$ rpki-client -vvf repo-rpki.idnic.net/repo/8b4f8511-07b3-4a61-bd04-2e665c9278fc/0/323030313a6466323a623230303a3a2f34382d3438203d3e203233363934.roa File: 323030313a6466323a623230303a3a2f34382d3438203d3e203233363934.roa (raw, json) Hash identifier: j4EirQozhD0lTmw+6xccoqveJNB1lQUKPEdQdwykqi0= Subject key identifier: 00:04:96:0C:C9:C2:9A:CB:9E:92:E8:37:3A:D7:2C:95:93:7D:8C:1F Certificate issuer: /CN=3E0D060F214DF8E6493243033EBD30ABD627ED36 Certificate serial: 67C0EFFB56EC30D6FCD0CE2684FC87F35B6A358B Authority key identifier: 3E:0D:06:0F:21:4D:F8:E6:49:32:43:03:3E:BD:30:AB:D6:27:ED:36 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3E0D060F214DF8E6493243033EBD30ABD627ED36.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8b4f8511-07b3-4a61-bd04-2e665c9278fc/0/323030313a6466323a623230303a3a2f34382d3438203d3e203233363934.roa Signing time: Thu 09 Apr 2026 11:00:01 +0000 ROA not before: Thu 09 Apr 2026 10:55:01 +0000 ROA not after: Thu 08 Apr 2027 11:00:01 +0000 asID: 23694 IP address blocks: 2001:df2:b200::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8b4f8511-07b3-4a61-bd04-2e665c9278fc/0/3E0D060F214DF8E6493243033EBD30ABD627ED36.crl rsync://repo-rpki.idnic.net/repo/8b4f8511-07b3-4a61-bd04-2e665c9278fc/0/3E0D060F214DF8E6493243033EBD30ABD627ED36.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3E0D060F214DF8E6493243033EBD30ABD627ED36.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Apr 2026 08:07:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:c0:ef:fb:56:ec:30:d6:fc:d0:ce:26:84:fc:87:f3:5b:6a:35:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E0D060F214DF8E6493243033EBD30ABD627ED36 Validity Not Before: Apr 9 10:55:01 2026 GMT Not After : Apr 8 11:00:01 2027 GMT Subject: CN=0004960CC9C29ACB9E92E8373AD72C95937D8C1F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:6c:92:01:b7:b7:19:db:4e:2a:89:fe:1d:5b: e0:c4:4a:d3:8d:e8:68:0d:ed:ff:4c:c1:23:c3:43: 93:d1:66:ff:2c:34:60:7c:ec:4b:a5:a6:3f:44:76: 71:ec:2d:ff:49:93:33:48:e7:35:22:b7:f7:5b:1f: 75:76:b4:49:9d:ca:35:46:a8:a6:27:78:89:78:14: cb:77:0e:35:1f:c9:50:c0:f0:cf:9f:1a:16:ba:31: f0:83:5c:ab:d8:1f:87:e5:99:93:c5:23:cf:ea:da: b3:52:2f:6e:d2:18:26:2a:6f:83:23:03:36:e5:56: 41:78:63:ce:f4:9e:28:40:43:66:34:c8:14:c8:06: 97:25:2a:0b:e4:9e:99:8a:44:ae:0e:93:0d:97:89: 18:27:62:53:f1:4f:13:2c:80:fb:d6:f0:62:40:94: d6:54:67:1d:77:34:1a:7e:68:18:ef:d0:78:78:39: 82:ee:4f:5d:b7:8e:70:32:41:fa:23:65:59:11:99: a1:4b:50:79:4d:11:ec:63:af:5e:ce:89:53:75:af: ac:a1:53:2d:e1:60:37:5c:00:49:85:70:0a:58:34: bc:e2:fe:9d:a1:59:91:15:6a:e0:7f:20:6b:0c:94: 63:e0:29:0b:93:6e:6a:18:2e:94:f6:89:f7:5a:bc: d3:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:04:96:0C:C9:C2:9A:CB:9E:92:E8:37:3A:D7:2C:95:93:7D:8C:1F X509v3 Authority Key Identifier: keyid:3E:0D:06:0F:21:4D:F8:E6:49:32:43:03:3E:BD:30:AB:D6:27:ED:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8b4f8511-07b3-4a61-bd04-2e665c9278fc/0/3E0D060F214DF8E6493243033EBD30ABD627ED36.