$ rpki-client -vvf repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a333030363a3a2f34382d3438203d3e20313333383430.roa File: 323430343a653130303a333030363a3a2f34382d3438203d3e20313333383430.roa (raw, json) Hash identifier: GbzQ/3eXwJ3RFK/WL7yel0pGm58cLF1aZIUtfjiiJqU= Subject key identifier: 3B:FD:A7:99:1F:18:88:28:80:60:C9:45:8B:56:CD:7F:71:3C:47:95 Certificate issuer: /CN=B6F0131510E62F73E5F29246F9C8F691811A704D Certificate serial: 12F067C8571FD3CD080C7FEEB27DC967706C71CE Authority key identifier: B6:F0:13:15:10:E6:2F:73:E5:F2:92:46:F9:C8:F6:91:81:1A:70:4D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a333030363a3a2f34382d3438203d3e20313333383430.roa Signing time: Sat 21 Feb 2026 06:00:03 +0000 ROA not before: Sat 21 Feb 2026 05:55:03 +0000 ROA not after: Sat 20 Feb 2027 06:00:03 +0000 asID: 133840 IP address blocks: 2404:e100:3006::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.crl rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 03 Mar 2026 23:00:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:f0:67:c8:57:1f:d3:cd:08:0c:7f:ee:b2:7d:c9:67:70:6c:71:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B6F0131510E62F73E5F29246F9C8F691811A704D Validity Not Before: Feb 21 05:55:03 2026 GMT Not After : Feb 20 06:00:03 2027 GMT Subject: CN=3BFDA7991F1888288060C9458B56CD7F713C4795 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:d7:11:91:30:b3:5f:ae:a1:70:d2:ce:b5:be: bf:13:82:78:d3:16:b4:b5:bf:90:26:73:71:c2:05: c3:37:12:26:b1:cb:61:42:9c:d6:ec:c9:e3:0a:62: 14:69:f7:3d:99:ea:34:84:c5:a3:d2:84:ca:d2:64: 67:aa:4e:9c:f3:e0:ba:00:af:14:c5:29:15:4b:99: 50:35:c8:5c:4f:e3:c2:e5:5e:fd:c8:cf:85:86:bf: 18:5a:04:1d:34:b8:1d:b9:51:f3:18:70:50:9b:9c: 13:ff:92:eb:c0:d4:75:b3:a3:d6:fd:de:d9:fe:0e: 15:ab:0c:25:80:82:ee:c3:67:3f:17:00:c3:03:7e: 67:6c:75:92:5a:ce:ae:4a:ec:6d:6b:c8:79:b1:60: 16:7d:d5:fe:0e:49:0c:9d:b0:7e:48:29:db:9b:05: 0f:76:fb:99:31:0d:c5:70:4e:23:42:ef:fb:af:8b: f1:1b:37:fe:47:d9:f7:c1:a9:c1:e4:3a:16:8e:ce: 7a:92:26:e6:5d:b6:56:d5:ff:6f:3b:e0:5d:54:99: fb:c4:c8:bf:56:f4:51:d2:6f:eb:8a:c3:29:38:02: dd:71:49:06:56:55:4f:bf:fc:73:d1:23:60:59:9a: c6:c4:a4:c5:ba:1b:e3:01:50:f6:26:2c:0c:4a:9f: 5b:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:FD:A7:99:1F:18:88:28:80:60:C9:45:8B:56:CD:7F:71:3C:47:95 X509v3 Authority Key Identifier: keyid:B6:F0:13:15:10:E6:2F:73:E5:F2:92:46:F9:C8:F6:91:81:1A:70:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a333030363a3a2f34382d3438203d3e20313333383430.