$ rpki-client -vvf repo-rpki.idnic.net/repo/a70dfb5a-845e-4ddf-aca7-a9b31c31dff4/0/323430373a623463303a643a3a2f34382d3438203d3e20313432333636.roa File: 323430373a623463303a643a3a2f34382d3438203d3e20313432333636.roa (raw, json) Hash identifier: RbgW9E0b6WS1a4Dcupl2HQaRzUtF4lgyyZ46c20S53o= Subject key identifier: BB:83:D7:7F:BF:DF:B7:75:A1:1C:44:3D:51:81:24:63:A1:84:A3:6F Certificate issuer: /CN=0110A7C2C5E7B74C89B036FFF78974619577D31C Certificate serial: 3D7607E473FDF5FF1B8F2AFFEEE4CAF134286407 Authority key identifier: 01:10:A7:C2:C5:E7:B7:4C:89:B0:36:FF:F7:89:74:61:95:77:D3:1C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0110A7C2C5E7B74C89B036FFF78974619577D31C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a70dfb5a-845e-4ddf-aca7-a9b31c31dff4/0/323430373a623463303a643a3a2f34382d3438203d3e20313432333636.roa Signing time: Sat 18 Apr 2026 12:01:50 +0000 ROA not before: Sat 18 Apr 2026 11:56:50 +0000 ROA not after: Sat 17 Apr 2027 12:01:50 +0000 asID: 142366 IP address blocks: 2407:b4c0:d::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a70dfb5a-845e-4ddf-aca7-a9b31c31dff4/0/0110A7C2C5E7B74C89B036FFF78974619577D31C.crl rsync://repo-rpki.idnic.net/repo/a70dfb5a-845e-4ddf-aca7-a9b31c31dff4/0/0110A7C2C5E7B74C89B036FFF78974619577D31C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0110A7C2C5E7B74C89B036FFF78974619577D31C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Apr 2026 14:51:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:76:07:e4:73:fd:f5:ff:1b:8f:2a:ff:ee:e4:ca:f1:34:28:64:07 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0110A7C2C5E7B74C89B036FFF78974619577D31C Validity Not Before: Apr 18 11:56:50 2026 GMT Not After : Apr 17 12:01:50 2027 GMT Subject: CN=BB83D77FBFDFB775A11C443D51812463A184A36F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:ae:1c:3c:db:16:74:8c:18:34:86:5d:e1:ab: a9:50:af:ca:7d:cc:8a:0d:1f:c6:93:6b:72:36:5a: 1b:c9:2f:12:7c:1c:78:ea:0e:1e:6a:27:22:ef:b4: b3:c0:41:67:29:cc:ef:03:a2:9c:86:34:a5:de:55: 18:83:39:85:ac:9a:d7:fb:09:fb:b9:82:82:b5:d0: 78:30:d9:eb:f7:33:30:ff:b7:6b:3a:e4:ab:54:7f: 6f:d9:05:0d:96:e1:32:f7:6c:64:ea:1e:40:a7:db: eb:7d:42:b2:e7:40:7c:de:e3:4a:8e:96:11:dc:33: c8:88:2e:5a:78:5a:57:74:11:40:87:07:f0:50:34: cd:56:14:bd:9f:81:45:ca:1d:4d:ce:ba:3d:9d:06: 16:2f:1c:c7:dc:a1:51:48:e9:92:a6:52:fa:ab:90: 8f:90:be:bb:27:a7:87:4f:34:de:98:68:95:5e:27: 0f:89:67:d8:8a:b4:e8:eb:62:ca:36:0e:ed:6d:c6: c2:51:13:ba:81:41:f2:1a:e7:fd:d1:c9:f2:36:bf: 42:c9:ca:4f:16:34:93:a7:55:0c:ff:0b:75:25:29: fc:96:70:f7:f9:a8:a9:86:03:9b:1e:eb:f0:55:74: 06:2f:9c:d3:2a:5c:15:28:30:c9:75:64:03:cc:33: 0e:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:83:D7:7F:BF:DF:B7:75:A1:1C:44:3D:51:81:24:63:A1:84:A3:6F X509v3 Authority Key Identifier: keyid:01:10:A7:C2:C5:E7:B7:4C:89:B0:36:FF:F7:89:74:61:95:77:D3:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a70dfb5a-845e-4ddf-aca7-a9b31c31dff4/0/0110A7C2C5E7B74C89B036FFF78974619577D31C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0110A7C2C5E7B74C89B036FFF78974619577D31C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a70dfb5a-845e-4ddf-aca7-a9b31c31dff4/0/323430373a623463303a643a3a2f34382d3438203d3e20313432333636.