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3E0D060F214DF8E6493243033EBD30ABD627ED36.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8b4f8511-07b3-4a61-bd04-2e665c9278fc/0/323030313a6466323a623230303a3a2f34382d3438203d3e203233363934.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df2:b200::/48 Signature Algorithm: sha256WithRSAEncryption d1:d9:69:b7:25:48:f2:50:73:e2:b6:39:d5:8a:1e:1a:f6:99: 0e:d7:4d:fd:46:5f:81:cf:27:98:e4:ba:1e:da:06:7d:18:27: 2b:69:d1:eb:79:49:6a:c3:2a:dc:6a:88:e0:95:43:ba:c3:fa: d8:bd:cb:dc:0b:14:cd:c5:f4:59:05:11:dd:e8:2c:9e:53:2c: 45:d1:7c:b0:a6:89:06:cd:7b:a4:e6:1d:7f:b5:82:75:9e:71: de:4e:84:c6:09:04:15:83:51:12:53:49:91:06:5e:6a:ea:59: 45:10:79:59:7e:21:30:5b:0a:ec:90:cf:62:bd:14:20:fb:10: 8b:fd:b0:aa:03:f4:4f:bb:fb:2d:25:ca:55:8b:89:14:5e:5f: d9:26:95:bd:e4:13:70:ec:6e:a6:d2:88:a9:b9:23:55:6d:29: d1:dd:4c:49:4b:62:f2:37:05:cf:e6:02:e7:20:aa:ce:f8:f9: 43:80:52:e8:c8:77:74:15:ed:f5:d3:66:97:d3:ad:80:22:ac: 0a:65:9d:40:0b:9a:72:ad:1d:d1:17:35:f4:26:24:dd:7a:40: 69:fd:83:d5:6c:1c:ee:ae:04:37:92:33:ba:3a:f4:f9:21:e7: 91:80:13:32:14:c5:f5:d2:09:db:0c:ae:3c:f9:59:93:1b:0c: 93:93:1a:ea -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUZ8Dv+1bsMNb80M4mhPyH81tqNYswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0UwRDA2MEYyMTRERjhFNjQ5MzI0MzAzM0VCRDMwQUJE NjI3RUQzNjAeFw0yNjA0MDkxMDU1MDFaFw0yNzA0MDgxMTAwMDFaMDMxMTAvBgNV BAMTKDAwMDQ5NjBDQzlDMjlBQ0I5RTkyRTgzNzNBRDcyQzk1OTM3RDhDMUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCebJIBt7cZ204qif4dW+DEStON 6GgN7f9MwSPDQ5PRZv8sNGB87Eulpj9EdnHsLf9JkzNI5zUit/dbH3V2tEmdyjVG qKYneIl4FMt3DjUfyVDA8M+fGha6MfCDXKvYH4flmZPFI8/q2rNSL27SGCYqb4Mj AzblVkF4Y870nihAQ2Y0yBTIBpclKgvknpmKRK4Okw2XiRgnYlPxTxMsgPvW8GJA lNZUZx13NBp+aBjv0Hh4OYLuT123jnAyQfojZVkRmaFLUHlNEexjr17OiVN1r6yh Uy3hYDdcAEmFcApYNLzi/p2hWZEVauB/IGsMlGPgKQuTbmoYLpT2ifdavNM3AgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUAASWDMnCmsuekug3OtcslZN9jB8wHwYDVR0j BBgwFoAUPg0GDyFN+OZJMkMDPr0wq9Yn7TYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 YjRmODUxMS0wN2IzLTRhNjEtYmQwNC0yZTY2NWM5Mjc4ZmMvMC8zRTBEMDYwRjIx NERGOEU2NDkzMjQzMDMzRUJEMzBBQkQ2MjdFRDM2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0UwRDA2MEYyMTRERjhFNjQ5MzI0MzAzM0VCRDMwQUJENjI3 RUQzNi5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhiNGY4NTExLTA3YjMtNGE2MS1i ZDA0LTJlNjY1YzkyNzhmYy8wLzMyMzAzMDMxM2E2NDY2MzIzYTYyMzIzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzIzMzM2MzkzNC5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACABDfKy ADANBgkqhkiG9w0BAQsFAAOCAQEA0dlptyVI8lBz4rY51YoeGvaZDtdN/UZfgc8n mOS6HtoGfRgnK2nR63lJasMq3GqI4JVDusP62L3L3AsUzcX0WQUR3egsnlMsRdF8 sKaJBs17pOYdf7WCdZ5x3k6ExgkEFYNRElNJkQZeaupZRRB5WX4hMFsK7JDPYr0U IPsQi/2wqgP0T7v7LSXKVYuJFF5f2SaVveQTcOxuptKIqbkjVW0p0d1MSUti8jcF z+YC5yCqzvj5Q4BS6Mh3dBXt9dNml9OtgCKsCmWdQAuacq0d0Rc19CYk3XpAaf2D 1Wwc7q4EN5Izujr0+SHnkYATMhTF9dIJ2wyuPPlZkxsMk5Ma6g== -----END CERTIFICATE-----Generated at Sun Apr 19 14:24:37 2026 by rpki-client