$ rpki-client -vvf repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/323430363a313363303a363a3a2f34382d3438203d3e20313430343133.roa File: 323430363a313363303a363a3a2f34382d3438203d3e20313430343133.roa (raw, json) Hash identifier: tkTPeVpGuStZROHiyqEEeRHuHIzs/xnYHlkNrpjcmvo= Subject key identifier: 92:F5:5C:AE:0E:36:D0:F2:DB:02:1C:63:BA:A1:DC:43:A5:9A:66:31 Certificate issuer: /CN=5AB2F048BCF9D60D6323A72EF7255F38A81A93BE Certificate serial: 1878E02DF93EEFBD78FDE113E1B13D111CC601BB Authority key identifier: 5A:B2:F0:48:BC:F9:D6:0D:63:23:A7:2E:F7:25:5F:38:A8:1A:93:BE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/323430363a313363303a363a3a2f34382d3438203d3e20313430343133.roa Signing time: Sun 05 Apr 2026 16:00:01 +0000 ROA not before: Sun 05 Apr 2026 15:55:01 +0000 ROA not after: Sun 04 Apr 2027 16:00:01 +0000 asID: 140413 IP address blocks: 2406:13c0:6::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.crl rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Apr 2026 21:56:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:78:e0:2d:f9:3e:ef:bd:78:fd:e1:13:e1:b1:3d:11:1c:c6:01:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5AB2F048BCF9D60D6323A72EF7255F38A81A93BE Validity Not Before: Apr 5 15:55:01 2026 GMT Not After : Apr 4 16:00:01 2027 GMT Subject: CN=92F55CAE0E36D0F2DB021C63BAA1DC43A59A6631 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fc:76:39:13:93:6e:de:39:0e:1d:9c:0a:57:56: c3:14:18:5f:d4:c9:b6:30:ee:3e:1a:69:b1:2e:35: 92:37:eb:25:ca:82:d7:67:3f:7f:3e:fa:28:a4:3f: c4:af:83:13:ec:49:7b:98:a8:bd:33:4f:42:1e:46: a8:68:df:5d:2f:e5:5b:d1:14:88:9e:c8:5e:46:f2: 2a:a3:72:1d:99:e4:7c:6e:5e:fc:a4:aa:7d:ec:d5: 19:5a:39:34:48:79:7a:be:78:4b:f1:09:a7:65:43: 93:fa:bf:38:d4:5c:0e:b4:9f:e9:e2:c3:02:8c:ce: b5:ff:89:f3:68:cd:9c:be:31:2e:68:04:3b:e9:3f: 82:c1:12:8f:0b:de:5c:e7:9b:44:44:6c:c2:a2:6c: 17:1c:a6:15:e5:1e:72:9a:3c:87:62:77:23:28:1f: 1a:7f:50:9c:47:9f:36:aa:a9:2d:94:f1:c3:5d:21: 4b:d8:ba:04:ab:c4:12:47:44:ed:b6:32:dd:ae:0e: 76:99:71:e9:7b:e9:3b:d9:65:ac:9b:14:d7:aa:ae: 54:7f:b0:a2:2a:3e:67:6d:8a:27:f3:d6:16:cb:41: 04:00:fc:35:31:39:1a:d5:1c:db:02:88:da:c7:e4: d5:f0:30:81:3f:9d:71:c9:1c:33:57:b8:db:64:4e: 31:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:F5:5C:AE:0E:36:D0:F2:DB:02:1C:63:BA:A1:DC:43:A5:9A:66:31 X509v3 Authority Key Identifier: keyid:5A:B2:F0:48:BC:F9:D6:0D:63:23:A7:2E:F7:25:5F:38:A8:1A:93:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/323430363a313363303a363a3a2f34382d3438203d3e20313430343133.