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:e100:3006::/48 Signature Algorithm: sha256WithRSAEncryption 3e:83:d6:ca:0c:c6:af:52:20:6f:5f:e5:95:c7:a0:3d:d6:99: 25:1f:09:d0:11:6f:d4:b4:04:3a:f6:0e:c4:62:ee:e8:13:81: 49:3f:7b:f0:a1:f4:15:4c:33:64:f9:97:91:f1:0d:7e:c8:90: 95:a7:3b:2a:b5:1a:a3:8a:96:15:86:3b:99:fb:9f:8a:3f:40: 16:72:e5:af:b7:ee:6d:23:1a:05:db:15:7e:59:a3:bd:24:a8: 0a:11:05:c0:c9:76:0c:58:a3:cd:39:4b:ff:c2:75:4b:57:f1: 0e:69:7b:88:35:40:d2:2a:d5:3c:1e:79:f4:eb:a0:2a:3a:bf: 97:72:bc:7e:36:1f:26:6f:71:81:89:4a:8a:bd:7d:a9:9f:cc: 4b:5f:e5:cb:c1:e1:98:85:5f:42:e8:82:2d:e6:14:1a:b2:ae: 26:82:6b:94:b9:5e:fa:9e:e8:2f:26:3a:6d:88:30:c9:50:c8: da:0e:57:d8:36:a9:31:3a:04:dd:34:d2:56:d4:d9:7c:57:6e: 40:a8:d7:5a:7a:2e:f7:76:ef:1b:5c:be:b1:cd:9a:11:7e:57: 29:aa:98:63:44:f2:d9:ec:e4:90:d7:ac:f9:21:62:6e:1e:45: 29:26:66:ae:d1:66:d6:53:15:60:52:ce:f3:85:62:65:4c:43: f3:b5:c0:cc -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUEvBnyFcf080IDH/usn3JZ3Bscc4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjZGMDEzMTUxMEU2MkY3M0U1RjI5MjQ2RjlDOEY2OTE4 MTFBNzA0RDAeFw0yNjAyMjEwNTU1MDNaFw0yNzAyMjAwNjAwMDNaMDMxMTAvBgNV BAMTKDNCRkRBNzk5MUYxODg4Mjg4MDYwQzk0NThCNTZDRDdGNzEzQzQ3OTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC71xGRMLNfrqFw0s61vr8TgnjT FrS1v5Amc3HCBcM3Eiaxy2FCnNbsyeMKYhRp9z2Z6jSExaPShMrSZGeqTpzz4LoA rxTFKRVLmVA1yFxP48LlXv3Iz4WGvxhaBB00uB25UfMYcFCbnBP/kuvA1HWzo9b9 3tn+DhWrDCWAgu7DZz8XAMMDfmdsdZJazq5K7G1ryHmxYBZ91f4OSQydsH5IKdub BQ92+5kxDcVwTiNC7/uvi/EbN/5H2ffBqcHkOhaOznqSJuZdtlbV/2874F1UmfvE yL9W9FHSb+uKwyk4At1xSQZWVU+//HPRI2BZmsbEpMW6G+MBUPYmLAxKn1tLAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUO/2nmR8YiCiAYMlFi1bNf3E8R5UwHwYDVR0j BBgwFoAUtvATFRDmL3Pl8pJG+cj2kYEacE0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NWQ4ZGFiNC04YmI2LTRlZDAtOGRhYi01YTQwNjE2N2I5OWQvMC9CNkYwMTMxNTEw RTYyRjczRTVGMjkyNDZGOUM4RjY5MTgxMUE3MDRELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjZGMDEzMTUxMEU2MkY3M0U1RjI5MjQ2RjlDOEY2OTE4MTFB NzA0RC5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg1ZDhkYWI0LThiYjYtNGVkMC04 ZGFiLTVhNDA2MTY3Yjk5ZC8wLzMyMzQzMDM0M2E2NTMxMzAzMDNhMzMzMDMwMzYz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTMzMzMzODM0MzAucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk BOEAMAYwDQYJKoZIhvcNAQELBQADggEBAD6D1soMxq9SIG9f5ZXHoD3WmSUfCdAR b9S0BDr2DsRi7ugTgUk/e/Ch9BVMM2T5l5HxDX7IkJWnOyq1GqOKlhWGO5n7n4o/ QBZy5a+37m0jGgXbFX5Zo70kqAoRBcDJdgxYo805S//CdUtX8Q5pe4g1QNIq1Twe efTroCo6v5dyvH42HyZvcYGJSoq9famfzEtf5cvB4ZiFX0Logi3mFBqyriaCa5S5 Xvqe6C8mOm2IMMlQyNoOV9g2qTE6BN000lbU2XxXbkCo11p6Lvd27xtcvrHNmhF+ VymqmGNE8tns5JDXrPkhYm4eRSkmZq7RZtZTFWBSzvOFYmVMQ/O1wMw= -----END CERTIFICATE-----Generated at Mon Mar 2 14:30:53 2026 by rpki-client