$ rpki-client -vvf repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/323430363a313363303a3a2f34382d3438203d3e20313430343133.roa File: 323430363a313363303a3a2f34382d3438203d3e20313430343133.roa (raw, json) Hash identifier: yPLm//MxtanG78hWbvTW/6v5g9FGuAdopFJC5Wtxpfg= Subject key identifier: D6:A0:12:45:05:0E:BC:BB:BC:E3:81:C7:38:28:5C:14:FE:43:73:F9 Certificate issuer: /CN=5AB2F048BCF9D60D6323A72EF7255F38A81A93BE Certificate serial: 944B5F4D78048D04B070AD8516E1645A472FBA Authority key identifier: 5A:B2:F0:48:BC:F9:D6:0D:63:23:A7:2E:F7:25:5F:38:A8:1A:93:BE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/323430363a313363303a3a2f34382d3438203d3e20313430343133.roa Signing time: Sun 05 Apr 2026 16:00:02 +0000 ROA not before: Sun 05 Apr 2026 15:55:02 +0000 ROA not after: Sun 04 Apr 2027 16:00:02 +0000 asID: 140413 IP address blocks: 2406:13c0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.crl rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Apr 2026 21:56:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 94:4b:5f:4d:78:04:8d:04:b0:70:ad:85:16:e1:64:5a:47:2f:ba Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5AB2F048BCF9D60D6323A72EF7255F38A81A93BE Validity Not Before: Apr 5 15:55:02 2026 GMT Not After : Apr 4 16:00:02 2027 GMT Subject: CN=D6A01245050EBCBBBCE381C738285C14FE4373F9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:a9:b1:c1:78:1e:99:e2:96:6e:4e:31:7b:e1: b1:e1:1a:de:67:31:3f:70:d8:a2:40:97:44:84:ab: 97:35:c9:f3:b4:57:f3:52:c4:8b:46:b5:c8:2b:c4: e6:19:98:b5:ba:36:a0:89:46:ce:ba:f3:0b:69:05: 03:23:c2:3b:0f:b1:fe:e0:19:80:b2:5e:d3:f4:95: ef:70:05:17:06:ed:37:ad:bb:25:f3:65:49:c5:e2: 8a:11:b2:87:82:53:8a:a6:09:9a:8c:30:80:06:50: bd:0c:e5:93:af:21:a2:77:30:08:51:52:1f:b3:89: 99:f3:c3:70:f7:bd:4f:30:30:9c:f3:ef:32:37:35: c7:ac:8e:a4:13:34:2a:eb:b8:bb:b3:7d:0b:5d:0c: db:dc:35:6a:1e:cc:40:b2:a6:f4:5d:75:12:38:39: bf:73:f9:de:16:30:91:c5:c5:d2:6c:00:31:6b:f0: da:2e:7d:59:82:78:bf:00:4d:1a:e0:df:81:bf:7d: 61:f7:86:bc:ce:67:a1:55:d4:9c:72:f3:f5:47:d1: da:4e:ef:50:2f:79:1b:a2:4c:04:14:47:40:68:2e: e8:29:bb:33:6f:40:38:f9:4c:bb:95:07:7a:5f:6d: af:69:9a:47:15:cc:29:43:5a:ff:5e:7a:af:c2:70: 3d:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:A0:12:45:05:0E:BC:BB:BC:E3:81:C7:38:28:5C:14:FE:43:73:F9 X509v3 Authority Key Identifier: keyid:5A:B2:F0:48:BC:F9:D6:0D:63:23:A7:2E:F7:25:5F:38:A8:1A:93:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/323430363a313363303a3a2f34382d3438203d3e20313430343133.