$ rpki-client -vvf repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/323430323a3738303a3a2f33322d3438203d3e203435373235.roa File: 323430323a3738303a3a2f33322d3438203d3e203435373235.roa (raw, json) Hash identifier: SwCqoJ1gynDTYCb0jXBHuGiNgc7su+9DcZSr6Tdi8I4= Subject key identifier: 7F:7F:95:6B:9B:85:75:3D:D5:42:71:4A:AF:B3:A4:49:82:15:5F:D6 Certificate issuer: /CN=BE7F813F3C6CA289A9CDAC5630975B7627458103 Certificate serial: 230A79922B4528639C1147654D159E6DE2490E0B Authority key identifier: BE:7F:81:3F:3C:6C:A2:89:A9:CD:AC:56:30:97:5B:76:27:45:81:03 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE7F813F3C6CA289A9CDAC5630975B7627458103.cer Subject info access: rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/323430323a3738303a3a2f33322d3438203d3e203435373235.roa Signing time: Fri 13 Feb 2026 10:00:00 +0000 ROA not before: Fri 13 Feb 2026 09:55:00 +0000 ROA not after: Fri 12 Feb 2027 10:00:00 +0000 asID: 45725 IP address blocks: 2402:780::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/BE7F813F3C6CA289A9CDAC5630975B7627458103.crl rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/BE7F813F3C6CA289A9CDAC5630975B7627458103.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE7F813F3C6CA289A9CDAC5630975B7627458103.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Mar 2026 10:02:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:0a:79:92:2b:45:28:63:9c:11:47:65:4d:15:9e:6d:e2:49:0e:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BE7F813F3C6CA289A9CDAC5630975B7627458103 Validity Not Before: Feb 13 09:55:00 2026 GMT Not After : Feb 12 10:00:00 2027 GMT Subject: CN=7F7F956B9B85753DD542714AAFB3A44982155FD6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:04:e8:f9:d0:75:38:27:4e:36:1b:fc:cb:5e: 8a:d9:9b:de:c6:22:9d:7f:77:40:36:b9:a5:1f:6c: 5c:1b:23:b4:c9:4d:5e:30:c6:e2:80:ea:f9:59:55: 88:8a:c8:7b:0a:d4:1f:28:df:d7:3a:e1:de:26:a4: a8:88:a7:06:a9:e3:62:6d:c6:34:d9:cc:0e:b4:5e: 40:8c:03:9e:b1:4c:d1:9e:4e:fe:7e:ba:1d:f1:ec: de:e0:c4:11:f5:6a:7d:a8:45:af:71:38:6c:88:c2: b2:59:ad:2e:47:ba:6b:a6:e0:1e:57:13:27:91:71: ae:6e:80:64:7d:29:27:36:1d:64:2b:bd:dd:4f:58: 25:9f:aa:53:61:f8:ce:e9:01:60:cb:fb:0a:25:c5: c7:9c:d7:c5:fa:36:6e:d3:e0:01:c0:ba:46:2f:20: a5:f1:3d:63:00:30:5c:de:ad:b3:e9:01:17:c3:82: 35:ff:c7:ec:63:19:a2:74:30:94:80:c6:ff:e1:26: 9d:fc:b3:a8:87:86:90:77:a5:ff:f0:1d:5b:f9:49: 32:a7:a0:d7:30:f7:05:a5:21:34:20:cf:2e:1d:56: 8b:22:46:d4:12:43:ea:68:60:e9:08:72:2f:fd:ed: a2:66:bb:d2:ab:53:6b:3a:20:00:fa:b6:09:20:5e: 25:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:7F:95:6B:9B:85:75:3D:D5:42:71:4A:AF:B3:A4:49:82:15:5F:D6 X509v3 Authority Key Identifier: keyid:BE:7F:81:3F:3C:6C:A2:89:A9:CD:AC:56:30:97:5B:76:27:45:81:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/BE7F813F3C6CA289A9CDAC5630975B7627458103.