$ rpki-client -vvf repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/323430363a313363303a653a3a2f34382d3438203d3e20313430343133.roa File: 323430363a313363303a653a3a2f34382d3438203d3e20313430343133.roa (raw, json) Hash identifier: tMCr01i6zDN0FA6TrABKI5zl+owqe65uy7t/cVlhO60= Subject key identifier: 28:45:49:37:32:0B:E1:FB:A1:CB:F4:ED:73:2E:F5:63:06:F5:F3:32 Certificate issuer: /CN=5AB2F048BCF9D60D6323A72EF7255F38A81A93BE Certificate serial: 185DAC869F5C5F4D80E37A4D7B982C19C1E5F373 Authority key identifier: 5A:B2:F0:48:BC:F9:D6:0D:63:23:A7:2E:F7:25:5F:38:A8:1A:93:BE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/323430363a313363303a653a3a2f34382d3438203d3e20313430343133.roa Signing time: Sun 05 Apr 2026 14:00:01 +0000 ROA not before: Sun 05 Apr 2026 13:55:01 +0000 ROA not after: Sun 04 Apr 2027 14:00:01 +0000 asID: 140413 IP address blocks: 2406:13c0:e::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.crl rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Apr 2026 21:56:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:5d:ac:86:9f:5c:5f:4d:80:e3:7a:4d:7b:98:2c:19:c1:e5:f3:73 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5AB2F048BCF9D60D6323A72EF7255F38A81A93BE Validity Not Before: Apr 5 13:55:01 2026 GMT Not After : Apr 4 14:00:01 2027 GMT Subject: CN=28454937320BE1FBA1CBF4ED732EF56306F5F332 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:4b:de:27:9f:e4:2d:5b:c2:51:92:6b:49:4c: 20:f5:a9:96:b0:b9:26:8a:02:8e:c1:e5:67:e9:23: e8:0a:f4:5f:67:e8:fe:d4:72:66:00:a7:ae:01:18: e4:d0:50:80:cc:e1:df:a6:c1:4e:62:92:83:a2:cf: 5d:ce:c0:87:d0:a5:aa:7e:46:66:a1:c7:ac:58:c3: a6:24:a4:17:e7:c7:10:07:eb:ef:a2:eb:33:df:8d: ed:bb:02:a9:73:60:00:7c:c3:11:72:a4:36:ef:ee: 52:31:97:29:25:ff:d0:0b:3e:28:f4:ba:9a:5d:6e: 1e:fd:60:f7:13:69:3f:ea:b8:5d:b0:7d:13:04:dd: 69:b5:41:c2:82:67:b4:71:f4:97:b4:f3:15:67:af: fe:6b:b1:d7:71:45:e3:27:fa:ff:7a:d6:1f:b8:56: 0c:20:d9:7a:97:cb:3b:fb:5b:82:e7:58:9f:d8:d0: 2f:f6:f4:c2:dd:35:b4:4e:bf:a7:00:a4:3d:3a:ed: 91:07:7c:ee:6c:43:c9:3d:fa:58:fc:1b:58:26:65: 85:2a:8a:f7:f3:49:31:47:05:eb:0a:e2:05:c3:7e: f3:20:66:af:c3:09:9a:0c:a7:31:b3:05:78:4b:6f: 28:af:f0:06:e3:10:b1:68:95:c1:14:28:4a:1f:e0: a1:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:45:49:37:32:0B:E1:FB:A1:CB:F4:ED:73:2E:F5:63:06:F5:F3:32 X509v3 Authority Key Identifier: keyid:5A:B2:F0:48:BC:F9:D6:0D:63:23:A7:2E:F7:25:5F:38:A8:1A:93:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/323430363a313363303a653a3a2f34382d3438203d3e20313430343133.