$ rpki-client -vvf repo-rpki.idnic.net/repo/5d823bb3-5a01-4658-a783-f8e89fadcf45/1/323030313a6466333a393034303a3a2f34382d3438203d3e20313532343139.roa File: 323030313a6466333a393034303a3a2f34382d3438203d3e20313532343139.roa (raw, json) Hash identifier: X7ETbrXLlsb1gErfsePddYhE1xdzeHTt/6mH7d4q/24= Subject key identifier: 01:8D:10:BF:10:34:7E:7A:D3:A8:74:AF:D8:DE:BF:14:97:11:88:FD Certificate issuer: /CN=05671A0ACAB26B342648AFFAC0C66ECB5A493DAB Certificate serial: 5CA9EB4A56A11A68FFD2B3ED2030B5015757614F Authority key identifier: 05:67:1A:0A:CA:B2:6B:34:26:48:AF:FA:C0:C6:6E:CB:5A:49:3D:AB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/05671A0ACAB26B342648AFFAC0C66ECB5A493DAB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5d823bb3-5a01-4658-a783-f8e89fadcf45/1/323030313a6466333a393034303a3a2f34382d3438203d3e20313532343139.roa Signing time: Wed 25 Feb 2026 20:00:00 +0000 ROA not before: Wed 25 Feb 2026 19:55:00 +0000 ROA not after: Wed 24 Feb 2027 20:00:00 +0000 asID: 152419 IP address blocks: 2001:df3:9040::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5d823bb3-5a01-4658-a783-f8e89fadcf45/1/05671A0ACAB26B342648AFFAC0C66ECB5A493DAB.crl rsync://repo-rpki.idnic.net/repo/5d823bb3-5a01-4658-a783-f8e89fadcf45/1/05671A0ACAB26B342648AFFAC0C66ECB5A493DAB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/05671A0ACAB26B342648AFFAC0C66ECB5A493DAB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 06:31:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:a9:eb:4a:56:a1:1a:68:ff:d2:b3:ed:20:30:b5:01:57:57:61:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=05671A0ACAB26B342648AFFAC0C66ECB5A493DAB Validity Not Before: Feb 25 19:55:00 2026 GMT Not After : Feb 24 20:00:00 2027 GMT Subject: CN=018D10BF10347E7AD3A874AFD8DEBF14971188FD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:a4:d5:95:a5:a6:e9:ec:b8:68:dd:fd:34:21: 99:50:be:52:56:7c:22:79:ef:59:fa:61:3d:72:2a: e7:5e:9f:cc:bb:ce:95:1d:de:ef:9f:cc:c8:0d:6e: 31:f7:be:49:a7:76:cc:e6:7d:38:f7:74:f9:c6:94: 45:c7:8c:36:ce:39:0e:7a:e8:dd:0b:d3:d4:cb:8a: fa:4b:93:a4:12:97:c3:a0:4e:8d:f5:24:e5:df:aa: 77:74:e9:22:a1:8a:e3:8f:e5:0c:7b:74:41:87:9c: 14:87:f4:d7:b1:01:7e:49:d6:4e:d9:96:25:9e:8f: 4e:a4:fa:ba:cf:06:92:51:17:f6:44:4b:59:bc:80: 56:8e:74:e9:aa:39:1a:2a:12:3c:c7:f7:25:89:f8: f6:08:53:38:2d:72:60:17:14:c5:8d:b6:9e:44:a1: a5:42:ec:00:1c:4c:db:e5:03:14:60:7c:e4:60:18: 14:a7:bc:07:bf:49:ff:1e:00:56:27:77:8e:ac:79: 55:cc:81:b2:25:f6:02:e6:ca:ec:eb:8a:c7:a0:8d: 80:34:e4:c6:0e:22:e1:c7:a0:c6:e1:a3:6d:4c:72: 90:75:b5:eb:83:1d:c9:04:9b:a8:d0:27:d5:50:d3: 35:c7:c9:9f:e1:26:a9:5a:49:76:f1:46:58:ec:b1: 85:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:8D:10:BF:10:34:7E:7A:D3:A8:74:AF:D8:DE:BF:14:97:11:88:FD X509v3 Authority Key Identifier: keyid:05:67:1A:0A:CA:B2:6B:34:26:48:AF:FA:C0:C6:6E:CB:5A:49:3D:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5d823bb3-5a01-4658-a783-f8e89fadcf45/1/05671A0ACAB26B342648AFFAC0C66ECB5A493DAB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/05671A0ACAB26B342648AFFAC0C66ECB5A493DAB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5d823bb3-5a01-4658-a783-f8e89fadcf45/1/323030313a6466333a393034303a3a2f34382d3438203d3e20313532343139.