$ rpki-client -vvf repo-rpki.idnic.net/repo/911417c0-37bb-446d-87f2-d8184178c149/0/323430363a626534303a666163653a3a2f34382d3438203d3e203233363739.roa File: 323430363a626534303a666163653a3a2f34382d3438203d3e203233363739.roa (raw, json) Hash identifier: dEwSr2upxx9TE25WX2NoaA/4wEcCWzpIUSYDdfVYKMQ= Subject key identifier: 83:A7:C3:04:6A:36:58:F4:C0:99:21:D9:94:1F:8F:D7:AC:D4:F2:14 Certificate issuer: /CN=084550E9619FF5ABD20864D9A6383053B59BF91E Certificate serial: 51647D0565A5361FC0986F22FD2B8E73CCD7C989 Authority key identifier: 08:45:50:E9:61:9F:F5:AB:D2:08:64:D9:A6:38:30:53:B5:9B:F9:1E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/084550E9619FF5ABD20864D9A6383053B59BF91E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/911417c0-37bb-446d-87f2-d8184178c149/0/323430363a626534303a666163653a3a2f34382d3438203d3e203233363739.roa Signing time: Fri 03 Apr 2026 11:00:01 +0000 ROA not before: Fri 03 Apr 2026 10:55:01 +0000 ROA not after: Fri 02 Apr 2027 11:00:01 +0000 asID: 23679 IP address blocks: 2406:be40:face::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/911417c0-37bb-446d-87f2-d8184178c149/0/084550E9619FF5ABD20864D9A6383053B59BF91E.crl rsync://repo-rpki.idnic.net/repo/911417c0-37bb-446d-87f2-d8184178c149/0/084550E9619FF5ABD20864D9A6383053B59BF91E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/084550E9619FF5ABD20864D9A6383053B59BF91E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Apr 2026 19:09:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:64:7d:05:65:a5:36:1f:c0:98:6f:22:fd:2b:8e:73:cc:d7:c9:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=084550E9619FF5ABD20864D9A6383053B59BF91E Validity Not Before: Apr 3 10:55:01 2026 GMT Not After : Apr 2 11:00:01 2027 GMT Subject: CN=83A7C3046A3658F4C09921D9941F8FD7ACD4F214 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:19:5b:66:49:b4:64:e5:6f:5a:d8:4c:dd:87: c8:fb:42:7a:6a:89:f8:51:ef:25:75:c4:d7:8e:29: 17:f5:d9:84:47:d6:14:21:1e:76:a7:72:29:45:95: e8:46:07:42:b1:ba:3f:a7:69:d6:27:75:39:83:25: 87:f8:23:aa:a9:09:12:2c:b1:ba:f2:ac:9d:a0:30: 06:6b:68:0a:25:22:5c:63:fe:db:17:8e:12:ab:42: 01:2b:66:b4:32:a0:c5:dc:ed:be:f8:23:ac:15:3a: bb:a8:98:96:fd:a3:94:f2:5d:1f:8b:e0:49:7b:67: 47:0a:07:50:7f:a4:78:82:de:7c:8d:4c:73:90:71: b9:3b:d7:71:84:b8:4a:eb:65:52:98:9d:dd:80:6e: e6:b0:80:ea:27:75:4d:ba:8e:05:f5:2b:92:76:a4: 35:0e:ed:39:62:7e:94:e2:e8:53:2c:05:7d:6e:e9: e8:9f:dc:ee:13:a3:ce:5a:8f:34:26:39:c7:e3:4c: 25:21:5a:04:8d:c5:90:25:9e:14:86:90:d5:35:c9: 85:83:3a:a9:f8:28:ab:62:ae:d6:00:2a:b9:0f:78: c7:42:9b:e2:07:c4:6f:60:d1:44:09:01:db:db:4e: 64:57:c1:ee:40:93:5d:2c:ce:95:54:1d:67:57:bd: 25:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:A7:C3:04:6A:36:58:F4:C0:99:21:D9:94:1F:8F:D7:AC:D4:F2:14 X509v3 Authority Key Identifier: keyid:08:45:50:E9:61:9F:F5:AB:D2:08:64:D9:A6:38:30:53:B5:9B:F9:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/911417c0-37bb-446d-87f2-d8184178c149/0/084550E9619FF5ABD20864D9A6383053B59BF91E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/084550E9619FF5ABD20864D9A6383053B59BF91E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/911417c0-37bb-446d-87f2-d8184178c149/0/323430363a626534303a666163653a3a2f34382d3438203d3e203233363739.