$ rpki-client -vvf repo-rpki.idnic.net/repo/53250662-3eef-4aa9-9ede-5629d5b6ea95/0/323030313a6466323a373463303a3a2f34382d3438203d3e20313530393830.roa File: 323030313a6466323a373463303a3a2f34382d3438203d3e20313530393830.roa (raw, json) Hash identifier: wRkfk5IE7FEjdZBVsYYZyObCxjMnIw//uI0JOTnfK0w= Subject key identifier: CF:C9:3F:B7:F8:17:90:11:0B:C4:FF:32:FE:AB:9F:70:23:92:3E:41 Certificate issuer: /CN=DD5ACDC0B2D091545E185EB1FA80C0007C9AFA16 Certificate serial: 5CAA801FD607532EF65D2F2A81B68852A5E47312 Authority key identifier: DD:5A:CD:C0:B2:D0:91:54:5E:18:5E:B1:FA:80:C0:00:7C:9A:FA:16 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DD5ACDC0B2D091545E185EB1FA80C0007C9AFA16.cer Subject info access: rsync://repo-rpki.idnic.net/repo/53250662-3eef-4aa9-9ede-5629d5b6ea95/0/323030313a6466323a373463303a3a2f34382d3438203d3e20313530393830.roa Signing time: Fri 20 Feb 2026 23:00:00 +0000 ROA not before: Fri 20 Feb 2026 22:55:00 +0000 ROA not after: Fri 19 Feb 2027 23:00:00 +0000 asID: 150980 IP address blocks: 2001:df2:74c0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/53250662-3eef-4aa9-9ede-5629d5b6ea95/0/DD5ACDC0B2D091545E185EB1FA80C0007C9AFA16.crl rsync://repo-rpki.idnic.net/repo/53250662-3eef-4aa9-9ede-5629d5b6ea95/0/DD5ACDC0B2D091545E185EB1FA80C0007C9AFA16.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DD5ACDC0B2D091545E185EB1FA80C0007C9AFA16.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 03 Mar 2026 22:38:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:aa:80:1f:d6:07:53:2e:f6:5d:2f:2a:81:b6:88:52:a5:e4:73:12 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DD5ACDC0B2D091545E185EB1FA80C0007C9AFA16 Validity Not Before: Feb 20 22:55:00 2026 GMT Not After : Feb 19 23:00:00 2027 GMT Subject: CN=CFC93FB7F81790110BC4FF32FEAB9F7023923E41 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:f5:98:0e:ba:6a:59:e0:2b:18:28:74:62:b4: 10:26:76:9f:8a:60:4c:f3:46:cd:74:e1:dd:21:b0: 59:31:98:a6:f9:22:89:84:bc:89:db:ab:f6:29:5c: c4:0a:50:f0:74:3e:12:4f:3f:b2:e7:b8:f6:4b:da: 52:40:e0:52:50:f1:87:10:cc:22:b1:1a:26:c0:8b: a2:50:92:11:1b:3b:34:d9:45:a4:cc:ab:bd:7c:ab: 98:26:2d:6c:a0:00:52:58:22:a8:e5:27:4d:18:ae: a6:5b:72:5e:4a:4f:92:97:f1:f1:dc:26:3d:4c:08: 9a:e6:27:d1:fd:c4:32:3b:c0:f1:b7:9a:cc:9b:64: 32:7f:76:5c:e6:09:fc:9f:42:7c:92:3a:d5:2a:6b: a8:d9:a9:a2:54:13:87:cc:04:ac:34:57:be:36:1b: b5:0c:48:27:d4:66:13:60:a8:19:68:b7:e4:61:b3: c6:ee:7a:80:47:66:34:5c:f6:83:be:bb:73:01:2c: 07:ed:5d:74:3d:a3:78:bb:1f:d8:4a:af:fa:13:0f: 2b:00:a1:07:13:61:9f:fe:81:be:da:46:56:66:30: a3:0c:95:f6:7a:8a:a3:6b:8e:d9:64:15:78:37:01: 8b:49:0e:bc:01:68:03:ee:93:cb:5d:2d:9c:10:51: 7b:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:C9:3F:B7:F8:17:90:11:0B:C4:FF:32:FE:AB:9F:70:23:92:3E:41 X509v3 Authority Key Identifier: keyid:DD:5A:CD:C0:B2:D0:91:54:5E:18:5E:B1:FA:80:C0:00:7C:9A:FA:16 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/53250662-3eef-4aa9-9ede-5629d5b6ea95/0/DD5ACDC0B2D091545E185EB1FA80C0007C9AFA16.