$ rpki-client -vvf repo-rpki.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/323430333a653063303a31333a3a2f34382d3438203d3e20313338303839.roa File: 323430333a653063303a31333a3a2f34382d3438203d3e20313338303839.roa (raw, json) Hash identifier: G9QQEUF/JEpvuMiEFjI454QFIL6ErRBbxzNtJBadEKo= Subject key identifier: CC:4D:12:FB:13:18:50:0A:B5:20:43:73:22:25:B1:CA:B3:CC:CF:43 Certificate issuer: /CN=7D4F0D007B60134996AC3198B9E5B71EAF70E733 Certificate serial: 4D005CBAADEF1CCB842AF1A7810D26877BE34C0C Authority key identifier: 7D:4F:0D:00:7B:60:13:49:96:AC:31:98:B9:E5:B7:1E:AF:70:E7:33 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7D4F0D007B60134996AC3198B9E5B71EAF70E733.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/323430333a653063303a31333a3a2f34382d3438203d3e20313338303839.roa Signing time: Fri 13 Feb 2026 04:00:00 +0000 ROA not before: Fri 13 Feb 2026 03:55:00 +0000 ROA not after: Fri 12 Feb 2027 04:00:00 +0000 asID: 138089 IP address blocks: 2403:e0c0:13::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/7D4F0D007B60134996AC3198B9E5B71EAF70E733.crl rsync://repo-rpki.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/7D4F0D007B60134996AC3198B9E5B71EAF70E733.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7D4F0D007B60134996AC3198B9E5B71EAF70E733.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Mar 2026 05:30:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:00:5c:ba:ad:ef:1c:cb:84:2a:f1:a7:81:0d:26:87:7b:e3:4c:0c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7D4F0D007B60134996AC3198B9E5B71EAF70E733 Validity Not Before: Feb 13 03:55:00 2026 GMT Not After : Feb 12 04:00:00 2027 GMT Subject: CN=CC4D12FB1318500AB52043732225B1CAB3CCCF43 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:a1:5d:b3:be:52:f5:3c:b7:33:62:f8:c5:28: 96:d9:7a:f1:81:2d:00:1a:8d:83:7f:e6:45:07:44: 8f:74:70:79:e4:4b:2f:49:63:96:88:5b:da:10:3c: 6e:0d:d4:61:47:1b:78:65:93:af:91:89:99:67:67: 02:76:33:64:3e:d1:86:8b:cf:b4:3a:5a:62:76:7d: f7:7e:da:9b:69:92:1f:e4:2d:2e:b6:ce:ba:0f:b3: e2:44:b6:23:93:a6:e0:f2:ba:e1:b7:d4:24:07:07: f8:da:4b:bb:1a:cc:45:6b:44:8d:c7:49:ad:15:11: 48:ea:18:8c:18:d0:2f:9d:2d:97:dc:07:85:e2:3b: d7:fb:1a:3a:d9:09:dc:83:0d:76:de:20:5e:d9:55: 89:5c:f0:39:17:02:68:9e:a7:c3:75:3a:ec:70:f5: b0:02:10:c3:f5:b8:c6:b7:0c:40:19:1f:ca:ad:1e: 30:f4:1f:4a:cf:54:4b:a4:bf:08:eb:b9:56:fc:f0: fd:49:8f:f6:5a:8b:a8:e1:17:4b:42:c7:c3:ee:c0: 89:8b:43:f5:5c:39:b8:b8:0f:7d:9a:9d:ba:60:14: 3d:d3:09:16:20:2a:4a:63:e0:68:77:1a:aa:11:e6: f1:e4:37:e4:0b:0e:e8:bb:4f:39:f0:7a:b1:d5:67: d9:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:4D:12:FB:13:18:50:0A:B5:20:43:73:22:25:B1:CA:B3:CC:CF:43 X509v3 Authority Key Identifier: keyid:7D:4F:0D:00:7B:60:13:49:96:AC:31:98:B9:E5:B7:1E:AF:70:E7:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/7D4F0D007B60134996AC3198B9E5B71EAF70E733.