$ rpki-client -vvf repo-rpki.idnic.net/repo/f87dd597-40cd-409b-b3c5-2852ce014889/1/323030313a6466333a623034303a3a2f34382d3438203d3e20313532343432.roa File: 323030313a6466333a623034303a3a2f34382d3438203d3e20313532343432.roa (raw, json) Hash identifier: PY77nk3LeLnJRplahgfUeTuHn9iMqRZEpLSMGcN/U4I= Subject key identifier: E0:CC:F6:A2:59:E3:F9:68:4C:B2:3E:6E:81:A1:2A:8E:A9:AC:3E:BF Certificate issuer: /CN=6B35526165718CDFDDCB202D241332F565BEE7B0 Certificate serial: 27639AC87A6014B48DCE5DDC381793C3FA45CEAE Authority key identifier: 6B:35:52:61:65:71:8C:DF:DD:CB:20:2D:24:13:32:F5:65:BE:E7:B0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B35526165718CDFDDCB202D241332F565BEE7B0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f87dd597-40cd-409b-b3c5-2852ce014889/1/323030313a6466333a623034303a3a2f34382d3438203d3e20313532343432.roa Signing time: Fri 17 Apr 2026 05:04:30 +0000 ROA not before: Fri 17 Apr 2026 04:59:30 +0000 ROA not after: Fri 16 Apr 2027 05:04:30 +0000 asID: 152442 IP address blocks: 2001:df3:b040::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f87dd597-40cd-409b-b3c5-2852ce014889/1/6B35526165718CDFDDCB202D241332F565BEE7B0.crl rsync://repo-rpki.idnic.net/repo/f87dd597-40cd-409b-b3c5-2852ce014889/1/6B35526165718CDFDDCB202D241332F565BEE7B0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B35526165718CDFDDCB202D241332F565BEE7B0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Apr 2026 09:42:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:63:9a:c8:7a:60:14:b4:8d:ce:5d:dc:38:17:93:c3:fa:45:ce:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6B35526165718CDFDDCB202D241332F565BEE7B0 Validity Not Before: Apr 17 04:59:30 2026 GMT Not After : Apr 16 05:04:30 2027 GMT Subject: CN=E0CCF6A259E3F9684CB23E6E81A12A8EA9AC3EBF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:7c:a2:37:0a:12:bd:1f:f4:eb:13:7f:2d:67: 20:7c:51:8b:59:f8:8d:51:fe:9f:06:81:a8:9f:b6: c7:03:77:00:a0:a6:c3:94:81:1d:92:e3:8c:8f:87: 71:be:ca:65:ef:ba:0b:5e:4a:68:29:03:76:44:1a: be:9e:f2:e7:f3:8f:81:64:8a:46:5b:13:ac:6e:1d: 33:55:ee:0b:0e:79:b4:5b:f4:4a:5f:56:85:3d:e9: dc:23:7f:25:26:09:f0:86:7b:c7:75:e0:11:88:61: e0:4e:55:f7:72:94:10:23:4d:52:61:d6:ee:3b:df: 5b:05:76:1c:44:59:64:e8:83:01:4b:d1:37:c3:4d: 7e:3b:df:98:e2:e9:f2:e8:87:e9:b5:5d:6c:b2:64: 92:ae:ff:ee:c2:b7:88:f3:c0:f5:5e:5f:d8:33:99: cf:e2:3f:ea:dc:c6:f5:89:6f:09:15:44:e1:f5:8c: d3:fe:e4:52:12:f2:7d:e4:98:7c:e8:3d:15:9f:34: 66:8d:e1:72:64:9f:f7:b6:0f:2c:58:f5:52:f3:53: 0f:40:e8:d8:4d:73:3e:f9:85:76:03:36:51:04:11: 60:4f:98:20:41:82:83:7b:47:c2:8b:a1:22:20:d8: 57:bc:73:09:f4:c9:ab:15:f1:86:1d:e1:8d:2e:63: 46:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:CC:F6:A2:59:E3:F9:68:4C:B2:3E:6E:81:A1:2A:8E:A9:AC:3E:BF X509v3 Authority Key Identifier: keyid:6B:35:52:61:65:71:8C:DF:DD:CB:20:2D:24:13:32:F5:65:BE:E7:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f87dd597-40cd-409b-b3c5-2852ce014889/1/6B35526165718CDFDDCB202D241332F565BEE7B0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B35526165718CDFDDCB202D241332F565BEE7B0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f87dd597-40cd-409b-b3c5-2852ce014889/1/323030313a6466333a623034303a3a2f34382d3438203d3e20313532343432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df3:b040::/48 Signature Algorithm: sha256WithRSAEncryption 15:3a:84:31:b3:0e:0e:2c:c6:74:2c:d3:72:08:15:31:98:52: 5b:db:ba:8e:0e:c0:d7:eb:51:14:d1:f9:0f:fd:3d:e6:a2:31: 57:b5:35:b2:56:6a:63:4f:74:66:d9:24:99:07:93:e7:b6:02: ab:de:18:62:56:ff:46:81:7c:12:2b:04:bd:c9:08:49:bd:c3: 13:4e:53:2d:9b:6c:10:90:fc:f2:72:79:55:de:e4:84:dd:70: fd:6b:a1:9b:36:30:2c:b0:a5:ef:42:30:33:20:e5:1f:81:99: b6:e3:eb:62:77:9c:59:a3:37:97:f9:15:aa:36:dc:45:09:93: 38:6b:07:e7:cb:70:75:88:40:c0:72:b9:0f:01:b1:67:4a:9c: e5:e2:9a:de:55:b4:2a:5e:86:0f:98:98:9f:43:90:08:82:56: 0a:d1:ec:1f:9f:97:80:88:8e:b1:94:2f:c3:37:4d:92:7f:d9: fc:de:d1:31:dc:09:3b:cf:80:4c:58:2f:91:bb:a4:be:7c:92: 92:1a:ab:d5:f0:8d:35:e1:b7:37:4c:19:c9:ee:e5:3d:d1:45: a0:0f:43:25:6e:0b:4a:3b:1b:b0:7e:3d:20:b4:fc:2d:26:5f: 34:60:e0:fd:7d:0c:5a:b5:c0:a0:7c:39:30:2d:e7:7d:8e:21: ad:52:47:02 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUJ2OayHpgFLSNzl3cOBeTw/pFzq4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkIzNTUyNjE2NTcxOENERkREQ0IyMDJEMjQxMzMyRjU2 NUJFRTdCMDAeFw0yNjA0MTcwNDU5MzBaFw0yNzA0MTYwNTA0MzBaMDMxMTAvBgNV BAMTKEUwQ0NGNkEyNTlFM0Y5Njg0Q0IyM0U2RTgxQTEyQThFQTlBQzNFQkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8fKI3ChK9H/TrE38tZyB8UYtZ +I1R/p8GgaiftscDdwCgpsOUgR2S44yPh3G+ymXvugteSmgpA3ZEGr6e8ufzj4Fk ikZbE6xuHTNV7gsOebRb9EpfVoU96dwjfyUmCfCGe8d14BGIYeBOVfdylBAjTVJh 1u4731sFdhxEWWTogwFL0TfDTX4735ji6fLoh+m1XWyyZJKu/+7Ct4jzwPVeX9gz mc/iP+rcxvWJbwkVROH1jNP+5FIS8n3kmHzoPRWfNGaN4XJkn/e2DyxY9VLzUw9A 6NhNcz75hXYDNlEEEWBPmCBBgoN7R8KLoSIg2Fe8cwn0yasV8YYd4Y0uY0bPAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQU4Mz2olnj+WhMsj5ugaEqjqmsPr8wHwYDVR0j BBgwFoAUazVSYWVxjN/dyyAtJBMy9WW+57AwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m ODdkZDU5Ny00MGNkLTQwOWItYjNjNS0yODUyY2UwMTQ4ODkvMS82QjM1NTI2MTY1 NzE4Q0RGRERDQjIwMkQyNDEzMzJGNTY1QkVFN0IwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkIzNTUyNjE2NTcxOENERkREQ0IyMDJEMjQxMzMyRjU2NUJF RTdCMC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Y4N2RkNTk3LTQwY2QtNDA5Yi1i M2M1LTI4NTJjZTAxNDg4OS8xLzMyMzAzMDMxM2E2NDY2MzMzYTYyMzAzNDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNTMyMzQzNDMyLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 87BAMA0GCSqGSIb3DQEBCwUAA4IBAQAVOoQxsw4OLMZ0LNNyCBUxmFJb27qODsDX 61EU0fkP/T3mojFXtTWyVmpjT3Rm2SSZB5PntgKr3hhiVv9GgXwSKwS9yQhJvcMT TlMtm2wQkPzycnlV3uSE3XD9a6GbNjAssKXvQjAzIOUfgZm24+tid5xZozeX+RWq NtxFCZM4awfny3B1iEDAcrkPAbFnSpzl4preVbQqXoYPmJifQ5AIglYK0ewfn5eA iI6xlC/DN02Sf9n83tEx3Ak7z4BMWC+Ru6S+fJKSGqvV8I014bc3TBnJ7uU90UWg D0MlbgtKOxuwfj0gtPwtJl80YOD9fQxatcCgfDkwLed9jiGtUkcC -----END CERTIFICATE-----Generated at Sat Apr 18 01:37:56 2026 by rpki-client