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:13c0::/48 Signature Algorithm: sha256WithRSAEncryption 12:1e:d1:0f:1d:f9:a3:8a:96:f1:72:e6:d4:45:e2:cf:cd:5b: 3c:ff:c3:20:25:f7:71:bd:0c:43:23:04:56:32:42:5a:e4:0b: 47:64:c3:e7:df:97:7e:75:a5:18:ba:3e:c8:2a:9d:b6:5f:59: 1a:d8:54:ed:7c:d0:00:e5:2e:c2:cf:18:fc:a2:fb:d4:0c:38: 33:ab:33:96:b1:10:6b:76:31:cb:e7:dd:25:c7:cd:17:8e:0c: df:5a:4b:ed:00:b6:32:1b:1d:4c:08:ed:df:3b:6e:fe:ab:63: 66:a5:bb:d1:a5:35:30:7a:f9:3a:de:b4:9a:30:ae:4d:76:6b: 82:fc:89:03:1e:84:6e:e6:ad:47:47:42:cc:c7:76:af:3d:30: fa:55:29:87:70:9f:5a:96:0b:22:38:d8:a0:8d:ed:42:a6:84: 5e:b7:c2:b4:27:5e:ec:8f:f7:88:03:91:fc:55:b1:4b:b0:8f: e0:bc:ec:e5:73:83:c8:ae:c1:d3:7f:90:96:bb:4b:af:c6:54: 63:dd:bb:5e:f6:48:c3:fe:a3:e6:4f:f3:03:55:b2:08:c9:aa: 51:47:2a:e6:5f:03:3a:0e:0b:63:a1:4e:8d:5d:11:3c:13:2d: 09:06:ba:be:1c:af:03:5a:92:d8:ef:db:88:81:b2:c1:b6:4e: 7c:e5:0e:13 -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgIUAJRLX014BI0EsHCthRbhZFpHL7owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUFCMkYwNDhCQ0Y5RDYwRDYzMjNBNzJFRjcyNTVGMzhB ODFBOTNCRTAeFw0yNjA0MDUxNTU1MDJaFw0yNzA0MDQxNjAwMDJaMDMxMTAvBgNV BAMTKEQ2QTAxMjQ1MDUwRUJDQkJCQ0UzODFDNzM4Mjg1QzE0RkU0MzczRjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDzqbHBeB6Z4pZuTjF74bHhGt5n MT9w2KJAl0SEq5c1yfO0V/NSxItGtcgrxOYZmLW6NqCJRs668wtpBQMjwjsPsf7g GYCyXtP0le9wBRcG7TetuyXzZUnF4ooRsoeCU4qmCZqMMIAGUL0M5ZOvIaJ3MAhR Uh+ziZnzw3D3vU8wMJzz7zI3NcesjqQTNCrruLuzfQtdDNvcNWoezECypvRddRI4 Ob9z+d4WMJHFxdJsADFr8NoufVmCeL8ATRrg34G/fWH3hrzOZ6FV1Jxy8/VH0dpO 71AveRuiTAQUR0BoLugpuzNvQDj5TLuVB3pfba9pmkcVzClDWv9eeq/CcD1DAgMB AAGjggI1MIICMTAdBgNVHQ4EFgQU1qASRQUOvLu844HHOChcFP5Dc/kwHwYDVR0j BBgwFoAUWrLwSLz51g1jI6cu9yVfOKgak74wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y NmQ3ZWRlMS0zZmQwLTQ2MjQtYmVmOC0wZTczZTg0OTk0YmMvMC81QUIyRjA0OEJD RjlENjBENjMyM0E3MkVGNzI1NUYzOEE4MUE5M0JFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUFCMkYwNDhCQ0Y5RDYwRDYzMjNBNzJFRjcyNTVGMzhBODFB OTNCRS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI2ZDdlZGUxLTNmZDAtNDYyNC1i ZWY4LTBlNzNlODQ5OTRiYy8wLzMyMzQzMDM2M2EzMTMzNjMzMDNhM2EyZjM0Mzgy ZDM0MzgyMDNkM2UyMDMxMzQzMDM0MzEzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQGE8AAADANBgkq hkiG9w0BAQsFAAOCAQEAEh7RDx35o4qW8XLm1EXiz81bPP/DICX3cb0MQyMEVjJC WuQLR2TD59+XfnWlGLo+yCqdtl9ZGthU7XzQAOUuws8Y/KL71Aw4M6szlrEQa3Yx y+fdJcfNF44M31pL7QC2MhsdTAjt3ztu/qtjZqW70aU1MHr5Ot60mjCuTXZrgvyJ Ax6EbuatR0dCzMd2rz0w+lUph3CfWpYLIjjYoI3tQqaEXrfCtCde7I/3iAOR/FWx S7CP4Lzs5XODyK7B03+QlrtLr8ZUY927XvZIw/6j5k/zA1WyCMmqUUcq5l8DOg4L Y6FOjV0RPBMtCQa6vhyvA1qS2O/biIGywbZOfOUOEw== -----END CERTIFICATE-----Generated at Sun Apr 19 13:44:31 2026 by rpki-client