$ rpki-client -vvf repo-rpki.idnic.net/repo/552beae1-3480-4e92-a3a9-5a54fbbacd2d/0/323030313a6466323a376234303a3a2f34382d3438203d3e20313530323636.roa File: 323030313a6466323a376234303a3a2f34382d3438203d3e20313530323636.roa (raw, json) Hash identifier: keLbCd7ZsbkB2/h/TV22jtBoEws1VOw0OydIvEwteiQ= Subject key identifier: 6D:F2:FF:AB:1C:BC:37:2F:32:FC:57:2E:57:4F:83:47:EB:64:AE:3B Certificate issuer: /CN=DE39DBDBFB23D179870083C94A086E2890E8B7AD Certificate serial: 3B33FB8873117C47A11B8B4F80280346A38BD30B Authority key identifier: DE:39:DB:DB:FB:23:D1:79:87:00:83:C9:4A:08:6E:28:90:E8:B7:AD Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DE39DBDBFB23D179870083C94A086E2890E8B7AD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/552beae1-3480-4e92-a3a9-5a54fbbacd2d/0/323030313a6466323a376234303a3a2f34382d3438203d3e20313530323636.roa Signing time: Mon 06 Apr 2026 05:00:00 +0000 ROA not before: Mon 06 Apr 2026 04:55:00 +0000 ROA not after: Mon 05 Apr 2027 05:00:00 +0000 asID: 150266 IP address blocks: 2001:df2:7b40::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/552beae1-3480-4e92-a3a9-5a54fbbacd2d/0/DE39DBDBFB23D179870083C94A086E2890E8B7AD.crl rsync://repo-rpki.idnic.net/repo/552beae1-3480-4e92-a3a9-5a54fbbacd2d/0/DE39DBDBFB23D179870083C94A086E2890E8B7AD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DE39DBDBFB23D179870083C94A086E2890E8B7AD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Apr 2026 20:07:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:33:fb:88:73:11:7c:47:a1:1b:8b:4f:80:28:03:46:a3:8b:d3:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DE39DBDBFB23D179870083C94A086E2890E8B7AD Validity Not Before: Apr 6 04:55:00 2026 GMT Not After : Apr 5 05:00:00 2027 GMT Subject: CN=6DF2FFAB1CBC372F32FC572E574F8347EB64AE3B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fd:a7:d4:a3:9f:3a:1d:9e:97:65:7e:f9:b2:d8: ca:bb:20:e5:9e:e0:93:85:58:5f:d9:16:d5:5c:da: fd:81:8b:5e:b1:58:91:59:49:f6:95:5a:29:0e:3b: 75:3a:04:cc:2d:06:78:b8:a4:78:d5:7b:78:94:f8: c6:67:fb:8b:3c:07:b9:32:cc:99:9a:ae:ad:78:36: 6c:1e:80:33:ec:36:5c:ac:fb:d1:b3:17:99:70:3e: b3:5d:bd:b1:c8:54:d4:a5:b9:c7:b3:85:25:d6:7d: 9d:75:fb:4f:f2:15:af:47:dc:56:2b:75:5e:41:52: 90:7e:79:a4:8d:47:4b:fa:78:35:fe:79:39:f3:6d: 70:7d:f6:d9:df:b7:d2:00:ca:ed:8a:f6:43:8f:da: 0c:94:f7:ba:a9:d9:04:be:42:f9:0a:e5:71:21:a5: bc:d8:bb:40:e2:80:a2:0c:f5:1c:f3:7f:7d:eb:57: 93:9a:70:b1:63:9e:e8:08:5a:bd:d3:b5:b6:ad:17: 96:3d:79:36:2b:66:7c:ad:67:21:05:71:11:5b:b5: 8f:12:f6:10:7e:e4:cd:fb:27:f8:ab:95:3e:15:8b: 7c:93:48:46:d2:51:11:c1:72:01:52:70:b3:89:fc: 30:ec:ed:51:94:3e:18:fb:bc:ec:98:24:ec:37:5e: b4:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:F2:FF:AB:1C:BC:37:2F:32:FC:57:2E:57:4F:83:47:EB:64:AE:3B X509v3 Authority Key Identifier: keyid:DE:39:DB:DB:FB:23:D1:79:87:00:83:C9:4A:08:6E:28:90:E8:B7:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/552beae1-3480-4e92-a3a9-5a54fbbacd2d/0/DE39DBDBFB23D179870083C94A086E2890E8B7AD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DE39DBDBFB23D179870083C94A086E2890E8B7AD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/552beae1-3480-4e92-a3a9-5a54fbbacd2d/0/323030313a6466323a376234303a3a2f34382d3438203d3e20313530323636.