$ rpki-client -vvf repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/323430363a313363303a663a3a2f34382d3438203d3e20313430343133.roa File: 323430363a313363303a663a3a2f34382d3438203d3e20313430343133.roa (raw, json) Hash identifier: NabM5/pZY7uH55QFlnuPnhkQThVK+UfxvckwBcfBjxU= Subject key identifier: 85:80:E2:CA:F2:18:14:24:5A:33:98:0C:65:6E:E8:95:1F:68:6D:04 Certificate issuer: /CN=5AB2F048BCF9D60D6323A72EF7255F38A81A93BE Certificate serial: 06D805AD0C2E916E7B431CB9E35A69647BFB4189 Authority key identifier: 5A:B2:F0:48:BC:F9:D6:0D:63:23:A7:2E:F7:25:5F:38:A8:1A:93:BE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/323430363a313363303a663a3a2f34382d3438203d3e20313430343133.roa Signing time: Sun 05 Apr 2026 16:00:03 +0000 ROA not before: Sun 05 Apr 2026 15:55:03 +0000 ROA not after: Sun 04 Apr 2027 16:00:03 +0000 asID: 140413 IP address blocks: 2406:13c0:f::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.crl rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Apr 2026 21:56:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:d8:05:ad:0c:2e:91:6e:7b:43:1c:b9:e3:5a:69:64:7b:fb:41:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5AB2F048BCF9D60D6323A72EF7255F38A81A93BE Validity Not Before: Apr 5 15:55:03 2026 GMT Not After : Apr 4 16:00:03 2027 GMT Subject: CN=8580E2CAF21814245A33980C656EE8951F686D04 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:15:93:32:c0:b7:1e:6a:fb:8b:d1:de:16:cf: 43:3c:b7:6c:82:22:4a:40:42:be:b0:8c:62:48:8e: ad:b1:03:b7:53:1d:3c:1f:0c:0a:54:44:cb:49:4e: ab:4a:7c:6d:e1:39:9c:2f:08:b4:eb:73:7e:86:05: 2d:b0:b6:f4:d5:61:2b:a4:fa:0c:53:38:50:a0:1a: c7:71:ac:41:27:2e:36:cf:50:96:e9:58:3d:26:11: 61:ad:c7:c5:55:2b:ae:35:07:42:60:a6:36:75:3d: c8:8b:be:7c:4b:6d:e9:52:55:5e:96:78:20:04:e6: d6:87:cf:7f:a3:47:29:2c:47:53:c9:8b:55:4c:eb: 48:17:3a:01:e6:9d:39:db:ca:06:86:62:e9:cd:6b: bf:d6:17:38:a1:02:7e:27:c1:36:cc:43:fe:00:e2: 51:2d:1b:79:9a:79:d3:8a:39:f0:47:83:2b:c3:6d: 0c:a3:6a:d3:56:5b:ed:89:e6:57:47:40:6a:c7:9a: bd:00:31:97:92:0b:75:81:91:c4:d2:80:ec:e9:b3: 32:ee:93:78:f4:35:fb:f8:76:ca:5d:6b:45:ef:94: 6d:c4:a5:52:57:45:1c:61:17:4f:f0:29:6d:6d:b5: 28:b0:6e:d1:bc:7e:a7:82:79:7e:73:5f:56:e5:59: cb:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:80:E2:CA:F2:18:14:24:5A:33:98:0C:65:6E:E8:95:1F:68:6D:04 X509v3 Authority Key Identifier: keyid:5A:B2:F0:48:BC:F9:D6:0D:63:23:A7:2E:F7:25:5F:38:A8:1A:93:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/323430363a313363303a663a3a2f34382d3438203d3e20313430343133.