$ rpki-client -vvf repo-rpki.idnic.net/repo/c07c88da-2b56-487e-9efe-571170b10286/0/323430353a6334303a343030303a3a2f33362d3336203d3e20313338383837.roa File: 323430353a6334303a343030303a3a2f33362d3336203d3e20313338383837.roa (raw, json) Hash identifier: 296aHnl+lkDki/CcWI2UTvgngC8lcs0j3wZkl0WPBNE= Subject key identifier: A5:3C:94:7C:29:F2:F1:29:1D:27:C0:AC:D8:8C:3E:F7:CC:39:F6:90 Certificate issuer: /CN=80F9ED59290AD77DE2856ECFD8340E28FF858E3D Certificate serial: 7F496147793434FDB88CC12AA8B5656F8BCFF5FE Authority key identifier: 80:F9:ED:59:29:0A:D7:7D:E2:85:6E:CF:D8:34:0E:28:FF:85:8E:3D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/80F9ED59290AD77DE2856ECFD8340E28FF858E3D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c07c88da-2b56-487e-9efe-571170b10286/0/323430353a6334303a343030303a3a2f33362d3336203d3e20313338383837.roa Signing time: Thu 02 Apr 2026 11:00:01 +0000 ROA not before: Thu 02 Apr 2026 10:55:01 +0000 ROA not after: Thu 01 Apr 2027 11:00:01 +0000 asID: 138887 IP address blocks: 2405:c40:4000::/36 maxlen: 36 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c07c88da-2b56-487e-9efe-571170b10286/0/80F9ED59290AD77DE2856ECFD8340E28FF858E3D.crl rsync://repo-rpki.idnic.net/repo/c07c88da-2b56-487e-9efe-571170b10286/0/80F9ED59290AD77DE2856ECFD8340E28FF858E3D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/80F9ED59290AD77DE2856ECFD8340E28FF858E3D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Apr 2026 12:25:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:49:61:47:79:34:34:fd:b8:8c:c1:2a:a8:b5:65:6f:8b:cf:f5:fe Signature Algorithm: sha256WithRSAEncryption Issuer: CN=80F9ED59290AD77DE2856ECFD8340E28FF858E3D Validity Not Before: Apr 2 10:55:01 2026 GMT Not After : Apr 1 11:00:01 2027 GMT Subject: CN=A53C947C29F2F1291D27C0ACD88C3EF7CC39F690 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:2f:6a:04:12:79:31:f6:ad:59:2d:7d:44:5f: b7:dd:5c:a4:e5:89:71:28:87:0e:cc:80:60:f2:35: 3f:4d:7b:fc:88:58:4f:59:80:2d:d4:e8:00:62:05: 43:47:d5:bb:59:7d:0f:1d:00:ba:bf:4a:4a:45:3c: bc:47:ed:c2:eb:ec:9e:7d:9c:48:71:88:19:88:1f: 90:74:e2:7d:69:c6:42:8c:33:af:2b:d5:8f:09:6f: 16:f0:8f:31:27:69:05:56:f7:89:8f:34:f2:3a:1e: 95:d3:42:36:a9:5c:58:a4:31:bd:1f:2b:d2:81:66: c8:6a:a0:f3:c4:04:7a:1a:51:7b:f9:c7:dc:51:c6: 8d:ca:a7:b7:27:eb:01:7d:97:e5:1d:3d:63:1a:2f: 53:c8:3a:a5:6a:70:dc:d9:63:26:c4:cc:c8:ad:a2: 3e:e9:1b:82:0c:bb:0a:ac:0d:49:9e:f6:1f:5d:08: da:bf:1f:80:c9:e2:84:e5:f9:df:cf:0a:d3:cb:83: 20:8e:e0:f2:e0:26:1c:eb:74:91:54:16:98:74:20: d0:94:87:96:13:d8:5d:26:23:00:15:b9:b2:14:93: d3:59:89:bd:be:9f:b1:a0:e6:cd:bf:b1:60:cf:43: 98:6a:02:86:a5:17:c3:6d:39:8a:5c:80:50:1c:ce: 6f:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:3C:94:7C:29:F2:F1:29:1D:27:C0:AC:D8:8C:3E:F7:CC:39:F6:90 X509v3 Authority Key Identifier: keyid:80:F9:ED:59:29:0A:D7:7D:E2:85:6E:CF:D8:34:0E:28:FF:85:8E:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c07c88da-2b56-487e-9efe-571170b10286/0/80F9ED59290AD77DE2856ECFD8340E28FF858E3D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/80F9ED59290AD77DE2856ECFD8340E28FF858E3D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c07c88da-2b56-487e-9efe-571170b10286/0/323430353a6334303a343030303a3a2f33362d3336203d3e20313338383837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:c40:4000::/36 Signature Algorithm: sha256WithRSAEncryption 4b:42:9f:99:ba:48:20:e6:01:24:83:7f:ff:51:cc:fc:e7:e9: be:fd:88:83:fe:54:c8:f9:15:7f:a4:1b:56:ed:83:ba:02:2c: 61:11:d0:b3:2e:0c:c2:23:03:37:68:01:4e:82:02:fb:6a:ce: fb:62:60:cb:8e:24:b4:87:23:e1:49:4d:e7:3d:6c:0b:7d:73: ff:7f:f6:7a:ac:db:cb:b2:3b:83:86:3e:40:59:59:3a:5b:9b: 88:4a:46:51:70:56:27:2c:21:1c:e4:7f:68:dd:14:bf:cd:02: f5:04:2a:23:26:78:38:f1:29:31:9e:79:3c:c8:c0:54:f2:5b: 12:62:0a:d1:b6:ab:1e:58:ce:50:a9:c0:f5:ee:5c:9f:cc:9d: 95:d6:3d:10:38:a3:26:4d:f7:6b:00:a7:27:df:b0:85:74:98: 4f:77:78:73:6e:a9:88:50:86:dc:56:11:b4:60:c2:b6:b4:96: d0:67:63:81:f9:21:11:33:5e:45:51:83:e6:eb:51:02:65:23: 0c:f0:10:21:9d:17:c7:04:19:e7:f3:dc:9d:f6:a4:47:ca:e6: bb:ce:30:1e:c8:42:5f:ec:81:40:6a:4f:72:bd:e5:0c:61:83: 8f:ec:9e:98:fd:36:71:2c:9c:b7:6a:2b:d5:43:2c:ed:c0:56: 9c:41:7d:01 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUf0lhR3k0NP24jMEqqLVlb4vP9f4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODBGOUVENTkyOTBBRDc3REUyODU2RUNGRDgzNDBFMjhG Rjg1OEUzRDAeFw0yNjA0MDIxMDU1MDFaFw0yNzA0MDExMTAwMDFaMDMxMTAvBgNV BAMTKEE1M0M5NDdDMjlGMkYxMjkxRDI3QzBBQ0Q4OEMzRUY3Q0MzOUY2OTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDuL2oEEnkx9q1ZLX1EX7fdXKTl iXEohw7MgGDyNT9Ne/yIWE9ZgC3U6ABiBUNH1btZfQ8dALq/SkpFPLxH7cLr7J59 nEhxiBmIH5B04n1pxkKMM68r1Y8JbxbwjzEnaQVW94mPNPI6HpXTQjapXFikMb0f K9KBZshqoPPEBHoaUXv5x9xRxo3Kp7cn6wF9l+UdPWMaL1PIOqVqcNzZYybEzMit oj7pG4IMuwqsDUme9h9dCNq/H4DJ4oTl+d/PCtPLgyCO4PLgJhzrdJFUFph0INCU h5YT2F0mIwAVubIUk9NZib2+n7Gg5s2/sWDPQ5hqAoalF8NtOYpcgFAczm/NAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUpTyUfCny8SkdJ8Cs2Iw+98w59pAwHwYDVR0j BBgwFoAUgPntWSkK133ihW7P2DQOKP+Fjj0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j MDdjODhkYS0yYjU2LTQ4N2UtOWVmZS01NzExNzBiMTAyODYvMC84MEY5RUQ1OTI5 MEFENzdERTI4NTZFQ0ZEODM0MEUyOEZGODU4RTNELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODBGOUVENTkyOTBBRDc3REUyODU2RUNGRDgzNDBFMjhGRjg1 OEUzRC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2MwN2M4OGRhLTJiNTYtNDg3ZS05 ZWZlLTU3MTE3MGIxMDI4Ni8wLzMyMzQzMDM1M2E2MzM0MzAzYTM0MzAzMDMwM2Ez YTJmMzMzNjJkMzMzNjIwM2QzZTIwMzEzMzM4MzgzODM3LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYEJAUM QEAwDQYJKoZIhvcNAQELBQADggEBAEtCn5m6SCDmASSDf/9RzPzn6b79iIP+VMj5 FX+kG1btg7oCLGER0LMuDMIjAzdoAU6CAvtqzvtiYMuOJLSHI+FJTec9bAt9c/9/ 9nqs28uyO4OGPkBZWTpbm4hKRlFwVicsIRzkf2jdFL/NAvUEKiMmeDjxKTGeeTzI wFTyWxJiCtG2qx5YzlCpwPXuXJ/MnZXWPRA4oyZN92sApyffsIV0mE93eHNuqYhQ htxWEbRgwra0ltBnY4H5IREzXkVRg+brUQJlIwzwECGdF8cEGefz3J32pEfK5rvO MB7IQl/sgUBqT3K95Qxhg4/snpj9NnEsnLdqK9VDLO3AVpxBfQE= -----END CERTIFICATE-----Generated at Sun Apr 19 14:24:55 2026 by rpki-client