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7D4F0D007B60134996AC3198B9E5B71EAF70E733.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/323430333a653063303a31333a3a2f34382d3438203d3e20313338303839.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:e0c0:13::/48 Signature Algorithm: sha256WithRSAEncryption 33:86:e2:7b:74:43:fe:d9:ec:84:71:a9:c4:24:c9:5b:12:b4: db:e4:cb:1a:8c:04:d0:33:26:06:86:3c:ed:a1:3e:37:4e:12: cc:67:bc:d6:3d:cb:ab:3b:b8:dc:19:b5:3f:8d:1f:50:a2:2f: 57:4d:0a:33:f5:b9:bd:e3:20:b6:f6:3d:2a:99:62:66:ae:11: ad:43:9b:04:51:b8:9d:7a:f6:f9:0f:2f:10:64:6e:56:30:fc: d7:97:5f:1e:25:cd:e4:9a:6a:17:25:92:c0:d6:b9:f1:27:2b: 79:b2:10:a0:7a:fa:41:8e:fa:31:ce:76:09:17:0e:7f:0d:73: dd:c0:5f:94:b8:1d:04:39:9d:57:b5:b4:5c:75:af:54:8d:40: b5:13:07:9c:d4:dc:b0:fe:43:5c:f3:d6:e2:c7:09:34:f2:a3: 36:57:5d:e4:a0:38:ae:e7:8d:71:e9:86:79:ed:fb:1b:ae:97: f7:4c:28:83:cf:c5:51:29:e3:e8:7e:5e:cc:71:5a:00:fb:f8: 50:76:9b:ba:42:68:f0:4b:0f:27:c0:98:69:d1:ca:bb:ab:0e: d9:9d:86:5f:4d:91:4d:ee:d4:96:a4:f9:19:db:5a:7a:5f:e9: d8:a6:68:5b:ba:cd:3e:87:91:50:d7:ae:17:69:32:66:5d:47: c5:7c:db:b6 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUTQBcuq3vHMuEKvGngQ0mh3vjTAwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0Q0RjBEMDA3QjYwMTM0OTk2QUMzMTk4QjlFNUI3MUVB RjcwRTczMzAeFw0yNjAyMTMwMzU1MDBaFw0yNzAyMTIwNDAwMDBaMDMxMTAvBgNV BAMTKENDNEQxMkZCMTMxODUwMEFCNTIwNDM3MzIyMjVCMUNBQjNDQ0NGNDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDooV2zvlL1PLczYvjFKJbZevGB LQAajYN/5kUHRI90cHnkSy9JY5aIW9oQPG4N1GFHG3hlk6+RiZlnZwJ2M2Q+0YaL z7Q6WmJ2ffd+2ptpkh/kLS62zroPs+JEtiOTpuDyuuG31CQHB/jaS7sazEVrRI3H Sa0VEUjqGIwY0C+dLZfcB4XiO9f7GjrZCdyDDXbeIF7ZVYlc8DkXAmiep8N1Ouxw 9bACEMP1uMa3DEAZH8qtHjD0H0rPVEukvwjruVb88P1Jj/Zai6jhF0tCx8PuwImL Q/VcObi4D32anbpgFD3TCRYgKkpj4Gh3GqoR5vHkN+QLDui7TznwerHVZ9lVAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUzE0S+xMYUAq1IENzIiWxyrPMz0MwHwYDVR0j BBgwFoAUfU8NAHtgE0mWrDGYueW3Hq9w5zMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YWJhNGU1OS1mYjMxLTQxYjUtODhlNy0wYjJjZWQxZjIwMWMvMC83RDRGMEQwMDdC NjAxMzQ5OTZBQzMxOThCOUU1QjcxRUFGNzBFNzMzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0Q0RjBEMDA3QjYwMTM0OTk2QUMzMTk4QjlFNUI3MUVBRjcw RTczMy5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVhYmE0ZTU5LWZiMzEtNDFiNS04 OGU3LTBiMmNlZDFmMjAxYy8wLzMyMzQzMDMzM2E2NTMwNjMzMDNhMzEzMzNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzMzODMwMzgzOS5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQD4MAA EzANBgkqhkiG9w0BAQsFAAOCAQEAM4bie3RD/tnshHGpxCTJWxK02+TLGowE0DMm BoY87aE+N04SzGe81j3Lqzu43Bm1P40fUKIvV00KM/W5veMgtvY9KpliZq4RrUOb BFG4nXr2+Q8vEGRuVjD815dfHiXN5JpqFyWSwNa58ScrebIQoHr6QY76Mc52CRcO fw1z3cBflLgdBDmdV7W0XHWvVI1AtRMHnNTcsP5DXPPW4scJNPKjNldd5KA4rueN cemGee37G66X90wog8/FUSnj6H5ezHFaAPv4UHabukJo8EsPJ8CYadHKu6sO2Z2G X02RTe7UlqT5Gdtael/p2KZoW7rNPoeRUNeuF2kyZl1HxXzbtg== -----END CERTIFICATE-----Generated at Mon Mar 2 09:48:19 2026 by rpki-client