$ rpki-client -vvf repo-rpki.idnic.net/repo/c07c88da-2b56-487e-9efe-571170b10286/0/323430353a6334303a3a2f33332d3333203d3e20313338383837.roa File: 323430353a6334303a3a2f33332d3333203d3e20313338383837.roa (raw, json) Hash identifier: qHbbCCyHMhgr4Ia4bC/o4bYVsgfrZVcoDuzIG+dRua0= Subject key identifier: 9D:8B:73:95:B0:17:BD:2E:9E:4C:F5:24:34:D0:FE:BF:6F:37:A4:67 Certificate issuer: /CN=80F9ED59290AD77DE2856ECFD8340E28FF858E3D Certificate serial: 88512BC07EDB318C9D541316E8F3B1BA5DF8E3 Authority key identifier: 80:F9:ED:59:29:0A:D7:7D:E2:85:6E:CF:D8:34:0E:28:FF:85:8E:3D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/80F9ED59290AD77DE2856ECFD8340E28FF858E3D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c07c88da-2b56-487e-9efe-571170b10286/0/323430353a6334303a3a2f33332d3333203d3e20313338383837.roa Signing time: Thu 02 Apr 2026 11:00:01 +0000 ROA not before: Thu 02 Apr 2026 10:55:01 +0000 ROA not after: Thu 01 Apr 2027 11:00:01 +0000 asID: 138887 IP address blocks: 2405:c40::/33 maxlen: 33 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c07c88da-2b56-487e-9efe-571170b10286/0/80F9ED59290AD77DE2856ECFD8340E28FF858E3D.crl rsync://repo-rpki.idnic.net/repo/c07c88da-2b56-487e-9efe-571170b10286/0/80F9ED59290AD77DE2856ECFD8340E28FF858E3D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/80F9ED59290AD77DE2856ECFD8340E28FF858E3D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Apr 2026 12:25:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 88:51:2b:c0:7e:db:31:8c:9d:54:13:16:e8:f3:b1:ba:5d:f8:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=80F9ED59290AD77DE2856ECFD8340E28FF858E3D Validity Not Before: Apr 2 10:55:01 2026 GMT Not After : Apr 1 11:00:01 2027 GMT Subject: CN=9D8B7395B017BD2E9E4CF52434D0FEBF6F37A467 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:57:d7:b7:05:08:7a:0d:46:98:f0:f9:f5:a9: 7a:89:2a:51:f5:08:09:7f:55:a4:2b:b1:b7:74:03: f9:18:9e:7c:6d:6b:37:5d:fa:e3:11:d6:67:d6:38: 02:a6:7f:5e:15:27:7b:ea:34:be:f3:d1:ca:17:f3: 1b:bd:41:18:50:1e:d7:f4:be:e6:51:77:3e:a4:21: cc:b3:d3:22:86:43:36:d0:b8:61:12:9a:fe:95:ca: 2a:39:96:97:41:ba:80:2e:4a:b5:c7:10:75:c4:e8: ab:45:f1:bb:7f:81:72:61:ae:c5:72:ce:e3:26:6c: c6:fb:9a:7d:07:91:53:87:b5:74:2f:61:b4:66:a4: 24:ff:6b:b9:4a:94:e0:b9:83:35:42:69:6e:9e:f5: b2:ba:70:c3:5e:0d:df:fb:d6:72:8f:ef:b2:9a:cf: 31:9b:9d:8b:c1:90:aa:c2:4f:1f:a1:2a:b2:93:8f: e0:d3:2c:00:f2:e6:bb:17:e8:18:14:bb:55:df:ab: ed:53:48:18:f3:43:92:0d:db:5b:44:a1:85:6e:33: 91:ab:6f:1c:20:8a:8a:73:13:0c:dd:ee:c6:dc:ca: 16:9d:61:4c:49:a1:61:fb:80:22:9e:76:14:b2:a3: 4a:9f:77:f1:c8:2e:f7:8c:1e:34:74:fd:d4:d4:3c: 09:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:8B:73:95:B0:17:BD:2E:9E:4C:F5:24:34:D0:FE:BF:6F:37:A4:67 X509v3 Authority Key Identifier: