$ rpki-client -vvf repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a333030383a3a2f34382d3438203d3e20313333383430.roa File: 323430343a653130303a333030383a3a2f34382d3438203d3e20313333383430.roa (raw, json) Hash identifier: teVqG2LBQAnP2EgRfuQdVe98ga/yz/1GqHZUl5BLKng= Subject key identifier: 52:AE:1C:09:97:C4:5F:06:F3:7C:6A:5F:DF:E7:84:D9:0F:3F:8E:5A Certificate issuer: /CN=B6F0131510E62F73E5F29246F9C8F691811A704D Certificate serial: 0ED81DC2CD0076068BEEAF9103179B44C2F77C9C Authority key identifier: B6:F0:13:15:10:E6:2F:73:E5:F2:92:46:F9:C8:F6:91:81:1A:70:4D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a333030383a3a2f34382d3438203d3e20313333383430.roa Signing time: Tue 24 Feb 2026 07:02:41 +0000 ROA not before: Tue 24 Feb 2026 06:57:41 +0000 ROA not after: Tue 23 Feb 2027 07:02:41 +0000 asID: 133840 IP address blocks: 2404:e100:3008::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.crl rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 03 Mar 2026 23:00:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:d8:1d:c2:cd:00:76:06:8b:ee:af:91:03:17:9b:44:c2:f7:7c:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B6F0131510E62F73E5F29246F9C8F691811A704D Validity Not Before: Feb 24 06:57:41 2026 GMT Not After : Feb 23 07:02:41 2027 GMT Subject: CN=52AE1C0997C45F06F37C6A5FDFE784D90F3F8E5A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:a9:9b:97:34:e7:6f:81:91:b2:41:f7:03:7d: 77:9f:7b:43:7d:36:27:09:ff:e7:ad:c1:00:62:a1: 50:a2:ec:da:99:17:43:1e:f5:5a:90:9e:ae:55:df: 5c:eb:a0:3d:ec:9c:70:28:86:bd:87:61:2c:96:82: f2:e6:84:cb:2a:4e:51:45:87:55:57:25:c6:48:f0: 16:64:db:8d:8a:5f:73:bd:d5:a0:35:c5:43:ae:06: 8e:24:8f:0e:f9:0d:e3:7a:e1:91:15:10:c0:54:24: 4c:32:15:96:42:96:b3:42:df:88:f7:74:32:bc:93: 86:86:59:95:38:96:d7:93:3f:8a:7e:97:4b:7b:af: c1:ac:0f:1f:10:4b:94:68:40:5e:3e:90:8b:26:8e: f1:32:9f:7d:12:6b:20:81:e8:31:9f:b8:87:15:e8: 97:d3:15:e5:5d:ef:25:3e:30:1e:bc:cb:8e:a1:25: bf:8d:c9:38:e7:c2:8c:0a:c6:3d:db:d3:0d:63:de: 60:09:67:5e:20:97:68:b0:06:ce:b0:6f:7c:5d:06: 3d:56:e8:70:35:60:1b:da:a6:f7:90:f8:16:77:3e: 0a:f1:80:74:6a:21:31:23:ba:db:bc:25:6a:a2:a5: 8b:49:c0:23:8b:96:1b:96:27:d6:86:61:52:ff:e1: d9:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:AE:1C:09:97:C4:5F:06:F3:7C:6A:5F:DF:E7:84:D9:0F:3F:8E:5A X509v3 Authority Key Identifier: keyid:B6:F0:13:15:10:E6:2F:73:E5:F2:92:46:F9:C8:F6:91:81:1A:70:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a333030383a3a2f34382d3438203d3e20313333383430.