$ rpki-client -vvf repo-rpki.idnic.net/repo/d4f2c025-1d76-4a36-8160-a9e8afe3579f/0/323430363a616563303a3a2f34382d3438203d3e20313431363735.roa File: 323430363a616563303a3a2f34382d3438203d3e20313431363735.roa (raw, json) Hash identifier: dgoYQWGc8XoioTXPbChMdivJ51xZvH2aNKeh0hKS/wU= Subject key identifier: F6:4B:89:F4:1A:23:79:3A:42:F1:80:12:94:CB:91:69:50:75:7B:A9 Certificate issuer: /CN=1952B074D19D5AB562D7EE537AD3059EA097353B Certificate serial: 041D354788CAAEE0BF44FA7FB3DC81664D96A567 Authority key identifier: 19:52:B0:74:D1:9D:5A:B5:62:D7:EE:53:7A:D3:05:9E:A0:97:35:3B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1952B074D19D5AB562D7EE537AD3059EA097353B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d4f2c025-1d76-4a36-8160-a9e8afe3579f/0/323430363a616563303a3a2f34382d3438203d3e20313431363735.roa Signing time: Thu 16 Apr 2026 03:00:02 +0000 ROA not before: Thu 16 Apr 2026 02:55:02 +0000 ROA not after: Thu 15 Apr 2027 03:00:02 +0000 asID: 141675 IP address blocks: 2406:aec0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d4f2c025-1d76-4a36-8160-a9e8afe3579f/0/1952B074D19D5AB562D7EE537AD3059EA097353B.crl rsync://repo-rpki.idnic.net/repo/d4f2c025-1d76-4a36-8160-a9e8afe3579f/0/1952B074D19D5AB562D7EE537AD3059EA097353B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1952B074D19D5AB562D7EE537AD3059EA097353B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Apr 2026 12:15:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:1d:35:47:88:ca:ae:e0:bf:44:fa:7f:b3:dc:81:66:4d:96:a5:67 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1952B074D19D5AB562D7EE537AD3059EA097353B Validity Not Before: Apr 16 02:55:02 2026 GMT Not After : Apr 15 03:00:02 2027 GMT Subject: CN=F64B89F41A23793A42F1801294CB916950757BA9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:05:f4:4f:30:13:75:b0:2d:ba:8e:bc:35:db: e7:cd:7d:c5:2c:e2:9d:a8:c4:33:80:f6:d2:7d:32: fe:ec:62:0f:e9:51:0c:c2:f9:ff:c7:49:22:86:48: b2:73:68:10:47:ee:6c:f7:19:2a:39:67:eb:66:eb: fb:39:41:f8:be:d9:3a:0c:53:fa:f6:c0:47:00:b8: 43:73:38:19:b2:df:46:b4:1f:d7:76:7b:52:09:2a: 38:cc:96:fd:ae:8d:89:fb:d3:c6:8b:84:7b:f8:cc: cf:7a:85:0c:d2:52:c6:22:61:0b:cf:ef:84:1d:9b: 38:e4:2e:ac:42:83:65:49:74:21:87:b5:72:b2:98: 3f:61:a8:a7:ab:23:a8:8c:8d:26:dc:2e:86:58:ef: f3:3c:6c:f9:88:10:88:2b:ae:8c:1d:03:be:b6:18: 2a:e1:f9:c0:03:af:f9:a6:22:e1:0c:c0:c8:e4:8c: 89:5c:04:0b:19:11:2f:b5:5d:f4:fd:00:13:f6:c6: 2c:e9:ea:d4:a5:87:95:04:b7:d0:9b:7f:6f:b4:a7: fc:09:fd:a6:51:c9:f6:a5:0a:ea:13:7c:da:16:10: 75:ff:19:10:78:a6:7f:0a:16:f5:3d:cb:d0:db:77: 00:4a:2c:44:f4:5e:e7:ab:10:64:b8:ad:57:73:50: 77:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:4B:89:F4:1A:23:79:3A:42:F1:80:12:94:CB:91:69:50:75:7B:A9 X509v3 Authority Key Identifier: keyid:19:52:B0:74:D1:9D:5A:B5:62:D7:EE:53:7A:D3:05:9E:A0:97:35:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d4f2c025-1d76-4a36-8160-a9e8afe3579f/0/1952B074D19D5AB562D7EE537AD3059EA097353B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1952B074D19D5AB562D7EE537AD3059EA097353B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d4f2c025-1d76-4a36-8160-a9e8afe3579f/0/323430363a616563303a3a2f34382d3438203d3e20313431363735.