$ rpki-client -vvf repo-rpki.idnic.net/repo/32f3f5d9-cfb8-4123-a2b1-b0b5299f9c6e/0/323030313a6466333a313934303a3a2f34382d3438203d3e20313431393230.roa File: 323030313a6466333a313934303a3a2f34382d3438203d3e20313431393230.roa (raw, json) Hash identifier: edoGoSPm2CAwjuI59D3DYQ99ncwjrFmVk1Lk6FbM204= Subject key identifier: 05:AD:90:1F:6D:DB:D2:21:71:1E:8E:EA:2D:00:72:C3:4A:21:30:37 Certificate issuer: /CN=E4CEC11F244BF0DABEC136F839FD537B2DBBED0F Certificate serial: 099E05793E5776B23200CF5F9DF68637747E6915 Authority key identifier: E4:CE:C1:1F:24:4B:F0:DA:BE:C1:36:F8:39:FD:53:7B:2D:BB:ED:0F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E4CEC11F244BF0DABEC136F839FD537B2DBBED0F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/32f3f5d9-cfb8-4123-a2b1-b0b5299f9c6e/0/323030313a6466333a313934303a3a2f34382d3438203d3e20313431393230.roa Signing time: Tue 17 Feb 2026 10:00:02 +0000 ROA not before: Tue 17 Feb 2026 09:55:02 +0000 ROA not after: Tue 16 Feb 2027 10:00:02 +0000 asID: 141920 IP address blocks: 2001:df3:1940::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/32f3f5d9-cfb8-4123-a2b1-b0b5299f9c6e/0/E4CEC11F244BF0DABEC136F839FD537B2DBBED0F.crl rsync://repo-rpki.idnic.net/repo/32f3f5d9-cfb8-4123-a2b1-b0b5299f9c6e/0/E4CEC11F244BF0DABEC136F839FD537B2DBBED0F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E4CEC11F244BF0DABEC136F839FD537B2DBBED0F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Mar 2026 01:07:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:9e:05:79:3e:57:76:b2:32:00:cf:5f:9d:f6:86:37:74:7e:69:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E4CEC11F244BF0DABEC136F839FD537B2DBBED0F Validity Not Before: Feb 17 09:55:02 2026 GMT Not After : Feb 16 10:00:02 2027 GMT Subject: CN=05AD901F6DDBD221711E8EEA2D0072C34A213037 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:ae:38:12:57:e5:ca:8a:eb:cf:40:55:3d:a1: 68:0c:d3:9e:89:07:1c:bb:07:44:98:8b:9b:2c:16: bb:8b:88:ab:3b:ec:db:f0:8f:56:2f:60:6a:bf:77: c8:b2:d4:f0:b8:40:7e:c9:1c:0d:21:41:1a:f8:cb: c4:05:fb:40:14:bf:4c:e5:db:af:6a:a1:9b:41:c1: b4:d1:86:81:32:12:1f:bf:25:bc:24:a8:87:e5:b7: 71:e7:6b:7f:1c:91:d3:14:d8:b4:39:e1:4c:53:e5: e8:02:fc:ce:cf:de:99:1b:3b:5a:9f:d3:dd:a0:63: 2a:00:65:49:9e:00:3f:38:e2:84:5a:a2:ae:6d:a9: 9f:04:6d:60:c1:14:02:f1:e0:fa:09:de:b9:42:b1: 7c:34:85:94:35:4b:9a:ab:9e:71:98:b9:4a:ef:76: 8c:62:84:a5:cc:39:03:a5:46:33:df:2a:85:c4:74: 57:90:f8:03:7b:a8:bc:e1:b3:89:61:ec:07:96:c6: 9e:34:43:6e:31:0a:aa:92:c9:81:86:f4:45:57:48: 0d:da:f9:c9:14:19:7a:07:8b:ef:1e:10:86:64:c0: c2:a2:b8:db:77:17:22:e9:d2:85:3c:3a:d8:7e:fc: ad:36:70:ee:b3:e0:67:f1:c9:40:de:34:ce:54:50: 22:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:AD:90:1F:6D:DB:D2:21:71:1E:8E:EA:2D:00:72:C3:4A:21:30:37 X509v3 Authority Key Identifier: keyid:E4:CE:C1:1F:24:4B:F0:DA:BE:C1:36:F8:39:FD:53:7B:2D:BB:ED:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/32f3f5d9-cfb8-4123-a2b1-b0b5299f9c6e/0/E4CEC11F244BF0DABEC136F839FD537B2DBBED0F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E4CEC11F244BF0DABEC136F839FD537B2DBBED0F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/32f3f5d9-cfb8-4123-a2b1-b0b5299f9c6e/0/323030313a6466333a313934303a3a2f34382d3438203d3e20313431393230.