$ rpki-client -vvf repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/323430353a616163303a31303a3a2f34382d3438203d3e20313339393439.roa File: 323430353a616163303a31303a3a2f34382d3438203d3e20313339393439.roa (raw, json) Hash identifier: Qf6XfOwVaRRxifNv15cwdcqeDwqSHN5o2lH9f1JPbtc= Subject key identifier: F6:00:A7:7A:2F:27:1A:C5:44:B0:B0:23:19:AA:6A:D5:3D:FD:9D:A9 Certificate issuer: /CN=DA8766A90851AE44D76B8563D83586F0164FE5CF Certificate serial: 3C63C4E0EC44AF94423DFF4A84856C34CED8285B Authority key identifier: DA:87:66:A9:08:51:AE:44:D7:6B:85:63:D8:35:86:F0:16:4F:E5:CF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA8766A90851AE44D76B8563D83586F0164FE5CF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/323430353a616163303a31303a3a2f34382d3438203d3e20313339393439.roa Signing time: Fri 30 Jan 2026 22:00:00 +0000 ROA not before: Fri 30 Jan 2026 21:55:00 +0000 ROA not after: Fri 29 Jan 2027 22:00:00 +0000 asID: 139949 IP address blocks: 2405:aac0:10::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/DA8766A90851AE44D76B8563D83586F0164FE5CF.crl rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/DA8766A90851AE44D76B8563D83586F0164FE5CF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA8766A90851AE44D76B8563D83586F0164FE5CF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Mar 2026 11:51:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:63:c4:e0:ec:44:af:94:42:3d:ff:4a:84:85:6c:34:ce:d8:28:5b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DA8766A90851AE44D76B8563D83586F0164FE5CF Validity Not Before: Jan 30 21:55:00 2026 GMT Not After : Jan 29 22:00:00 2027 GMT Subject: CN=F600A77A2F271AC544B0B02319AA6AD53DFD9DA9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:2f:42:2b:8e:fe:72:56:22:f2:77:03:63:0e: 3f:f6:45:8c:11:c2:2f:fb:e7:4d:93:c0:dd:e4:f6: ed:dc:0d:69:4f:25:14:1d:7c:8c:4d:8b:39:81:67: 4c:f7:b4:92:ad:c8:e3:96:4b:6e:f2:01:c7:0f:5a: 66:e3:0e:f4:c6:59:a1:ab:06:3b:e2:b9:29:ea:d5: bc:70:08:c8:0d:f9:73:67:80:4d:8a:ab:1f:64:5c: 5d:58:2f:7d:53:71:3e:c8:a8:1e:ef:4a:bd:09:fe: be:4d:82:93:4d:5b:66:d5:c1:63:31:77:15:a7:c3: c1:b3:3e:13:f2:5d:55:04:ce:9a:a7:b0:b0:9f:19: 0c:bc:34:f6:82:ec:b7:12:49:eb:0c:87:39:a1:66: bc:2c:6f:9a:60:14:59:69:c9:c2:60:c6:19:42:6d: c9:32:e0:5e:ab:fb:14:ab:8f:da:74:0f:74:f5:66: 2a:01:22:f4:b9:1a:e6:af:0e:50:db:75:f7:1f:6c: 1d:a9:5d:2a:bd:cd:ae:fe:c2:d9:83:07:17:89:7e: 7f:a4:07:5c:95:7b:29:1d:b0:c9:c9:bd:14:33:0c: a5:3a:6d:72:a1:d4:d9:79:8b:e7:30:ba:b1:22:0f: d4:fd:a0:40:2f:ac:c8:48:11:96:31:dc:bb:89:b1: b4:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:00:A7:7A:2F:27:1A:C5:44:B0:B0:23:19:AA:6A:D5:3D:FD:9D:A9 X509v3 Authority Key Identifier: