$ rpki-client -vvf repo-rpki.idnic.net/repo/aa914ada-a9aa-4d7f-9e47-594bcb7a70ab/0/323430353a366463303a3a2f33322d3332203d3e20313339343237.roa File: 323430353a366463303a3a2f33322d3332203d3e20313339343237.roa (raw, json) Hash identifier: y5nXoWY6Wm0SOQPEufWhbcau0TcczOnsmw1jzg5LM2U= Subject key identifier: 30:82:7B:97:63:CD:DD:63:0B:4C:69:A2:7D:BC:E8:8B:E9:D4:A0:4B Certificate issuer: /CN=8E3F7441403B9CDF2FD603CCBAF13D1671202D2D Certificate serial: 27B54BB0A7852977F584ACD724A9C3528B43520C Authority key identifier: 8E:3F:74:41:40:3B:9C:DF:2F:D6:03:CC:BA:F1:3D:16:71:20:2D:2D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8E3F7441403B9CDF2FD603CCBAF13D1671202D2D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/aa914ada-a9aa-4d7f-9e47-594bcb7a70ab/0/323430353a366463303a3a2f33322d3332203d3e20313339343237.roa Signing time: Fri 27 Mar 2026 18:00:00 +0000 ROA not before: Fri 27 Mar 2026 17:55:00 +0000 ROA not after: Fri 26 Mar 2027 18:00:00 +0000 asID: 139427 IP address blocks: 2405:6dc0::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/aa914ada-a9aa-4d7f-9e47-594bcb7a70ab/0/8E3F7441403B9CDF2FD603CCBAF13D1671202D2D.crl rsync://repo-rpki.idnic.net/repo/aa914ada-a9aa-4d7f-9e47-594bcb7a70ab/0/8E3F7441403B9CDF2FD603CCBAF13D1671202D2D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8E3F7441403B9CDF2FD603CCBAF13D1671202D2D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Apr 2026 17:12:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:b5:4b:b0:a7:85:29:77:f5:84:ac:d7:24:a9:c3:52:8b:43:52:0c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8E3F7441403B9CDF2FD603CCBAF13D1671202D2D Validity Not Before: Mar 27 17:55:00 2026 GMT Not After : Mar 26 18:00:00 2027 GMT Subject: CN=30827B9763CDDD630B4C69A27DBCE88BE9D4A04B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:31:62:bb:ba:8f:da:9c:94:0b:1c:e7:aa:a9: 05:4c:3c:5d:76:eb:6b:be:cc:f4:ff:4c:70:dc:f1: 6b:ee:52:4a:0f:5d:34:97:f9:46:3a:9e:1d:5c:10: 9d:22:39:bf:49:bb:1e:45:8c:e0:1b:f5:d2:ee:8b: a3:83:f0:62:49:75:10:77:96:0a:ce:b5:a4:77:86: 0f:5d:fc:d4:7d:cd:4c:8f:e1:dc:91:e0:2c:05:4e: 4f:18:92:d5:f6:a5:e0:ce:bf:8b:82:5f:bd:22:1f: 19:16:b7:99:97:d9:6f:ff:5d:6e:ba:cc:f0:4e:db: 33:c9:c4:bf:e3:4f:be:b0:f9:aa:41:a2:cc:16:01: 4f:72:98:a2:3d:7a:1d:2a:d2:4f:55:aa:6f:91:75: 30:c2:45:6d:45:ff:3a:16:a8:db:6d:93:3e:9e:9b: fd:f8:46:dd:4e:22:74:bb:35:2a:d7:86:a0:80:65: 36:70:b2:a8:38:3d:5e:06:7a:01:f7:3f:9e:20:3e: 00:4d:6b:3d:8b:ef:78:3c:f4:5d:54:d5:30:f0:7f: 67:aa:cc:47:11:86:6a:af:48:09:e1:0d:a7:13:04: 6b:fe:f0:39:e5:d5:f5:ce:d3:4f:e1:40:73:13:8f: a3:49:ca:63:e0:58:55:95:05:b7:13:8d:a6:99:6a: 51:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:82:7B:97:63:CD:DD:63:0B:4C:69:A2:7D:BC:E8:8B:E9:D4:A0:4B X509v3 Authority Key Identifier: