$ rpki-client -vvf repo-rpki.idnic.net/repo/88788a8b-541b-4cbf-bab9-8dc377bc1284/0/323030313a6466343a663930303a3a2f34382d3438203d3e20313337333531.roa File: 323030313a6466343a663930303a3a2f34382d3438203d3e20313337333531.roa (raw, json) Hash identifier: LoN9n04DTytZ0C9xVez/xcCtenBfVSkHJQnf+LTbYY0= Subject key identifier: C2:3A:48:B2:E6:3E:B0:EA:BB:7D:FC:82:CD:FB:66:37:AE:C5:95:87 Certificate issuer: /CN=8208317A24AB4CD828CD8855F81F3EF2B53CC681 Certificate serial: 25E3A174096CB0E2512E29CC5E6C01DB10A84A66 Authority key identifier: 82:08:31:7A:24:AB:4C:D8:28:CD:88:55:F8:1F:3E:F2:B5:3C:C6:81 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8208317A24AB4CD828CD8855F81F3EF2B53CC681.cer Subject info access: rsync://repo-rpki.idnic.net/repo/88788a8b-541b-4cbf-bab9-8dc377bc1284/0/323030313a6466343a663930303a3a2f34382d3438203d3e20313337333531.roa Signing time: Wed 11 Feb 2026 17:00:03 +0000 ROA not before: Wed 11 Feb 2026 16:55:03 +0000 ROA not after: Wed 10 Feb 2027 17:00:03 +0000 asID: 137351 IP address blocks: 2001:df4:f900::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/88788a8b-541b-4cbf-bab9-8dc377bc1284/0/8208317A24AB4CD828CD8855F81F3EF2B53CC681.crl rsync://repo-rpki.idnic.net/repo/88788a8b-541b-4cbf-bab9-8dc377bc1284/0/8208317A24AB4CD828CD8855F81F3EF2B53CC681.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8208317A24AB4CD828CD8855F81F3EF2B53CC681.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 06:31:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:e3:a1:74:09:6c:b0:e2:51:2e:29:cc:5e:6c:01:db:10:a8:4a:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8208317A24AB4CD828CD8855F81F3EF2B53CC681 Validity Not Before: Feb 11 16:55:03 2026 GMT Not After : Feb 10 17:00:03 2027 GMT Subject: CN=C23A48B2E63EB0EABB7DFC82CDFB6637AEC59587 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:18:f3:ce:bb:e8:94:74:9b:1e:20:44:94:4e: a8:b7:38:1f:84:9b:84:1a:49:00:48:ef:7e:99:bc: 19:8e:42:90:98:94:69:d2:ae:0a:5a:ab:dc:3e:37: cc:f0:bb:8b:11:1b:2d:01:e7:e6:13:4e:ec:0d:49: 2e:43:47:91:42:90:04:d4:76:9e:2e:aa:75:8e:23: 24:1a:08:16:c6:34:10:29:58:94:67:c3:13:a3:af: 98:0a:7e:1f:de:d6:b3:bf:1f:b3:9e:11:4f:53:b4: 6c:28:34:5d:97:6d:24:69:dc:42:77:41:b9:bc:d1: b5:b4:6e:b8:bf:35:ac:42:c4:ee:c2:b5:38:85:e7: e4:9f:1c:68:a3:97:d9:ba:44:5e:94:b8:d9:8c:71: d4:16:c7:ce:ae:e2:d3:e5:6a:49:0c:67:d0:e1:3b: 92:c5:a9:a1:e6:a2:5a:37:84:ec:7f:34:91:9f:27: 6c:dc:73:1c:49:48:56:29:58:ac:43:35:03:8b:a9: ce:bd:73:72:4f:5c:37:9d:72:af:8e:da:d6:e1:17: 76:74:61:59:b9:d3:c8:e8:25:e9:93:e8:75:6a:14: 6b:89:02:0c:1e:7e:ab:a6:6d:24:3d:da:19:17:03: d9:63:19:a8:4a:6e:05:fd:c0:df:af:ad:a4:21:1d: 61:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:3A:48:B2:E6:3E:B0:EA:BB:7D:FC:82:CD:FB:66:37:AE:C5:95:87 X509v3 Authority Key Identifier: keyid:82:08:31:7A:24:AB:4C:D8:28:CD:88:55:F8:1F:3E:F2:B5:3C:C6:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/88788a8b-541b-4cbf-bab9-8dc377bc1284/0/8208317A24AB4CD828CD8855F81F3EF2B53CC681.