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2407:b4c0:d::/48 Signature Algorithm: sha256WithRSAEncryption 9c:6c:e9:ce:86:77:e4:34:d0:ba:d1:59:52:84:fb:4d:2f:ba: de:60:2c:b7:f2:43:43:19:02:15:8e:16:2c:df:93:91:de:f4: 7d:64:8d:4c:d7:d9:9b:25:41:56:b5:a8:13:56:63:60:ac:85: ba:18:92:5e:84:73:b6:4e:44:74:a2:5c:3b:fe:35:99:ea:2f: 8b:4c:9d:47:59:3a:41:0b:6a:f8:5f:b2:81:5b:45:4f:57:b1: 8b:cf:f0:78:f9:f7:40:07:13:68:58:9f:68:a9:46:40:a6:00: 36:6f:bc:2d:01:25:6e:11:8e:dc:9b:fc:a4:89:e2:15:ee:68: 12:b6:80:84:5a:c7:19:d2:60:be:3c:9a:47:16:06:b2:00:11: 35:0f:82:b6:2e:54:6a:95:84:33:b3:0c:93:c9:3b:5b:05:48: 8f:2f:b3:cd:f0:a3:56:13:a0:96:d0:8a:77:11:4c:0f:02:43: 81:b5:6d:e0:ac:3f:e7:d2:89:f4:b3:00:87:40:83:d2:f3:b4: 69:5e:6f:0f:a4:9f:b1:fa:c3:74:ba:f5:c6:4f:bb:4b:01:01: e5:32:63:c7:b1:c4:91:be:15:8a:d5:ec:e5:60:f1:9f:22:01: 6e:a1:c5:0d:2a:1c:2c:70:38:60:5f:d0:97:25:a2:85:b3:a2: 43:a3:2a:4b -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUPXYH5HP99f8bjyr/7uTK8TQoZAcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDExMEE3QzJDNUU3Qjc0Qzg5QjAzNkZGRjc4OTc0NjE5 NTc3RDMxQzAeFw0yNjA0MTgxMTU2NTBaFw0yNzA0MTcxMjAxNTBaMDMxMTAvBgNV BAMTKEJCODNENzdGQkZERkI3NzVBMTFDNDQzRDUxODEyNDYzQTE4NEEzNkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDtrhw82xZ0jBg0hl3hq6lQr8p9 zIoNH8aTa3I2WhvJLxJ8HHjqDh5qJyLvtLPAQWcpzO8DopyGNKXeVRiDOYWsmtf7 Cfu5goK10Hgw2ev3MzD/t2s65KtUf2/ZBQ2W4TL3bGTqHkCn2+t9QrLnQHze40qO lhHcM8iILlp4Wld0EUCHB/BQNM1WFL2fgUXKHU3Ouj2dBhYvHMfcoVFI6ZKmUvqr kI+Qvrsnp4dPNN6YaJVeJw+JZ9iKtOjrYso2Du1txsJRE7qBQfIa5/3RyfI2v0LJ yk8WNJOnVQz/C3UlKfyWcPf5qKmGA5se6/BVdAYvnNMqXBUoMMl1ZAPMMw4/AgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUu4PXf7/ft3WhHEQ9UYEkY6GEo28wHwYDVR0j BBgwFoAUARCnwsXnt0yJsDb/94l0YZV30xwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NzBkZmI1YS04NDVlLTRkZGYtYWNhNy1hOWIzMWMzMWRmZjQvMC8wMTEwQTdDMkM1 RTdCNzRDODlCMDM2RkZGNzg5NzQ2MTk1NzdEMzFDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDExMEE3QzJDNUU3Qjc0Qzg5QjAzNkZGRjc4OTc0NjE5NTc3 RDMxQy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E3MGRmYjVhLTg0NWUtNGRkZi1h Y2E3LWE5YjMxYzMxZGZmNC8wLzMyMzQzMDM3M2E2MjM0NjMzMDNhNjQzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTM0MzIzMzM2MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkB7TAAA0w DQYJKoZIhvcNAQELBQADggEBAJxs6c6Gd+Q00LrRWVKE+00vut5gLLfyQ0MZAhWO Fizfk5He9H1kjUzX2ZslQVa1qBNWY2CshboYkl6Ec7ZORHSiXDv+NZnqL4tMnUdZ OkELavhfsoFbRU9XsYvP8Hj590AHE2hYn2ipRkCmADZvvC0BJW4Rjtyb/KSJ4hXu aBK2gIRaxxnSYL48mkcWBrIAETUPgrYuVGqVhDOzDJPJO1sFSI8vs83wo1YToJbQ incRTA8CQ4G1beCsP+fSifSzAIdAg9LztGlebw+kn7H6w3S69cZPu0sBAeUyY8ex xJG+FYrV7OVg8Z8iAW6hxQ0qHCxwOGBf0JclooWzokOjKks= -----END CERTIFICATE-----Generated at Sun Apr 19 15:49:59 2026 by rpki-client