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:be40:face::/48 Signature Algorithm: sha256WithRSAEncryption 7f:2d:21:80:53:0b:88:02:2f:1a:a3:6c:f6:06:47:26:c7:44: f1:15:da:f8:f6:c4:e2:87:75:dc:e1:ee:56:a2:b1:f8:08:86: 94:ce:a5:47:41:76:97:a3:8a:8e:50:80:72:e5:ca:d7:45:5d: 92:2e:38:f2:c0:4b:03:48:ce:27:7f:1f:24:4b:27:e5:01:f5: c9:4b:52:0e:05:88:8d:f6:fa:95:6b:e9:02:c4:aa:23:f1:bd: 65:74:da:9b:a0:b0:2f:44:2c:d5:7d:c6:3c:a5:5e:7a:77:e6: 23:f3:5e:13:02:aa:71:94:20:34:28:12:35:54:d9:c2:7d:75: 31:dc:11:ef:fa:d1:87:a5:b7:0e:53:a7:5b:03:b5:3d:e1:3b: a7:13:bd:fd:04:7f:7b:7c:ca:ca:cf:9e:0f:52:9d:72:9c:68: ad:25:fe:31:e5:a7:dd:66:92:ca:08:9d:64:a6:05:1d:e4:0e: c6:e7:e8:2c:ef:6f:e2:8d:12:20:28:4f:e1:68:20:af:2b:f7: 32:36:18:dd:eb:0a:7b:05:e5:75:66:59:9a:1d:0f:e6:a5:52: eb:cf:66:67:5f:f8:ed:4d:70:67:7c:2f:7f:a7:0b:dc:d8:bb: 79:3b:ae:2a:ac:50:91:09:14:e0:43:c0:ec:1e:4c:05:40:55: b5:fb:8a:3b -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUUWR9BWWlNh/AmG8i/SuOc8zXyYkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDg0NTUwRTk2MTlGRjVBQkQyMDg2NEQ5QTYzODMwNTNC NTlCRjkxRTAeFw0yNjA0MDMxMDU1MDFaFw0yNzA0MDIxMTAwMDFaMDMxMTAvBgNV BAMTKDgzQTdDMzA0NkEzNjU4RjRDMDk5MjFEOTk0MUY4RkQ3QUNENEYyMTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqGVtmSbRk5W9a2Ezdh8j7Qnpq ifhR7yV1xNeOKRf12YRH1hQhHnancilFlehGB0Kxuj+nadYndTmDJYf4I6qpCRIs sbryrJ2gMAZraAolIlxj/tsXjhKrQgErZrQyoMXc7b74I6wVOruomJb9o5TyXR+L 4El7Z0cKB1B/pHiC3nyNTHOQcbk713GEuErrZVKYnd2AbuawgOondU26jgX1K5J2 pDUO7TlifpTi6FMsBX1u6eif3O4To85ajzQmOcfjTCUhWgSNxZAlnhSGkNU1yYWD Oqn4KKtirtYAKrkPeMdCm+IHxG9g0UQJAdvbTmRXwe5Ak10szpVUHWdXvSUzAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUg6fDBGo2WPTAmSHZlB+P16zU8hQwHwYDVR0j BBgwFoAUCEVQ6WGf9avSCGTZpjgwU7Wb+R4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 MTE0MTdjMC0zN2JiLTQ0NmQtODdmMi1kODE4NDE3OGMxNDkvMC8wODQ1NTBFOTYx OUZGNUFCRDIwODY0RDlBNjM4MzA1M0I1OUJGOTFFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDg0NTUwRTk2MTlGRjVBQkQyMDg2NEQ5QTYzODMwNTNCNTlC RjkxRS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzkxMTQxN2MwLTM3YmItNDQ2ZC04 N2YyLWQ4MTg0MTc4YzE0OS8wLzMyMzQzMDM2M2E2MjY1MzQzMDNhNjY2MTYzNjUz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMjMzMzYzNzM5LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAa+ QPrOMA0GCSqGSIb3DQEBCwUAA4IBAQB/LSGAUwuIAi8ao2z2Bkcmx0TxFdr49sTi h3Xc4e5WorH4CIaUzqVHQXaXo4qOUIBy5crXRV2SLjjywEsDSM4nfx8kSyflAfXJ S1IOBYiN9vqVa+kCxKoj8b1ldNqboLAvRCzVfcY8pV56d+Yj814TAqpxlCA0KBI1 VNnCfXUx3BHv+tGHpbcOU6dbA7U94TunE739BH97fMrKz54PUp1ynGitJf4x5afd ZpLKCJ1kpgUd5A7G5+gs72/ijRIgKE/haCCvK/cyNhjd6wp7BeV1ZlmaHQ/mpVLr z2ZnX/jtTXBnfC9/pwvc2Lt5O64qrFCRCRTgQ8DsHkwFQFW1+4o7 -----END CERTIFICATE-----Generated at Fri Apr 17 20:56:55 2026 by rpki-client