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DD5ACDC0B2D091545E185EB1FA80C0007C9AFA16.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/53250662-3eef-4aa9-9ede-5629d5b6ea95/0/323030313a6466323a373463303a3a2f34382d3438203d3e20313530393830.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df2:74c0::/48 Signature Algorithm: sha256WithRSAEncryption bc:06:2d:70:d5:06:39:62:b6:78:02:08:52:86:95:07:a6:6d: 87:c9:ed:03:26:8e:56:c1:0a:7e:4e:62:19:f7:34:87:72:19: d0:93:70:57:74:f6:ba:13:3a:26:48:2c:03:1e:92:7c:4f:e1: d3:cb:11:98:54:fe:ed:55:41:83:b3:fd:5a:21:21:64:88:db: 45:5b:b7:07:e0:fd:ee:9a:6e:67:cf:70:f7:b1:ca:d1:5b:64: c1:43:13:f7:19:e0:97:06:fa:74:f8:1d:cf:9e:b5:55:46:bf: a3:c6:56:39:64:16:87:08:19:80:d2:0a:02:32:77:49:ba:cb: d8:1d:f3:1f:b7:ee:af:2d:6e:9c:76:cf:34:76:83:e5:1d:42: 82:52:07:1c:96:b5:d7:27:49:1d:67:ec:79:68:fa:9c:fa:fa: 6f:90:c5:89:79:6c:04:d5:f6:54:ea:97:71:96:87:b8:3c:aa: 07:c0:0c:f1:d6:ea:4f:6b:5a:d2:6c:59:fd:cf:c2:e0:e7:4c: ac:52:20:ca:4a:a6:91:60:51:59:d5:aa:6e:57:69:13:b1:1e: 51:db:48:43:53:b5:37:92:33:79:f3:ed:af:f0:09:02:0b:de: 38:c1:ff:7e:2e:71:b7:f8:6f:fd:e0:83:49:7e:52:77:ac:f2: e4:2e:50:e8 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUXKqAH9YHUy72XS8qgbaIUqXkcxIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREQ1QUNEQzBCMkQwOTE1NDVFMTg1RUIxRkE4MEMwMDA3 QzlBRkExNjAeFw0yNjAyMjAyMjU1MDBaFw0yNzAyMTkyMzAwMDBaMDMxMTAvBgNV BAMTKENGQzkzRkI3RjgxNzkwMTEwQkM0RkYzMkZFQUI5RjcwMjM5MjNFNDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCt9ZgOumpZ4CsYKHRitBAmdp+K YEzzRs104d0hsFkxmKb5IomEvInbq/YpXMQKUPB0PhJPP7LnuPZL2lJA4FJQ8YcQ zCKxGibAi6JQkhEbOzTZRaTMq718q5gmLWygAFJYIqjlJ00YrqZbcl5KT5KX8fHc Jj1MCJrmJ9H9xDI7wPG3msybZDJ/dlzmCfyfQnySOtUqa6jZqaJUE4fMBKw0V742 G7UMSCfUZhNgqBlot+Rhs8bueoBHZjRc9oO+u3MBLAftXXQ9o3i7H9hKr/oTDysA oQcTYZ/+gb7aRlZmMKMMlfZ6iqNrjtlkFXg3AYtJDrwBaAPuk8tdLZwQUXs1AgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUz8k/t/gXkBELxP8y/qufcCOSPkEwHwYDVR0j BBgwFoAU3VrNwLLQkVReGF6x+oDAAHya+hYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 MzI1MDY2Mi0zZWVmLTRhYTktOWVkZS01NjI5ZDViNmVhOTUvMC9ERDVBQ0RDMEIy RDA5MTU0NUUxODVFQjFGQTgwQzAwMDdDOUFGQTE2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREQ1QUNEQzBCMkQwOTE1NDVFMTg1RUIxRkE4MEMwMDA3QzlB RkExNi5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzUzMjUwNjYyLTNlZWYtNGFhOS05 ZWRlLTU2MjlkNWI2ZWE5NS8wLzMyMzAzMDMxM2E2NDY2MzIzYTM3MzQ2MzMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNTMwMzkzODMwLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8nTAMA0GCSqGSIb3DQEBCwUAA4IBAQC8Bi1w1QY5YrZ4AghShpUHpm2Hye0DJo5W wQp+TmIZ9zSHchnQk3BXdPa6EzomSCwDHpJ8T+HTyxGYVP7tVUGDs/1aISFkiNtF W7cH4P3umm5nz3D3scrRW2TBQxP3GeCXBvp0+B3PnrVVRr+jxlY5ZBaHCBmA0goC MndJusvYHfMft+6vLW6cds80doPlHUKCUgcclrXXJ0kdZ+x5aPqc+vpvkMWJeWwE 1fZU6pdxloe4PKoHwAzx1upPa1rSbFn9z8Lg50ysUiDKSqaRYFFZ1apuV2kTsR5R 20hDU7U3kjN58+2v8AkCC944wf9+LnG3+G/94INJflJ3rPLkLlDo -----END CERTIFICATE-----Generated at Mon Mar 2 17:43:45 2026 by rpki-client