$ rpki-client -vvf repo-rpki.idnic.net/repo/e17bd502-42c2-400d-a2ad-d1754365a45d/0/323430323a343834303a313a3a2f34382d3438203d3e20313337333239.roa File: 323430323a343834303a313a3a2f34382d3438203d3e20313337333239.roa (raw, json) Hash identifier: iDtEnwEAIcz1KT9JCfDD2YjeNsTwZYoyKK4RPyh2ziM= Subject key identifier: C0:5F:6A:56:DF:EE:D7:9A:A1:30:B1:25:42:00:A3:0D:5A:AD:21:26 Certificate issuer: /CN=19093F7761A9E337D03405604750BFD4ADC2121E Certificate serial: 4C8ED5B4FD9CEEA436968FB06676B2F466C9BF5B Authority key identifier: 19:09:3F:77:61:A9:E3:37:D0:34:05:60:47:50:BF:D4:AD:C2:12:1E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/19093F7761A9E337D03405604750BFD4ADC2121E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e17bd502-42c2-400d-a2ad-d1754365a45d/0/323430323a343834303a313a3a2f34382d3438203d3e20313337333239.roa Signing time: Tue 31 Mar 2026 21:00:02 +0000 ROA not before: Tue 31 Mar 2026 20:55:02 +0000 ROA not after: Tue 30 Mar 2027 21:00:02 +0000 asID: 137329 IP address blocks: 2402:4840:1::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e17bd502-42c2-400d-a2ad-d1754365a45d/0/19093F7761A9E337D03405604750BFD4ADC2121E.crl rsync://repo-rpki.idnic.net/repo/e17bd502-42c2-400d-a2ad-d1754365a45d/0/19093F7761A9E337D03405604750BFD4ADC2121E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/19093F7761A9E337D03405604750BFD4ADC2121E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Apr 2026 12:00:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:8e:d5:b4:fd:9c:ee:a4:36:96:8f:b0:66:76:b2:f4:66:c9:bf:5b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=19093F7761A9E337D03405604750BFD4ADC2121E Validity Not Before: Mar 31 20:55:02 2026 GMT Not After : Mar 30 21:00:02 2027 GMT Subject: CN=C05F6A56DFEED79AA130B1254200A30D5AAD2126 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:40:8d:ba:59:ed:be:22:a3:e7:38:d8:3d:64: 26:6a:00:59:ae:64:d4:5d:0a:5c:b3:8a:42:0c:d8: f9:06:ea:4c:dc:6a:31:4f:1f:b4:47:4e:ca:1e:45: ea:5d:7b:2b:b8:d4:93:a5:3e:fc:7c:3b:9a:a2:81: db:4c:00:59:20:56:27:2f:f0:61:e5:82:d1:87:7c: 5b:47:4b:05:38:4a:76:46:dd:ad:37:70:ee:8d:3b: 30:3d:cf:24:ed:87:12:72:17:2f:e4:22:15:29:61: 54:e6:26:4e:eb:cd:53:ff:55:fb:42:72:30:3a:13: a9:ac:f5:58:c6:6b:8c:5f:16:b2:e3:d0:96:07:ec: d2:2d:82:0e:d1:73:76:ab:cf:8c:99:23:23:57:20: 76:ad:f8:54:2d:d5:d3:9a:e5:b8:f6:41:9f:67:d5: 82:b0:7b:4a:b7:16:38:5c:a9:e8:7d:78:4c:74:2c: 0a:30:73:3e:2b:a2:20:7a:5d:f3:16:ad:4a:a5:11: 13:2b:17:73:9f:74:43:04:5e:2d:35:15:18:e8:7d: 73:55:f3:8f:4b:1f:0e:e1:de:e8:6b:89:50:95:49: 0f:a1:dc:70:b3:a7:71:af:2e:8d:74:f9:74:c4:25: d0:27:34:0e:bf:21:13:73:4e:af:90:a9:fb:cf:5e: 9e:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:5F:6A:56:DF:EE:D7:9A:A1:30:B1:25:42:00:A3:0D:5A:AD:21:26 X509v3 Authority Key Identifier: keyid:19:09:3F:77:61:A9:E3:37:D0:34:05:60:47:50:BF:D4:AD:C2:12:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e17bd502-42c2-400d-a2ad-d1754365a45d/0/19093F7761A9E337D03405604750BFD4ADC2121E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/19093F7761A9E337D03405604750BFD4ADC2121E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e17bd502-42c2-400d-a2ad-d1754365a45d/0/323430323a343834303a313a3a2f34382d3438203d3e20313337333239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:4840:1::/48 Signature Algorithm: sha256WithRSAEncryption a8:07:a7:ec:ac:cb:85:6a:71:dc:9b:a5:33:a9:25:9b:29:ce: 00:5e:d6:24:81:b9:e9:77:df:8a:f5:35:12:e4:27:83:4c:ca: 8e:6d:09:0d:91:82:7e:b9:37:14:c7:60:37:79:2d:92:46:51: dd:8f:69:83:35:4d:f8:7b:04:13:d2:32:bb:59:20:6c:4a:25: 7f:00:29:3b:ed:f3:3a:e5:e3:00:d9:41:37:32:a0:18:ee:c3: 8a:2c:6f:84:30:dd:77:43:c7:95:51:7d:cd:83:56:6b:a9:20: b0:59:dd:a7:da:07:79:e8:c2:31:c0:da:f1:59:ee:ca:08:b6: 1b:16:32:c7:65:31:cc:35:dd:d1:8b:96:3b:56:54:e2:7a:2f: a9:c8:1c:f7:5a:3a:7d:8e:8d:9e:4e:68:0c:6f:5f:73:c3:dc: d4:7c:80:d3:1f:41:d2:3f:75:b0:53:68:13:4c:cc:3a:b7:c5: 59:e4:29:6c:d2:86:0a:40:71:36:25:57:c4:5c:cb:c8:09:d4: 83:2b:2f:58:93:74:82:94:e3:1d:a6:22:98:c7:f0:97:63:e8: 55:81:3b:cb:07:6b:f9:7d:48:71:dc:5c:81:7c:d6:0d:58:c9: 7c:56:3b:91:f4:c3:4a:3d:69:b1:2f:69:b2:36:86:15:dd:65: 93:5f:ee:a4 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUTI7VtP2c7qQ2lo+wZnay9GbJv1swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTkwOTNGNzc2MUE5RTMzN0QwMzQwNTYwNDc1MEJGRDRB REMyMTIxRTAeFw0yNjAzMzEyMDU1MDJaFw0yNzAzMzAyMTAwMDJaMDMxMTAvBgNV BAMTKEMwNUY2QTU2REZFRUQ3OUFBMTMwQjEyNTQyMDBBMzBENUFBRDIxMjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqQI26We2+IqPnONg9ZCZqAFmu ZNRdClyzikIM2PkG6kzcajFPH7RHTsoeRepdeyu41JOlPvx8O5qigdtMAFkgVicv 8GHlgtGHfFtHSwU4SnZG3a03cO6NOzA9zyTthxJyFy/kIhUpYVTmJk7rzVP/VftC cjA6E6ms9VjGa4xfFrLj0JYH7NItgg7Rc3arz4yZIyNXIHat+FQt1dOa5bj2QZ9n 1YKwe0q3Fjhcqeh9eEx0LAowcz4roiB6XfMWrUqlERMrF3OfdEMEXi01FRjofXNV 849LHw7h3uhriVCVSQ+h3HCzp3GvLo10+XTEJdAnNA6/IRNzTq+QqfvPXp7nAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUwF9qVt/u15qhMLElQgCjDVqtISYwHwYDVR0j BBgwFoAUGQk/d2Gp4zfQNAVgR1C/1K3CEh4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l MTdiZDUwMi00MmMyLTQwMGQtYTJhZC1kMTc1NDM2NWE0NWQvMC8xOTA5M0Y3NzYx QTlFMzM3RDAzNDA1NjA0NzUwQkZENEFEQzIxMjFFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTkwOTNGNzc2MUE5RTMzN0QwMzQwNTYwNDc1MEJGRDRBREMy MTIxRS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2UxN2JkNTAyLTQyYzItNDAwZC1h MmFkLWQxNzU0MzY1YTQ1ZC8wLzMyMzQzMDMyM2EzNDM4MzQzMDNhMzEzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTMzMzczMzMyMzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkAkhAAAEw DQYJKoZIhvcNAQELBQADggEBAKgHp+ysy4VqcdybpTOpJZspzgBe1iSBuel334r1 NRLkJ4NMyo5tCQ2Rgn65NxTHYDd5LZJGUd2PaYM1Tfh7BBPSMrtZIGxKJX8AKTvt 8zrl4wDZQTcyoBjuw4osb4Qw3XdDx5VRfc2DVmupILBZ3afaB3nowjHA2vFZ7soI thsWMsdlMcw13dGLljtWVOJ6L6nIHPdaOn2OjZ5OaAxvX3PD3NR8gNMfQdI/dbBT aBNMzDq3xVnkKWzShgpAcTYlV8Rcy8gJ1IMrL1iTdIKU4x2mIpjH8Jdj6FWBO8sH a/l9SHHcXIF81g1YyXxWO5H0w0o9abEvabI2hhXdZZNf7qQ= -----END CERTIFICATE-----Generated at Sun Apr 19 11:40:04 2026 by rpki-client