$ rpki-client -vvf repo-rpki.idnic.net/repo/b606718f-f4c6-4775-8957-99d2bd666363/0/323430303a623038303a343532393a3a2f34382d3438203d3e203435323936.roa File: 323430303a623038303a343532393a3a2f34382d3438203d3e203435323936.roa (raw, json) Hash identifier: mhEqOvUFx3lE0vII+brzmnr7/SGFot2kwuR99kk7PAA= Subject key identifier: C6:1E:D3:8B:3D:AC:42:C0:51:D5:9D:55:BE:DE:C2:F8:28:4F:AE:37 Certificate issuer: /CN=9B2F00476D6AC1BAAB05C5A625DC00C2A59F99D7 Certificate serial: 543EF6AEB2DEF33745C01DDCB522C2DD7106A369 Authority key identifier: 9B:2F:00:47:6D:6A:C1:BA:AB:05:C5:A6:25:DC:00:C2:A5:9F:99:D7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9B2F00476D6AC1BAAB05C5A625DC00C2A59F99D7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b606718f-f4c6-4775-8957-99d2bd666363/0/323430303a623038303a343532393a3a2f34382d3438203d3e203435323936.roa Signing time: Tue 31 Mar 2026 02:00:00 +0000 ROA not before: Tue 31 Mar 2026 01:55:00 +0000 ROA not after: Tue 30 Mar 2027 02:00:00 +0000 asID: 45296 IP address blocks: 2400:b080:4529::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b606718f-f4c6-4775-8957-99d2bd666363/0/9B2F00476D6AC1BAAB05C5A625DC00C2A59F99D7.crl rsync://repo-rpki.idnic.net/repo/b606718f-f4c6-4775-8957-99d2bd666363/0/9B2F00476D6AC1BAAB05C5A625DC00C2A59F99D7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9B2F00476D6AC1BAAB05C5A625DC00C2A59F99D7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 19 Apr 2026 15:19:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:3e:f6:ae:b2:de:f3:37:45:c0:1d:dc:b5:22:c2:dd:71:06:a3:69 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9B2F00476D6AC1BAAB05C5A625DC00C2A59F99D7 Validity Not Before: Mar 31 01:55:00 2026 GMT Not After : Mar 30 02:00:00 2027 GMT Subject: CN=C61ED38B3DAC42C051D59D55BEDEC2F8284FAE37 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:b0:2e:7d:99:60:f8:17:fe:d6:29:78:c6:8a: 67:9b:2e:4a:57:13:9f:eb:92:bb:22:c9:17:30:ff: 9f:2d:19:70:2f:4c:c6:27:d9:5c:c2:c4:07:db:c0: 09:84:3d:c2:3b:f8:87:83:69:44:72:ca:26:c1:7f: 5c:ed:0a:23:7c:ca:5e:92:bc:48:4a:9a:8f:79:91: 37:f6:16:33:fc:5f:c7:60:e3:52:0f:01:79:9f:c9: 2a:7e:ac:67:a9:f4:e2:92:a9:98:bf:3f:41:8c:71: 89:be:3c:c6:0c:f2:a3:51:4c:81:bf:cc:15:bc:dc: 0f:8d:79:d0:f5:12:36:77:38:6b:48:4f:de:60:01: 88:a1:c2:f6:73:c6:78:93:8f:51:d2:0d:55:4d:3a: dd:f8:b7:3f:3c:c1:32:47:0a:1d:38:a3:cc:0e:5f: ef:a1:50:fc:68:05:89:9c:fb:9e:e0:70:48:49:6d: 54:62:0d:03:04:87:6f:46:a0:a7:3c:d7:9b:7b:cd: 7b:f4:54:eb:7c:d2:e0:bb:09:94:f2:e6:79:51:46: 1b:58:cf:64:d2:1e:a0:ca:bd:e3:26:6f:52:a1:dd: 02:59:b2:af:1b:39:2d:60:b3:ae:2b:bf:b6:6d:08: 66:4b:51:b1:86:00:16:49:ad:2e:08:26:ed:b5:ad: d6:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:1E:D3:8B:3D:AC:42:C0:51:D5:9D:55:BE:DE:C2:F8:28:4F:AE:37 X509v3 Authority Key Identifier: keyid:9B:2F:00:47:6D:6A:C1:BA:AB:05:C5:A6:25:DC:00:C2:A5:9F:99:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b606718f-f4c6-4775-8957-99d2bd666363/0/9B2F00476D6AC1BAAB05C5A625DC00C2A59F99D7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9B2F00476D6AC1BAAB05C5A625DC00C2A59F99D7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b606718f-f4c6-4775-8957-99d2bd666363/0/323430303a623038303a343532393a3a2f34382d3438203d3e203435323936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:b080:4529::/48 Signature Algorithm: sha256WithRSAEncryption 19:1b:cb:e5:ae:a3:05:2f:b7:e5:31:f7:52:15:4e:38:9d:28: a5:e3:87:7f:9c:fe:a5:e3:57:c6:0b:f4:73:a0:07:32:2c:c9: 9e:0a:20:e6:cf:e8:19:29:4b:be:cf:35:00:56:dd:6d:e8:c5: 1a:12:7c:b9:c7:8a:a8:9d:6d:cd:d0:9f:6e:a9:88:68:a0:67: 78:96:b7:90:1c:5f:3c:c8:ff:c0:84:32:7d:2f:c4:5b:f9:cb: da:92:17:cf:1c:f9:45:51:30:4c:2c:9f:93:49:7b:6a:82:49: be:d6:cd:3e:b7:38:ad:60:5f:4c:d0:b0:2d:de:c4:a2:69:51: 99:0a:ee:1b:96:6b:aa:bf:b6:97:81:2a:b1:6b:df:e7:8d:b9: db:69:85:07:ec:e1:42:a8:73:bd:18:c4:ff:5f:f3:03:b0:12: b9:bc:2e:b2:94:b7:85:28:48:5c:c8:53:4c:bd:87:0b:4d:bc: 21:76:79:77:86:0a:9d:64:ac:31:4d:d8:57:e2:89:e0:c0:69: 0f:1d:bb:06:9a:48:f4:b1:87:55:25:e4:3b:8e:88:1b:0a:5d: 14:5c:2c:40:82:f8:07:bb:27:f0:87:16:e2:50:43:ee:7d:aa: a2:88:c1:07:1a:d2:e2:f4:9b:b3:25:f4:d7:61:09:c2:92:87: bf:e0:ca:e9 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUVD72rrLe8zdFwB3ctSLC3XEGo2kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUIyRjAwNDc2RDZBQzFCQUFCMDVDNUE2MjVEQzAwQzJB NTlGOTlENzAeFw0yNjAzMzEwMTU1MDBaFw0yNzAzMzAwMjAwMDBaMDMxMTAvBgNV BAMTKEM2MUVEMzhCM0RBQzQyQzA1MUQ1OUQ1NUJFREVDMkY4Mjg0RkFFMzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNsC59mWD4F/7WKXjGimebLkpX E5/rkrsiyRcw/58tGXAvTMYn2VzCxAfbwAmEPcI7+IeDaURyyibBf1ztCiN8yl6S vEhKmo95kTf2FjP8X8dg41IPAXmfySp+rGep9OKSqZi/P0GMcYm+PMYM8qNRTIG/ zBW83A+NedD1EjZ3OGtIT95gAYihwvZzxniTj1HSDVVNOt34tz88wTJHCh04o8wO X++hUPxoBYmc+57gcEhJbVRiDQMEh29GoKc815t7zXv0VOt80uC7CZTy5nlRRhtY z2TSHqDKveMmb1Kh3QJZsq8bOS1gs64rv7ZtCGZLUbGGABZJrS4IJu21rdbvAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUxh7Tiz2sQsBR1Z1Vvt7C+ChPrjcwHwYDVR0j BBgwFoAUmy8AR21qwbqrBcWmJdwAwqWfmdcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i NjA2NzE4Zi1mNGM2LTQ3NzUtODk1Ny05OWQyYmQ2NjYzNjMvMC85QjJGMDA0NzZE NkFDMUJBQUIwNUM1QTYyNURDMDBDMkE1OUY5OUQ3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUIyRjAwNDc2RDZBQzFCQUFCMDVDNUE2MjVEQzAwQzJBNTlG OTlENy5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I2MDY3MThmLWY0YzYtNDc3NS04 OTU3LTk5ZDJiZDY2NjM2My8wLzMyMzQzMDMwM2E2MjMwMzgzMDNhMzQzNTMyMzkz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzNDM1MzIzOTM2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJACw gEUpMA0GCSqGSIb3DQEBCwUAA4IBAQAZG8vlrqMFL7flMfdSFU44nSil44d/nP6l 41fGC/RzoAcyLMmeCiDmz+gZKUu+zzUAVt1t6MUaEny5x4qonW3N0J9uqYhooGd4 lreQHF88yP/AhDJ9L8Rb+cvakhfPHPlFUTBMLJ+TSXtqgkm+1s0+tzitYF9M0LAt 3sSiaVGZCu4blmuqv7aXgSqxa9/njbnbaYUH7OFCqHO9GMT/X/MDsBK5vC6ylLeF KEhcyFNMvYcLTbwhdnl3hgqdZKwxTdhX4ongwGkPHbsGmkj0sYdVJeQ7jogbCl0U XCxAgvgHuyfwhxbiUEPufaqiiMEHGtLi9JuzJfTXYQnCkoe/4Mrp -----END CERTIFICATE-----Generated at Sat Apr 18 01:15:43 2026 by rpki-client