563303a3a2f33322d3438203d3e20313336383631.roa Signing time: Thu 02 Apr 2026 17:00:01 +0000 ROA not before: Thu 02 Apr 2026 16:55:01 +0000 ROA not after: Thu 01 Apr 2027 17:00:01 +0000 asID: 136861 IP address blocks: 2401:f5c0::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/12ea77b5-88f7-4085-b331-975024cd046d/0/74D4F2785CA261D018C909BA622D8244292BCB3E.crl rsync://repo-rpki.idnic.net/repo/12ea77b5-88f7-4085-b331-975024cd046d/0/74D4F2785CA261D018C909BA622D8244292BCB3E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/74D4F2785CA261D018C909BA622D8244292BCB3E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Apr 2026 22:57:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:c0:eb:09:34:4f:c8:b3:20:be:eb:6a:be:c3:b2:7d:d2:f3:3d:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=74D4F2785CA261D018C909BA622D8244292BCB3E Validity Not Before: Apr 2 16:55:01 2026 GMT Not After : Apr 1 17:00:01 2027 GMT Subject: CN=2F34C70B0CAAE9B92215058C8B92A9482AAF8BBA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:ff:71:7b:db:ae:64:6f:db:8f:71:e7:4b:ab: a5:a2:43:16:8d:be:dd:4e:86:b0:6e:33:8c:0f:61: 42:18:41:59:de:76:bb:4b:ed:e6:c6:0f:2d:bf:32: 5b:ec:a1:fa:bb:fb:ed:d7:28:bd:01:63:ac:05:21: 2b:38:5a:95:54:c3:2d:12:0a:f6:60:96:12:73:25: 12:c4:7f:5a:35:89:15:c1:96:e5:67:31:85:d8:42: c7:5e:5d:af:7e:64:a4:0b:75:cf:de:bf:88:29:a8: 0b:03:b0:a4:8b:83:63:4d:4b:04:08:c2:9c:53:ce: 04:71:19:08:f1:97:46:f2:17:d5:ac:8a:a9:b8:fe: 67:41:37:f9:c2:a6:d5:1d:29:b6:08:3d:b7:04:22: 0b:f6:48:8a:20:4e:24:80:12:a2:a6:80:6d:b8:bd: e2:49:aa:71:77:3d:c0:62:c4:50:e3:46:e8:66:be: 56:f6:ad:7f:c6:db:b7:df:49:70:9f:d8:29:39:9e: 78:d7:48:25:ff:c4:d6:93:3f:8a:2d:61:b9:e9:e9: 33:24:e0:e4:87:e9:cf:87:b4:35:78:3f:07:0b:f5: de:70:13:e7:3f:e7:13:25:77:fc:ad:16:67:eb:4a: 98:03:e0:cf:19:e9:cb:7d:f5:68:f3:6a:88:2f:c4: 99:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:34:C7:0B:0C:AA:E9:B9:22:15:05:8C:8B:92:A9:48:2A:AF:8B:BA X509v3 Authority Key Identifier: keyid:74:D4:F2:78:5C:A2:61:D0:18:C9:09:BA:62:2D:82:44:29:2B:CB:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/12ea77b5-88f7-4085-b331-975024cd046d/0/74D4F2785CA261D018C909BA622D8244292BCB3E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/74D4F2785CA261D018C909BA622D8244292BCB3E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/12ea77b5-88f7-4085-b331-975024cd046d/0/323430313a663563303a3a2f33322d3438203d3e20313336383631.