$ rpki-client -vvf repo-rpki.idnic.net/repo/ea4f7934-cdc7-4082-83fb-df7d4f8219af/1/323030313a6466333a393263303a3a2f34382d3438203d3e20313532343231.roa File: 323030313a6466333a393263303a3a2f34382d3438203d3e20313532343231.roa (raw, json) Hash identifier: Re1BfpdFyUDYjfrU456vx+e4oEcGnjf9fKai/wOjz5g= Subject key identifier: 61:A3:DF:F8:9A:41:49:EA:67:5D:47:CD:80:90:CD:00:A8:5A:F7:0F Certificate issuer: /CN=EAAF14D74C27E1502835CCF1541D5D92498C8427 Certificate serial: 5E80C5BF728D9E94A9C76DF3C24816B3D30E8369 Authority key identifier: EA:AF:14:D7:4C:27:E1:50:28:35:CC:F1:54:1D:5D:92:49:8C:84:27 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EAAF14D74C27E1502835CCF1541D5D92498C8427.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ea4f7934-cdc7-4082-83fb-df7d4f8219af/1/323030313a6466333a393263303a3a2f34382d3438203d3e20313532343231.roa Signing time: Thu 29 Jan 2026 04:02:36 +0000 ROA not before: Thu 29 Jan 2026 03:57:36 +0000 ROA not after: Thu 28 Jan 2027 04:02:36 +0000 asID: 152421 IP address blocks: 2001:df3:92c0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ea4f7934-cdc7-4082-83fb-df7d4f8219af/1/EAAF14D74C27E1502835CCF1541D5D92498C8427.crl rsync://repo-rpki.idnic.net/repo/ea4f7934-cdc7-4082-83fb-df7d4f8219af/1/EAAF14D74C27E1502835CCF1541D5D92498C8427.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EAAF14D74C27E1502835CCF1541D5D92498C8427.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Mar 2026 07:53:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:80:c5:bf:72:8d:9e:94:a9:c7:6d:f3:c2:48:16:b3:d3:0e:83:69 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EAAF14D74C27E1502835CCF1541D5D92498C8427 Validity Not Before: Jan 29 03:57:36 2026 GMT Not After : Jan 28 04:02:36 2027 GMT Subject: CN=61A3DFF89A4149EA675D47CD8090CD00A85AF70F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:4e:b0:fd:06:cd:98:13:0e:81:3a:90:fd:7b: be:f9:bb:60:78:cf:d8:ea:c5:7e:00:99:d8:44:0d: e8:9f:f7:69:68:2b:3c:f5:09:1f:c7:8f:39:13:80: 15:08:b7:8f:33:1b:50:42:55:7a:85:74:26:31:05: ac:ed:cf:df:fb:2c:d9:56:2e:4b:4c:20:04:f8:03: 69:1d:75:ac:e0:b9:cd:e2:35:cf:fe:51:2a:b1:32: 21:30:cf:2e:04:2e:1d:65:37:7c:49:86:d8:4a:79: 03:a7:cb:d1:98:6e:f0:bc:07:70:68:c5:26:c0:24: be:fa:45:89:51:cd:ab:98:fc:16:d1:12:dd:74:f8: 34:0c:ab:cf:94:89:92:15:62:02:03:ce:80:55:ee: bd:ce:e4:31:ea:34:79:2f:4c:e4:74:cd:60:f6:11: 19:c1:bd:f8:e9:57:42:19:21:9a:53:c7:25:b9:ae: 7c:79:60:0f:71:93:62:77:a0:89:eb:34:44:42:de: 32:84:f5:09:94:99:48:57:5b:92:aa:48:70:53:ec: 15:c6:c8:37:c3:1a:3a:33:74:64:69:d8:c9:5c:78: 31:93:43:cc:cc:32:ea:d8:55:25:f1:f7:e2:57:f9: 14:2b:9e:89:29:2d:c5:c1:c9:b5:b4:f5:87:e9:b8: 59:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:A3:DF:F8:9A:41:49:EA:67:5D:47:CD:80:90:CD:00:A8:5A:F7:0F X509v3 Authority Key Identifier: keyid:EA:AF:14:D7:4C:27:E1:50:28:35:CC:F1:54:1D:5D:92:49:8C:84:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ea4f7934-cdc7-4082-83fb-df7d4f8219af/1/EAAF14D74C27E1502835CCF1541D5D92498C8427.