$ rpki-client -vvf repo-rpki.idnic.net/repo/aab4e14d-021d-40dc-923a-c12d1af443b5/1/323030313a6466333a636634303a3a2f34382d3438203d3e20313532373536.roa File: 323030313a6466333a636634303a3a2f34382d3438203d3e20313532373536.roa (raw, json) Hash identifier: FAVAZnWz0pyRXV8cgDYllTBAXEJp2pBUrEjPju0WLA0= Subject key identifier: 55:17:9E:CB:1D:00:81:F1:BF:C4:CD:48:2D:A0:9F:6B:B4:62:67:CA Certificate issuer: /CN=6F29B5AEA0FD7EC568AA45A1721D8E5DEA926C0F Certificate serial: 22E3A4467AF3858412019775B71D41A7FB114443 Authority key identifier: 6F:29:B5:AE:A0:FD:7E:C5:68:AA:45:A1:72:1D:8E:5D:EA:92:6C:0F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6F29B5AEA0FD7EC568AA45A1721D8E5DEA926C0F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/aab4e14d-021d-40dc-923a-c12d1af443b5/1/323030313a6466333a636634303a3a2f34382d3438203d3e20313532373536.roa Signing time: Fri 27 Mar 2026 18:02:48 +0000 ROA not before: Fri 27 Mar 2026 17:57:48 +0000 ROA not after: Fri 26 Mar 2027 18:02:48 +0000 asID: 152756 IP address blocks: 2001:df3:cf40::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/aab4e14d-021d-40dc-923a-c12d1af443b5/1/6F29B5AEA0FD7EC568AA45A1721D8E5DEA926C0F.crl rsync://repo-rpki.idnic.net/repo/aab4e14d-021d-40dc-923a-c12d1af443b5/1/6F29B5AEA0FD7EC568AA45A1721D8E5DEA926C0F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6F29B5AEA0FD7EC568AA45A1721D8E5DEA926C0F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Apr 2026 08:51:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:e3:a4:46:7a:f3:85:84:12:01:97:75:b7:1d:41:a7:fb:11:44:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6F29B5AEA0FD7EC568AA45A1721D8E5DEA926C0F Validity Not Before: Mar 27 17:57:48 2026 GMT Not After : Mar 26 18:02:48 2027 GMT Subject: CN=55179ECB1D0081F1BFC4CD482DA09F6BB46267CA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:58:5b:bd:bf:bc:5a:26:9e:c3:83:69:14:c5: e7:ca:2d:db:c6:ed:11:ff:db:03:ca:0e:2f:a8:30: 1e:69:8c:4e:bb:d9:49:d4:52:ff:66:48:e8:aa:20: 40:87:c3:3d:ff:5a:db:1c:4b:06:6e:2d:18:76:2d: ab:e1:b9:2b:6b:8d:2f:51:0e:75:d0:04:ee:85:85: c9:45:e9:27:4d:0c:ac:e8:1e:e4:55:fa:f6:b2:14: 71:86:26:0a:48:00:f9:08:16:c5:9a:2f:b8:1e:ae: 20:5c:3b:94:5d:f5:d7:2e:a8:8e:10:fd:4a:da:f8: cf:c9:db:b5:76:55:37:ea:10:03:ad:10:8c:b1:e0: 49:d0:bc:af:a9:1f:1a:e4:86:32:fd:c7:0e:94:59: 91:53:1f:98:3d:a8:be:3e:b3:85:94:aa:18:09:41: fc:56:e1:f3:b9:ed:d3:b4:a4:f9:bd:4b:f8:b2:28: 91:ee:20:36:8c:92:67:89:6e:e6:5c:fd:31:b1:a1: 8b:6a:43:52:f2:48:3a:03:9f:51:4e:5f:48:9a:7a: d3:45:93:13:a7:b5:73:f5:53:3f:b2:5d:bb:86:b2: cf:d1:97:37:3e:ac:a4:50:6c:b4:5b:d0:b2:74:18: 72:05:bf:1e:f1:bd:2e:8d:63:a3:04:36:75:da:ae: 07:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:17:9E:CB:1D:00:81:F1:BF:C4:CD:48:2D:A0:9F:6B:B4:62:67:CA X509v3 Authority Key Identifier: keyid:6F:29:B5:AE:A0:FD:7E:C5:68:AA:45:A1:72:1D:8E:5D:EA:92:6C:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/aab4e14d-021d-40dc-923a-c12d1af443b5/1/6F29B5AEA0FD7EC568AA45A1721D8E5DEA926C0F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6F29B5AEA0FD7EC568AA45A1721D8E5DEA926C0F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/aab4e14d-021d-40dc-923a-c12d1af443b5/1/323030313a6466333a636634303a3a2f34382d3438203d3e20313532373536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df3:cf40::/48 Signature Algorithm: sha256WithRSAEncryption 43:b4:55:48:4a:34:29:55:af:ef:b1:ea:f7:63:1d:30:a4:6a: cd:37:d8:91:06:ae:bc:c2:37:b1:99:5d:81:97:21:1d:21:47: 6a:82:be:24:80:39:aa:c8:be:ff:3a:7b:12:b1:3b:33:39:28: 63:2d:e1:64:00:e6:4a:99:ff:2a:a3:65:6c:0c:a0:32:65:53: b1:70:97:8c:40:d3:71:ee:c0:ed:6a:22:70:1c:b3:b4:4f:01: cb:0d:c9:df:3e:d6:09:bb:5e:4e:6f:f8:42:80:39:52:33:45: 8c:4a:83:59:d8:ed:5f:79:56:71:f6:ea:56:d2:17:7b:81:ab: 61:14:24:cb:61:55:73:44:0c:ae:42:96:67:ce:8a:9c:87:ed: 3a:fb:52:4c:0a:0c:3d:ac:a8:f9:55:5f:32:17:57:ff:b2:a4: 56:84:65:c3:01:71:71:eb:ee:db:22:f7:07:bd:48:e9:2e:4e: da:8d:8c:6b:c4:6a:13:83:78:7d:ee:cf:26:7b:39:47:7b:cd: 5d:9f:d8:a1:04:24:ee:94:cb:d7:dd:ac:22:c1:43:eb:55:71: f7:a1:85:c4:72:96:58:ad:1c:be:2b:2e:af:2d:4d:2c:45:f0: 81:06:9c:1c:2c:c0:93:53:d3:88:e4:f1:5f:90:0b:42:8a:4d: 38:bb:32:24 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUIuOkRnrzhYQSAZd1tx1Bp/sRREMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkYyOUI1QUVBMEZEN0VDNTY4QUE0NUExNzIxRDhFNURF QTkyNkMwRjAeFw0yNjAzMjcxNzU3NDhaFw0yNzAzMjYxODAyNDhaMDMxMTAvBgNV BAMTKDU1MTc5RUNCMUQwMDgxRjFCRkM0Q0Q0ODJEQTA5RjZCQjQ2MjY3Q0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEWFu9v7xaJp7Dg2kUxefKLdvG 7RH/2wPKDi+oMB5pjE672UnUUv9mSOiqIECHwz3/WtscSwZuLRh2LavhuStrjS9R DnXQBO6FhclF6SdNDKzoHuRV+vayFHGGJgpIAPkIFsWaL7geriBcO5Rd9dcuqI4Q /Ura+M/J27V2VTfqEAOtEIyx4EnQvK+pHxrkhjL9xw6UWZFTH5g9qL4+s4WUqhgJ QfxW4fO57dO0pPm9S/iyKJHuIDaMkmeJbuZc/TGxoYtqQ1LySDoDn1FOX0iaetNF kxOntXP1Uz+yXbuGss/Rlzc+rKRQbLRb0LJ0GHIFvx7xvS6NY6MENnXargezAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUVReeyx0AgfG/xM1ILaCfa7RiZ8owHwYDVR0j BBgwFoAUbym1rqD9fsVoqkWhch2OXeqSbA8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h YWI0ZTE0ZC0wMjFkLTQwZGMtOTIzYS1jMTJkMWFmNDQzYjUvMS82RjI5QjVBRUEw RkQ3RUM1NjhBQTQ1QTE3MjFEOEU1REVBOTI2QzBGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkYyOUI1QUVBMEZEN0VDNTY4QUE0NUExNzIxRDhFNURFQTky NkMwRi5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FhYjRlMTRkLTAyMWQtNDBkYy05 MjNhLWMxMmQxYWY0NDNiNS8xLzMyMzAzMDMxM2E2NDY2MzMzYTYzNjYzNDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNTMyMzczNTM2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 889AMA0GCSqGSIb3DQEBCwUAA4IBAQBDtFVISjQpVa/vser3Yx0wpGrNN9iRBq68 wjexmV2BlyEdIUdqgr4kgDmqyL7/OnsSsTszOShjLeFkAOZKmf8qo2VsDKAyZVOx cJeMQNNx7sDtaiJwHLO0TwHLDcnfPtYJu15Ob/hCgDlSM0WMSoNZ2O1feVZx9upW 0hd7gathFCTLYVVzRAyuQpZnzoqch+06+1JMCgw9rKj5VV8yF1f/sqRWhGXDAXFx 6+7bIvcHvUjpLk7ajYxrxGoTg3h97s8mezlHe81dn9ihBCTulMvX3awiwUPrVXH3 oYXEcpZYrRy+Ky6vLU0sRfCBBpwcLMCTU9OI5PFfkAtCik04uzIk -----END CERTIFICATE-----Generated at Fri Apr 17 23:02:33 2026 by rpki-client