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:e100:3008::/48 Signature Algorithm: sha256WithRSAEncryption 2a:f0:1f:a1:e5:05:f7:78:ae:c4:6e:e3:b7:67:7b:4f:00:8a: 69:b9:d6:88:fe:08:1d:89:f1:25:43:fc:7a:cc:8a:ef:ff:66: 71:e8:ee:ed:58:aa:23:9c:c6:62:c7:57:50:6b:19:02:bf:8c: e8:ab:f4:5e:5f:8c:3d:bf:e7:19:88:18:41:a2:c2:02:6d:8a: 90:3f:1d:99:c1:6d:c4:68:4d:b0:8a:72:fd:04:43:17:19:be: d1:56:12:dd:28:da:e8:72:91:fb:78:c8:35:29:1d:95:7b:6a: f7:33:88:2a:b2:af:ee:75:f7:89:96:30:b5:a7:d4:af:05:22: cd:a4:71:53:bb:02:94:8b:c1:7f:4e:e4:22:29:c8:b4:d9:82: c6:50:55:e2:6e:87:8d:c3:1f:a1:21:55:56:d2:79:08:9a:01: c2:41:1b:11:fa:f4:05:15:d5:18:d9:55:e0:1d:f9:9b:64:ad: 78:4e:65:50:f6:d6:e1:6c:c5:16:9c:36:f0:1d:d1:0a:83:58: e9:ef:88:8d:c5:96:23:b4:5f:56:c6:ac:12:87:99:b0:d1:6f: 5d:49:7f:86:31:24:10:0c:62:d6:d4:f5:d2:ca:21:ff:8d:78: a4:60:5c:5b:d6:0e:8f:92:af:aa:a2:c4:58:49:cf:f4:5d:b9: f3:fb:60:e9 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUDtgdws0AdgaL7q+RAxebRML3fJwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjZGMDEzMTUxMEU2MkY3M0U1RjI5MjQ2RjlDOEY2OTE4 MTFBNzA0RDAeFw0yNjAyMjQwNjU3NDFaFw0yNzAyMjMwNzAyNDFaMDMxMTAvBgNV BAMTKDUyQUUxQzA5OTdDNDVGMDZGMzdDNkE1RkRGRTc4NEQ5MEYzRjhFNUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDUqZuXNOdvgZGyQfcDfXefe0N9 NicJ/+etwQBioVCi7NqZF0Me9VqQnq5V31zroD3snHAohr2HYSyWgvLmhMsqTlFF h1VXJcZI8BZk242KX3O91aA1xUOuBo4kjw75DeN64ZEVEMBUJEwyFZZClrNC34j3 dDK8k4aGWZU4lteTP4p+l0t7r8GsDx8QS5RoQF4+kIsmjvEyn30SayCB6DGfuIcV 6JfTFeVd7yU+MB68y46hJb+NyTjnwowKxj3b0w1j3mAJZ14gl2iwBs6wb3xdBj1W 6HA1YBvapveQ+BZ3PgrxgHRqITEjutu8JWqipYtJwCOLlhuWJ9aGYVL/4dm7AgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUUq4cCZfEXwbzfGpf3+eE2Q8/jlowHwYDVR0j BBgwFoAUtvATFRDmL3Pl8pJG+cj2kYEacE0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NWQ4ZGFiNC04YmI2LTRlZDAtOGRhYi01YTQwNjE2N2I5OWQvMC9CNkYwMTMxNTEw RTYyRjczRTVGMjkyNDZGOUM4RjY5MTgxMUE3MDRELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjZGMDEzMTUxMEU2MkY3M0U1RjI5MjQ2RjlDOEY2OTE4MTFB NzA0RC5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg1ZDhkYWI0LThiYjYtNGVkMC04 ZGFiLTVhNDA2MTY3Yjk5ZC8wLzMyMzQzMDM0M2E2NTMxMzAzMDNhMzMzMDMwMzgz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTMzMzMzODM0MzAucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk BOEAMAgwDQYJKoZIhvcNAQELBQADggEBACrwH6HlBfd4rsRu47dne08Aimm51oj+ CB2J8SVD/HrMiu//ZnHo7u1YqiOcxmLHV1BrGQK/jOir9F5fjD2/5xmIGEGiwgJt ipA/HZnBbcRoTbCKcv0EQxcZvtFWEt0o2uhykft4yDUpHZV7avcziCqyr+5194mW MLWn1K8FIs2kcVO7ApSLwX9O5CIpyLTZgsZQVeJuh43DH6EhVVbSeQiaAcJBGxH6 9AUV1RjZVeAd+ZtkrXhOZVD21uFsxRacNvAd0QqDWOnviI3FliO0X1bGrBKHmbDR b11Jf4YxJBAMYtbU9dLKIf+NeKRgXFvWDo+Sr6qixFhJz/RdufP7YOk= -----END CERTIFICATE-----Generated at Mon Mar 2 16:49:23 2026 by rpki-client