$ rpki-client -vvf repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/323430323a616230303a61663a3a2f34382d3438203d3e203234323036.roa File: 323430323a616230303a61663a3a2f34382d3438203d3e203234323036.roa (raw, json) Hash identifier: zp9YwqJpaJqPSfkIdca9i4u3v/DatX4/IMoUS9bihyA= Subject key identifier: 4F:27:D7:84:3B:3F:14:9F:A6:2D:17:92:08:BF:CC:FA:9B:FF:B7:76 Certificate issuer: /CN=981E5677AC602950ABE1A442C2779E7CB0C108A9 Certificate serial: 1CC6BBCBF33FD368F7173B5B85368B67E6970761 Authority key identifier: 98:1E:56:77:AC:60:29:50:AB:E1:A4:42:C2:77:9E:7C:B0:C1:08:A9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/981E5677AC602950ABE1A442C2779E7CB0C108A9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/323430323a616230303a61663a3a2f34382d3438203d3e203234323036.roa Signing time: Tue 10 Feb 2026 11:00:00 +0000 ROA not before: Tue 10 Feb 2026 10:55:00 +0000 ROA not after: Tue 09 Feb 2027 11:00:00 +0000 asID: 24206 IP address blocks: 2402:ab00:af::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/981E5677AC602950ABE1A442C2779E7CB0C108A9.crl rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/981E5677AC602950ABE1A442C2779E7CB0C108A9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/981E5677AC602950ABE1A442C2779E7CB0C108A9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Mar 2026 02:08:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:c6:bb:cb:f3:3f:d3:68:f7:17:3b:5b:85:36:8b:67:e6:97:07:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=981E5677AC602950ABE1A442C2779E7CB0C108A9 Validity Not Before: Feb 10 10:55:00 2026 GMT Not After : Feb 9 11:00:00 2027 GMT Subject: CN=4F27D7843B3F149FA62D179208BFCCFA9BFFB776 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:a5:13:ad:78:25:96:b0:e4:b7:e3:7d:a6:4a: d6:42:21:6f:de:fe:ea:50:0f:d4:c4:33:3c:fe:82: 28:89:c0:5d:41:68:b8:0a:c1:13:c9:50:5a:96:40: 7b:73:bc:82:e3:2f:3d:f3:c2:a6:2d:06:d1:e3:fb: 60:cb:2b:1f:2b:c1:96:fb:89:c6:74:e2:d9:51:80: 14:7e:d1:cc:e6:b0:bd:a9:6d:df:fc:d0:54:05:09: 45:70:83:3b:81:7a:a4:d9:5e:ac:8d:80:99:30:e4: 0a:fa:f7:8f:48:6c:1b:f5:b9:dd:89:6b:1c:b7:5a: 5b:4d:2c:d7:2c:a3:de:00:d7:2f:b7:fd:50:2c:b8: d3:18:7f:c3:c0:a8:96:5b:ae:87:a4:20:c6:1e:2d: 1b:6c:a8:d4:96:81:6e:04:ae:79:fd:27:b3:13:04: 1d:74:de:bb:5b:9f:cd:20:53:82:ea:ea:7d:b1:73: ca:4e:fb:f0:07:6d:7b:49:7f:3b:c0:da:b2:ba:b8: 54:dc:56:3e:5b:9f:d9:fb:a5:4d:43:8e:fe:e2:cc: 7e:b6:97:84:44:6e:68:8f:3e:79:56:3f:86:20:09: d1:1b:3a:2d:f5:dd:fd:8a:bf:72:14:ec:93:c5:86: 0b:b2:82:43:0c:c8:0b:e8:92:46:f8:14:8f:95:5e: a5:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:27:D7:84:3B:3F:14:9F:A6:2D:17:92:08:BF:CC:FA:9B:FF:B7:76 X509v3 Authority Key Identifier: keyid:98:1E:56:77:AC:60:29:50:AB:E1:A4:42:C2:77:9E:7C:B0:C1:08:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/981E5677AC602950ABE1A442C2779E7CB0C108A9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/981E5677AC602950ABE1A442C2779E7CB0C108A9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/323430323a616230303a61663a3a2f34382d3438203d3e203234323036.