$ rpki-client -vvf repo-rpki.idnic.net/repo/1bdce391-a5d3-411b-a97b-e862fbf5631c/1/323030313a6466333a653034303a3a2f34382d3438203d3e20313532383036.roa File: 323030313a6466333a653034303a3a2f34382d3438203d3e20313532383036.roa (raw, json) Hash identifier: DsvjqmGxwPLkv0tSrE+ZJTDB747qTJVlkCsQD4PRKS0= Subject key identifier: 76:45:48:77:98:17:B5:C4:5B:E0:7B:1F:46:A9:A3:9F:98:AB:72:D6 Certificate issuer: /CN=C2E1998AC1681A41F68250BFABD05A982E00EA44 Certificate serial: 2DA154A68515BE2E10DE0B91BE6B80B7016CC533 Authority key identifier: C2:E1:99:8A:C1:68:1A:41:F6:82:50:BF:AB:D0:5A:98:2E:00:EA:44 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C2E1998AC1681A41F68250BFABD05A982E00EA44.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1bdce391-a5d3-411b-a97b-e862fbf5631c/1/323030313a6466333a653034303a3a2f34382d3438203d3e20313532383036.roa Signing time: Mon 13 Apr 2026 20:00:02 +0000 ROA not before: Mon 13 Apr 2026 19:55:02 +0000 ROA not after: Mon 12 Apr 2027 20:00:02 +0000 asID: 152806 IP address blocks: 2001:df3:e040::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1bdce391-a5d3-411b-a97b-e862fbf5631c/1/C2E1998AC1681A41F68250BFABD05A982E00EA44.crl rsync://repo-rpki.idnic.net/repo/1bdce391-a5d3-411b-a97b-e862fbf5631c/1/C2E1998AC1681A41F68250BFABD05A982E00EA44.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C2E1998AC1681A41F68250BFABD05A982E00EA44.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 19 Apr 2026 09:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:a1:54:a6:85:15:be:2e:10:de:0b:91:be:6b:80:b7:01:6c:c5:33 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C2E1998AC1681A41F68250BFABD05A982E00EA44 Validity Not Before: Apr 13 19:55:02 2026 GMT Not After : Apr 12 20:00:02 2027 GMT Subject: CN=764548779817B5C45BE07B1F46A9A39F98AB72D6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:29:90:d3:53:75:1a:5d:0b:05:0f:66:57:b5: 88:5a:1c:24:d3:0c:1f:92:27:d7:6f:31:33:68:7d: b5:75:21:88:73:07:ad:e5:ed:4f:0a:4b:08:2b:64: d8:d0:e1:2c:d8:89:ba:8e:1f:9e:82:0b:83:55:c1: c3:75:56:82:80:92:32:aa:f7:85:4f:97:ba:22:79: c4:9a:60:f2:f6:53:bf:27:3b:d4:33:e4:ed:8d:4a: d8:30:34:3d:c6:7c:b0:14:b7:d2:8f:43:84:74:2b: 4f:62:47:f0:ba:ea:e6:6c:6e:f8:73:36:21:11:c9: 96:47:17:31:ba:93:06:e8:8c:67:ca:62:11:ec:bc: d1:b1:23:21:06:a8:e1:ec:29:41:8b:ef:69:cd:f0: 1d:6d:dd:b9:b3:b2:57:7a:3e:c5:2a:7f:da:7e:eb: a7:f5:83:8b:ee:55:ae:83:20:09:bd:f5:9d:1e:8e: ed:81:f3:41:26:c5:7e:30:16:98:d3:df:90:9a:2d: df:d6:69:7f:76:61:88:8d:74:0a:a4:b8:e7:e9:ac: d1:eb:0c:b0:4b:45:96:15:d9:54:23:02:c4:15:3c: bc:92:ea:1f:38:d9:7e:9a:13:31:44:1e:9a:23:70: 85:64:5a:38:bc:a5:0e:e6:e4:3e:a5:6a:1c:8f:b5: f8:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:45:48:77:98:17:B5:C4:5B:E0:7B:1F:46:A9:A3:9F:98:AB:72:D6 X509v3 Authority Key Identifier: keyid:C2:E1:99:8A:C1:68:1A:41:F6:82:50:BF:AB:D0:5A:98:2E:00:EA:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1bdce391-a5d3-411b-a97b-e862fbf5631c/1/C2E1998AC1681A41F68250BFABD05A982E00EA44.