$ rpki-client -vvf rpki-rsync.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/323430343a393538303a33323a3a2f34382d3438203d3e203234353334.roa File: 323430343a393538303a33323a3a2f34382d3438203d3e203234353334.roa (raw, json) Hash identifier: NhXXxSty01JiVo75mNrRpSPoRoM1du9nG1hZFq89xkU= Subject key identifier: 30:B5:EA:0A:4B:10:86:81:15:72:DB:FA:90:04:C0:AA:BB:69:0B:27 Certificate issuer: /CN=54A9AA4CF14C7CF2ED286484218857A15AE91E9A Certificate serial: 20EF5FF26979F2CF0CD8A05BFBFBC346539F6167 Authority key identifier: 54:A9:AA:4C:F1:4C:7C:F2:ED:28:64:84:21:88:57:A1:5A:E9:1E:9A Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/54A9AA4CF14C7CF2ED286484218857A15AE91E9A.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/323430343a393538303a33323a3a2f34382d3438203d3e203234353334.roa Signing time: Sun 03 May 2026 02:11:34 +0000 ROA not before: Sun 03 May 2026 02:06:34 +0000 ROA not after: Sun 02 May 2027 02:11:34 +0000 asID: 24534 IP address blocks: 2404:9580:32::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/54A9AA4CF14C7CF2ED286484218857A15AE91E9A.crl rsync://rpki-rsync.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/54A9AA4CF14C7CF2ED286484218857A15AE91E9A.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/54A9AA4CF14C7CF2ED286484218857A15AE91E9A.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 06:31:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:ef:5f:f2:69:79:f2:cf:0c:d8:a0:5b:fb:fb:c3:46:53:9f:61:67 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=54A9AA4CF14C7CF2ED286484218857A15AE91E9A Validity Not Before: May 3 02:06:34 2026 GMT Not After : May 2 02:11:34 2027 GMT Subject: CN=30B5EA0A4B1086811572DBFA9004C0AABB690B27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:2d:30:bb:ae:aa:b1:8c:f0:a7:d2:95:b5:09: 87:c4:f1:7d:73:43:af:13:ed:79:06:3d:40:44:8a: c1:b7:e7:0b:4d:22:69:b3:44:3a:b3:9d:3f:b9:33: e5:58:e2:b2:39:45:95:f6:34:06:87:c1:b0:ce:98: 14:6b:b4:51:cb:4d:99:52:55:8b:80:a5:fc:c7:e2: af:d6:93:b8:b6:d9:f7:82:98:b9:2b:c8:64:19:03: 5e:da:54:bb:71:b3:08:79:da:a2:32:cf:9c:02:b9: 31:79:99:6f:e8:6c:01:a5:f7:45:18:2b:5c:12:7d: 7a:a5:e2:f5:f9:38:f7:66:95:83:ca:f0:d8:be:cd: 5a:6d:eb:30:dd:6e:d8:44:f4:2d:8c:c9:c3:b5:19: c5:5f:86:73:36:61:83:01:32:df:22:e3:b1:cb:bd: 37:51:b7:c9:16:0e:49:24:a9:f4:5c:fa:ab:0d:ef: 50:19:be:ed:09:fe:af:4a:f0:25:ec:fe:70:bf:f0: f2:61:37:53:05:ff:98:ac:7b:87:fc:d3:0a:8a:1b: aa:8c:e2:8f:3c:20:ba:b2:24:66:42:85:be:9b:52: 05:8c:22:35:89:53:20:5d:af:c0:b8:a5:d8:2c:82: 39:ac:c7:ac:6d:19:36:8a:c4:4f:76:21:54:f3:9b: eb:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:B5:EA:0A:4B:10:86:81:15:72:DB:FA:90:04:C0:AA:BB:69:0B:27 X509v3 Authority Key Identifier: keyid:54:A9:AA:4C:F1:4C:7C:F2:ED:28:64:84:21:88:57:A1:5A:E9:1E:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/54A9AA4CF14C7CF2ED286484218857A15AE91E9A.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/54A9AA4CF14C7CF2ED286484218857A15AE91E9A.