$ rpki-client -vvf repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/323430363a313363303a613a3a2f34382d3438203d3e20313430343133.roa File: 323430363a313363303a613a3a2f34382d3438203d3e20313430343133.roa (raw, json) Hash identifier: 3sbGrzZxJUjW0073vRtzqaeSw5EYJ6VU2VkedGKjrwE= Subject key identifier: C2:4E:39:D3:D0:05:E5:97:8A:5D:82:87:1E:B6:84:E7:35:10:C5:67 Certificate issuer: /CN=5AB2F048BCF9D60D6323A72EF7255F38A81A93BE Certificate serial: 56E2B49C4D682E3080DDA85FD2C7124ECA1A99F2 Authority key identifier: 5A:B2:F0:48:BC:F9:D6:0D:63:23:A7:2E:F7:25:5F:38:A8:1A:93:BE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/323430363a313363303a613a3a2f34382d3438203d3e20313430343133.roa Signing time: Sun 05 Apr 2026 16:00:03 +0000 ROA not before: Sun 05 Apr 2026 15:55:03 +0000 ROA not after: Sun 04 Apr 2027 16:00:03 +0000 asID: 140413 IP address blocks: 2406:13c0:a::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.crl rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Apr 2026 21:56:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:e2:b4:9c:4d:68:2e:30:80:dd:a8:5f:d2:c7:12:4e:ca:1a:99:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5AB2F048BCF9D60D6323A72EF7255F38A81A93BE Validity Not Before: Apr 5 15:55:03 2026 GMT Not After : Apr 4 16:00:03 2027 GMT Subject: CN=C24E39D3D005E5978A5D82871EB684E73510C567 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:3d:7b:3c:fd:29:d5:df:30:17:2f:aa:1f:3e: 5b:73:9f:25:a0:a6:9a:5b:fb:da:71:eb:f8:9d:25: e7:f9:d9:be:dc:d0:cc:5d:8e:4d:48:38:26:4c:91: 65:39:43:3e:3e:64:c4:f3:8b:d2:fd:32:b6:2c:eb: 88:7f:3d:65:c3:bb:66:55:9d:31:68:e6:e0:5d:fb: ac:eb:79:90:50:99:5f:b0:ba:5e:47:5a:0f:1e:5e: b3:00:b7:8f:0f:3e:50:8e:6f:cc:23:53:25:0f:50: 2d:5b:9c:20:b8:a8:45:a1:fe:c4:7e:56:0f:43:1b: 6c:22:ce:71:bf:e5:13:63:94:00:c4:ba:65:46:56: aa:6f:07:8a:46:ad:a6:28:ec:93:bc:94:c9:3c:71: cb:d3:58:9d:6a:fa:09:a7:25:98:74:4d:46:f1:fb: 43:c2:45:1b:72:23:c2:8c:95:03:00:be:93:d5:4b: d1:e2:6b:ef:3a:95:79:96:3d:99:97:7f:80:27:13: bf:73:7d:b8:57:04:41:6a:c0:1f:93:50:87:0e:dc: 07:ed:89:8d:5f:37:97:fa:7d:59:14:93:6e:99:7e: 9c:a3:98:eb:6b:35:0d:1c:ce:ce:04:f4:8a:71:6e: 63:61:4d:d8:a6:ad:ac:75:02:7b:5b:2d:56:92:f4: f4:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:4E:39:D3:D0:05:E5:97:8A:5D:82:87:1E:B6:84:E7:35:10:C5:67 X509v3 Authority Key Identifier: keyid:5A:B2:F0:48:BC:F9:D6:0D:63:23:A7:2E:F7:25:5F:38:A8:1A:93:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/323430363a313363303a613a3a2f34382d3438203d3e20313430343133.