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:f5c0::/32 Signature Algorithm: sha256WithRSAEncryption 66:95:84:e8:47:36:67:c1:5f:72:00:8b:82:76:15:9a:b7:8f: 4a:bf:97:e4:03:ca:06:1d:88:7f:9c:1d:36:a6:a5:6a:08:93: 83:a8:76:8b:54:e0:f3:30:ea:ca:d3:d0:4e:81:e6:c2:58:4c: 6d:1a:04:e3:ab:5a:eb:0c:b3:e5:76:ef:59:cd:8e:8a:23:dc: 32:24:6f:84:49:03:fe:2c:29:65:b3:4c:43:03:39:e8:3b:31: d8:27:24:1d:e9:a3:33:29:74:a1:5a:51:92:89:b3:f8:74:8e: 2a:7e:35:b8:77:b2:a2:cc:07:85:de:02:c3:ef:6d:22:d2:6e: 77:ec:4e:cd:6c:23:71:a4:e0:76:1f:13:b9:76:18:e7:07:23: 77:9c:94:f5:9f:29:31:89:f6:bc:6f:9e:3d:04:42:ad:1a:32: ff:72:e2:62:0c:b9:9d:4e:90:cd:60:5e:34:8d:14:1b:c1:18: 01:73:73:cd:2e:40:b6:e3:07:35:50:85:76:1a:e1:49:b1:e3: 92:cb:48:89:33:d2:3a:3c:96:70:15:f8:45:97:91:6d:e7:b1: 0a:86:91:c6:b4:41:b3:db:d3:85:3f:39:f4:41:08:c3:11:68: 61:be:1a:27:fd:e8:eb:1d:de:92:8f:8d:14:54:ea:d5:76:75: 6a:6d:ca:00 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUS8DrCTRPyLMgvutqvsOyfdLzPecwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzRENEYyNzg1Q0EyNjFEMDE4QzkwOUJBNjIyRDgyNDQy OTJCQ0IzRTAeFw0yNjA0MDIxNjU1MDFaFw0yNzA0MDExNzAwMDFaMDMxMTAvBgNV BAMTKDJGMzRDNzBCMENBQUU5QjkyMjE1MDU4QzhCOTJBOTQ4MkFBRjhCQkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDc/3F7265kb9uPcedLq6WiQxaN vt1OhrBuM4wPYUIYQVnedrtL7ebGDy2/Mlvsofq7++3XKL0BY6wFISs4WpVUwy0S CvZglhJzJRLEf1o1iRXBluVnMYXYQsdeXa9+ZKQLdc/ev4gpqAsDsKSLg2NNSwQI wpxTzgRxGQjxl0byF9Wsiqm4/mdBN/nCptUdKbYIPbcEIgv2SIogTiSAEqKmgG24 veJJqnF3PcBixFDjRuhmvlb2rX/G27ffSXCf2Ck5nnjXSCX/xNaTP4otYbnp6TMk 4OSH6c+HtDV4PwcL9d5wE+c/5xMld/ytFmfrSpgD4M8Z6ct99WjzaogvxJlfAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQULzTHCwyq6bkiFQWMi5KpSCqvi7owHwYDVR0j BBgwFoAUdNTyeFyiYdAYyQm6Yi2CRCkryz4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x MmVhNzdiNS04OGY3LTQwODUtYjMzMS05NzUwMjRjZDA0NmQvMC83NEQ0RjI3ODVD QTI2MUQwMThDOTA5QkE2MjJEODI0NDI5MkJDQjNFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzRENEYyNzg1Q0EyNjFEMDE4QzkwOUJBNjIyRDgyNDQyOTJC Q0IzRS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzEyZWE3N2I1LTg4ZjctNDA4NS1i MzMxLTk3NTAyNGNkMDQ2ZC8wLzMyMzQzMDMxM2E2NjM1NjMzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMxMzMzNjM4MzYzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQB9cAwDQYJKoZI hvcNAQELBQADggEBAGaVhOhHNmfBX3IAi4J2FZq3j0q/l+QDygYdiH+cHTampWoI k4OodotU4PMw6srT0E6B5sJYTG0aBOOrWusMs+V271nNjooj3DIkb4RJA/4sKWWz TEMDOeg7MdgnJB3pozMpdKFaUZKJs/h0jip+Nbh3sqLMB4XeAsPvbSLSbnfsTs1s I3Gk4HYfE7l2GOcHI3eclPWfKTGJ9rxvnj0EQq0aMv9y4mIMuZ1OkM1gXjSNFBvB GAFzc80uQLbjBzVQhXYa4Umx45LLSIkz0jo8lnAV+EWXkW3nsQqGkca0QbPb04U/ OfRBCMMRaGG+Gif96Osd3pKPjRRU6tV2dWptygA= -----END CERTIFICATE-----Generated at Sun Apr 19 11:55:17 2026 by rpki-client