$ rpki-client -vvf repo-rpki.idnic.net/repo/51234c4a-a8ff-4036-8420-da8162111806/1/323030313a6466333a373263303a3a2f34382d3438203d3e20313532333733.roa File: 323030313a6466333a373263303a3a2f34382d3438203d3e20313532333733.roa (raw, json) Hash identifier: 942czowzjJh0U0LSw2/9UwfW1RkF7wxSGzzd06JKS0Q= Subject key identifier: 22:36:55:98:C6:E8:2C:D8:CE:55:60:5E:BA:44:14:6F:4E:9C:1A:BA Certificate issuer: /CN=1AC49AEAF48C9251C7913EA38CF4BAF8E40B7E4F Certificate serial: 0DB95C8864DA5E89B7464D0D4DA07F768E154143 Authority key identifier: 1A:C4:9A:EA:F4:8C:92:51:C7:91:3E:A3:8C:F4:BA:F8:E4:0B:7E:4F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1AC49AEAF48C9251C7913EA38CF4BAF8E40B7E4F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/51234c4a-a8ff-4036-8420-da8162111806/1/323030313a6466333a373263303a3a2f34382d3438203d3e20313532333733.roa Signing time: Thu 22 Jan 2026 20:00:01 +0000 ROA not before: Thu 22 Jan 2026 19:55:01 +0000 ROA not after: Thu 21 Jan 2027 20:00:01 +0000 asID: 152373 IP address blocks: 2001:df3:72c0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/51234c4a-a8ff-4036-8420-da8162111806/1/1AC49AEAF48C9251C7913EA38CF4BAF8E40B7E4F.crl rsync://repo-rpki.idnic.net/repo/51234c4a-a8ff-4036-8420-da8162111806/1/1AC49AEAF48C9251C7913EA38CF4BAF8E40B7E4F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1AC49AEAF48C9251C7913EA38CF4BAF8E40B7E4F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Mar 2026 16:58:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:b9:5c:88:64:da:5e:89:b7:46:4d:0d:4d:a0:7f:76:8e:15:41:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1AC49AEAF48C9251C7913EA38CF4BAF8E40B7E4F Validity Not Before: Jan 22 19:55:01 2026 GMT Not After : Jan 21 20:00:01 2027 GMT Subject: CN=22365598C6E82CD8CE55605EBA44146F4E9C1ABA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:6f:2f:ce:fd:b3:e2:51:c9:6f:3e:91:e2:51: 74:99:dc:73:46:9a:e1:6c:3c:05:cb:99:68:5c:cc: 45:d1:d2:da:a7:98:ea:0e:86:ca:4e:1c:f9:92:25: 13:e9:66:23:3c:fa:7a:04:89:56:77:ec:57:00:b8: 2f:09:6a:5f:f0:af:27:c2:57:e5:88:69:dd:b5:2a: 43:b9:97:e2:4a:39:e0:8d:9b:21:57:fc:91:c8:cd: cb:95:57:07:9e:a9:e0:5e:ef:b8:db:4e:e3:c5:02: 19:a1:af:63:5a:3e:a3:3f:a8:c1:64:52:3e:f8:73: 61:e1:79:b3:91:e5:c2:63:9c:e1:6a:71:5f:dd:c2: 30:6b:79:69:99:72:5d:c8:1b:88:97:7b:c8:21:ef: 24:80:f0:4a:fa:28:cb:dc:2e:38:3a:e2:e8:b9:11: 6e:d6:81:c8:a5:d3:00:d2:0c:bc:b2:a2:b9:6c:20: 6f:c6:0e:a6:24:e5:c5:dd:09:38:f7:d0:57:55:15: f2:9d:6f:f2:67:1a:a2:10:74:05:45:72:8b:37:f7: 2f:49:dc:00:3c:d1:c5:c5:ce:a2:40:64:ac:98:f3: 18:a1:64:b1:38:8e:e8:35:24:08:94:55:b8:ca:3f: 91:bc:f0:5a:5c:f8:00:8e:67:16:1e:82:21:b6:27: 32:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:36:55:98:C6:E8:2C:D8:CE:55:60:5E:BA:44:14:6F:4E:9C:1A:BA X509v3 Authority Key Identifier: keyid:1A:C4:9A:EA:F4:8C:92:51:C7:91:3E:A3:8C:F4:BA:F8:E4:0B:7E:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/51234c4a-a8ff-4036-8420-da8162111806/1/1AC49AEAF48C9251C7913EA38CF4BAF8E40B7E4F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1AC49AEAF48C9251C7913EA38CF4BAF8E40B7E4F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/51234c4a-a8ff-4036-8420-da8162111806/1/323030313a6466333a373263303a3a2f34382d3438203d3e20313532333733.