$ rpki-client -vvf repo-rpki.idnic.net/repo/957b0d7e-eade-4318-ab20-8c7f2d5be69f/0/323430313a383434303a3a2f33322d3332203d3e20313336313331.roa File: 323430313a383434303a3a2f33322d3332203d3e20313336313331.roa (raw, json) Hash identifier: IQnKKlfqoA6pAACvMa2pXpfkdwlnbj5/BDZ9dWLc9ds= Subject key identifier: 3D:A4:90:6C:F9:E2:63:2B:C2:18:8D:A9:1D:C5:92:F7:F9:5E:91:CE Certificate issuer: /CN=7D64B8F4CFB687141137D10F9E73FFD0BAB93F67 Certificate serial: 05E5949A6CBB4D7A000599FCD9D590FB6F074B4C Authority key identifier: 7D:64:B8:F4:CF:B6:87:14:11:37:D1:0F:9E:73:FF:D0:BA:B9:3F:67 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7D64B8F4CFB687141137D10F9E73FFD0BAB93F67.cer Subject info access: rsync://repo-rpki.idnic.net/repo/957b0d7e-eade-4318-ab20-8c7f2d5be69f/0/323430313a383434303a3a2f33322d3332203d3e20313336313331.roa Signing time: Fri 17 Apr 2026 15:00:01 +0000 ROA not before: Fri 17 Apr 2026 14:55:01 +0000 ROA not after: Fri 16 Apr 2027 15:00:01 +0000 asID: 136131 IP address blocks: 2401:8440::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/957b0d7e-eade-4318-ab20-8c7f2d5be69f/0/7D64B8F4CFB687141137D10F9E73FFD0BAB93F67.crl rsync://repo-rpki.idnic.net/repo/957b0d7e-eade-4318-ab20-8c7f2d5be69f/0/7D64B8F4CFB687141137D10F9E73FFD0BAB93F67.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7D64B8F4CFB687141137D10F9E73FFD0BAB93F67.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Apr 2026 01:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:e5:94:9a:6c:bb:4d:7a:00:05:99:fc:d9:d5:90:fb:6f:07:4b:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7D64B8F4CFB687141137D10F9E73FFD0BAB93F67 Validity Not Before: Apr 17 14:55:01 2026 GMT Not After : Apr 16 15:00:01 2027 GMT Subject: CN=3DA4906CF9E2632BC2188DA91DC592F7F95E91CE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:09:ee:2d:fe:43:d1:fc:f0:92:7b:3f:4b:97: 22:42:ad:fe:1a:9b:0e:5b:35:4a:29:3a:64:9d:ad: 25:c5:7a:5c:3c:63:d3:25:9f:93:9b:2c:95:4c:3d: bb:74:c2:cb:f3:7e:47:be:92:13:58:89:6c:bc:3f: 67:45:b6:b0:3c:53:f6:ba:46:9c:e2:f1:0e:ee:3e: 19:1d:2e:0b:96:70:7d:56:4e:f1:47:f6:8c:b3:35: 0e:4e:12:08:2d:e4:8c:4a:bc:9f:cb:91:42:03:f1: 35:ff:b6:59:29:75:60:d5:c9:9b:75:90:f9:e9:66: 2a:e4:51:22:e2:9e:bb:19:68:d8:c8:78:67:5e:ad: 9c:b6:c2:12:2b:f8:93:d8:36:25:ee:b1:cc:f8:c6: 66:b4:c8:60:2f:5c:ec:76:d8:f6:31:0b:19:49:d5: 14:91:bc:c7:ae:15:cb:5c:06:3b:84:de:53:7f:6f: 3c:32:71:c8:a6:8c:6e:9e:f5:02:ba:4c:48:47:ab: 10:2a:82:70:4e:2c:3c:ca:b9:f9:05:96:d0:4e:f0: 47:9e:5b:f2:db:19:fc:e2:00:66:6f:a4:a4:00:54: 2c:8d:da:2c:cc:f8:03:59:20:a1:3c:75:13:82:0e: 2b:2f:56:b3:92:eb:c0:d0:6a:6a:7b:01:fb:39:2a: 15:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:A4:90:6C:F9:E2:63:2B:C2:18:8D:A9:1D:C5:92:F7:F9:5E:91:CE X509v3 Authority Key Identifier: keyid:7D:64:B8:F4:CF:B6:87:14:11:37:D1:0F:9E:73:FF:D0:BA:B9:3F:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/957b0d7e-eade-4318-ab20-8c7f2d5be69f/0/7D64B8F4CFB687141137D10F9E73FFD0BAB93F67.