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:13c0:6::/48 Signature Algorithm: sha256WithRSAEncryption 61:db:6c:11:85:a0:2c:dc:58:73:79:54:d0:cd:2e:e8:63:a4: 37:68:4c:8f:f2:f2:4a:c9:62:18:22:98:dc:7e:7d:27:f7:33: af:e1:3e:8b:02:4e:ce:4b:25:67:75:a0:f1:15:c1:75:79:25: f8:68:39:9a:fb:24:7e:00:3a:ee:a4:47:9a:92:2d:e5:72:31: b1:91:24:95:60:1d:06:ec:b4:56:c3:e7:d0:d4:90:d8:30:a3: dc:d4:a6:f1:4a:c2:c3:35:9e:80:49:16:0f:42:94:84:f9:3c: ef:73:1d:cb:07:fd:7a:81:51:4b:79:c6:03:68:81:de:00:fb: 1c:4a:f3:e4:5b:a7:99:87:a7:e3:19:96:32:38:d0:de:c0:07: e5:33:7c:ec:fd:47:92:d2:24:0e:6c:49:a7:92:05:d5:97:34: 40:c1:41:a0:e5:a7:84:cd:ba:a2:3d:db:fd:2f:cd:69:1f:22: f7:20:84:a4:05:a4:37:e9:da:12:cf:57:73:db:1a:ac:5c:4a: 78:35:53:2d:65:ce:a8:1d:ab:31:dd:06:00:25:37:86:5f:3c: a9:ad:74:eb:a3:0f:dc:37:68:e8:1b:27:38:1a:7a:12:a6:07: 7d:c2:55:75:c1:58:5f:38:c4:fa:94:7a:d7:37:1f:45:4a:85: 79:1b:2d:53 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUGHjgLfk+7714/eET4bE9ERzGAbswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUFCMkYwNDhCQ0Y5RDYwRDYzMjNBNzJFRjcyNTVGMzhB ODFBOTNCRTAeFw0yNjA0MDUxNTU1MDFaFw0yNzA0MDQxNjAwMDFaMDMxMTAvBgNV BAMTKDkyRjU1Q0FFMEUzNkQwRjJEQjAyMUM2M0JBQTFEQzQzQTU5QTY2MzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD8djkTk27eOQ4dnApXVsMUGF/U ybYw7j4aabEuNZI36yXKgtdnP38++iikP8SvgxPsSXuYqL0zT0IeRqho310v5VvR FIieyF5G8iqjch2Z5HxuXvykqn3s1RlaOTRIeXq+eEvxCadlQ5P6vzjUXA60n+ni wwKMzrX/ifNozZy+MS5oBDvpP4LBEo8L3lznm0REbMKibBccphXlHnKaPIdidyMo Hxp/UJxHnzaqqS2U8cNdIUvYugSrxBJHRO22Mt2uDnaZcel76TvZZaybFNeqrlR/ sKIqPmdtiifz1hbLQQQA/DUxORrVHNsCiNrH5NXwMIE/nXHJHDNXuNtkTjGXAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUkvVcrg420PLbAhxjuqHcQ6WaZjEwHwYDVR0j BBgwFoAUWrLwSLz51g1jI6cu9yVfOKgak74wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y NmQ3ZWRlMS0zZmQwLTQ2MjQtYmVmOC0wZTczZTg0OTk0YmMvMC81QUIyRjA0OEJD RjlENjBENjMyM0E3MkVGNzI1NUYzOEE4MUE5M0JFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUFCMkYwNDhCQ0Y5RDYwRDYzMjNBNzJFRjcyNTVGMzhBODFB OTNCRS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI2ZDdlZGUxLTNmZDAtNDYyNC1i ZWY4LTBlNzNlODQ5OTRiYy8wLzMyMzQzMDM2M2EzMTMzNjMzMDNhMzYzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTM0MzAzNDMxMzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBhPAAAYw DQYJKoZIhvcNAQELBQADggEBAGHbbBGFoCzcWHN5VNDNLuhjpDdoTI/y8krJYhgi mNx+fSf3M6/hPosCTs5LJWd1oPEVwXV5JfhoOZr7JH4AOu6kR5qSLeVyMbGRJJVg HQbstFbD59DUkNgwo9zUpvFKwsM1noBJFg9ClIT5PO9zHcsH/XqBUUt5xgNogd4A +xxK8+Rbp5mHp+MZljI40N7AB+UzfOz9R5LSJA5sSaeSBdWXNEDBQaDlp4TNuqI9 2/0vzWkfIvcghKQFpDfp2hLPV3PbGqxcSng1Uy1lzqgdqzHdBgAlN4ZfPKmtdOuj D9w3aOgbJzgaehKmB33CVXXBWF84xPqUetc3H0VKhXkbLVM= -----END CERTIFICATE-----Generated at Sun Apr 19 13:44:29 2026 by rpki-client