$ rpki-client -vvf repo-rpki.idnic.net/repo/4c4c2f62-f735-4d60-9237-927efad9dad0/0/323030313a6466353a323530303a3a2f34382d3438203d3e20313337333536.roa File: 323030313a6466353a323530303a3a2f34382d3438203d3e20313337333536.roa (raw, json) Hash identifier: rTSV+CqWgDbyB0T8+UwJX4nONp+OV7Tlp7vmg3QUH/0= Subject key identifier: 96:77:C2:69:C4:80:AC:81:F9:47:BE:0A:D8:DA:AE:87:FF:F2:7D:37 Certificate issuer: /CN=3B6C011787F4528DAFAEE19B8408D9405F030E61 Certificate serial: 0172BBEE7E2E61EA4BBCF07B22E82ACBAB53530D Authority key identifier: 3B:6C:01:17:87:F4:52:8D:AF:AE:E1:9B:84:08:D9:40:5F:03:0E:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3B6C011787F4528DAFAEE19B8408D9405F030E61.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4c4c2f62-f735-4d60-9237-927efad9dad0/0/323030313a6466353a323530303a3a2f34382d3438203d3e20313337333536.roa Signing time: Sat 14 Feb 2026 03:09:34 +0000 ROA not before: Sat 14 Feb 2026 03:04:34 +0000 ROA not after: Sat 13 Feb 2027 03:09:34 +0000 asID: 137356 IP address blocks: 2001:df5:2500::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4c4c2f62-f735-4d60-9237-927efad9dad0/0/3B6C011787F4528DAFAEE19B8408D9405F030E61.crl rsync://repo-rpki.idnic.net/repo/4c4c2f62-f735-4d60-9237-927efad9dad0/0/3B6C011787F4528DAFAEE19B8408D9405F030E61.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3B6C011787F4528DAFAEE19B8408D9405F030E61.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 06:31:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:72:bb:ee:7e:2e:61:ea:4b:bc:f0:7b:22:e8:2a:cb:ab:53:53:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3B6C011787F4528DAFAEE19B8408D9405F030E61 Validity Not Before: Feb 14 03:04:34 2026 GMT Not After : Feb 13 03:09:34 2027 GMT Subject: CN=9677C269C480AC81F947BE0AD8DAAE87FFF27D37 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:28:69:13:bc:38:d8:f6:7b:33:93:6d:89:31: d3:cb:35:fa:05:15:31:f7:2f:9b:a6:ed:9f:a1:5d: 94:e2:37:ae:1d:c5:51:3a:e8:de:ee:6b:42:b1:a4: f3:8f:19:d5:f8:08:f7:16:95:13:c4:05:eb:c3:9d: 0d:76:c9:cf:d2:d2:28:16:19:a2:cb:08:0a:da:d8: 4b:a6:07:a3:bd:5e:38:05:7b:60:b7:f1:3d:3b:21: 8b:b9:7f:f9:0e:02:cd:bb:03:9f:d7:0b:22:d2:87: 8b:b3:b1:db:28:a3:85:54:d6:e0:35:56:9d:12:cd: 4d:bb:2a:d0:cf:a2:0d:da:f1:6b:86:ab:8a:e8:42: d8:5e:a0:68:c8:78:6e:0b:7f:9c:6d:fb:a0:cd:c8: ab:df:25:8e:0e:51:36:74:0d:5b:db:56:00:cb:f9: e1:ff:b1:12:82:09:f6:d0:17:9a:a1:74:d8:6e:e6: 29:d0:9c:51:3d:5e:23:06:be:f9:ba:ad:2d:cb:13: 04:6f:e6:8e:fa:a3:13:7f:31:ca:77:c7:28:32:e9: 6c:a7:7e:7c:31:02:70:eb:9e:6c:7c:f1:8c:38:24: 46:1a:65:dc:6b:2c:41:14:d4:34:eb:d2:a4:9f:33: 82:82:72:3f:7a:6e:2d:aa:94:7a:a5:90:fb:94:e2: 86:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:77:C2:69:C4:80:AC:81:F9:47:BE:0A:D8:DA:AE:87:FF:F2:7D:37 X509v3 Authority Key Identifier: keyid:3B:6C:01:17:87:F4:52:8D:AF:AE:E1:9B:84:08:D9:40:5F:03:0E:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4c4c2f62-f735-4d60-9237-927efad9dad0/0/3B6C011787F4528DAFAEE19B8408D9405F030E61.