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:13c0:f::/48 Signature Algorithm: sha256WithRSAEncryption 4f:b6:85:37:0d:ce:09:63:87:cd:fb:05:f8:d8:69:0d:5d:af: 92:6e:3c:f7:3f:4d:85:4c:ab:f9:29:32:14:28:7b:2a:9b:6c: f6:89:c9:48:f2:47:e9:b3:c7:3a:4c:7c:8b:11:ed:b6:18:b7: d5:70:b9:6d:dd:6f:81:99:fe:25:98:88:fe:fa:fd:08:f2:5c: bb:cd:94:5a:5d:13:19:86:87:8b:73:6a:be:91:d9:47:21:02: 82:74:6a:c8:5d:81:cb:ff:3d:e2:a6:6d:eb:76:90:4b:0e:82: d6:3f:50:62:a7:3d:3c:a2:d4:37:91:bf:e2:84:7a:3b:ae:92: a3:b0:5a:68:fe:53:8e:74:f7:2c:60:06:e0:24:d5:6b:a6:b1: d3:6a:99:4a:e6:2e:13:5c:01:9c:95:7b:f1:d7:a8:f1:0d:79: 5f:0a:02:2a:42:f5:e2:30:ad:b4:5f:de:11:68:95:54:ab:f0: 07:62:8a:89:03:fa:1e:54:11:b4:c8:6a:c9:5b:0d:a7:fc:13: 45:7e:1a:51:28:e0:49:d3:9a:e3:6b:c2:ed:a5:37:9c:78:bc: 6b:ce:57:96:c8:ab:39:18:e9:d8:b7:f7:54:c7:2c:0e:bb:69: b0:50:73:df:32:33:f9:70:2e:b4:c3:e9:f2:d0:de:a0:31:b0: 83:a3:f1:d7 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUBtgFrQwukW57Qxy541ppZHv7QYkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUFCMkYwNDhCQ0Y5RDYwRDYzMjNBNzJFRjcyNTVGMzhB ODFBOTNCRTAeFw0yNjA0MDUxNTU1MDNaFw0yNzA0MDQxNjAwMDNaMDMxMTAvBgNV BAMTKDg1ODBFMkNBRjIxODE0MjQ1QTMzOTgwQzY1NkVFODk1MUY2ODZEMDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDaFZMywLceavuL0d4Wz0M8t2yC IkpAQr6wjGJIjq2xA7dTHTwfDApURMtJTqtKfG3hOZwvCLTrc36GBS2wtvTVYSuk +gxTOFCgGsdxrEEnLjbPUJbpWD0mEWGtx8VVK641B0JgpjZ1PciLvnxLbelSVV6W eCAE5taHz3+jRyksR1PJi1VM60gXOgHmnTnbygaGYunNa7/WFzihAn4nwTbMQ/4A 4lEtG3maedOKOfBHgyvDbQyjatNWW+2J5ldHQGrHmr0AMZeSC3WBkcTSgOzpszLu k3j0Nfv4dspda0XvlG3EpVJXRRxhF0/wKW1ttSiwbtG8fqeCeX5zX1blWcshAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUhYDiyvIYFCRaM5gMZW7olR9obQQwHwYDVR0j BBgwFoAUWrLwSLz51g1jI6cu9yVfOKgak74wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y NmQ3ZWRlMS0zZmQwLTQ2MjQtYmVmOC0wZTczZTg0OTk0YmMvMC81QUIyRjA0OEJD RjlENjBENjMyM0E3MkVGNzI1NUYzOEE4MUE5M0JFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUFCMkYwNDhCQ0Y5RDYwRDYzMjNBNzJFRjcyNTVGMzhBODFB OTNCRS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI2ZDdlZGUxLTNmZDAtNDYyNC1i ZWY4LTBlNzNlODQ5OTRiYy8wLzMyMzQzMDM2M2EzMTMzNjMzMDNhNjYzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTM0MzAzNDMxMzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBhPAAA8w DQYJKoZIhvcNAQELBQADggEBAE+2hTcNzgljh837BfjYaQ1dr5JuPPc/TYVMq/kp MhQoeyqbbPaJyUjyR+mzxzpMfIsR7bYYt9VwuW3db4GZ/iWYiP76/QjyXLvNlFpd ExmGh4tzar6R2UchAoJ0ashdgcv/PeKmbet2kEsOgtY/UGKnPTyi1DeRv+KEejuu kqOwWmj+U4509yxgBuAk1WumsdNqmUrmLhNcAZyVe/HXqPENeV8KAipC9eIwrbRf 3hFolVSr8AdiiokD+h5UEbTIaslbDaf8E0V+GlEo4EnTmuNrwu2lN5x4vGvOV5bI qzkY6di391THLA67abBQc98yM/lwLrTD6fLQ3qAxsIOj8dc= -----END CERTIFICATE-----Generated at Sun Apr 19 13:44:30 2026 by rpki-client