keyid:80:F9:ED:59:29:0A:D7:7D:E2:85:6E:CF:D8:34:0E:28:FF:85:8E:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c07c88da-2b56-487e-9efe-571170b10286/0/80F9ED59290AD77DE2856ECFD8340E28FF858E3D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/80F9ED59290AD77DE2856ECFD8340E28FF858E3D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c07c88da-2b56-487e-9efe-571170b10286/0/323430353a6334303a3a2f33332d3333203d3e20313338383837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:c40::/33 Signature Algorithm: sha256WithRSAEncryption 9c:05:db:0c:5c:ee:fe:53:7a:ac:00:f2:7d:80:6a:4d:0a:ea: f9:b1:cf:74:10:34:a9:4d:d5:4b:e5:e1:ab:05:fc:7c:3d:38: 68:5b:fb:31:ad:2b:10:8b:90:92:b6:20:99:79:62:00:43:ff: d1:dc:14:c1:42:d5:46:ec:fa:a2:77:7d:a3:a9:bf:50:e2:7e: 12:b5:b6:30:08:6a:9b:a6:2a:cb:8f:e8:e2:68:96:76:1b:95: 11:77:f3:4f:0c:2a:3b:e7:7c:65:90:48:a9:e4:4d:0d:b8:b6: d3:a3:51:15:d1:3b:c9:26:d8:74:e7:2a:71:ec:90:36:63:32: 4a:5e:e4:46:f1:13:5b:f4:f5:27:2b:30:75:a2:ab:fb:ef:a2: 75:2a:63:0d:d9:35:18:7a:15:5f:c2:4a:47:63:62:d6:c9:d5: d4:bc:29:98:1f:dc:dc:73:c5:e1:2b:67:f6:94:ea:3a:28:22: c2:7a:2f:ef:31:07:3c:17:dc:2c:fd:c6:95:cd:50:77:e9:42: 4f:c1:c5:75:8a:fd:9a:dc:f2:ac:0d:03:38:79:da:70:b1:6c: 69:e1:8a:76:e5:44:b3:3d:ad:da:fd:64:16:ec:47:0d:da:9c: 7d:fe:ad:39:1e:10:6d:46:7d:b3:c7:62:f8:e4:b5:fc:4d:c3: 82:41:8a:ef -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUAIhRK8B+2zGMnVQTFujzsbpd+OMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODBGOUVENTkyOTBBRDc3REUyODU2RUNGRDgzNDBFMjhG Rjg1OEUzRDAeFw0yNjA0MDIxMDU1MDFaFw0yNzA0MDExMTAwMDFaMDMxMTAvBgNV BAMTKDlEOEI3Mzk1QjAxN0JEMkU5RTRDRjUyNDM0RDBGRUJGNkYzN0E0NjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6V9e3BQh6DUaY8Pn1qXqJKlH1 CAl/VaQrsbd0A/kYnnxtazdd+uMR1mfWOAKmf14VJ3vqNL7z0coX8xu9QRhQHtf0 vuZRdz6kIcyz0yKGQzbQuGESmv6Vyio5lpdBuoAuSrXHEHXE6KtF8bt/gXJhrsVy zuMmbMb7mn0HkVOHtXQvYbRmpCT/a7lKlOC5gzVCaW6e9bK6cMNeDd/71nKP77Ka zzGbnYvBkKrCTx+hKrKTj+DTLADy5rsX6BgUu1Xfq+1TSBjzQ5IN21tEoYVuM5Gr bxwgiopzEwzd7sbcyhadYUxJoWH7gCKedhSyo0qfd/HILveMHjR0/dTUPAlzAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUnYtzlbAXvS6eTPUkNND+v283pGcwHwYDVR0j BBgwFoAUgPntWSkK133ihW7P2DQOKP+Fjj0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j MDdjODhkYS0yYjU2LTQ4N2UtOWVmZS01NzExNzBiMTAyODYvMC84MEY5RUQ1OTI5 MEFENzdERTI4NTZFQ0ZEODM0MEUyOEZGODU4RTNELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODBGOUVENTkyOTBBRDc3REUyODU2RUNGRDgzNDBFMjhGRjg1 OEUzRC5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2MwN2M4OGRhLTJiNTYtNDg3ZS05 ZWZlLTU3MTE3MGIxMDI4Ni8wLzMyMzQzMDM1M2E2MzM0MzAzYTNhMmYzMzMzMmQz MzMzMjAzZDNlMjAzMTMzMzgzODM4Mzcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgckBQxAADANBgkqhkiG 9w0BAQsFAAOCAQEAnAXbDFzu/lN6rADyfYBqTQrq+bHPdBA0qU3VS+XhqwX8fD04 aFv7Ma0rEIuQkrYgmXliAEP/0dwUwULVRuz6ond9o6m/UOJ+ErW2MAhqm6Yqy4/o 4miWdhuVEXfzTwwqO+d8ZZBIqeRNDbi206NRFdE7ySbYdOcqceyQNmMySl7kRvET W/T1JyswdaKr+++idSpjDdk1GHoVX8JKR2Ni1snV1LwpmB/c3HPF4Stn9pTqOigi wnov7zEHPBfcLP3Glc1Qd+lCT8HFdYr9mtzyrA0DOHnacLFsaeGKduVEsz2t2v1k FuxHDdqcff6tOR4QbUZ9s8di+OS1/E3DgkGK7w== -----END CERTIFICATE-----Generated at Sun Apr 19 14:24:57 2026 by rpki-client