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3B6C011787F4528DAFAEE19B8408D9405F030E61.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4c4c2f62-f735-4d60-9237-927efad9dad0/0/323030313a6466353a323530303a3a2f34382d3438203d3e20313337333536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df5:2500::/48 Signature Algorithm: sha256WithRSAEncryption 84:20:56:8f:cd:ea:82:41:b8:1c:3b:7a:43:45:c1:09:ed:6e: 7f:ec:17:ff:a2:fa:3c:40:e7:11:1a:ac:ac:cf:68:3f:82:97: a8:fd:b3:b6:55:98:cd:ef:41:42:6f:c7:9c:a7:13:ee:cc:e8: 3f:04:fb:2a:e1:3c:2d:54:23:64:7f:5b:60:43:4c:c9:44:1c: df:06:5c:2b:21:d5:2a:a1:82:e3:30:27:14:89:e5:15:eb:69: bc:81:80:16:c4:a3:63:9a:6a:ba:12:81:ca:9e:2e:22:32:f7: ee:93:eb:fd:fa:00:26:bc:29:fc:f2:b7:e9:e5:2b:72:5a:dd: a4:a1:24:2f:8a:fd:89:a1:29:6e:36:c1:8d:45:7b:0e:c5:63: 3b:fc:56:17:39:cd:1e:0e:48:39:8b:04:bd:a0:3e:cb:40:6f: ac:19:e4:2a:9b:a2:56:23:24:89:e6:0b:82:b1:79:5b:da:a6: 79:f2:4e:b7:ce:03:f3:00:ba:1b:38:e8:cb:b9:7f:e2:02:f1: 95:1e:df:d2:32:0d:7d:2f:14:ca:69:85:e4:ce:78:1d:7b:8a: 29:27:91:5b:84:32:ce:eb:70:4c:ca:e9:79:b0:40:ad:74:f8: 04:92:57:82:1b:ee:56:57:d9:40:8d:ad:fa:59:ce:f8:5b:5d: e1:44:2a:03 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUAXK77n4uYepLvPB7Iugqy6tTUw0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0I2QzAxMTc4N0Y0NTI4REFGQUVFMTlCODQwOEQ5NDA1 RjAzMEU2MTAeFw0yNjAyMTQwMzA0MzRaFw0yNzAyMTMwMzA5MzRaMDMxMTAvBgNV BAMTKDk2NzdDMjY5QzQ4MEFDODFGOTQ3QkUwQUQ4REFBRTg3RkZGMjdEMzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQChKGkTvDjY9nszk22JMdPLNfoF FTH3L5um7Z+hXZTiN64dxVE66N7ua0KxpPOPGdX4CPcWlRPEBevDnQ12yc/S0igW GaLLCAra2EumB6O9XjgFe2C38T07IYu5f/kOAs27A5/XCyLSh4uzsdsoo4VU1uA1 Vp0SzU27KtDPog3a8WuGq4roQtheoGjIeG4Lf5xt+6DNyKvfJY4OUTZ0DVvbVgDL +eH/sRKCCfbQF5qhdNhu5inQnFE9XiMGvvm6rS3LEwRv5o76oxN/Mcp3xygy6Wyn fnwxAnDrnmx88Yw4JEYaZdxrLEEU1DTr0qSfM4KCcj96bi2qlHqlkPuU4oYfAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUlnfCacSArIH5R74K2Nquh//yfTcwHwYDVR0j BBgwFoAUO2wBF4f0Uo2vruGbhAjZQF8DDmEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 YzRjMmY2Mi1mNzM1LTRkNjAtOTIzNy05MjdlZmFkOWRhZDAvMC8zQjZDMDExNzg3 RjQ1MjhEQUZBRUUxOUI4NDA4RDk0MDVGMDMwRTYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0I2QzAxMTc4N0Y0NTI4REFGQUVFMTlCODQwOEQ5NDA1RjAz MEU2MS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRjNGMyZjYyLWY3MzUtNGQ2MC05 MjM3LTkyN2VmYWQ5ZGFkMC8wLzMyMzAzMDMxM2E2NDY2MzUzYTMyMzUzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM3MzMzNTM2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 9SUAMA0GCSqGSIb3DQEBCwUAA4IBAQCEIFaPzeqCQbgcO3pDRcEJ7W5/7Bf/ovo8 QOcRGqysz2g/gpeo/bO2VZjN70FCb8ecpxPuzOg/BPsq4TwtVCNkf1tgQ0zJRBzf BlwrIdUqoYLjMCcUieUV62m8gYAWxKNjmmq6EoHKni4iMvfuk+v9+gAmvCn88rfp 5StyWt2koSQviv2JoSluNsGNRXsOxWM7/FYXOc0eDkg5iwS9oD7LQG+sGeQqm6JW IySJ5guCsXlb2qZ58k63zgPzALobOOjLuX/iAvGVHt/SMg19LxTKaYXkzngde4op J5FbhDLO63BMyul5sECtdPgEkleCG+5WV9lAja36Wc74W13hRCoD -----END CERTIFICATE-----Generated at Mon Mar 2 17:23:27 2026 by rpki-client