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C2E1998AC1681A41F68250BFABD05A982E00EA44.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1bdce391-a5d3-411b-a97b-e862fbf5631c/1/323030313a6466333a653034303a3a2f34382d3438203d3e20313532383036.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df3:e040::/48 Signature Algorithm: sha256WithRSAEncryption b2:e6:d1:0c:7a:f3:3c:b1:f8:b9:63:cf:1e:3e:20:35:a4:36: 19:4d:36:7a:39:e9:80:a9:59:8a:d1:1e:b0:17:0a:9b:74:27: 9b:a4:47:69:ea:da:4f:c6:3a:de:bb:ef:05:c4:0b:66:b8:f8: 43:4d:dc:19:b7:69:88:f0:37:fb:28:b2:13:f7:d6:ba:a6:80: a6:e7:c3:93:63:8e:b9:b2:14:65:cd:32:f3:13:cc:6d:00:28: bd:46:a8:1d:5f:b6:48:9d:f5:15:13:2d:3e:29:48:e4:9b:51: 88:6e:c9:6c:b4:0f:b9:0a:4e:5e:d6:52:82:e3:83:0e:f5:88: 4c:72:39:63:ca:54:bc:f6:75:59:aa:63:17:42:1e:8e:d0:2c: 2f:64:0b:a0:5d:bb:d1:c7:07:a2:2f:fe:f0:98:6c:30:14:1a: b8:10:c6:1d:f4:62:2c:18:33:2c:64:03:8d:7d:0b:5f:b6:52: 6e:7e:5e:ee:d6:df:fa:92:05:bb:9c:e0:f8:ab:15:54:dd:c4: d9:e6:46:5e:2d:d1:59:bd:77:88:ce:ad:e6:13:e5:c7:2a:24: 76:89:cd:d8:b4:be:19:c3:65:59:f7:00:72:f7:a1:64:1f:d2: 6a:fd:96:0b:f4:3b:36:59:39:81:0a:18:33:eb:0b:c2:29:30: ec:95:18:33 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIULaFUpoUVvi4Q3guRvmuAtwFsxTMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzJFMTk5OEFDMTY4MUE0MUY2ODI1MEJGQUJEMDVBOTgy RTAwRUE0NDAeFw0yNjA0MTMxOTU1MDJaFw0yNzA0MTIyMDAwMDJaMDMxMTAvBgNV BAMTKDc2NDU0ODc3OTgxN0I1QzQ1QkUwN0IxRjQ2QTlBMzlGOThBQjcyRDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOKZDTU3UaXQsFD2ZXtYhaHCTT DB+SJ9dvMTNofbV1IYhzB63l7U8KSwgrZNjQ4SzYibqOH56CC4NVwcN1VoKAkjKq 94VPl7oiecSaYPL2U78nO9Qz5O2NStgwND3GfLAUt9KPQ4R0K09iR/C66uZsbvhz NiERyZZHFzG6kwbojGfKYhHsvNGxIyEGqOHsKUGL72nN8B1t3bmzsld6PsUqf9p+ 66f1g4vuVa6DIAm99Z0eju2B80EmxX4wFpjT35CaLd/WaX92YYiNdAqkuOfprNHr DLBLRZYV2VQjAsQVPLyS6h842X6aEzFEHpojcIVkWji8pQ7m5D6lahyPtfgLAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUdkVId5gXtcRb4HsfRqmjn5irctYwHwYDVR0j BBgwFoAUwuGZisFoGkH2glC/q9BamC4A6kQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x YmRjZTM5MS1hNWQzLTQxMWItYTk3Yi1lODYyZmJmNTYzMWMvMS9DMkUxOTk4QUMx NjgxQTQxRjY4MjUwQkZBQkQwNUE5ODJFMDBFQTQ0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzJFMTk5OEFDMTY4MUE0MUY2ODI1MEJGQUJEMDVBOTgyRTAw RUE0NC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFiZGNlMzkxLWE1ZDMtNDExYi1h OTdiLWU4NjJmYmY1NjMxYy8xLzMyMzAzMDMxM2E2NDY2MzMzYTY1MzAzNDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNTMyMzgzMDM2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8+BAMA0GCSqGSIb3DQEBCwUAA4IBAQCy5tEMevM8sfi5Y88ePiA1pDYZTTZ6OemA qVmK0R6wFwqbdCebpEdp6tpPxjreu+8FxAtmuPhDTdwZt2mI8Df7KLIT99a6poCm 58OTY465shRlzTLzE8xtACi9RqgdX7ZInfUVEy0+KUjkm1GIbslstA+5Ck5e1lKC 44MO9YhMcjljylS89nVZqmMXQh6O0CwvZAugXbvRxweiL/7wmGwwFBq4EMYd9GIs GDMsZAONfQtftlJufl7u1t/6kgW7nOD4qxVU3cTZ5kZeLdFZvXeIzq3mE+XHKiR2 ic3YtL4Zw2VZ9wBy96FkH9Jq/ZYL9Ds2WTmBChgz6wvCKTDslRgz -----END CERTIFICATE-----Generated at Fri Apr 17 19:14:15 2026 by rpki-client