$ rpki-client -vvf repo-rpki.idnic.net/repo/4f5d364a-da0b-4540-9349-5930bd725ce3/0/323430373a613630303a3a2f33322d3338203d3e203138303034.roa File: 323430373a613630303a3a2f33322d3338203d3e203138303034.roa (raw, json) Hash identifier: XFo/I+YV2zkO+KjwWy4gvGoZC62XNLimFZCVjPX33MI= Subject key identifier: 20:90:F3:0C:0F:95:AB:F4:14:65:11:13:10:5E:46:AA:7D:A9:76:50 Certificate issuer: /CN=735D87BA86773AC70137CF53116358A1F3B19766 Certificate serial: 6106F08915F44091E1BA4C0A194E2E793E10FB3F Authority key identifier: 73:5D:87:BA:86:77:3A:C7:01:37:CF:53:11:63:58:A1:F3:B1:97:66 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/735D87BA86773AC70137CF53116358A1F3B19766.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4f5d364a-da0b-4540-9349-5930bd725ce3/0/323430373a613630303a3a2f33322d3338203d3e203138303034.roa Signing time: Sun 05 Apr 2026 04:00:02 +0000 ROA not before: Sun 05 Apr 2026 03:55:02 +0000 ROA not after: Sun 04 Apr 2027 04:00:02 +0000 asID: 18004 IP address blocks: 2407:a600::/32 maxlen: 38 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4f5d364a-da0b-4540-9349-5930bd725ce3/0/735D87BA86773AC70137CF53116358A1F3B19766.crl rsync://repo-rpki.idnic.net/repo/4f5d364a-da0b-4540-9349-5930bd725ce3/0/735D87BA86773AC70137CF53116358A1F3B19766.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/735D87BA86773AC70137CF53116358A1F3B19766.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 19 Apr 2026 18:25:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:06:f0:89:15:f4:40:91:e1:ba:4c:0a:19:4e:2e:79:3e:10:fb:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=735D87BA86773AC70137CF53116358A1F3B19766 Validity Not Before: Apr 5 03:55:02 2026 GMT Not After : Apr 4 04:00:02 2027 GMT Subject: CN=2090F30C0F95ABF414651113105E46AA7DA97650 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:91:25:f3:50:94:9e:33:94:5b:b8:bc:c3:02: 63:83:8f:f6:5c:39:08:c2:0f:0e:df:55:b7:01:4a: dc:83:ca:28:97:e2:80:cb:51:9c:79:78:bc:c7:1f: 78:c6:06:42:5e:ea:3e:00:88:4d:05:d5:1d:92:32: d6:2b:a9:42:6a:97:23:92:51:18:23:d2:97:8f:2a: fa:c3:1a:5d:a9:aa:87:32:32:ab:10:6c:2e:3f:a2: 22:df:8f:58:28:43:2b:9f:fb:24:e1:43:67:0e:52: c1:4e:61:98:6d:16:f0:3f:96:e9:14:51:bc:39:28: 20:ae:63:90:32:24:54:8b:24:9e:cc:af:5f:28:b4: b0:d4:f3:7f:65:65:00:53:bd:c1:f9:18:4a:b8:3b: e1:38:a1:89:ad:86:57:98:45:df:1c:09:f0:3c:88: 92:1c:19:43:86:96:fd:56:2a:ec:27:81:df:c3:6e: f6:68:e8:0a:46:a5:f1:87:6e:4d:e2:a7:38:02:6a: c0:56:81:9c:f4:40:e6:34:03:fe:3d:8b:2a:8f:dd: 76:50:37:1f:20:b8:b2:c2:24:fa:ac:7c:e6:ce:5f: 04:f6:d7:24:ad:50:a7:db:e8:f7:23:99:b8:0a:4c: 90:9f:f4:47:21:61:a6:ed:f3:34:41:21:ad:78:ce: 66:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:90:F3:0C:0F:95:AB:F4:14:65:11:13:10:5E:46:AA:7D:A9:76:50 X509v3 Authority Key Identifier: keyid:73:5D:87:BA:86:77:3A:C7:01:37:CF:53:11:63:58:A1:F3:B1:97:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4f5d364a-da0b-4540-9349-5930bd725ce3/0/735D87BA86773AC70137CF53116358A1F3B19766.