$ rpki-client -vvf repo-rpki.idnic.net/repo/e17bd502-42c2-400d-a2ad-d1754365a45d/0/323430323a343834303a323030333a3a2f34382d3438203d3e20313337333239.roa File: 323430323a343834303a323030333a3a2f34382d3438203d3e20313337333239.roa (raw, json) Hash identifier: TyM03i7uxx6Pu2NJb5og6i86H1DXH9XAh0qFbosFFxk= Subject key identifier: 51:6E:59:BB:FF:4A:26:EF:7B:08:91:4D:60:F5:9E:DA:B4:C2:8F:23 Certificate issuer: /CN=19093F7761A9E337D03405604750BFD4ADC2121E Certificate serial: 0A8D327B33FC405070EFED80D8882F13B687F243 Authority key identifier: 19:09:3F:77:61:A9:E3:37:D0:34:05:60:47:50:BF:D4:AD:C2:12:1E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/19093F7761A9E337D03405604750BFD4ADC2121E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e17bd502-42c2-400d-a2ad-d1754365a45d/0/323430323a343834303a323030333a3a2f34382d3438203d3e20313337333239.roa Signing time: Tue 31 Mar 2026 20:00:02 +0000 ROA not before: Tue 31 Mar 2026 19:55:02 +0000 ROA not after: Tue 30 Mar 2027 20:00:02 +0000 asID: 137329 IP address blocks: 2402:4840:2003::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e17bd502-42c2-400d-a2ad-d1754365a45d/0/19093F7761A9E337D03405604750BFD4ADC2121E.crl rsync://repo-rpki.idnic.net/repo/e17bd502-42c2-400d-a2ad-d1754365a45d/0/19093F7761A9E337D03405604750BFD4ADC2121E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/19093F7761A9E337D03405604750BFD4ADC2121E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Apr 2026 12:00:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:8d:32:7b:33:fc:40:50:70:ef:ed:80:d8:88:2f:13:b6:87:f2:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=19093F7761A9E337D03405604750BFD4ADC2121E Validity Not Before: Mar 31 19:55:02 2026 GMT Not After : Mar 30 20:00:02 2027 GMT Subject: CN=516E59BBFF4A26EF7B08914D60F59EDAB4C28F23 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:41:6d:7c:fb:c9:ae:06:24:dc:4d:db:5b:61: 9c:a5:de:4c:ea:ac:97:ea:45:77:a4:72:8b:ad:c0: ed:df:4e:b0:0d:3b:b6:19:de:b1:e3:e9:03:d4:35: 84:36:2f:a7:6f:f0:2b:d8:42:30:6e:92:15:8f:dd: bd:1d:b4:42:86:d5:48:45:4b:73:1e:cd:e1:fd:38: cd:f9:9e:ff:ad:9e:1a:32:09:ac:cd:7f:88:b9:27: a8:64:72:a2:b1:c0:fa:66:2c:c2:f6:4b:90:16:ca: 09:84:69:fd:08:d6:29:23:62:2a:65:73:b7:74:5c: 74:b7:20:a2:e7:9d:32:4a:81:14:10:a0:9c:40:17: 3b:38:29:ab:a4:a8:1f:a9:3e:f2:eb:73:0e:52:28: 46:6d:e0:e5:f6:b4:86:ac:af:db:2d:4d:f3:90:26: 99:a8:7e:06:57:aa:37:bf:25:2f:9d:85:3b:d3:24: da:58:50:61:10:72:4a:73:f4:9b:6e:0f:e7:e0:2d: 1a:eb:51:71:1d:4e:5e:74:5b:fd:ef:14:fe:d2:84: dd:11:4d:5b:a3:2b:b2:a4:a6:a6:6d:fe:75:ac:a1: 72:c0:d1:49:8b:61:18:c3:ac:84:b1:56:e4:1e:6a: e8:6f:e4:f9:26:a1:59:c1:3a:1e:e9:52:6a:99:6b: 58:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:6E:59:BB:FF:4A:26:EF:7B:08:91:4D:60:F5:9E:DA:B4:C2:8F:23 X509v3 Authority Key Identifier: keyid:19:09:3F:77:61:A9:E3:37:D0:34:05:60:47:50:BF:D4:AD:C2:12:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e17bd502-42c2-400d-a2ad-d1754365a45d/0/19093F7761A9E337D03405604750BFD4ADC2121E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/19093F7761A9E337D03405604750BFD4ADC2121E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e17bd502-42c2-400d-a2ad-d1754365a45d/0/323430323a343834303a323030333a3a2f34382d3438203d3e20313337333239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:4840:2003::/48 Signature Algorithm: sha256WithRSAEncryption b0:78:b7:23:e3:be:e6:4b:1e:f3:bd:4c:33:2c:c3:25:ea:26: d2:e8:8c:b6:72:43:d3:24:57:c0:b7:e3:b4:a9:3f:ff:da:ed: b5:5a:4c:6e:44:aa:f8:01:b7:d7:73:42:6b:87:50:18:ca:8d: 38:86:6b:e5:9d:4a:4d:89:0c:49:58:01:00:22:62:c0:e5:32: cd:7f:9d:d8:b9:8b:04:50:f1:ad:9e:56:24:bc:f1:86:c0:2a: 2f:d8:20:28:1b:8c:89:5d:07:aa:e2:93:ed:9a:a7:24:a3:5e: 7c:41:6b:e6:11:fd:53:f6:02:00:46:2a:09:0f:2f:ae:f3:b7: 2f:24:21:0b:f0:b9:56:6a:09:64:17:4d:04:30:7f:fd:9e:4c: 92:f2:78:0b:9f:cf:cc:95:13:f6:a4:8f:95:ed:a4:4c:d9:f1: 53:a2:25:db:ee:06:36:b6:47:35:6a:a6:ab:0e:85:4e:d3:28: b2:ff:e3:c6:72:da:0b:8f:2b:5f:d3:81:9c:8d:d6:34:3f:bf: 08:36:c4:0d:e7:ce:8f:94:e2:f6:b8:b6:44:2d:eb:ee:71:10: ca:26:3f:5f:73:fe:43:a0:e0:67:05:14:eb:b6:ba:bd:ef:bb: e0:9c:51:f9:10:4f:98:f5:ff:5f:9c:ab:74:ae:33:98:71:df: eb:03:ba:13 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUCo0yezP8QFBw7+2A2IgvE7aH8kMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTkwOTNGNzc2MUE5RTMzN0QwMzQwNTYwNDc1MEJGRDRB REMyMTIxRTAeFw0yNjAzMzExOTU1MDJaFw0yNzAzMzAyMDAwMDJaMDMxMTAvBgNV BAMTKDUxNkU1OUJCRkY0QTI2RUY3QjA4OTE0RDYwRjU5RURBQjRDMjhGMjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQQW18+8muBiTcTdtbYZyl3kzq rJfqRXekcoutwO3fTrANO7YZ3rHj6QPUNYQ2L6dv8CvYQjBukhWP3b0dtEKG1UhF S3MezeH9OM35nv+tnhoyCazNf4i5J6hkcqKxwPpmLML2S5AWygmEaf0I1ikjYipl c7d0XHS3IKLnnTJKgRQQoJxAFzs4KaukqB+pPvLrcw5SKEZt4OX2tIasr9stTfOQ JpmofgZXqje/JS+dhTvTJNpYUGEQckpz9JtuD+fgLRrrUXEdTl50W/3vFP7ShN0R TVujK7KkpqZt/nWsoXLA0UmLYRjDrISxVuQeauhv5PkmoVnBOh7pUmqZa1i5AgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUUW5Zu/9KJu97CJFNYPWe2rTCjyMwHwYDVR0j BBgwFoAUGQk/d2Gp4zfQNAVgR1C/1K3CEh4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l MTdiZDUwMi00MmMyLTQwMGQtYTJhZC1kMTc1NDM2NWE0NWQvMC8xOTA5M0Y3NzYx QTlFMzM3RDAzNDA1NjA0NzUwQkZENEFEQzIxMjFFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTkwOTNGNzc2MUE5RTMzN0QwMzQwNTYwNDc1MEJGRDRBREMy MTIxRS5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2UxN2JkNTAyLTQyYzItNDAwZC1h MmFkLWQxNzU0MzY1YTQ1ZC8wLzMyMzQzMDMyM2EzNDM4MzQzMDNhMzIzMDMwMzMz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTMzMzczMzMyMzkucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk AkhAIAMwDQYJKoZIhvcNAQELBQADggEBALB4tyPjvuZLHvO9TDMswyXqJtLojLZy Q9MkV8C347SpP//a7bVaTG5EqvgBt9dzQmuHUBjKjTiGa+WdSk2JDElYAQAiYsDl Ms1/ndi5iwRQ8a2eViS88YbAKi/YICgbjIldB6rik+2apySjXnxBa+YR/VP2AgBG KgkPL67zty8kIQvwuVZqCWQXTQQwf/2eTJLyeAufz8yVE/akj5XtpEzZ8VOiJdvu Bja2RzVqpqsOhU7TKLL/48Zy2guPK1/TgZyN1jQ/vwg2xA3nzo+U4va4tkQt6+5x EMomP19z/kOg4GcFFOu2ur3vu+CcUfkQT5j1/1+cq3SuM5hx3+sDuhM= -----END CERTIFICATE-----Generated at Sun Apr 19 11:40:01 2026 by rpki-client