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df3:1940::/48 Signature Algorithm: sha256WithRSAEncryption 57:ab:f4:64:e2:c5:da:7f:7b:74:7d:bb:0e:73:07:42:a0:7f: 1b:d5:05:6f:b4:ed:d4:37:eb:5f:c8:e2:7f:56:3a:c9:db:49: 7b:21:83:40:12:73:ed:5f:d6:02:e4:d1:db:0a:92:ee:9f:82: fe:65:50:34:21:b3:8c:24:a4:2c:67:66:ea:3b:e1:97:3e:b0: 49:38:d1:aa:da:2b:d5:1e:51:f7:01:48:32:e5:29:83:db:f4: ef:e2:06:41:6f:ec:16:0f:7f:d4:57:5f:68:b3:0b:dd:69:b7: 0d:8c:7a:f5:b8:32:1a:94:13:2c:c0:d9:33:67:2e:53:a5:1a: e6:3f:a3:c8:df:b5:f9:e9:fd:8a:7b:8a:b4:cb:3a:c6:6b:43: 3d:9a:79:f2:d4:5b:de:f4:e4:3e:7e:40:8f:22:c3:0d:1b:ae: ff:d7:cd:26:6d:c9:22:e3:a4:ee:9c:e4:4d:55:42:1d:23:a3: e2:83:93:28:24:ec:5c:bf:e5:30:fd:cf:2f:3d:d0:d6:fc:40: c0:67:8c:92:6b:3e:46:46:d5:ac:f0:1a:43:d6:c8:3a:0c:d7: d3:d2:b2:a8:fb:aa:c5:8c:9d:fc:49:41:f3:f0:2e:39:ee:2f: eb:ab:f1:19:31:a6:42:cf:ee:95:39:31:6c:b8:c1:3e:77:79: 53:01:90:b5 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUCZ4FeT5XdrIyAM9fnfaGN3R+aRUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTRDRUMxMUYyNDRCRjBEQUJFQzEzNkY4MzlGRDUzN0Iy REJCRUQwRjAeFw0yNjAyMTcwOTU1MDJaFw0yNzAyMTYxMDAwMDJaMDMxMTAvBgNV BAMTKDA1QUQ5MDFGNkREQkQyMjE3MTFFOEVFQTJEMDA3MkMzNEEyMTMwMzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOrjgSV+XKiuvPQFU9oWgM056J Bxy7B0SYi5ssFruLiKs77Nvwj1YvYGq/d8iy1PC4QH7JHA0hQRr4y8QF+0AUv0zl 269qoZtBwbTRhoEyEh+/JbwkqIflt3Hna38ckdMU2LQ54UxT5egC/M7P3pkbO1qf 092gYyoAZUmeAD844oRaoq5tqZ8EbWDBFALx4PoJ3rlCsXw0hZQ1S5qrnnGYuUrv doxihKXMOQOlRjPfKoXEdFeQ+AN7qLzhs4lh7AeWxp40Q24xCqqSyYGG9EVXSA3a +ckUGXoHi+8eEIZkwMKiuNt3FyLp0oU8Oth+/K02cO6z4GfxyUDeNM5UUCJhAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUBa2QH23b0iFxHo7qLQByw0ohMDcwHwYDVR0j BBgwFoAU5M7BHyRL8Nq+wTb4Of1Tey277Q8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z MmYzZjVkOS1jZmI4LTQxMjMtYTJiMS1iMGI1Mjk5ZjljNmUvMC9FNENFQzExRjI0 NEJGMERBQkVDMTM2RjgzOUZENTM3QjJEQkJFRDBGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRTRDRUMxMUYyNDRCRjBEQUJFQzEzNkY4MzlGRDUzN0IyREJC RUQwRi5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzMyZjNmNWQ5LWNmYjgtNDEyMy1h MmIxLWIwYjUyOTlmOWM2ZS8wLzMyMzAzMDMxM2E2NDY2MzMzYTMxMzkzNDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNDMxMzkzMjMwLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8xlAMA0GCSqGSIb3DQEBCwUAA4IBAQBXq/Rk4sXaf3t0fbsOcwdCoH8b1QVvtO3U N+tfyOJ/VjrJ20l7IYNAEnPtX9YC5NHbCpLun4L+ZVA0IbOMJKQsZ2bqO+GXPrBJ ONGq2ivVHlH3AUgy5SmD2/Tv4gZBb+wWD3/UV19oswvdabcNjHr1uDIalBMswNkz Zy5TpRrmP6PI37X56f2Ke4q0yzrGa0M9mnny1Fve9OQ+fkCPIsMNG67/180mbcki 46TunORNVUIdI6Pig5MoJOxcv+Uw/c8vPdDW/EDAZ4ySaz5GRtWs8BpD1sg6DNfT 0rKo+6rFjJ38SUHz8C457i/rq/EZMaZCz+6VOTFsuME+d3lTAZC1 -----END CERTIFICATE-----Generated at Mon Mar 2 19:33:56 2026 by rpki-client