$ rpki-client -vvf repo-rpki.idnic.net/repo/c4f07987-b8ec-444a-9b44-291011ff46a6/0/323030313a6466343a323038303a3a2f34382d3438203d3e20313430343436.roa File: 323030313a6466343a323038303a3a2f34382d3438203d3e20313430343436.roa (raw, json) Hash identifier: 7Wk7Glz3k1Io+Ag6MjicJycKEDLzM3855KdvnhiHGjw= Subject key identifier: BC:EF:E2:5A:59:40:F3:00:C3:89:B6:C7:87:A7:52:60:25:E7:B9:66 Certificate issuer: /CN=94159FAF0A979502CAB6C5ADDCAE4CFDECDEEDEF Certificate serial: 3BFF5C4778E95A4B86F2F2B98E6C70FAC614128A Authority key identifier: 94:15:9F:AF:0A:97:95:02:CA:B6:C5:AD:DC:AE:4C:FD:EC:DE:ED:EF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/94159FAF0A979502CAB6C5ADDCAE4CFDECDEEDEF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c4f07987-b8ec-444a-9b44-291011ff46a6/0/323030313a6466343a323038303a3a2f34382d3438203d3e20313430343436.roa Signing time: Wed 04 Feb 2026 14:00:02 +0000 ROA not before: Wed 04 Feb 2026 13:55:02 +0000 ROA not after: Wed 03 Feb 2027 14:00:02 +0000 asID: 140446 IP address blocks: 2001:df4:2080::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c4f07987-b8ec-444a-9b44-291011ff46a6/0/94159FAF0A979502CAB6C5ADDCAE4CFDECDEEDEF.crl rsync://repo-rpki.idnic.net/repo/c4f07987-b8ec-444a-9b44-291011ff46a6/0/94159FAF0A979502CAB6C5ADDCAE4CFDECDEEDEF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/94159FAF0A979502CAB6C5ADDCAE4CFDECDEEDEF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 03 Mar 2026 21:22:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:ff:5c:47:78:e9:5a:4b:86:f2:f2:b9:8e:6c:70:fa:c6:14:12:8a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=94159FAF0A979502CAB6C5ADDCAE4CFDECDEEDEF Validity Not Before: Feb 4 13:55:02 2026 GMT Not After : Feb 3 14:00:02 2027 GMT Subject: CN=BCEFE25A5940F300C389B6C787A7526025E7B966 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:90:aa:02:fc:5e:2b:d0:b8:39:a4:79:bd:a6: 55:4d:d3:cd:3e:d3:ee:b8:ad:e1:a8:20:7f:e7:fb: 34:3e:32:38:db:7c:9b:e5:80:7b:68:d9:1f:e4:41: 3b:2b:0f:d5:3d:ff:aa:2c:cf:49:ed:93:db:d2:61: 80:44:0f:85:6a:8a:42:56:39:4e:83:eb:2e:b4:ec: af:06:ca:78:c4:bb:57:85:64:69:03:ce:65:a2:02: dd:49:df:c7:59:6b:5c:f8:07:65:36:de:91:0b:1e: 39:63:7c:1b:5e:0a:79:89:34:e2:56:88:99:cd:e9: f3:48:95:f1:a7:1a:91:b6:d1:ec:a9:c9:4f:14:dd: 6a:89:78:08:30:6b:82:98:da:da:38:8e:4b:61:47: 28:00:ef:83:54:d7:a8:af:2b:d6:dc:49:e1:ad:0d: 59:ca:74:fa:9f:b4:01:52:a7:06:63:9d:e2:de:70: 42:7c:4d:98:ec:1c:f1:cd:00:bd:ba:d3:e0:d0:a6: a6:a4:0d:7d:e8:17:39:5f:46:d3:ff:b5:be:09:51: cb:f9:79:76:d0:d9:4f:8f:d3:41:e2:7d:53:75:41: db:2e:40:01:00:14:3a:0b:ef:d1:22:bd:ce:fe:85: c3:49:c5:50:36:66:17:f4:54:97:ec:fe:fd:6d:ef: 98:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:EF:E2:5A:59:40:F3:00:C3:89:B6:C7:87:A7:52:60:25:E7:B9:66 X509v3 Authority Key Identifier: keyid:94:15:9F:AF:0A:97:95:02:CA:B6:C5:AD:DC:AE:4C:FD:EC:DE:ED:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c4f07987-b8ec-444a-9b44-291011ff46a6/0/94159FAF0A979502CAB6C5ADDCAE4CFDECDEEDEF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/94159FAF0A979502CAB6C5ADDCAE4CFDECDEEDEF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c4f07987-b8ec-444a-9b44-291011ff46a6/0/323030313a6466343a323038303a3a2f34382d3438203d3e20313430343436.