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/735D87BA86773AC70137CF53116358A1F3B19766.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4f5d364a-da0b-4540-9349-5930bd725ce3/0/323430373a613630303a3a2f33322d3338203d3e203138303034.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2407:a600::/32 Signature Algorithm: sha256WithRSAEncryption 76:01:01:9c:d2:31:96:4d:2c:72:80:7d:79:5f:39:27:3a:c8: c2:cd:fa:8a:ea:a5:f2:2b:0c:f5:b2:5a:d2:e9:14:27:b4:35: 31:12:60:cd:12:30:18:28:53:53:a3:26:91:5f:ce:51:f6:a0: 07:57:e1:e9:3e:2f:31:5d:3b:78:d9:d7:14:3e:07:38:71:0b: d7:67:9e:0f:21:40:a9:df:65:c4:a9:3c:2b:f9:74:bd:3c:70: e0:97:b0:5d:b6:9a:b7:92:97:ba:3a:4b:6e:e0:4e:7e:5a:96: 2c:ae:a7:a0:e9:b7:eb:d0:4a:e5:84:56:c8:35:e0:0a:d9:d5: 22:70:0f:bc:5f:d7:91:0d:61:a5:04:c0:28:7b:24:03:4b:fc: 4d:99:40:c4:db:b3:cb:e0:e7:c9:1a:1e:05:50:b5:13:12:da: 9c:a9:e0:bd:18:41:41:d6:0a:ec:75:e8:9d:00:5f:da:ca:31: fd:b0:8c:ae:62:b1:82:a2:25:46:a7:32:e4:f7:90:da:cc:bc: 72:51:9a:12:a2:c5:a8:c8:d2:d5:9e:1e:04:9e:08:53:85:20: 5c:ac:8f:b5:58:3c:c8:f4:cb:ec:e3:ad:13:f6:1a:ee:7e:5a: e7:4b:a3:a6:9f:ee:cc:0e:35:a9:46:aa:0f:26:19:a4:74:b7: 03:86:80:fe -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUYQbwiRX0QJHhukwKGU4ueT4Q+z8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzM1RDg3QkE4Njc3M0FDNzAxMzdDRjUzMTE2MzU4QTFG M0IxOTc2NjAeFw0yNjA0MDUwMzU1MDJaFw0yNzA0MDQwNDAwMDJaMDMxMTAvBgNV BAMTKDIwOTBGMzBDMEY5NUFCRjQxNDY1MTExMzEwNUU0NkFBN0RBOTc2NTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZkSXzUJSeM5RbuLzDAmODj/Zc OQjCDw7fVbcBStyDyiiX4oDLUZx5eLzHH3jGBkJe6j4AiE0F1R2SMtYrqUJqlyOS URgj0pePKvrDGl2pqocyMqsQbC4/oiLfj1goQyuf+yThQ2cOUsFOYZhtFvA/lukU Ubw5KCCuY5AyJFSLJJ7Mr18otLDU839lZQBTvcH5GEq4O+E4oYmthleYRd8cCfA8 iJIcGUOGlv1WKuwngd/DbvZo6ApGpfGHbk3ipzgCasBWgZz0QOY0A/49iyqP3XZQ Nx8guLLCJPqsfObOXwT21yStUKfb6PcjmbgKTJCf9EchYabt8zRBIa14zmZ5AgMB AAGjggIxMIICLTAdBgNVHQ4EFgQUIJDzDA+Vq/QUZRETEF5Gqn2pdlAwHwYDVR0j BBgwFoAUc12HuoZ3OscBN89TEWNYofOxl2YwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 ZjVkMzY0YS1kYTBiLTQ1NDAtOTM0OS01OTMwYmQ3MjVjZTMvMC83MzVEODdCQTg2 NzczQUM3MDEzN0NGNTMxMTYzNThBMUYzQjE5NzY2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzM1RDg3QkE4Njc3M0FDNzAxMzdDRjUzMTE2MzU4QTFGM0Ix OTc2Ni5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRmNWQzNjRhLWRhMGItNDU0MC05 MzQ5LTU5MzBiZDcyNWNlMy8wLzMyMzQzMDM3M2E2MTM2MzAzMDNhM2EyZjMzMzIy ZDMzMzgyMDNkM2UyMDMxMzgzMDMwMzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkB6YAMA0GCSqGSIb3 DQEBCwUAA4IBAQB2AQGc0jGWTSxygH15XzknOsjCzfqK6qXyKwz1slrS6RQntDUx EmDNEjAYKFNToyaRX85R9qAHV+HpPi8xXTt42dcUPgc4cQvXZ54PIUCp32XEqTwr +XS9PHDgl7Bdtpq3kpe6Oktu4E5+WpYsrqeg6bfr0ErlhFbINeAK2dUicA+8X9eR DWGlBMAoeyQDS/xNmUDE27PL4OfJGh4FULUTEtqcqeC9GEFB1grsdeidAF/ayjH9 sIyuYrGCoiVGpzLk95DazLxyUZoSosWoyNLVnh4EnghThSBcrI+1WDzI9Mvs460T 9hruflrnS6Omn+7MDjWpRqoPJhmkdLcDhoD+ -----END CERTIFICATE-----Generated at Fri Apr 17 23:04:46 2026 by rpki-client