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:ab00:af::/48 Signature Algorithm: sha256WithRSAEncryption 2e:2f:88:f7:83:a3:47:85:55:c9:a1:b0:b9:39:8e:92:9e:8e: 86:72:b0:50:39:b6:66:a5:1e:0d:57:f6:bf:f8:26:ef:ac:6c: 37:67:6b:41:a0:04:28:13:13:d6:a5:aa:ee:35:20:50:3f:1c: 1b:f1:23:7f:42:ab:48:1c:e9:a4:88:60:e8:a4:f1:24:0d:7d: 8c:2e:4a:7f:01:92:ed:ff:fa:19:b1:9b:67:b0:f8:0f:38:a2: 0d:f1:45:76:0a:97:a8:ea:54:d9:75:85:bc:7a:9e:1d:44:43: 4d:0d:00:29:e0:57:f1:a4:7a:12:50:26:3a:6a:cf:86:23:6e: c5:6a:b7:f5:86:78:82:28:4f:18:ac:4d:34:0d:f8:b3:ee:63: 42:f3:d7:fb:eb:36:9b:d1:4d:eb:6b:cc:74:15:8a:9b:52:63: b9:b0:2a:15:b3:38:2e:8f:00:1b:56:87:be:4a:8f:04:4b:7d: b8:3d:38:f9:94:d1:f4:69:7f:99:c4:f4:ba:14:e6:ae:da:b5: 51:54:25:3d:b5:db:5e:5c:79:06:1d:cb:1f:ab:60:a6:fa:0d: 9f:e6:e9:28:ec:14:59:e1:52:81:5d:cc:03:66:8c:8a:49:6e: 53:c8:47:76:6a:ea:dc:b6:b0:d5:9f:4a:42:b1:6d:f7:7a:e0: 28:95:8a:d2 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUHMa7y/M/02j3FztbhTaLZ+aXB2EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTgxRTU2NzdBQzYwMjk1MEFCRTFBNDQyQzI3NzlFN0NC MEMxMDhBOTAeFw0yNjAyMTAxMDU1MDBaFw0yNzAyMDkxMTAwMDBaMDMxMTAvBgNV BAMTKDRGMjdENzg0M0IzRjE0OUZBNjJEMTc5MjA4QkZDQ0ZBOUJGRkI3NzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCfpROteCWWsOS3432mStZCIW/e /upQD9TEMzz+giiJwF1BaLgKwRPJUFqWQHtzvILjLz3zwqYtBtHj+2DLKx8rwZb7 icZ04tlRgBR+0czmsL2pbd/80FQFCUVwgzuBeqTZXqyNgJkw5Ar6949IbBv1ud2J axy3WltNLNcso94A1y+3/VAsuNMYf8PAqJZbroekIMYeLRtsqNSWgW4Ernn9J7MT BB103rtbn80gU4Lq6n2xc8pO+/AHbXtJfzvA2rK6uFTcVj5bn9n7pU1Djv7izH62 l4REbmiPPnlWP4YgCdEbOi313f2Kv3IU7JPFhguygkMMyAvokkb4FI+VXqUZAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUTyfXhDs/FJ+mLReSCL/M+pv/t3YwHwYDVR0j BBgwFoAUmB5Wd6xgKVCr4aRCwneefLDBCKkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NzkyMmY4OS0zZTliLTRiMjEtOTE4Ni1hNjQ4YzJkYTNmN2IvMC85ODFFNTY3N0FD NjAyOTUwQUJFMUE0NDJDMjc3OUU3Q0IwQzEwOEE5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTgxRTU2NzdBQzYwMjk1MEFCRTFBNDQyQzI3NzlFN0NCMEMx MDhBOS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E3OTIyZjg5LTNlOWItNGIyMS05 MTg2LWE2NDhjMmRhM2Y3Yi8wLzMyMzQzMDMyM2E2MTYyMzAzMDNhNjE2NjNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzQzMjMwMzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkAqsAAK8w DQYJKoZIhvcNAQELBQADggEBAC4viPeDo0eFVcmhsLk5jpKejoZysFA5tmalHg1X 9r/4Ju+sbDdna0GgBCgTE9alqu41IFA/HBvxI39Cq0gc6aSIYOik8SQNfYwuSn8B ku3/+hmxm2ew+A84og3xRXYKl6jqVNl1hbx6nh1EQ00NACngV/GkehJQJjpqz4Yj bsVqt/WGeIIoTxisTTQN+LPuY0Lz1/vrNpvRTetrzHQViptSY7mwKhWzOC6PABtW h75KjwRLfbg9OPmU0fRpf5nE9LoU5q7atVFUJT21215ceQYdyx+rYKb6DZ/m6Sjs FFnhUoFdzANmjIpJblPIR3Zq6ty2sNWfSkKxbfd64CiVitI= -----END CERTIFICATE-----Generated at Mon Mar 2 16:11:11 2026 by rpki-client