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8208317A24AB4CD828CD8855F81F3EF2B53CC681.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/88788a8b-541b-4cbf-bab9-8dc377bc1284/0/323030313a6466343a663930303a3a2f34382d3438203d3e20313337333531.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df4:f900::/48 Signature Algorithm: sha256WithRSAEncryption 73:35:f1:a2:7b:ba:8f:02:6e:28:50:bb:e2:32:e3:8e:f2:36: 18:4a:8e:eb:ec:1a:42:2f:ee:78:c7:29:81:63:75:cd:cd:a6: df:0d:39:20:93:5f:d4:1e:da:54:29:02:df:6d:00:ed:17:aa: 1c:89:7f:c0:43:56:7d:12:ff:a8:b0:c1:90:ee:26:f7:5a:96: 40:2a:c3:f1:5f:40:60:09:ce:cd:c0:33:18:6f:80:9d:83:12: 8b:30:4e:ff:fc:b4:1e:3e:e6:e0:bb:5b:2b:78:43:e4:20:72: 6b:98:92:46:ce:3e:6f:3f:26:90:f7:04:a9:e2:3c:2f:c3:bf: df:2c:e7:89:1a:39:7a:cb:35:5a:58:eb:97:10:b6:9a:7c:86: 1b:66:9a:b5:89:55:ec:d2:1f:2c:40:62:d7:33:b8:79:c2:87: bd:34:5d:33:47:a9:e8:db:91:42:bb:d6:2b:10:1a:cf:4a:8b: 83:37:d3:25:4b:3b:73:64:65:02:2b:93:32:25:af:27:dc:8f: 71:6d:51:05:4f:be:c1:88:95:33:b1:6d:8b:08:04:5d:cd:c1: b5:c9:3a:32:af:8b:77:5f:8a:7a:56:41:94:24:3b:95:12:ab: 3a:6a:cb:60:43:9a:a5:b0:d9:17:ad:4f:48:7a:23:02:8b:5e: b0:05:79:3a -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUJeOhdAlssOJRLinMXmwB2xCoSmYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODIwODMxN0EyNEFCNENEODI4Q0Q4ODU1RjgxRjNFRjJC NTNDQzY4MTAeFw0yNjAyMTExNjU1MDNaFw0yNzAyMTAxNzAwMDNaMDMxMTAvBgNV BAMTKEMyM0E0OEIyRTYzRUIwRUFCQjdERkM4MkNERkI2NjM3QUVDNTk1ODcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQChGPPOu+iUdJseIESUTqi3OB+E m4QaSQBI736ZvBmOQpCYlGnSrgpaq9w+N8zwu4sRGy0B5+YTTuwNSS5DR5FCkATU dp4uqnWOIyQaCBbGNBApWJRnwxOjr5gKfh/e1rO/H7OeEU9TtGwoNF2XbSRp3EJ3 Qbm80bW0bri/NaxCxO7CtTiF5+SfHGijl9m6RF6UuNmMcdQWx86u4tPlakkMZ9Dh O5LFqaHmolo3hOx/NJGfJ2zccxxJSFYpWKxDNQOLqc69c3JPXDedcq+O2tbhF3Z0 YVm508joJemT6HVqFGuJAgwefqumbSQ92hkXA9ljGahKbgX9wN+vraQhHWGJAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUwjpIsuY+sOq7ffyCzftmN67FlYcwHwYDVR0j BBgwFoAUgggxeiSrTNgozYhV+B8+8rU8xoEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 ODc4OGE4Yi01NDFiLTRjYmYtYmFiOS04ZGMzNzdiYzEyODQvMC84MjA4MzE3QTI0 QUI0Q0Q4MjhDRDg4NTVGODFGM0VGMkI1M0NDNjgxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODIwODMxN0EyNEFCNENEODI4Q0Q4ODU1RjgxRjNFRjJCNTND QzY4MS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg4Nzg4YThiLTU0MWItNGNiZi1i YWI5LThkYzM3N2JjMTI4NC8wLzMyMzAzMDMxM2E2NDY2MzQzYTY2MzkzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM3MzMzNTMxLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 9PkAMA0GCSqGSIb3DQEBCwUAA4IBAQBzNfGie7qPAm4oULviMuOO8jYYSo7r7BpC L+54xymBY3XNzabfDTkgk1/UHtpUKQLfbQDtF6ociX/AQ1Z9Ev+osMGQ7ib3WpZA KsPxX0BgCc7NwDMYb4CdgxKLME7//LQePubgu1sreEPkIHJrmJJGzj5vPyaQ9wSp 4jwvw7/fLOeJGjl6yzVaWOuXELaafIYbZpq1iVXs0h8sQGLXM7h5woe9NF0zR6no 25FCu9YrEBrPSouDN9MlSztzZGUCK5MyJa8n3I9xbVEFT77BiJUzsW2LCARdzcG1 yToyr4t3X4p6VkGUJDuVEqs6astgQ5qlsNkXrU9IeiMCi16wBXk6 -----END CERTIFICATE-----Generated at Mon Mar 2 19:33:56 2026 by rpki-client