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:aec0::/48 Signature Algorithm: sha256WithRSAEncryption 16:94:eb:f2:62:c1:c5:b4:8b:42:a8:87:e9:f6:80:b9:24:9d: a4:27:87:12:eb:30:39:8f:25:98:c4:d7:d5:60:88:00:c0:eb: 16:3b:52:79:90:e7:f8:32:1e:d6:f4:1f:93:ac:61:23:ad:91: 8c:ff:8a:07:64:16:25:f9:8b:7a:51:fc:9f:2e:7b:8d:0b:5f: b3:cb:71:c5:31:fa:fe:64:3a:8c:05:33:ec:88:8b:bd:09:bc: ac:39:e9:bf:66:87:16:ed:e1:7f:a8:f1:99:37:09:59:76:75: f8:56:2b:19:37:54:b1:45:4d:a8:ac:c9:e5:18:99:a2:39:b4: ee:3f:e0:4d:fc:1a:38:5c:89:4c:b0:b1:f4:27:97:0e:37:7a: 2b:c5:4e:0b:d5:a7:b9:fe:2f:bc:ed:5f:94:17:45:db:49:d1: f6:7b:cb:ad:15:0f:2d:bb:b4:80:db:6f:18:2f:0c:e3:fe:63: 32:7b:fc:5f:68:38:67:19:b5:92:47:fd:1a:40:6d:b5:34:1e: 65:8a:68:96:5f:24:20:20:76:2d:8a:07:8f:b9:e2:6e:cf:17: 39:32:64:5c:e5:ca:ab:9d:7b:9c:71:df:5e:a9:16:25:0b:78: 5c:10:23:16:3b:9b:40:cf:73:d5:41:53:6f:95:06:26:70:e4: 05:b6:9f:3d -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgIUBB01R4jKruC/RPp/s9yBZk2WpWcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTk1MkIwNzREMTlENUFCNTYyRDdFRTUzN0FEMzA1OUVB MDk3MzUzQjAeFw0yNjA0MTYwMjU1MDJaFw0yNzA0MTUwMzAwMDJaMDMxMTAvBgNV BAMTKEY2NEI4OUY0MUEyMzc5M0E0MkYxODAxMjk0Q0I5MTY5NTA3NTdCQTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDbBfRPMBN1sC26jrw12+fNfcUs 4p2oxDOA9tJ9Mv7sYg/pUQzC+f/HSSKGSLJzaBBH7mz3GSo5Z+tm6/s5Qfi+2ToM U/r2wEcAuENzOBmy30a0H9d2e1IJKjjMlv2ujYn708aLhHv4zM96hQzSUsYiYQvP 74QdmzjkLqxCg2VJdCGHtXKymD9hqKerI6iMjSbcLoZY7/M8bPmIEIgrrowdA762 GCrh+cADr/mmIuEMwMjkjIlcBAsZES+1XfT9ABP2xizp6tSlh5UEt9Cbf2+0p/wJ /aZRyfalCuoTfNoWEHX/GRB4pn8KFvU9y9DbdwBKLET0XuerEGS4rVdzUHfjAgMB AAGjggI1MIICMTAdBgNVHQ4EFgQU9kuJ9BojeTpC8YASlMuRaVB1e6kwHwYDVR0j BBgwFoAUGVKwdNGdWrVi1+5TetMFnqCXNTswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k NGYyYzAyNS0xZDc2LTRhMzYtODE2MC1hOWU4YWZlMzU3OWYvMC8xOTUyQjA3NEQx OUQ1QUI1NjJEN0VFNTM3QUQzMDU5RUEwOTczNTNCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTk1MkIwNzREMTlENUFCNTYyRDdFRTUzN0FEMzA1OUVBMDk3 MzUzQi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q0ZjJjMDI1LTFkNzYtNGEzNi04 MTYwLWE5ZThhZmUzNTc5Zi8wLzMyMzQzMDM2M2E2MTY1NjMzMDNhM2EyZjM0Mzgy ZDM0MzgyMDNkM2UyMDMxMzQzMTM2MzczNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQGrsAAADANBgkq hkiG9w0BAQsFAAOCAQEAFpTr8mLBxbSLQqiH6faAuSSdpCeHEuswOY8lmMTX1WCI AMDrFjtSeZDn+DIe1vQfk6xhI62RjP+KB2QWJfmLelH8ny57jQtfs8txxTH6/mQ6 jAUz7IiLvQm8rDnpv2aHFu3hf6jxmTcJWXZ1+FYrGTdUsUVNqKzJ5RiZojm07j/g TfwaOFyJTLCx9CeXDjd6K8VOC9Wnuf4vvO1flBdF20nR9nvLrRUPLbu0gNtvGC8M 4/5jMnv8X2g4Zxm1kkf9GkBttTQeZYpoll8kICB2LYoHj7nibs8XOTJkXOXKq517 nHHfXqkWJQt4XBAjFjubQM9z1UFTb5UGJnDkBbafPQ== -----END CERTIFICATE-----Generated at Sun Apr 19 11:54:57 2026 by rpki-client