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df4:2080::/48 Signature Algorithm: sha256WithRSAEncryption a5:e6:5e:9d:c1:7a:db:64:d1:8d:9a:e7:31:47:5b:ab:93:b3: 8b:f9:6a:8e:ae:84:62:77:68:bf:2e:8b:b7:28:aa:3b:8d:9f: 9a:af:a9:88:77:8e:87:69:75:e2:56:dc:1c:fc:b8:3b:17:40: 9f:e1:41:97:60:cf:d1:aa:a8:16:2d:0f:32:73:da:d3:d8:58: 86:61:80:81:98:a5:11:92:c2:21:0c:12:da:36:aa:6e:8b:40: 0a:56:73:5a:2e:ed:85:7e:5f:1f:03:cf:ab:1d:2c:bb:75:25: 59:0f:c5:23:0e:1b:6e:63:c1:bc:ff:4a:d7:5f:b0:b4:72:1a: 7e:b8:ef:cb:3e:3d:06:2d:71:20:ff:99:6e:3f:6a:11:51:8b: bc:e9:d9:ee:0d:94:51:75:ae:bf:5d:21:83:51:f3:db:37:65: 4b:a5:a3:15:bd:48:9b:84:be:05:dd:08:18:69:96:76:52:7c: ef:ce:60:ab:a8:ca:55:51:46:6f:21:7f:a6:3c:33:4b:04:7c: 3c:79:32:77:43:70:1d:ae:02:b6:8b:29:30:49:41:ef:b3:4f: 06:7e:a5:6e:17:70:b5:81:b6:a1:88:ab:90:4a:24:8b:44:a2: c2:9a:86:48:9b:db:09:43:25:51:47:0b:51:e4:f5:2b:ed:a3: 84:54:9a:2b -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUO/9cR3jpWkuG8vK5jmxw+sYUEoowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTQxNTlGQUYwQTk3OTUwMkNBQjZDNUFERENBRTRDRkRF Q0RFRURFRjAeFw0yNjAyMDQxMzU1MDJaFw0yNzAyMDMxNDAwMDJaMDMxMTAvBgNV BAMTKEJDRUZFMjVBNTk0MEYzMDBDMzg5QjZDNzg3QTc1MjYwMjVFN0I5NjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCkKoC/F4r0Lg5pHm9plVN080+ 0+64reGoIH/n+zQ+MjjbfJvlgHto2R/kQTsrD9U9/6osz0ntk9vSYYBED4VqikJW OU6D6y607K8GynjEu1eFZGkDzmWiAt1J38dZa1z4B2U23pELHjljfBteCnmJNOJW iJnN6fNIlfGnGpG20eypyU8U3WqJeAgwa4KY2to4jkthRygA74NU16ivK9bcSeGt DVnKdPqftAFSpwZjneLecEJ8TZjsHPHNAL260+DQpqakDX3oFzlfRtP/tb4JUcv5 eXbQ2U+P00HifVN1QdsuQAEAFDoL79Eivc7+hcNJxVA2Zhf0VJfs/v1t75gNAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUvO/iWllA8wDDibbHh6dSYCXnuWYwHwYDVR0j BBgwFoAUlBWfrwqXlQLKtsWt3K5M/eze7e8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j NGYwNzk4Ny1iOGVjLTQ0NGEtOWI0NC0yOTEwMTFmZjQ2YTYvMC85NDE1OUZBRjBB OTc5NTAyQ0FCNkM1QUREQ0FFNENGREVDREVFREVGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTQxNTlGQUYwQTk3OTUwMkNBQjZDNUFERENBRTRDRkRFQ0RF RURFRi5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M0ZjA3OTg3LWI4ZWMtNDQ0YS05 YjQ0LTI5MTAxMWZmNDZhNi8wLzMyMzAzMDMxM2E2NDY2MzQzYTMyMzAzODMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNDMwMzQzNDM2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 9CCAMA0GCSqGSIb3DQEBCwUAA4IBAQCl5l6dwXrbZNGNmucxR1urk7OL+WqOroRi d2i/Lou3KKo7jZ+ar6mId46HaXXiVtwc/Lg7F0Cf4UGXYM/RqqgWLQ8yc9rT2FiG YYCBmKURksIhDBLaNqpui0AKVnNaLu2Ffl8fA8+rHSy7dSVZD8UjDhtuY8G8/0rX X7C0chp+uO/LPj0GLXEg/5luP2oRUYu86dnuDZRRda6/XSGDUfPbN2VLpaMVvUib hL4F3QgYaZZ2UnzvzmCrqMpVUUZvIX+mPDNLBHw8eTJ3Q3AdrgK2iykwSUHvs08G fqVuF3C1gbahiKuQSiSLRKLCmoZIm9sJQyVRRwtR5PUr7aOEVJor -----END CERTIFICATE-----Generated at Mon Mar 2 19:46:27 2026 by rpki-client