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:13c0:e::/48 Signature Algorithm: sha256WithRSAEncryption 19:f2:66:8f:30:fc:2c:f2:a7:e7:82:7c:1a:37:b0:08:e5:74: 43:20:7c:13:41:c5:a4:64:e4:9f:d8:5f:79:a3:f3:6c:be:95: 78:ce:12:fd:d6:4a:a3:a9:fc:8f:69:f8:50:7d:9d:ce:3e:66: 40:d4:55:d0:00:7f:15:1b:49:63:18:72:50:5a:42:14:ff:43: b7:4a:09:11:3d:19:b6:4f:ae:f6:fe:77:f8:44:aa:02:3b:ab: f4:d7:15:50:1b:3c:b0:51:9c:69:b3:ed:e8:58:ff:ae:4f:39: 0a:c4:f9:fe:f7:b6:82:5d:b6:97:f4:32:18:cd:85:06:ea:6c: 39:f0:c5:23:08:86:16:0e:75:1b:cb:21:76:9e:21:65:c7:51: 38:b6:49:31:ec:d2:6e:72:85:f6:d0:10:f4:0a:10:d3:57:db: 25:d2:0d:c5:57:99:f9:16:8c:4f:24:c6:0d:f3:a5:5f:f6:d1: a6:e8:b7:45:c0:78:b7:0a:de:17:2f:28:ca:48:44:2f:7f:12: 57:e6:9a:94:57:73:de:1b:91:07:59:3d:1b:28:0f:e3:f5:97: dd:22:e2:ba:19:31:7b:18:bc:f2:75:61:be:1c:a7:7a:e8:4b: ab:50:16:0b:fd:fa:f8:c8:61:29:55:46:c7:2a:5f:0d:65:e9: aa:4d:88:cb -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUGF2shp9cX02A43pNe5gsGcHl83MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUFCMkYwNDhCQ0Y5RDYwRDYzMjNBNzJFRjcyNTVGMzhB ODFBOTNCRTAeFw0yNjA0MDUxMzU1MDFaFw0yNzA0MDQxNDAwMDFaMDMxMTAvBgNV BAMTKDI4NDU0OTM3MzIwQkUxRkJBMUNCRjRFRDczMkVGNTYzMDZGNUYzMzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwS94nn+QtW8JRkmtJTCD1qZaw uSaKAo7B5WfpI+gK9F9n6P7UcmYAp64BGOTQUIDM4d+mwU5ikoOiz13OwIfQpap+ Rmahx6xYw6YkpBfnxxAH6++i6zPfje27AqlzYAB8wxFypDbv7lIxlykl/9ALPij0 uppdbh79YPcTaT/quF2wfRME3Wm1QcKCZ7Rx9Je08xVnr/5rsddxReMn+v961h+4 Vgwg2XqXyzv7W4LnWJ/Y0C/29MLdNbROv6cApD067ZEHfO5sQ8k9+lj8G1gmZYUq ivfzSTFHBesK4gXDfvMgZq/DCZoMpzGzBXhLbyiv8AbjELFolcEUKEof4KGvAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUKEVJNzIL4fuhy/Ttcy71Ywb18zIwHwYDVR0j BBgwFoAUWrLwSLz51g1jI6cu9yVfOKgak74wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y NmQ3ZWRlMS0zZmQwLTQ2MjQtYmVmOC0wZTczZTg0OTk0YmMvMC81QUIyRjA0OEJD RjlENjBENjMyM0E3MkVGNzI1NUYzOEE4MUE5M0JFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUFCMkYwNDhCQ0Y5RDYwRDYzMjNBNzJFRjcyNTVGMzhBODFB OTNCRS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI2ZDdlZGUxLTNmZDAtNDYyNC1i ZWY4LTBlNzNlODQ5OTRiYy8wLzMyMzQzMDM2M2EzMTMzNjMzMDNhNjUzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTM0MzAzNDMxMzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBhPAAA4w DQYJKoZIhvcNAQELBQADggEBABnyZo8w/Czyp+eCfBo3sAjldEMgfBNBxaRk5J/Y X3mj82y+lXjOEv3WSqOp/I9p+FB9nc4+ZkDUVdAAfxUbSWMYclBaQhT/Q7dKCRE9 GbZPrvb+d/hEqgI7q/TXFVAbPLBRnGmz7ehY/65POQrE+f73toJdtpf0MhjNhQbq bDnwxSMIhhYOdRvLIXaeIWXHUTi2STHs0m5yhfbQEPQKENNX2yXSDcVXmfkWjE8k xg3zpV/20abot0XAeLcK3hcvKMpIRC9/ElfmmpRXc94bkQdZPRsoD+P1l90i4roZ MXsYvPJ1Yb4cp3roS6tQFgv9+vjIYSlVRscqXw1l6apNiMs= -----END CERTIFICATE-----Generated at Sun Apr 19 12:19:56 2026 by rpki-client