$ rpki-client -vvf repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/323430363a376530303a35393a3a2f34382d3438203d3e20313430343035.roa File: 323430363a376530303a35393a3a2f34382d3438203d3e20313430343035.roa (raw, json) Hash identifier: Iku7tb8SAQIhEvwkUVsI01KnPzpIZ553w7v11/ErUtM= Subject key identifier: E8:59:5B:FB:B7:C1:D0:06:23:F8:2A:1C:DE:01:EF:1B:BD:70:A2:B0 Certificate issuer: /CN=8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F Certificate serial: 203B0D74149D3C6EEDDFE4C698A1EFB0E88A7F6B Authority key identifier: 8A:FE:BB:51:D0:0C:8E:06:AA:EA:84:2E:0C:0C:FF:C2:CA:B9:61:0F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/323430363a376530303a35393a3a2f34382d3438203d3e20313430343035.roa Signing time: Thu 26 Feb 2026 04:00:01 +0000 ROA not before: Thu 26 Feb 2026 03:55:01 +0000 ROA not after: Thu 25 Feb 2027 04:00:01 +0000 asID: 140405 IP address blocks: 2406:7e00:59::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.crl rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 06:31:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:3b:0d:74:14:9d:3c:6e:ed:df:e4:c6:98:a1:ef:b0:e8:8a:7f:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F Validity Not Before: Feb 26 03:55:01 2026 GMT Not After : Feb 25 04:00:01 2027 GMT Subject: CN=E8595BFBB7C1D00623F82A1CDE01EF1BBD70A2B0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:68:45:b1:17:d7:8d:bb:82:00:35:bb:4e:81: 22:18:52:5b:fb:d1:e8:46:72:41:9e:d8:dd:16:53: 90:44:ee:33:93:67:bc:89:43:de:a0:c9:e8:eb:eb: 60:be:18:3e:81:8c:c6:45:43:7c:35:d8:ce:7a:c6: 83:b4:54:85:94:b1:6c:07:1e:b8:b0:64:dc:52:42: aa:e5:5b:32:78:4f:00:56:1b:d0:fd:42:9a:d4:b0: 30:9d:49:17:8c:ee:7c:86:f6:67:d9:40:ca:bf:16: 51:d6:60:5e:69:74:70:85:0a:74:cf:a3:81:74:88: 30:9f:39:d7:8d:2f:35:34:ef:8b:8f:4c:40:12:f2: 87:51:ef:00:bb:72:53:9c:e1:65:45:b7:aa:88:79: d7:11:ce:e2:0d:67:b8:29:bf:de:61:d7:c9:5d:fa: 46:44:79:bc:28:80:d1:88:b1:2e:51:d1:0d:14:86: 01:b0:9d:06:82:2c:0a:a4:cc:bb:74:db:12:ac:6a: cd:1e:9d:cb:48:8f:96:51:d8:97:6e:be:8d:04:bc: 37:d4:50:a1:a9:49:af:56:01:60:7e:1f:66:a0:fe: a6:27:2f:be:e3:4c:8f:45:b3:86:8e:4f:53:85:7e: 93:ed:0b:db:c3:0f:e4:27:d0:fa:c4:3f:5e:ae:16: b3:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:59:5B:FB:B7:C1:D0:06:23:F8:2A:1C:DE:01:EF:1B:BD:70:A2:B0 X509v3 Authority Key Identifier: keyid:8A:FE:BB:51:D0:0C:8E:06:AA:EA:84:2E:0C:0C:FF:C2:CA:B9:61:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/323430363a376530303a35393a3a2f34382d3438203d3e20313430343035.