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EAAF14D74C27E1502835CCF1541D5D92498C8427.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ea4f7934-cdc7-4082-83fb-df7d4f8219af/1/323030313a6466333a393263303a3a2f34382d3438203d3e20313532343231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df3:92c0::/48 Signature Algorithm: sha256WithRSAEncryption 52:a8:41:34:06:ac:49:e9:ab:f9:f7:de:47:fe:df:0a:69:37: a2:7c:bf:3f:b7:e0:17:17:cf:19:2a:88:1f:86:82:94:c3:5a: 3f:55:cc:5a:95:b5:b3:e9:b6:f6:78:e0:1a:78:79:5b:98:25: 6b:e8:a8:7e:93:89:3b:63:53:b0:95:23:9b:f1:67:29:ac:27: 05:e3:12:04:ed:e6:62:94:65:ab:55:63:53:89:bb:5b:5f:71: 3e:09:30:f5:f3:f1:b8:db:0f:e4:27:56:ae:bb:56:1e:60:52: af:86:aa:01:24:f7:19:2c:6b:b2:e6:dd:25:cf:d8:3b:9f:59: 69:1f:80:83:56:95:91:3a:6b:16:f4:1d:58:46:a9:41:4f:47: cc:b7:5d:93:63:04:40:68:28:0d:0f:21:a9:29:00:cf:48:82: 2e:76:04:c1:dd:ae:ea:ae:b3:30:aa:83:b0:5b:0f:d4:84:36: f0:74:8e:0c:92:3d:ec:be:3d:11:e1:c0:d2:8a:1e:b9:88:27: 1d:46:8e:01:94:c8:41:1a:ae:ba:27:2e:44:76:7a:52:d5:b8: 13:b7:5d:49:91:93:5d:57:54:8a:e9:8c:81:e2:2b:53:0e:ed: 77:2a:18:28:c2:0b:ec:06:77:ee:07:0b:92:a7:6e:64:1b:04: e8:09:54:d9 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUXoDFv3KNnpSpx23zwkgWs9MOg2kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRUFBRjE0RDc0QzI3RTE1MDI4MzVDQ0YxNTQxRDVEOTI0 OThDODQyNzAeFw0yNjAxMjkwMzU3MzZaFw0yNzAxMjgwNDAyMzZaMDMxMTAvBgNV BAMTKDYxQTNERkY4OUE0MTQ5RUE2NzVENDdDRDgwOTBDRDAwQTg1QUY3MEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6TrD9Bs2YEw6BOpD9e775u2B4 z9jqxX4AmdhEDeif92loKzz1CR/HjzkTgBUIt48zG1BCVXqFdCYxBaztz9/7LNlW LktMIAT4A2kddazguc3iNc/+USqxMiEwzy4ELh1lN3xJhthKeQOny9GYbvC8B3Bo xSbAJL76RYlRzauY/BbREt10+DQMq8+UiZIVYgIDzoBV7r3O5DHqNHkvTOR0zWD2 ERnBvfjpV0IZIZpTxyW5rnx5YA9xk2J3oInrNERC3jKE9QmUmUhXW5KqSHBT7BXG yDfDGjozdGRp2MlceDGTQ8zMMurYVSXx9+JX+RQrnokpLcXBybW09YfpuFnbAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUYaPf+JpBSepnXUfNgJDNAKha9w8wHwYDVR0j BBgwFoAU6q8U10wn4VAoNczxVB1dkkmMhCcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l YTRmNzkzNC1jZGM3LTQwODItODNmYi1kZjdkNGY4MjE5YWYvMS9FQUFGMTRENzRD MjdFMTUwMjgzNUNDRjE1NDFENUQ5MjQ5OEM4NDI3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRUFBRjE0RDc0QzI3RTE1MDI4MzVDQ0YxNTQxRDVEOTI0OThD ODQyNy5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2VhNGY3OTM0LWNkYzctNDA4Mi04 M2ZiLWRmN2Q0ZjgyMTlhZi8xLzMyMzAzMDMxM2E2NDY2MzMzYTM5MzI2MzMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNTMyMzQzMjMxLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 85LAMA0GCSqGSIb3DQEBCwUAA4IBAQBSqEE0BqxJ6av5995H/t8KaTeifL8/t+AX F88ZKogfhoKUw1o/VcxalbWz6bb2eOAaeHlbmCVr6Kh+k4k7Y1OwlSOb8WcprCcF 4xIE7eZilGWrVWNTibtbX3E+CTD18/G42w/kJ1auu1YeYFKvhqoBJPcZLGuy5t0l z9g7n1lpH4CDVpWROmsW9B1YRqlBT0fMt12TYwRAaCgNDyGpKQDPSIIudgTB3a7q rrMwqoOwWw/UhDbwdI4Mkj3svj0R4cDSih65iCcdRo4BlMhBGq66Jy5EdnpS1bgT t11JkZNdV1SK6YyB4itTDu13KhgowgvsBnfuBwuSp25kGwToCVTZ -----END CERTIFICATE-----Generated at Mon Mar 2 18:35:50 2026 by rpki-client