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:13c0:a::/48 Signature Algorithm: sha256WithRSAEncryption 57:28:c0:c8:81:fc:43:c5:07:81:21:e0:41:25:67:94:ee:2a: 51:06:1b:20:a7:ad:f1:55:f1:72:59:fd:1e:18:a8:14:71:d2: 2c:60:a1:2e:c0:91:ea:eb:d9:d2:b7:47:00:ff:e7:1e:1a:ce: 45:8b:84:35:62:64:9a:95:28:44:a3:74:71:85:4b:74:e3:47: 9f:81:1e:6d:d7:8c:14:af:cb:0e:ff:fc:e2:52:66:1b:8e:2f: 8a:26:60:c9:45:19:56:82:91:27:ff:43:e5:6a:32:51:20:bb: a2:a0:33:ca:e3:f6:e3:3a:e5:66:8c:27:6a:22:1b:3c:07:06: 40:9a:58:95:14:fa:88:8e:3c:ea:3f:6e:6a:19:c7:dd:73:05: 82:80:d2:3c:49:cd:73:dc:ac:bc:9a:3f:4a:fa:6f:4c:72:ee: 27:f0:88:21:c8:94:a3:d6:2e:bb:56:65:e5:67:e0:95:c2:3d: 14:43:40:d5:93:7c:66:fc:67:dd:22:81:6f:44:87:f3:82:55: 85:82:30:46:7b:a5:a7:27:4c:96:40:88:56:e7:ac:28:11:01: ae:64:73:04:cf:b3:82:30:c1:8c:05:0e:cc:84:a7:51:84:a7: 2d:a4:30:fb:86:3d:50:a9:36:1a:d6:d7:fe:86:89:9d:d4:e3: 9e:20:60:22 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUVuK0nE1oLjCA3ahf0scSTsoamfIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUFCMkYwNDhCQ0Y5RDYwRDYzMjNBNzJFRjcyNTVGMzhB ODFBOTNCRTAeFw0yNjA0MDUxNTU1MDNaFw0yNzA0MDQxNjAwMDNaMDMxMTAvBgNV BAMTKEMyNEUzOUQzRDAwNUU1OTc4QTVEODI4NzFFQjY4NEU3MzUxMEM1NjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpPXs8/SnV3zAXL6ofPltznyWg pppb+9px6/idJef52b7c0Mxdjk1IOCZMkWU5Qz4+ZMTzi9L9MrYs64h/PWXDu2ZV nTFo5uBd+6zreZBQmV+wul5HWg8eXrMAt48PPlCOb8wjUyUPUC1bnCC4qEWh/sR+ Vg9DG2wiznG/5RNjlADEumVGVqpvB4pGraYo7JO8lMk8ccvTWJ1q+gmnJZh0TUbx +0PCRRtyI8KMlQMAvpPVS9Hia+86lXmWPZmXf4AnE79zfbhXBEFqwB+TUIcO3Aft iY1fN5f6fVkUk26ZfpyjmOtrNQ0czs4E9IpxbmNhTdimrax1AntbLVaS9PTZAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUwk4509AF5ZeKXYKHHraE5zUQxWcwHwYDVR0j BBgwFoAUWrLwSLz51g1jI6cu9yVfOKgak74wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y NmQ3ZWRlMS0zZmQwLTQ2MjQtYmVmOC0wZTczZTg0OTk0YmMvMC81QUIyRjA0OEJD RjlENjBENjMyM0E3MkVGNzI1NUYzOEE4MUE5M0JFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUFCMkYwNDhCQ0Y5RDYwRDYzMjNBNzJFRjcyNTVGMzhBODFB OTNCRS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI2ZDdlZGUxLTNmZDAtNDYyNC1i ZWY4LTBlNzNlODQ5OTRiYy8wLzMyMzQzMDM2M2EzMTMzNjMzMDNhNjEzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTM0MzAzNDMxMzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBhPAAAow DQYJKoZIhvcNAQELBQADggEBAFcowMiB/EPFB4Eh4EElZ5TuKlEGGyCnrfFV8XJZ /R4YqBRx0ixgoS7Akerr2dK3RwD/5x4azkWLhDViZJqVKESjdHGFS3TjR5+BHm3X jBSvyw7//OJSZhuOL4omYMlFGVaCkSf/Q+VqMlEgu6KgM8rj9uM65WaMJ2oiGzwH BkCaWJUU+oiOPOo/bmoZx91zBYKA0jxJzXPcrLyaP0r6b0xy7ifwiCHIlKPWLrtW ZeVn4JXCPRRDQNWTfGb8Z90igW9Eh/OCVYWCMEZ7pacnTJZAiFbnrCgRAa5kcwTP s4IwwYwFDsyEp1GEpy2kMPuGPVCpNhrW1/6GiZ3U454gYCI= -----END CERTIFICATE-----Generated at Sun Apr 19 12:19:57 2026 by rpki-client