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/323430343a393538303a33323a3a2f34382d3438203d3e203234353334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:9580:32::/48 Signature Algorithm: sha256WithRSAEncryption 11:39:dd:1b:c0:41:fc:4f:18:b4:18:9e:a7:b6:7f:2c:b7:33: 82:f8:27:c9:c8:68:46:f1:d5:c0:45:b4:9c:48:cd:9d:6f:8b: b0:64:9d:68:d1:6c:52:d0:5e:2c:8f:f7:7b:9e:34:2b:c4:4e: ae:c8:a5:ad:54:08:e0:8a:5e:a0:34:fb:e6:b3:f7:bc:8d:b2: 97:6c:7a:d6:bb:b7:c2:91:32:11:55:9e:4d:a2:b8:c9:17:ee: 75:72:e2:7f:3b:cc:24:43:6d:00:af:49:2f:c2:41:f8:1f:e3: f7:12:cc:e4:59:b8:e0:aa:d9:9b:c3:87:a4:50:3e:79:b5:4a: ba:0d:d2:50:40:2c:dc:cb:b0:0e:bf:c0:f1:b2:f1:83:80:ad: 6e:f1:bd:93:3f:30:9d:a9:fa:de:8c:90:87:6d:b9:24:8b:90: 05:19:14:1a:ea:dc:9c:80:78:2f:85:83:df:f6:12:5b:4f:a4: 69:d5:7f:a0:31:f6:df:14:88:1d:bd:e2:9a:83:13:e8:c8:a4: d1:19:e0:1b:d2:1a:aa:3a:3d:91:4c:27:e2:3e:4b:2d:99:6c: df:91:22:5c:be:e7:e6:ab:e9:b0:e7:33:cc:13:90:fa:9b:28: 33:e9:45:ab:c4:ba:0a:a8:c0:bd:d8:66:27:74:2c:7b:65:8e: 0c:96:51:5f -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUIO9f8ml58s8M2KBb+/vDRlOfYWcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTRBOUFBNENGMTRDN0NGMkVEMjg2NDg0MjE4ODU3QTE1 QUU5MUU5QTAeFw0yNjA1MDMwMjA2MzRaFw0yNzA1MDIwMjExMzRaMDMxMTAvBgNV BAMTKDMwQjVFQTBBNEIxMDg2ODExNTcyREJGQTkwMDRDMEFBQkI2OTBCMjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZLTC7rqqxjPCn0pW1CYfE8X1z Q68T7XkGPUBEisG35wtNImmzRDqznT+5M+VY4rI5RZX2NAaHwbDOmBRrtFHLTZlS VYuApfzH4q/Wk7i22feCmLkryGQZA17aVLtxswh52qIyz5wCuTF5mW/obAGl90UY K1wSfXql4vX5OPdmlYPK8Ni+zVpt6zDdbthE9C2MycO1GcVfhnM2YYMBMt8i47HL vTdRt8kWDkkkqfRc+qsN71AZvu0J/q9K8CXs/nC/8PJhN1MF/5ise4f80wqKG6qM 4o88ILqyJGZChb6bUgWMIjWJUyBdr8C4pdgsgjmsx6xtGTaKxE92IVTzm+thAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUMLXqCksQhoEVctv6kATAqrtpCycwHwYDVR0j BBgwFoAUVKmqTPFMfPLtKGSEIYhXoVrpHpowDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MDYyNDA1MmUtMjIwNS00OGYzLWEzY2ItY2U4YjMyNmI4ZjcxLzAvNTRBOUFBNENG MTRDN0NGMkVEMjg2NDg0MjE4ODU3QTE1QUU5MUU5QS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS81NEE5QUE0Q0YxNEM3Q0YyRUQyODY0ODQyMTg4NTdBMTVBRTkx RTlBLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzA2MjQwNTJlLTIyMDUtNDhmMy1h M2NiLWNlOGIzMjZiOGY3MS8wLzMyMzQzMDM0M2EzOTM1MzgzMDNhMzMzMjNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzQzNTMzMzQucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBJWAADIw DQYJKoZIhvcNAQELBQADggEBABE53RvAQfxPGLQYnqe2fyy3M4L4J8nIaEbx1cBF tJxIzZ1vi7BknWjRbFLQXiyP93ueNCvETq7Ipa1UCOCKXqA0++az97yNspdseta7 t8KRMhFVnk2iuMkX7nVy4n87zCRDbQCvSS/CQfgf4/cSzORZuOCq2ZvDh6RQPnm1 SroN0lBALNzLsA6/wPGy8YOArW7xvZM/MJ2p+t6MkIdtuSSLkAUZFBrq3JyAeC+F g9/2EltPpGnVf6Ax9t8UiB294pqDE+jIpNEZ4BvSGqo6PZFMJ+I+Sy2ZbN+RIly+ 5+ar6bDnM8wTkPqbKDPpRavEugqowL3YZid0LHtljgyWUV8= -----END CERTIFICATE-----Generated at Wed May 13 12:28:47 2026 by rpki-client