keyid:DA:87:66:A9:08:51:AE:44:D7:6B:85:63:D8:35:86:F0:16:4F:E5:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/DA8766A90851AE44D76B8563D83586F0164FE5CF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA8766A90851AE44D76B8563D83586F0164FE5CF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/323430353a616163303a31303a3a2f34382d3438203d3e20313339393439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:aac0:10::/48 Signature Algorithm: sha256WithRSAEncryption 9f:56:14:4d:7e:60:21:49:b6:2d:6a:96:02:6c:5e:50:b9:d1: df:3f:57:0c:ca:33:ec:35:33:32:c8:7c:0b:04:ee:76:a0:25: 60:4b:31:15:a6:29:20:e7:23:48:a3:37:ed:3f:b7:21:b8:49: 58:90:13:ee:40:13:86:85:74:4a:e7:6c:33:ad:e4:f7:b7:80: 6d:b4:69:ab:2b:de:67:cd:49:64:2b:d2:0a:a5:2c:d4:bd:83: d0:6d:13:02:f2:4e:24:24:63:57:54:63:84:e6:eb:80:8b:81: b5:a9:6d:b8:08:2f:e5:8d:cf:ae:90:18:4b:c2:ab:bb:ae:b2: 5c:59:39:55:2f:fc:58:07:32:6b:bd:6b:af:84:8a:84:cf:b9: dc:c4:d7:24:c3:8a:77:ef:fb:ef:c1:27:69:91:d1:03:0e:d4: b8:d1:e2:82:20:1f:9b:10:d6:39:98:4c:fb:c4:ee:ba:62:7d: 6e:65:40:fb:dc:35:c7:ba:62:6a:74:cf:de:6a:3b:d6:41:41: 9e:07:9b:70:1c:30:a0:42:aa:9e:fe:3a:bc:58:13:ce:9f:ae: b5:10:38:12:4d:6e:e9:c0:85:a0:6d:f9:a8:50:b2:3f:00:cc: 04:7f:44:ad:3c:41:75:84:04:ea:51:ac:01:c2:b9:94:3d:52: b8:c6:08:93 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUPGPE4OxEr5RCPf9KhIVsNM7YKFswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREE4NzY2QTkwODUxQUU0NEQ3NkI4NTYzRDgzNTg2RjAx NjRGRTVDRjAeFw0yNjAxMzAyMTU1MDBaFw0yNzAxMjkyMjAwMDBaMDMxMTAvBgNV BAMTKEY2MDBBNzdBMkYyNzFBQzU0NEIwQjAyMzE5QUE2QUQ1M0RGRDlEQTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIL0Irjv5yViLydwNjDj/2RYwR wi/7502TwN3k9u3cDWlPJRQdfIxNizmBZ0z3tJKtyOOWS27yAccPWmbjDvTGWaGr BjviuSnq1bxwCMgN+XNngE2Kqx9kXF1YL31TcT7IqB7vSr0J/r5NgpNNW2bVwWMx dxWnw8GzPhPyXVUEzpqnsLCfGQy8NPaC7LcSSesMhzmhZrwsb5pgFFlpycJgxhlC bcky4F6r+xSrj9p0D3T1ZioBIvS5GuavDlDbdfcfbB2pXSq9za7+wtmDBxeJfn+k B1yVeykdsMnJvRQzDKU6bXKh1Nl5i+cwurEiD9T9oEAvrMhIEZYx3LuJsbRvAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQU9gCnei8nGsVEsLAjGapq1T39nakwHwYDVR0j BBgwFoAU2odmqQhRrkTXa4Vj2DWG8BZP5c8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ZGVkYzAzMy1jZDRkLTQ2MjAtOTM3Mi1lNmUwMzlmYzA2YjkvMC9EQTg3NjZBOTA4 NTFBRTQ0RDc2Qjg1NjNEODM1ODZGMDE2NEZFNUNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREE4NzY2QTkwODUxQUU0NEQ3NkI4NTYzRDgzNTg2RjAxNjRG RTVDRi5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNkZWRjMDMzLWNkNGQtNDYyMC05 MzcyLWU2ZTAzOWZjMDZiOS8wLzMyMzQzMDM1M2E2MTYxNjMzMDNhMzEzMDNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzMzOTM5MzQzOS5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQFqsAA EDANBgkqhkiG9w0BAQsFAAOCAQEAn1YUTX5gIUm2LWqWAmxeULnR3z9XDMoz7DUz Msh8CwTudqAlYEsxFaYpIOcjSKM37T+3IbhJWJAT7kAThoV0SudsM63k97eAbbRp qyveZ81JZCvSCqUs1L2D0G0TAvJOJCRjV1RjhObrgIuBtaltuAgv5Y3PrpAYS8Kr u66yXFk5VS/8WAcya71rr4SKhM+53MTXJMOKd+/778EnaZHRAw7UuNHigiAfmxDW OZhM+8TuumJ9bmVA+9w1x7pianTP3mo71kFBngebcBwwoEKqnv46vFgTzp+utRA4 Ek1u6cCFoG35qFCyPwDMBH9ErTxBdYQE6lGsAcK5lD1SuMYIkw== -----END CERTIFICATE-----Generated at Mon Mar 2 17:56:56 2026 by rpki-client