$ rpki-client -vvf repo-rpki.idnic.net/repo/c07c88da-2b56-487e-9efe-571170b10286/0/323430353a6334303a313030303a3a2f33362d3336203d3e20313338383837.roa File: 323430353a6334303a313030303a3a2f33362d3336203d3e20313338383837.roa (raw, json) Hash identifier: M8jV0HgtSi+UHqtYigdtd7/5g87CmHCfg3eX0fALlaM= Subject key identifier: 45:3A:16:15:57:17:2C:03:BA:25:16:9A:97:E6:6B:98:6F:CD:78:8B Certificate issuer: /CN=80F9ED59290AD77DE2856ECFD8340E28FF858E3D Certificate serial: 773B30517339B8E303BA3BBCD2B87FB89174D2D2 Authority key identifier: 80:F9:ED:59:29:0A:D7:7D:E2:85:6E:CF:D8:34:0E:28:FF:85:8E:3D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/80F9ED59290AD77DE2856ECFD8340E28FF858E3D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c07c88da-2b56-487e-9efe-571170b10286/0/323430353a6334303a313030303a3a2f33362d3336203d3e20313338383837.roa Signing time: Thu 02 Apr 2026 11:00:01 +0000 ROA not before: Thu 02 Apr 2026 10:55:01 +0000 ROA not after: Thu 01 Apr 2027 11:00:01 +0000 asID: 138887 IP address blocks: 2405:c40:1000::/36 maxlen: 36 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c07c88da-2b56-487e-9efe-571170b10286/0/80F9ED59290AD77DE2856ECFD8340E28FF858E3D.crl rsync://repo-rpki.idnic.net/repo/c07c88da-2b56-487e-9efe-571170b10286/0/80F9ED59290AD77DE2856ECFD8340E28FF858E3D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/80F9ED59290AD77DE2856ECFD8340E28FF858E3D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Apr 2026 12:25:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:3b:30:51:73:39:b8:e3:03:ba:3b:bc:d2:b8:7f:b8:91:74:d2:d2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=80F9ED59290AD77DE2856ECFD8340E28FF858E3D Validity Not Before: Apr 2 10:55:01 2026 GMT Not After : Apr 1 11:00:01 2027 GMT Subject: CN=453A161557172C03BA25169A97E66B986FCD788B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:73:31:6e:f6:0d:21:16:4d:d2:f4:52:eb:c1: 60:51:19:ce:b5:0a:4b:f2:1f:39:bb:a5:ca:e2:f2: 2f:c9:c0:9c:30:5a:45:29:96:c8:63:72:06:cd:c5: a3:aa:87:1f:b4:7b:bc:0b:48:86:a2:84:df:8f:c8: 9b:31:c4:60:ea:cd:16:a2:05:0c:0a:54:53:75:0b: 86:30:7f:81:35:7e:a8:4c:37:74:47:1a:b4:44:d0: 91:07:a4:17:8b:fc:9e:86:bc:98:4a:43:6f:26:c1: 49:fe:75:bf:80:5f:bb:ab:31:5b:e6:67:fb:3b:e8: 2c:93:8b:1b:74:c0:fd:18:7d:cc:19:8e:d1:5e:3f: a9:f5:83:81:a4:c7:3f:62:59:93:c7:fe:0a:a6:a7: d3:e7:b3:f5:e5:7d:fc:f0:0d:47:ec:09:aa:0e:e2: f3:57:02:af:de:02:58:9c:dc:d3:51:bb:af:fc:00: c7:0a:dc:08:66:45:f4:50:ce:91:d5:5a:3c:12:e1: 4e:79:83:37:ac:78:48:ba:a3:04:e5:81:21:9a:ca: 22:a3:1f:1f:2b:a3:93:ec:6a:6e:98:1c:69:fc:3a: e4:85:d4:4d:44:2f:91:4b:3e:d6:3d:b8:b8:6f:57: d6:4f:20:96:ed:d4:fd:94:fe:d9:f6:d4:d2:f3:44: 21:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:3A:16:15:57:17:2C:03:BA:25:16:9A:97:E6:6B:98:6F:CD:78:8B X509v3 Authority Key Identifier: keyid:80:F9:ED:59:29:0A:D7:7D:E2:85:6E:CF:D8:34:0E:28:FF:85:8E:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c07c88da-2b56-487e-9efe-571170b10286/0/80F9ED59290AD77DE2856ECFD8340E28FF858E3D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/80F9ED59290AD77DE2856ECFD8340E28FF858E3D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c07c88da-2b56-487e-9efe-571170b10286/0/323430353a6334303a313030303a3a2f33362d3336203d3e20313338383837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:c40:1000::/36 Signature Algorithm: sha256WithRSAEncryption ae:ae:18:19:b1:7b:d3:d2:bb:49:f4:5f:84:47:ac:1a:1f:7d: 0b:fd:95:60:82:f6:9f:aa:5d:7d:01:37:cc:b6:21:d4:8c:82: 00:fd:af:be:b4:b7:d1:ad:0e:7e:0e:55:5c:c6:6f:bd:f5:d8: 28:3d:ae:57:32:1e:9c:6a:7b:70:5d:1a:9f:ff:09:d4:d4:d2: e7:a3:38:40:d6:bc:e1:f2:53:95:24:83:f9:55:8c:8b:85:57: a3:77:21:4e:b0:c7:bc:fb:da:0c:6e:58:30:5f:02:fa:5a:24: 23:92:44:c6:93:81:c6:bc:eb:82:1b:36:88:60:11:54:27:64: 38:00:c2:ce:4a:b4:9f:ac:60:cf:69:9e:a5:0f:f8:d6:77:75: 46:3f:79:a6:4e:7c:b6:cf:c6:c2:0a:c8:fe:33:ae:92:7d:66: 89:51:59:c9:ec:23:ac:07:cc:b2:f1:86:e9:cd:14:89:28:e2: f8:b5:b1:f2:f5:f4:a2:58:fd:3c:f8:be:c3:e7:67:13:34:0d: c6:db:af:22:bf:c0:cb:a8:d9:0a:00:7c:18:98:be:97:bb:3d: 88:ba:fa:ff:1b:a5:53:95:ae:0b:6a:32:e7:8b:70:2e:f5:ab: e5:ae:d3:5c:26:bf:d6:5f:e0:ac:8f:88:85:7e:c4:cf:31:c2: 5e:6c:74:16 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUdzswUXM5uOMDuju80rh/uJF00tIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODBGOUVENTkyOTBBRDc3REUyODU2RUNGRDgzNDBFMjhG Rjg1OEUzRDAeFw0yNjA0MDIxMDU1MDFaFw0yNzA0MDExMTAwMDFaMDMxMTAvBgNV BAMTKDQ1M0ExNjE1NTcxNzJDMDNCQTI1MTY5QTk3RTY2Qjk4NkZDRDc4OEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1czFu9g0hFk3S9FLrwWBRGc61 CkvyHzm7pcri8i/JwJwwWkUplshjcgbNxaOqhx+0e7wLSIaihN+PyJsxxGDqzRai BQwKVFN1C4Ywf4E1fqhMN3RHGrRE0JEHpBeL/J6GvJhKQ28mwUn+db+AX7urMVvm Z/s76CyTixt0wP0YfcwZjtFeP6n1g4Gkxz9iWZPH/gqmp9Pns/XlffzwDUfsCaoO 4vNXAq/eAlic3NNRu6/8AMcK3AhmRfRQzpHVWjwS4U55gzeseEi6owTlgSGayiKj Hx8ro5Psam6YHGn8OuSF1E1EL5FLPtY9uLhvV9ZPIJbt1P2U/tn21NLzRCG3AgMB AAGjggI8MIICODAdBgNVHQ4EFgQURToWFVcXLAO6JRaal+ZrmG/NeIswHwYDVR0j BBgwFoAUgPntWSkK133ihW7P2DQOKP+Fjj0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j MDdjODhkYS0yYjU2LTQ4N2UtOWVmZS01NzExNzBiMTAyODYvMC84MEY5RUQ1OTI5 MEFENzdERTI4NTZFQ0ZEODM0MEUyOEZGODU4RTNELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODBGOUVENTkyOTBBRDc3REUyODU2RUNGRDgzNDBFMjhGRjg1 OEUzRC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2MwN2M4OGRhLTJiNTYtNDg3ZS05 ZWZlLTU3MTE3MGIxMDI4Ni8wLzMyMzQzMDM1M2E2MzM0MzAzYTMxMzAzMDMwM2Ez YTJmMzMzNjJkMzMzNjIwM2QzZTIwMzEzMzM4MzgzODM3LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYEJAUM QBAwDQYJKoZIhvcNAQELBQADggEBAK6uGBmxe9PSu0n0X4RHrBoffQv9lWCC9p+q XX0BN8y2IdSMggD9r760t9GtDn4OVVzGb7312Cg9rlcyHpxqe3BdGp//CdTU0uej OEDWvOHyU5Ukg/lVjIuFV6N3IU6wx7z72gxuWDBfAvpaJCOSRMaTgca864IbNohg EVQnZDgAws5KtJ+sYM9pnqUP+NZ3dUY/eaZOfLbPxsIKyP4zrpJ9ZolRWcnsI6wH zLLxhunNFIko4vi1sfL19KJY/Tz4vsPnZxM0DcbbryK/wMuo2QoAfBiYvpe7PYi6 +v8bpVOVrgtqMueLcC71q+Wu01wmv9Zf4KyPiIV+xM8xwl5sdBY= -----END CERTIFICATE-----Generated at Sun Apr 19 14:24:55 2026 by rpki-client