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE7F813F3C6CA289A9CDAC5630975B7627458103.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/323430323a3738303a3a2f33322d3438203d3e203435373235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:780::/32 Signature Algorithm: sha256WithRSAEncryption 13:e2:5d:25:6e:53:97:94:e0:67:23:49:53:04:94:84:cf:88: a8:23:c2:e4:a0:b7:17:02:90:3e:7c:50:7e:a3:32:8a:d4:83: b4:8a:a9:45:fa:72:69:6d:f0:31:aa:24:3d:7c:c9:cf:d2:0f: 4d:a9:7d:51:c2:f1:37:c2:ec:06:57:5d:1c:4e:7c:41:a2:55: c9:c6:d9:35:63:e9:82:d4:22:39:f6:4c:e1:0c:6d:3e:95:32: 7c:50:38:a0:ca:14:87:27:cf:b7:eb:c9:4c:75:d8:b4:88:57: 73:1b:3b:e1:69:95:27:a0:f9:49:6c:13:2a:83:d1:c1:c2:82: a6:cf:19:3f:35:a7:5d:4f:04:71:12:8c:87:b4:5b:26:e3:77: 29:d9:24:27:c5:0d:9b:fe:ba:e0:b5:3a:72:fc:1b:ac:50:b6: 72:7d:f0:f0:44:5c:a1:f6:fe:86:17:db:fa:f1:13:c9:fe:88: a7:ff:77:f7:38:6c:16:44:60:ae:0b:7b:b3:4d:33:81:a3:32: 5d:1e:6a:d5:44:9d:ff:9c:ec:70:ce:b0:12:ba:af:5f:05:e3: 43:c9:37:21:ec:40:85:1b:e2:7d:97:f0:df:48:28:2a:48:77: af:dc:1f:1e:ce:dc:31:49:6f:cb:d5:08:98:46:9d:8d:e8:c1: 65:e3:a2:df -----BEGIN CERTIFICATE----- MIIFJDCCBAygAwIBAgIUIwp5kitFKGOcEUdlTRWebeJJDgswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkU3RjgxM0YzQzZDQTI4OUE5Q0RBQzU2MzA5NzVCNzYy NzQ1ODEwMzAeFw0yNjAyMTMwOTU1MDBaFw0yNzAyMTIxMDAwMDBaMDMxMTAvBgNV BAMTKDdGN0Y5NTZCOUI4NTc1M0RENTQyNzE0QUFGQjNBNDQ5ODIxNTVGRDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6BOj50HU4J042G/zLXorZm97G Ip1/d0A2uaUfbFwbI7TJTV4wxuKA6vlZVYiKyHsK1B8o39c64d4mpKiIpwap42Jt xjTZzA60XkCMA56xTNGeTv5+uh3x7N7gxBH1an2oRa9xOGyIwrJZrS5Humum4B5X EyeRca5ugGR9KSc2HWQrvd1PWCWfqlNh+M7pAWDL+wolxcec18X6Nm7T4AHAukYv IKXxPWMAMFzerbPpARfDgjX/x+xjGaJ0MJSAxv/hJp38s6iHhpB3pf/wHVv5STKn oNcw9wWlITQgzy4dVosiRtQSQ+poYOkIci/97aJmu9KrU2s6IAD6tgkgXiW9AgMB AAGjggIuMIICKjAdBgNVHQ4EFgQUf3+Va5uFdT3VQnFKr7OkSYIVX9YwHwYDVR0j BBgwFoAUvn+BPzxsoompzaxWMJdbdidFgQMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 NDQyMTZkOC03MGNlLTQ5MDgtYTcyYi1lYzI3M2Y0M2JiYzIvMC9CRTdGODEzRjND NkNBMjg5QTlDREFDNTYzMDk3NUI3NjI3NDU4MTAzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkU3RjgxM0YzQzZDQTI4OUE5Q0RBQzU2MzA5NzVCNzYyNzQ1 ODEwMy5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNjQ0MjE2ZDgtNzBjZS00OTA4LWE3 MmItZWMyNzNmNDNiYmMyLzAvMzIzNDMwMzIzYTM3MzgzMDNhM2EyZjMzMzIyZDM0 MzgyMDNkM2UyMDM0MzUzNzMyMzUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkAgeAMA0GCSqGSIb3DQEB CwUAA4IBAQAT4l0lblOXlOBnI0lTBJSEz4ioI8LkoLcXApA+fFB+ozKK1IO0iqlF +nJpbfAxqiQ9fMnP0g9NqX1RwvE3wuwGV10cTnxBolXJxtk1Y+mC1CI59kzhDG0+ lTJ8UDigyhSHJ8+368lMddi0iFdzGzvhaZUnoPlJbBMqg9HBwoKmzxk/NaddTwRx EoyHtFsm43cp2SQnxQ2b/rrgtTpy/BusULZyffDwRFyh9v6GF9v68RPJ/oin/3f3 OGwWRGCuC3uzTTOBozJdHmrVRJ3/nOxwzrASuq9fBeNDyTch7ECFG+J9l/DfSCgq SHev3B8eztwxSW/L1QiYRp2N6MFl46Lf -----END CERTIFICATE-----Generated at Mon Mar 2 15:37:55 2026 by rpki-client