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:7e00:59::/48 Signature Algorithm: sha256WithRSAEncryption 06:59:5b:0c:2f:98:4f:80:dd:bc:a3:ab:e9:42:68:d0:e0:c1: 7c:9c:51:5b:0b:03:b2:92:5e:8e:f6:4a:0e:1b:9e:62:08:3d: e6:5b:d4:2f:49:6e:11:3b:48:2b:41:37:99:b5:cc:9e:64:f0: dd:7f:33:69:d1:80:de:b9:24:24:e0:e6:32:a1:f6:a5:f8:b2: 6a:a6:40:20:6f:6e:36:c0:fe:c5:d8:0e:3c:54:49:21:a1:b8: 52:42:5b:4d:b0:65:4b:5e:a3:3d:6f:c0:9e:df:cd:62:d0:71: 71:7a:65:6e:21:78:5f:87:8a:5c:ad:ac:bf:86:d2:ca:d8:b7: 79:bd:73:9b:4d:51:97:27:fb:2d:3f:d9:d5:2d:08:18:e6:4b: 11:a7:c2:1c:4d:01:3a:e9:d1:75:92:fe:77:45:1e:8f:43:87: b1:02:47:52:b3:ad:ad:5e:cc:8b:89:1b:df:09:1e:06:49:0b: 00:2b:7a:9e:37:7f:a9:b9:d2:55:ca:ba:c3:6d:a1:9f:31:f8: c6:10:30:ec:cf:34:3a:31:f2:f4:c3:65:50:47:21:a4:db:ca: c4:36:33:c2:42:ad:d2:1f:7f:82:83:64:8a:a7:c4:74:8c:71: 3a:b8:05:4b:9c:5a:64:4d:13:e8:9f:aa:c8:23:e3:97:c1:ce: f8:2b:5f:4d -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUIDsNdBSdPG7t3+TGmKHvsOiKf2swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEFGRUJCNTFEMDBDOEUwNkFBRUE4NDJFMEMwQ0ZGQzJD QUI5NjEwRjAeFw0yNjAyMjYwMzU1MDFaFw0yNzAyMjUwNDAwMDFaMDMxMTAvBgNV BAMTKEU4NTk1QkZCQjdDMUQwMDYyM0Y4MkExQ0RFMDFFRjFCQkQ3MEEyQjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFaEWxF9eNu4IANbtOgSIYUlv7 0ehGckGe2N0WU5BE7jOTZ7yJQ96gyejr62C+GD6BjMZFQ3w12M56xoO0VIWUsWwH HriwZNxSQqrlWzJ4TwBWG9D9QprUsDCdSReM7nyG9mfZQMq/FlHWYF5pdHCFCnTP o4F0iDCfOdeNLzU074uPTEAS8odR7wC7clOc4WVFt6qIedcRzuINZ7gpv95h18ld +kZEebwogNGIsS5R0Q0UhgGwnQaCLAqkzLt02xKsas0enctIj5ZR2Jduvo0EvDfU UKGpSa9WAWB+H2ag/qYnL77jTI9Fs4aOT1OFfpPtC9vDD+Qn0PrEP16uFrPLAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQU6Flb+7fB0AYj+Coc3gHvG71worAwHwYDVR0j BBgwFoAUiv67UdAMjgaq6oQuDAz/wsq5YQ8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 NjEyNDMyOS1lYzIwLTQ0NjAtYWMzMS05YzM2Y2Y5NGYzZmIvMC84QUZFQkI1MUQw MEM4RTA2QUFFQTg0MkUwQzBDRkZDMkNBQjk2MTBGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEFGRUJCNTFEMDBDOEUwNkFBRUE4NDJFMEMwQ0ZGQzJDQUI5 NjEwRi5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk2MTI0MzI5LWVjMjAtNDQ2MC1h YzMxLTljMzZjZjk0ZjNmYi8wLzMyMzQzMDM2M2EzNzY1MzAzMDNhMzUzOTNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzQzMDM0MzAzNS5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQGfgAA WTANBgkqhkiG9w0BAQsFAAOCAQEABllbDC+YT4DdvKOr6UJo0ODBfJxRWwsDspJe jvZKDhueYgg95lvUL0luETtIK0E3mbXMnmTw3X8zadGA3rkkJODmMqH2pfiyaqZA IG9uNsD+xdgOPFRJIaG4UkJbTbBlS16jPW/Ant/NYtBxcXplbiF4X4eKXK2sv4bS yti3eb1zm01Rlyf7LT/Z1S0IGOZLEafCHE0BOunRdZL+d0Uej0OHsQJHUrOtrV7M i4kb3wkeBkkLACt6njd/qbnSVcq6w22hnzH4xhAw7M80OjHy9MNlUEchpNvKxDYz wkKt0h9/goNkiqfEdIxxOrgFS5xaZE0T6J+qyCPjl8HO+CtfTQ== -----END CERTIFICATE-----Generated at Mon Mar 2 19:30:56 2026 by rpki-client