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df3:9040::/48 Signature Algorithm: sha256WithRSAEncryption 51:2b:76:70:3e:59:17:8c:38:78:16:7c:62:3e:13:7f:b2:45: ac:60:a7:ee:61:62:c5:71:ef:b9:12:24:78:68:25:84:bc:21: 66:68:25:0b:85:dd:37:0a:70:c1:72:04:fc:74:0d:ba:d1:c6: ef:ea:4a:f2:46:fa:3b:50:33:f8:c0:bd:5b:92:42:e7:80:d0: ef:cc:bc:64:76:b9:1c:73:23:98:8f:9e:37:05:0b:4e:01:b2: ea:37:d3:b8:28:79:91:b4:fa:99:d6:df:9d:f3:d5:7d:67:01: fb:ce:7c:22:37:fb:c1:12:b0:5a:0d:ad:0f:4b:3d:d6:0c:db: fe:8b:80:a0:55:c9:c0:ca:18:45:b0:fb:f5:53:4f:36:dc:c3: 90:cd:27:e2:9b:d8:d6:1c:fc:5c:ba:3d:77:f8:17:47:7f:7f: c8:d8:ed:92:fd:73:52:56:4c:46:a5:77:42:ac:e4:20:85:cf: 02:9b:bf:c2:b8:de:5d:26:24:26:13:2a:5f:ed:85:5a:a5:e9: c3:80:d9:cb:c6:2b:0a:28:3a:75:2b:bf:c4:77:92:ff:a6:5c: b5:46:6e:6c:ab:95:59:82:20:96:07:aa:e5:52:b0:92:61:a7: 90:a4:ce:da:7b:eb:98:68:be:6f:dd:be:b5:ca:5b:8e:0f:1b: 8f:b0:29:1d -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUXKnrSlahGmj/0rPtIDC1AVdXYU8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDU2NzFBMEFDQUIyNkIzNDI2NDhBRkZBQzBDNjZFQ0I1 QTQ5M0RBQjAeFw0yNjAyMjUxOTU1MDBaFw0yNzAyMjQyMDAwMDBaMDMxMTAvBgNV BAMTKDAxOEQxMEJGMTAzNDdFN0FEM0E4NzRBRkQ4REVCRjE0OTcxMTg4RkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7pNWVpabp7Lho3f00IZlQvlJW fCJ571n6YT1yKuden8y7zpUd3u+fzMgNbjH3vkmndszmfTj3dPnGlEXHjDbOOQ56 6N0L09TLivpLk6QSl8OgTo31JOXfqnd06SKhiuOP5Qx7dEGHnBSH9NexAX5J1k7Z liWej06k+rrPBpJRF/ZES1m8gFaOdOmqORoqEjzH9yWJ+PYIUzgtcmAXFMWNtp5E oaVC7AAcTNvlAxRgfORgGBSnvAe/Sf8eAFYnd46seVXMgbIl9gLmyuzrisegjYA0 5MYOIuHHoMbho21McpB1teuDHckEm6jQJ9VQ0zXHyZ/hJqlaSXbxRljssYUhAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUAY0QvxA0fnrTqHSv2N6/FJcRiP0wHwYDVR0j BBgwFoAUBWcaCsqyazQmSK/6wMZuy1pJPaswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZDgyM2JiMy01YTAxLTQ2NTgtYTc4My1mOGU4OWZhZGNmNDUvMS8wNTY3MUEwQUNB QjI2QjM0MjY0OEFGRkFDMEM2NkVDQjVBNDkzREFCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDU2NzFBMEFDQUIyNkIzNDI2NDhBRkZBQzBDNjZFQ0I1QTQ5 M0RBQi5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVkODIzYmIzLTVhMDEtNDY1OC1h NzgzLWY4ZTg5ZmFkY2Y0NS8xLzMyMzAzMDMxM2E2NDY2MzMzYTM5MzAzNDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNTMyMzQzMTM5LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 85BAMA0GCSqGSIb3DQEBCwUAA4IBAQBRK3ZwPlkXjDh4FnxiPhN/skWsYKfuYWLF ce+5EiR4aCWEvCFmaCULhd03CnDBcgT8dA260cbv6kryRvo7UDP4wL1bkkLngNDv zLxkdrkccyOYj543BQtOAbLqN9O4KHmRtPqZ1t+d89V9ZwH7znwiN/vBErBaDa0P Sz3WDNv+i4CgVcnAyhhFsPv1U0823MOQzSfim9jWHPxcuj13+BdHf3/I2O2S/XNS VkxGpXdCrOQghc8Cm7/CuN5dJiQmEypf7YVapenDgNnLxisKKDp1K7/Ed5L/ply1 Rm5sq5VZgiCWB6rlUrCSYaeQpM7ae+uYaL5v3b61yluODxuPsCkd -----END CERTIFICATE-----Generated at Mon Mar 2 20:20:19 2026 by rpki-client