keyid:8E:3F:74:41:40:3B:9C:DF:2F:D6:03:CC:BA:F1:3D:16:71:20:2D:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/aa914ada-a9aa-4d7f-9e47-594bcb7a70ab/0/8E3F7441403B9CDF2FD603CCBAF13D1671202D2D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8E3F7441403B9CDF2FD603CCBAF13D1671202D2D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/aa914ada-a9aa-4d7f-9e47-594bcb7a70ab/0/323430353a366463303a3a2f33322d3332203d3e20313339343237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:6dc0::/32 Signature Algorithm: sha256WithRSAEncryption 4e:30:d1:57:b4:c7:f5:13:00:62:30:04:65:78:67:ac:9b:89: c1:7e:1a:39:2b:67:04:5d:a4:71:7c:dc:49:9b:f1:12:86:be: 1a:57:bf:59:a4:15:be:ab:c2:64:e0:af:0e:6b:be:89:fb:d4: 07:7d:7d:ab:31:64:fe:b8:4e:c6:83:d6:d6:ac:38:c0:39:6d: 4d:f7:c1:da:8f:f9:14:91:3c:df:4d:f0:30:e8:65:67:84:68: 12:17:4d:a4:84:7f:b3:e5:7c:42:5b:1e:77:ed:c4:a7:2b:68: 58:56:7a:93:fe:a3:29:c0:12:87:76:55:89:ac:90:97:a9:0a: a5:59:3d:41:fe:e8:1a:86:d9:49:98:d9:69:7b:12:d9:20:ce: a6:f9:68:6d:63:73:83:81:65:4d:f8:63:ff:d3:21:53:ee:79: 03:26:57:c4:fa:86:8a:b6:6b:ce:68:fe:91:0c:cd:f2:e6:33: bf:87:ab:94:91:a5:d8:c9:87:5c:e9:47:92:37:c7:31:5f:09: 79:53:49:e4:48:cd:e1:56:ca:9c:4f:ff:49:7b:97:79:18:39: 36:f3:1c:7a:cc:b2:82:72:f4:a9:39:1b:a1:9f:22:3d:f9:d0: 7d:e0:e6:b0:f1:1d:cd:c9:80:b6:d3:ee:88:ef:5e:1d:89:0c: 8d:42:42:76 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUJ7VLsKeFKXf1hKzXJKnDUotDUgwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEUzRjc0NDE0MDNCOUNERjJGRDYwM0NDQkFGMTNEMTY3 MTIwMkQyRDAeFw0yNjAzMjcxNzU1MDBaFw0yNzAzMjYxODAwMDBaMDMxMTAvBgNV BAMTKDMwODI3Qjk3NjNDRERENjMwQjRDNjlBMjdEQkNFODhCRTlENEEwNEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDkMWK7uo/anJQLHOeqqQVMPF12 62u+zPT/THDc8WvuUkoPXTSX+UY6nh1cEJ0iOb9Jux5FjOAb9dLui6OD8GJJdRB3 lgrOtaR3hg9d/NR9zUyP4dyR4CwFTk8YktX2peDOv4uCX70iHxkWt5mX2W//XW66 zPBO2zPJxL/jT76w+apBoswWAU9ymKI9eh0q0k9Vqm+RdTDCRW1F/zoWqNttkz6e m/34Rt1OInS7NSrXhqCAZTZwsqg4PV4GegH3P54gPgBNaz2L73g89F1U1TDwf2eq zEcRhmqvSAnhDacTBGv+8Dnl1fXO00/hQHMTj6NJymPgWFWVBbcTjaaZalHRAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUMIJ7l2PN3WMLTGmifbzoi+nUoEswHwYDVR0j BBgwFoAUjj90QUA7nN8v1gPMuvE9FnEgLS0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h YTkxNGFkYS1hOWFhLTRkN2YtOWU0Ny01OTRiY2I3YTcwYWIvMC84RTNGNzQ0MTQw M0I5Q0RGMkZENjAzQ0NCQUYxM0QxNjcxMjAyRDJELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEUzRjc0NDE0MDNCOUNERjJGRDYwM0NDQkFGMTNEMTY3MTIw MkQyRC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FhOTE0YWRhLWE5YWEtNGQ3Zi05 ZTQ3LTU5NGJjYjdhNzBhYi8wLzMyMzQzMDM1M2EzNjY0NjMzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzMzOTM0MzIzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQFbcAwDQYJKoZI hvcNAQELBQADggEBAE4w0Ve0x/UTAGIwBGV4Z6ybicF+GjkrZwRdpHF83Emb8RKG vhpXv1mkFb6rwmTgrw5rvon71Ad9fasxZP64TsaD1tasOMA5bU33wdqP+RSRPN9N 8DDoZWeEaBIXTaSEf7PlfEJbHnftxKcraFhWepP+oynAEod2VYmskJepCqVZPUH+ 6BqG2UmY2Wl7Etkgzqb5aG1jc4OBZU34Y//TIVPueQMmV8T6hoq2a85o/pEMzfLm M7+Hq5SRpdjJh1zpR5I3xzFfCXlTSeRIzeFWypxP/0l7l3kYOTbzHHrMsoJy9Kk5 G6GfIj350H3g5rDxHc3JgLbT7ojvXh2JDI1CQnY= -----END CERTIFICATE-----Generated at Fri Apr 17 23:47:46 2026 by rpki-client