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7D64B8F4CFB687141137D10F9E73FFD0BAB93F67.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/957b0d7e-eade-4318-ab20-8c7f2d5be69f/0/323430313a383434303a3a2f33322d3332203d3e20313336313331.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:8440::/32 Signature Algorithm: sha256WithRSAEncryption 11:e1:67:53:a2:42:c5:89:ca:c7:e0:53:00:2e:9a:5b:b0:a6: 85:8f:27:78:e5:01:c8:f7:00:5c:2f:5d:86:92:ef:e4:82:3e: d1:6a:d9:8e:46:17:38:b2:29:9a:a6:f6:2c:b5:3a:fc:d9:0b: e1:a1:ea:fd:a7:12:54:ca:55:23:20:c2:30:c6:b6:84:8e:73: 0b:2e:60:9a:ef:93:97:58:b3:3e:29:61:8e:1c:33:02:a9:41: 7b:9b:ed:2f:71:46:52:18:cf:49:3d:80:c4:15:75:29:29:c0: f2:3a:1e:ba:77:4b:dd:d4:fd:8b:ac:ca:c2:2f:95:1f:0f:78: 9a:35:6f:f5:a7:78:f4:20:4a:60:ac:8b:bd:2b:ee:58:41:f6: 15:40:e3:60:ef:55:b8:c5:94:0f:df:c4:16:4e:ec:43:9f:74: 91:e4:5d:6e:50:d2:e2:c1:35:0b:b9:25:ac:5c:9c:7d:1e:5c: 90:a7:20:9c:7e:8b:cd:aa:2c:bb:cb:88:90:96:fb:3e:9c:96: f1:ed:82:bc:fd:fa:50:47:42:6d:01:8c:66:86:d6:e3:e8:55: f5:e6:02:ef:84:7d:f9:e9:6c:9d:cf:8c:0e:84:04:6b:68:42: a2:f0:ad:f8:e4:87:0b:91:62:1e:91:c3:f3:b5:b8:32:5b:93: 1c:ac:dc:4c -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUBeWUmmy7TXoABZn82dWQ+28HS0wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0Q2NEI4RjRDRkI2ODcxNDExMzdEMTBGOUU3M0ZGRDBC QUI5M0Y2NzAeFw0yNjA0MTcxNDU1MDFaFw0yNzA0MTYxNTAwMDFaMDMxMTAvBgNV BAMTKDNEQTQ5MDZDRjlFMjYzMkJDMjE4OERBOTFEQzU5MkY3Rjk1RTkxQ0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDeCe4t/kPR/PCSez9LlyJCrf4a mw5bNUopOmSdrSXFelw8Y9Mln5ObLJVMPbt0wsvzfke+khNYiWy8P2dFtrA8U/a6 Rpzi8Q7uPhkdLguWcH1WTvFH9oyzNQ5OEggt5IxKvJ/LkUID8TX/tlkpdWDVyZt1 kPnpZirkUSLinrsZaNjIeGderZy2whIr+JPYNiXuscz4xma0yGAvXOx22PYxCxlJ 1RSRvMeuFctcBjuE3lN/bzwyccimjG6e9QK6TEhHqxAqgnBOLDzKufkFltBO8Eee W/LbGfziAGZvpKQAVCyN2izM+ANZIKE8dROCDisvVrOS68DQamp7Afs5KhXpAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUPaSQbPniYyvCGI2pHcWS9/lekc4wHwYDVR0j BBgwFoAUfWS49M+2hxQRN9EPnnP/0Lq5P2cwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 NTdiMGQ3ZS1lYWRlLTQzMTgtYWIyMC04YzdmMmQ1YmU2OWYvMC83RDY0QjhGNENG QjY4NzE0MTEzN0QxMEY5RTczRkZEMEJBQjkzRjY3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0Q2NEI4RjRDRkI2ODcxNDExMzdEMTBGOUU3M0ZGRDBCQUI5 M0Y2Ny5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk1N2IwZDdlLWVhZGUtNDMxOC1h YjIwLThjN2YyZDViZTY5Zi8wLzMyMzQzMDMxM2EzODM0MzQzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzMzNjMxMzMzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQBhEAwDQYJKoZI hvcNAQELBQADggEBABHhZ1OiQsWJysfgUwAumluwpoWPJ3jlAcj3AFwvXYaS7+SC PtFq2Y5GFziyKZqm9iy1OvzZC+Gh6v2nElTKVSMgwjDGtoSOcwsuYJrvk5dYsz4p YY4cMwKpQXub7S9xRlIYz0k9gMQVdSkpwPI6Hrp3S93U/YusysIvlR8PeJo1b/Wn ePQgSmCsi70r7lhB9hVA42DvVbjFlA/fxBZO7EOfdJHkXW5Q0uLBNQu5JaxcnH0e XJCnIJx+i82qLLvLiJCW+z6clvHtgrz9+lBHQm0BjGaG1uPoVfXmAu+EffnpbJ3P jA6EBGtoQqLwrfjkhwuRYh6Rw/O1uDJbkxys3Ew= -----END CERTIFICATE-----Generated at Sun Apr 19 14:08:01 2026 by rpki-client