$ rpki-client -vvf repo-rpki.idnic.net/repo/b606718f-f4c6-4775-8957-99d2bd666363/0/323430303a623038303a3a2f33322d3332203d3e203435323936.roa File: 323430303a623038303a3a2f33322d3332203d3e203435323936.roa (raw, json) Hash identifier: aiEQUHBNmT2EYIMF6U+PL/eCCGa3TZkcETojuN2/9y0= Subject key identifier: 61:A9:3D:C8:46:3E:8A:91:42:B7:F6:6A:A6:A0:0B:C2:A4:AB:D3:18 Certificate issuer: /CN=9B2F00476D6AC1BAAB05C5A625DC00C2A59F99D7 Certificate serial: 20BA80CECE25743D5E244C52B1C52E5955B9F6AB Authority key identifier: 9B:2F:00:47:6D:6A:C1:BA:AB:05:C5:A6:25:DC:00:C2:A5:9F:99:D7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9B2F00476D6AC1BAAB05C5A625DC00C2A59F99D7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b606718f-f4c6-4775-8957-99d2bd666363/0/323430303a623038303a3a2f33322d3332203d3e203435323936.roa Signing time: Mon 30 Mar 2026 15:00:00 +0000 ROA not before: Mon 30 Mar 2026 14:55:00 +0000 ROA not after: Mon 29 Mar 2027 15:00:00 +0000 asID: 45296 IP address blocks: 2400:b080::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b606718f-f4c6-4775-8957-99d2bd666363/0/9B2F00476D6AC1BAAB05C5A625DC00C2A59F99D7.crl rsync://repo-rpki.idnic.net/repo/b606718f-f4c6-4775-8957-99d2bd666363/0/9B2F00476D6AC1BAAB05C5A625DC00C2A59F99D7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9B2F00476D6AC1BAAB05C5A625DC00C2A59F99D7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 19 Apr 2026 15:19:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:ba:80:ce:ce:25:74:3d:5e:24:4c:52:b1:c5:2e:59:55:b9:f6:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9B2F00476D6AC1BAAB05C5A625DC00C2A59F99D7 Validity Not Before: Mar 30 14:55:00 2026 GMT Not After : Mar 29 15:00:00 2027 GMT Subject: CN=61A93DC8463E8A9142B7F66AA6A00BC2A4ABD318 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:a4:0f:3d:30:d9:c6:35:76:28:35:29:b7:cc: 7a:3f:48:eb:62:37:a7:35:c8:19:9a:1a:03:f0:9b: b2:49:bd:8f:76:d6:7c:c0:83:4b:45:a4:e1:97:f6: 1e:c7:68:94:62:37:e7:36:7b:1e:ae:f6:2f:f0:c0: 60:8d:70:16:a3:65:b2:e5:d7:f7:60:68:f7:cd:17: 60:20:f2:79:da:2b:75:91:e0:72:f2:4c:5f:90:0d: 44:44:de:ff:66:51:9b:ab:ec:7b:97:0f:33:a3:81: 96:61:bb:cc:56:7a:06:f0:4d:c5:c7:c7:dc:b8:a8: 2a:81:75:10:50:79:cf:a5:5a:83:b6:97:cb:62:a4: d0:26:2a:0a:7c:58:18:54:0b:de:1e:f1:78:19:7f: b8:d2:31:48:da:f5:dc:1a:7d:62:c1:30:3b:ed:5d: 31:35:25:43:41:37:40:0f:50:ee:b9:c0:62:26:0b: 19:e2:17:36:7f:8b:21:6e:46:64:5e:b0:db:91:7d: c3:cc:9f:97:21:3d:34:d1:d3:45:39:df:9b:10:25: 33:0b:2f:3d:b4:a6:5e:a8:b5:ed:02:32:f6:1f:74: 8e:95:89:0f:ac:6f:58:91:07:5e:7c:aa:c7:c8:bb: 9d:1e:db:cb:38:80:4d:2b:9d:41:db:c4:6a:4c:13: 59:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:A9:3D:C8:46:3E:8A:91:42:B7:F6:6A:A6:A0:0B:C2:A4:AB:D3:18 X509v3 Authority Key Identifier: keyid:9B:2F:00:47:6D:6A:C1:BA:AB:05:C5:A6:25:DC:00:C2:A5:9F:99:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b606718f-f4c6-4775-8957-99d2bd666363/0/9B2F00476D6AC1BAAB05C5A625DC00C2A59F99D7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9B2F00476D6AC1BAAB05C5A625DC00C2A59F99D7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b606718f-f4c6-4775-8957-99d2bd666363/0/323430303a623038303a3a2f33322d3332203d3e203435323936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:b080::/32 Signature Algorithm: sha256WithRSAEncryption 57:11:6e:28:d2:ce:b9:7b:68:34:59:ae:64:bb:04:91:00:3c: 27:2d:bb:39:e5:d3:10:02:f7:dc:27:06:b3:b2:69:3c:e7:ab: 79:9a:52:ca:90:50:d5:be:3b:e1:c8:83:b4:2a:b1:c0:d0:33: 05:24:b0:f0:6b:a0:86:59:4d:0f:30:a4:5d:df:85:71:be:3c: 39:83:65:4f:f4:73:8c:f6:47:e2:72:ec:71:3b:0d:77:2a:5f: 5f:38:a4:9f:34:91:b5:61:81:97:48:ae:e5:55:e5:e6:88:a3: 2f:b2:de:bf:33:64:ad:cf:9a:9e:e4:93:e6:c0:13:02:4c:16: e4:d0:bf:75:59:1f:f0:12:ed:cb:da:4f:d9:8f:de:be:ae:d1: 10:34:4e:17:0c:ee:72:90:8f:11:40:8a:8a:bd:34:38:2e:0b: 5f:34:15:87:60:39:27:b6:31:04:1c:f2:e2:01:4b:b3:6d:e8: 22:cc:ff:1c:b4:69:75:d3:4c:ec:51:c5:59:52:29:14:91:e0: 2f:08:b2:ff:ea:8a:a0:30:ea:d6:c4:b0:a3:47:c0:6d:14:97: 93:88:68:8a:32:df:80:54:77:6c:bc:8f:00:51:af:41:80:f1: 5c:ee:b7:bc:9f:c3:f4:8a:e4:4a:fd:87:91:46:50:6d:e6:46: 01:a1:e4:e5 -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUILqAzs4ldD1eJExSscUuWVW59qswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUIyRjAwNDc2RDZBQzFCQUFCMDVDNUE2MjVEQzAwQzJB NTlGOTlENzAeFw0yNjAzMzAxNDU1MDBaFw0yNzAzMjkxNTAwMDBaMDMxMTAvBgNV BAMTKDYxQTkzREM4NDYzRThBOTE0MkI3RjY2QUE2QTAwQkMyQTRBQkQzMTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDgpA89MNnGNXYoNSm3zHo/SOti N6c1yBmaGgPwm7JJvY921nzAg0tFpOGX9h7HaJRiN+c2ex6u9i/wwGCNcBajZbLl 1/dgaPfNF2Ag8nnaK3WR4HLyTF+QDURE3v9mUZur7HuXDzOjgZZhu8xWegbwTcXH x9y4qCqBdRBQec+lWoO2l8tipNAmKgp8WBhUC94e8XgZf7jSMUja9dwafWLBMDvt XTE1JUNBN0APUO65wGImCxniFzZ/iyFuRmResNuRfcPMn5chPTTR00U535sQJTML Lz20pl6ote0CMvYfdI6ViQ+sb1iRB158qsfIu50e28s4gE0rnUHbxGpME1nPAgMB AAGjggIxMIICLTAdBgNVHQ4EFgQUYak9yEY+ipFCt/ZqpqALwqSr0xgwHwYDVR0j BBgwFoAUmy8AR21qwbqrBcWmJdwAwqWfmdcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i NjA2NzE4Zi1mNGM2LTQ3NzUtODk1Ny05OWQyYmQ2NjYzNjMvMC85QjJGMDA0NzZE NkFDMUJBQUIwNUM1QTYyNURDMDBDMkE1OUY5OUQ3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUIyRjAwNDc2RDZBQzFCQUFCMDVDNUE2MjVEQzAwQzJBNTlG OTlENy5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I2MDY3MThmLWY0YzYtNDc3NS04 OTU3LTk5ZDJiZDY2NjM2My8wLzMyMzQzMDMwM2E2MjMwMzgzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDM0MzUzMjM5MzYucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkALCAMA0GCSqGSIb3 DQEBCwUAA4IBAQBXEW4o0s65e2g0Wa5kuwSRADwnLbs55dMQAvfcJwazsmk856t5 mlLKkFDVvjvhyIO0KrHA0DMFJLDwa6CGWU0PMKRd34Vxvjw5g2VP9HOM9kficuxx Ow13Kl9fOKSfNJG1YYGXSK7lVeXmiKMvst6/M2Stz5qe5JPmwBMCTBbk0L91WR/w Eu3L2k/Zj96+rtEQNE4XDO5ykI8RQIqKvTQ4LgtfNBWHYDkntjEEHPLiAUuzbegi zP8ctGl100zsUcVZUikUkeAvCLL/6oqgMOrWxLCjR8BtFJeTiGiKMt+AVHdsvI8A Ua9BgPFc7re8n8P0iuRK/YeRRlBt5kYBoeTl -----END CERTIFICATE-----Generated at Sat Apr 18 01:15:44 2026 by rpki-client