$ rpki-client -vvf repo-rpki.idnic.net/repo/f9d6acc6-0af3-4b97-99a4-0f45e8ecf576/0/323430363a356334303a3a2f33322d3438203d3e20313331373035.roa File: 323430363a356334303a3a2f33322d3438203d3e20313331373035.roa (raw, json) Hash identifier: 0ltPqdq7g3DXR79aG8XW0FVNRDWNUpomlQCmCJWpgEk= Subject key identifier: 93:0F:B9:D2:37:BD:90:0D:B8:C7:0E:8D:00:BD:29:D1:3B:FC:FE:D0 Certificate issuer: /CN=0A8E8E063785238467D4AD1F507CC97B30DBB959 Certificate serial: 6640356483C8D29B4430B5312D23B152F8C588D1 Authority key identifier: 0A:8E:8E:06:37:85:23:84:67:D4:AD:1F:50:7C:C9:7B:30:DB:B9:59 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0A8E8E063785238467D4AD1F507CC97B30DBB959.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f9d6acc6-0af3-4b97-99a4-0f45e8ecf576/0/323430363a356334303a3a2f33322d3438203d3e20313331373035.roa Signing time: Thu 16 Apr 2026 16:00:01 +0000 ROA not before: Thu 16 Apr 2026 15:55:01 +0000 ROA not after: Thu 15 Apr 2027 16:00:01 +0000 asID: 131705 IP address blocks: 2406:5c40::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f9d6acc6-0af3-4b97-99a4-0f45e8ecf576/0/0A8E8E063785238467D4AD1F507CC97B30DBB959.crl rsync://repo-rpki.idnic.net/repo/f9d6acc6-0af3-4b97-99a4-0f45e8ecf576/0/0A8E8E063785238467D4AD1F507CC97B30DBB959.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0A8E8E063785238467D4AD1F507CC97B30DBB959.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Apr 2026 10:11:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:40:35:64:83:c8:d2:9b:44:30:b5:31:2d:23:b1:52:f8:c5:88:d1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0A8E8E063785238467D4AD1F507CC97B30DBB959 Validity Not Before: Apr 16 15:55:01 2026 GMT Not After : Apr 15 16:00:01 2027 GMT Subject: CN=930FB9D237BD900DB8C70E8D00BD29D13BFCFED0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:a0:b4:1c:6f:8b:06:80:18:19:22:33:6e:93: ad:81:8d:e3:95:31:5f:69:3b:99:fe:0b:6c:b9:fd: b3:31:ad:72:9f:6f:dd:23:97:fd:74:0a:60:80:0d: 8f:b5:7b:67:d3:44:59:c3:d1:9e:09:5f:9d:07:79: 09:66:ba:fd:63:64:6f:d7:30:33:3e:c5:82:b1:bc: 45:c6:63:b9:a8:a2:a3:60:ff:ac:4e:72:96:1f:d2: 6b:f8:a8:8d:00:2f:0e:b0:16:d6:33:f1:c6:fe:10: 46:e0:5c:ee:f5:67:d2:1e:16:ec:b1:25:1f:3a:91: 60:c4:09:31:c6:f4:90:d7:6c:bd:17:b6:33:97:0a: 6c:50:ee:9e:23:28:73:1a:5e:cd:8e:13:fe:c0:76: c6:9b:8a:03:af:a1:82:a2:ef:ad:f0:b0:35:17:fd: ae:91:ac:dc:8b:26:2a:75:ba:e5:8e:d6:79:5d:4d: 6a:99:71:78:e8:08:0b:81:77:b1:80:b6:d9:25:91: e1:25:37:52:8c:2e:29:07:f8:c4:bf:b8:d4:a0:c0: 7c:c8:fc:36:7e:55:40:dc:ef:69:6e:24:8c:8e:ee: 0b:19:b6:f0:66:c9:31:0c:c2:c4:64:23:97:1a:33: fd:ca:bd:f3:e0:77:35:9c:11:e4:d5:6c:c5:3a:5c: 49:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:0F:B9:D2:37:BD:90:0D:B8:C7:0E:8D:00:BD:29:D1:3B:FC:FE:D0 X509v3 Authority Key Identifier: keyid:0A:8E:8E:06:37:85:23:84:67:D4:AD:1F:50:7C:C9:7B:30:DB:B9:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f9d6acc6-0af3-4b97-99a4-0f45e8ecf576/0/0A8E8E063785238467D4AD1F507CC97B30DBB959.