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df3:72c0::/48 Signature Algorithm: sha256WithRSAEncryption 8c:65:71:db:b1:3c:ed:b2:4d:72:c9:a3:0c:90:4b:2e:e3:bd: d2:e0:90:25:01:92:5d:78:b0:2e:f1:40:9d:c4:7b:36:0b:72: 82:71:c8:32:8a:5b:fa:25:69:f4:12:b6:18:e3:e1:80:02:cc: 13:ea:d1:f2:7f:7a:6e:a4:c4:0d:42:30:25:5a:0a:2b:c9:0c: 15:d1:6f:a9:57:cc:07:9f:91:23:33:95:7f:b4:8d:3c:92:16: c9:89:65:67:33:0c:4f:98:7d:d3:8a:15:26:92:b3:52:be:ec: a1:28:c2:db:e6:8c:9a:d6:0a:dd:1d:7a:15:7e:2c:d8:60:3e: 38:14:db:90:df:ea:cd:0f:53:0c:32:20:e8:c6:c8:0a:b7:7d: 2a:62:8a:28:af:bc:f3:af:4d:09:9c:29:fc:01:0a:15:cd:e7: 66:86:e2:c2:8c:74:f7:3d:c0:fb:06:75:eb:7d:42:1d:7f:be: 05:d8:29:26:ad:fa:7c:6c:2a:f4:32:64:ba:94:df:fd:39:f6: 1e:54:d0:70:b3:0a:c9:a3:6a:fc:7a:77:a4:77:03:4f:d7:0c: 05:86:d3:8c:36:e3:c8:84:df:6b:88:80:f7:ff:62:d5:f3:62: 36:20:a1:54:1e:a7:25:87:90:f8:97:b5:ba:aa:9f:da:8b:d7: 8a:a6:94:8f -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUDblciGTaXom3Rk0NTaB/do4VQUMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUFDNDlBRUFGNDhDOTI1MUM3OTEzRUEzOENGNEJBRjhF NDBCN0U0RjAeFw0yNjAxMjIxOTU1MDFaFw0yNzAxMjEyMDAwMDFaMDMxMTAvBgNV BAMTKDIyMzY1NTk4QzZFODJDRDhDRTU1NjA1RUJBNDQxNDZGNEU5QzFBQkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDmby/O/bPiUclvPpHiUXSZ3HNG muFsPAXLmWhczEXR0tqnmOoOhspOHPmSJRPpZiM8+noEiVZ37FcAuC8Jal/wryfC V+WIad21KkO5l+JKOeCNmyFX/JHIzcuVVweeqeBe77jbTuPFAhmhr2NaPqM/qMFk Uj74c2HhebOR5cJjnOFqcV/dwjBreWmZcl3IG4iXe8gh7ySA8Er6KMvcLjg64ui5 EW7Wgcil0wDSDLyyorlsIG/GDqYk5cXdCTj30FdVFfKdb/JnGqIQdAVFcos39y9J 3AA80cXFzqJAZKyY8xihZLE4jug1JAiUVbjKP5G88Fpc+ACOZxYegiG2JzK3AgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUIjZVmMboLNjOVWBeukQUb06cGrowHwYDVR0j BBgwFoAUGsSa6vSMklHHkT6jjPS6+OQLfk8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 MTIzNGM0YS1hOGZmLTQwMzYtODQyMC1kYTgxNjIxMTE4MDYvMS8xQUM0OUFFQUY0 OEM5MjUxQzc5MTNFQTM4Q0Y0QkFGOEU0MEI3RTRGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMUFDNDlBRUFGNDhDOTI1MUM3OTEzRUEzOENGNEJBRjhFNDBC N0U0Ri5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzUxMjM0YzRhLWE4ZmYtNDAzNi04 NDIwLWRhODE2MjExMTgwNi8xLzMyMzAzMDMxM2E2NDY2MzMzYTM3MzI2MzMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNTMyMzMzNzMzLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 83LAMA0GCSqGSIb3DQEBCwUAA4IBAQCMZXHbsTztsk1yyaMMkEsu473S4JAlAZJd eLAu8UCdxHs2C3KCccgyilv6JWn0ErYY4+GAAswT6tHyf3pupMQNQjAlWgoryQwV 0W+pV8wHn5EjM5V/tI08khbJiWVnMwxPmH3TihUmkrNSvuyhKMLb5oya1grdHXoV fizYYD44FNuQ3+rND1MMMiDoxsgKt30qYooor7zzr00JnCn8AQoVzedmhuLCjHT3 PcD7BnXrfUIdf74F2Ckmrfp8bCr0MmS6lN/9OfYeVNBwswrJo2r8enekdwNP1wwF htOMNuPIhN9riID3/2LV82I2IKFUHqclh5D4l7W6qp/ai9eKppSP -----END CERTIFICATE-----Generated at Mon Mar 2 18:00:45 2026 by rpki-client