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df2:7b40::/48 Signature Algorithm: sha256WithRSAEncryption 2e:e8:aa:1b:97:36:13:00:c9:6b:9b:88:3d:fb:fe:67:ec:de: 91:06:f8:f9:90:55:3a:98:4e:c4:82:82:c0:de:e9:c7:d5:16: 40:17:15:5a:c7:4e:63:c8:57:95:ee:32:54:84:da:14:94:b5: d3:0f:0e:0c:b5:aa:d6:db:de:c2:82:c8:36:25:8e:cd:16:29: 4f:43:cd:ca:3e:b6:da:96:17:c2:06:82:fb:40:03:5b:74:2a: 72:0b:f1:75:f0:25:af:ec:57:2c:a4:17:8d:6c:8d:97:99:a4: c4:47:34:4d:e2:d5:e1:4c:ab:d0:11:bb:c8:5a:01:05:40:f5: 71:1b:6d:22:55:16:c5:08:78:88:f5:0e:f3:3f:04:d5:fc:bd: 01:92:65:5f:a2:38:30:13:47:b3:8a:9f:03:47:4b:03:bc:f7: 0c:b6:45:de:d0:60:3d:a4:49:f5:15:0b:10:4c:f6:e2:6f:13: 8f:3a:2b:8a:0d:3b:8f:2a:f9:25:ca:c4:97:10:c7:90:8a:80: 1e:0c:e8:b3:ef:bc:e4:e6:de:ab:e4:a6:ce:a4:05:85:19:0e: 6d:fd:d4:9d:c2:c5:7d:d5:e8:21:61:c7:83:0d:8c:d6:a7:f8: db:31:d5:b4:ea:ef:9f:58:d4:53:48:b5:40:75:1c:6b:5f:4f: d1:af:92:7c -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUOzP7iHMRfEehG4tPgCgDRqOL0wswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREUzOURCREJGQjIzRDE3OTg3MDA4M0M5NEEwODZFMjg5 MEU4QjdBRDAeFw0yNjA0MDYwNDU1MDBaFw0yNzA0MDUwNTAwMDBaMDMxMTAvBgNV BAMTKDZERjJGRkFCMUNCQzM3MkYzMkZDNTcyRTU3NEY4MzQ3RUI2NEFFM0IwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD9p9Sjnzodnpdlfvmy2Mq7IOWe 4JOFWF/ZFtVc2v2Bi16xWJFZSfaVWikOO3U6BMwtBni4pHjVe3iU+MZn+4s8B7ky zJmarq14NmwegDPsNlys+9GzF5lwPrNdvbHIVNSlucezhSXWfZ11+0/yFa9H3FYr dV5BUpB+eaSNR0v6eDX+eTnzbXB99tnft9IAyu2K9kOP2gyU97qp2QS+QvkK5XEh pbzYu0DigKIM9Rzzf33rV5OacLFjnugIWr3TtbatF5Y9eTYrZnytZyEFcRFbtY8S 9hB+5M37J/irlT4Vi3yTSEbSURHBcgFScLOJ/DDs7VGUPhj7vOyYJOw3XrT9AgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUbfL/qxy8Ny8y/FcuV0+DR+tkrjswHwYDVR0j BBgwFoAU3jnb2/sj0XmHAIPJSghuKJDot60wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 NTJiZWFlMS0zNDgwLTRlOTItYTNhOS01YTU0ZmJiYWNkMmQvMC9ERTM5REJEQkZC MjNEMTc5ODcwMDgzQzk0QTA4NkUyODkwRThCN0FELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREUzOURCREJGQjIzRDE3OTg3MDA4M0M5NEEwODZFMjg5MEU4 QjdBRC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU1MmJlYWUxLTM0ODAtNGU5Mi1h M2E5LTVhNTRmYmJhY2QyZC8wLzMyMzAzMDMxM2E2NDY2MzIzYTM3NjIzNDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNTMwMzIzNjM2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8ntAMA0GCSqGSIb3DQEBCwUAA4IBAQAu6KoblzYTAMlrm4g9+/5n7N6RBvj5kFU6 mE7EgoLA3unH1RZAFxVax05jyFeV7jJUhNoUlLXTDw4MtarW297Cgsg2JY7NFilP Q83KPrbalhfCBoL7QANbdCpyC/F18CWv7FcspBeNbI2XmaTERzRN4tXhTKvQEbvI WgEFQPVxG20iVRbFCHiI9Q7zPwTV/L0BkmVfojgwE0ezip8DR0sDvPcMtkXe0GA9 pEn1FQsQTPbibxOPOiuKDTuPKvklysSXEMeQioAeDOiz77zk5t6r5KbOpAWFGQ5t /dSdwsV91eghYceDDYzWp/jbMdW06u+fWNRTSLVAdRxrX0/Rr5J8 -----END CERTIFICATE-----Generated at Fri Apr 17 19:08:30 2026 by rpki-client