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0A8E8E063785238467D4AD1F507CC97B30DBB959.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f9d6acc6-0af3-4b97-99a4-0f45e8ecf576/0/323430363a356334303a3a2f33322d3438203d3e20313331373035.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:5c40::/32 Signature Algorithm: sha256WithRSAEncryption 1b:41:b7:72:4f:4f:aa:5f:34:b1:e9:92:bc:eb:54:09:f0:f8: e0:9c:e7:1c:f3:47:5f:46:f5:28:1e:c0:8c:e7:b2:f3:84:cb: 9b:57:ca:e3:5c:0f:a4:61:10:46:f0:bd:c7:35:fe:ec:b6:b1: 86:65:6e:05:e6:41:a1:83:21:38:9d:c3:4f:0d:ca:5d:1f:be: 48:0c:f3:08:a3:e9:53:91:ab:93:db:41:28:42:cf:49:58:f0: b8:00:7b:92:a6:a1:59:4a:10:3f:00:00:ff:04:ff:a1:0f:b6: 51:b8:99:73:d1:1d:3a:1a:30:0a:99:7d:e0:8b:16:db:a8:d2: ec:4f:de:ed:ed:e9:5c:ed:9c:38:5d:e0:78:82:b4:e5:f1:2f: ee:cb:03:36:e4:9a:fb:13:37:41:56:2e:e4:da:4c:b5:e8:d5: d2:b2:5b:73:7d:61:39:1f:2a:4d:9c:dc:dc:2c:3f:cc:db:5f: be:eb:98:c7:8b:0d:76:80:db:44:f3:c6:45:d1:8c:ff:30:b4: 52:c3:06:36:1e:db:8d:6a:0e:05:9d:91:b4:a6:57:d4:ee:a6: 18:1d:90:04:66:87:05:a5:93:44:61:0c:5c:6d:b9:1c:12:1d: b5:56:7e:ea:cf:77:1b:58:0d:f4:70:4d:75:eb:2b:79:ff:7e: 40:51:85:64 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUZkA1ZIPI0ptEMLUxLSOxUvjFiNEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEE4RThFMDYzNzg1MjM4NDY3RDRBRDFGNTA3Q0M5N0Iz MERCQjk1OTAeFw0yNjA0MTYxNTU1MDFaFw0yNzA0MTUxNjAwMDFaMDMxMTAvBgNV BAMTKDkzMEZCOUQyMzdCRDkwMERCOEM3MEU4RDAwQkQyOUQxM0JGQ0ZFRDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0oLQcb4sGgBgZIjNuk62BjeOV MV9pO5n+C2y5/bMxrXKfb90jl/10CmCADY+1e2fTRFnD0Z4JX50HeQlmuv1jZG/X MDM+xYKxvEXGY7mooqNg/6xOcpYf0mv4qI0ALw6wFtYz8cb+EEbgXO71Z9IeFuyx JR86kWDECTHG9JDXbL0XtjOXCmxQ7p4jKHMaXs2OE/7AdsabigOvoYKi763wsDUX /a6RrNyLJip1uuWO1nldTWqZcXjoCAuBd7GAttklkeElN1KMLikH+MS/uNSgwHzI /DZ+VUDc72luJIyO7gsZtvBmyTEMwsRkI5caM/3KvfPgdzWcEeTVbMU6XElTAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUkw+50je9kA24xw6NAL0p0Tv8/tAwHwYDVR0j BBgwFoAUCo6OBjeFI4Rn1K0fUHzJezDbuVkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m OWQ2YWNjNi0wYWYzLTRiOTctOTlhNC0wZjQ1ZThlY2Y1NzYvMC8wQThFOEUwNjM3 ODUyMzg0NjdENEFEMUY1MDdDQzk3QjMwREJCOTU5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMEE4RThFMDYzNzg1MjM4NDY3RDRBRDFGNTA3Q0M5N0IzMERC Qjk1OS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Y5ZDZhY2M2LTBhZjMtNGI5Ny05 OWE0LTBmNDVlOGVjZjU3Ni8wLzMyMzQzMDM2M2EzNTYzMzQzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMxMzMzMTM3MzAzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQGXEAwDQYJKoZI hvcNAQELBQADggEBABtBt3JPT6pfNLHpkrzrVAnw+OCc5xzzR19G9SgewIznsvOE y5tXyuNcD6RhEEbwvcc1/uy2sYZlbgXmQaGDITidw08Nyl0fvkgM8wij6VORq5Pb QShCz0lY8LgAe5KmoVlKED8AAP8E/6EPtlG4mXPRHToaMAqZfeCLFtuo0uxP3u3t 6VztnDhd4HiCtOXxL+7LAzbkmvsTN0FWLuTaTLXo1dKyW3N9YTkfKk2c3NwsP8zb X77rmMeLDXaA20TzxkXRjP8wtFLDBjYe241qDgWdkbSmV9TuphgdkARmhwWlk0Rh DFxtuRwSHbVWfurPdxtYDfRwTXXrK3n/fkBRhWQ= -----END CERTIFICATE-----Generated at Sat Apr 18 00:25:59 2026 by rpki-client