$ rpki-client -vvf rpki-rsync.idnic.net/repo/06bedf3a-d7d1-49a6-93ed-b277f1f7a6eb/0/323430373a396363303a3a2f33322d3332203d3e20313431393833.roa File: 323430373a396363303a3a2f33322d3332203d3e20313431393833.roa (raw, json) Hash identifier: K9ZXJ5o5f3vYvyXmfnPwnT8NeUbIoGsEKpT0pUSErho= Subject key identifier: 68:9F:CA:7F:38:A6:3B:85:43:FE:7F:10:8E:2B:A3:BB:FB:98:43:90 Certificate issuer: /CN=B835A8746384749BF3B9A7BAEC30A1EBF133716A Certificate serial: 07676F6D0FC0701D96064E473368E6581BEF4FF5 Authority key identifier: B8:35:A8:74:63:84:74:9B:F3:B9:A7:BA:EC:30:A1:EB:F1:33:71:6A Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B835A8746384749BF3B9A7BAEC30A1EBF133716A.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/06bedf3a-d7d1-49a6-93ed-b277f1f7a6eb/0/323430373a396363303a3a2f33322d3332203d3e20313431393833.roa Signing time: Sun 03 May 2026 02:12:01 +0000 ROA not before: Sun 03 May 2026 02:07:01 +0000 ROA not after: Sun 02 May 2027 02:12:01 +0000 asID: 141983 IP address blocks: 2407:9cc0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/06bedf3a-d7d1-49a6-93ed-b277f1f7a6eb/0/B835A8746384749BF3B9A7BAEC30A1EBF133716A.crl rsync://rpki-rsync.idnic.net/repo/06bedf3a-d7d1-49a6-93ed-b277f1f7a6eb/0/B835A8746384749BF3B9A7BAEC30A1EBF133716A.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B835A8746384749BF3B9A7BAEC30A1EBF133716A.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 17:18:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:67:6f:6d:0f:c0:70:1d:96:06:4e:47:33:68:e6:58:1b:ef:4f:f5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B835A8746384749BF3B9A7BAEC30A1EBF133716A Validity Not Before: May 3 02:07:01 2026 GMT Not After : May 2 02:12:01 2027 GMT Subject: CN=689FCA7F38A63B8543FE7F108E2BA3BBFB984390 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:63:ad:1d:42:e0:a6:59:0e:7c:c2:a1:d8:a5: 69:32:46:fe:75:16:c1:eb:10:f8:91:1c:72:28:94: 8c:e1:c1:50:69:70:ec:c8:07:66:de:3a:56:07:cb: 11:97:84:e1:7c:81:58:89:eb:a3:1f:9d:09:19:97: d1:36:6e:fa:52:8b:08:6c:c5:17:dd:75:1f:95:38: 66:82:98:5c:9d:ee:b7:b4:17:db:d7:ee:79:1d:85: 65:c3:59:fa:71:9e:45:55:d1:b7:a2:97:73:c1:e4: 2b:53:31:62:c7:5f:5d:65:d0:c0:5b:cf:fe:8b:e2: 6e:6c:55:ab:c6:3a:e8:53:c3:db:0c:bc:3a:9d:87: dc:f3:ad:f8:05:5e:b2:25:48:fc:0a:f2:5d:55:f9: a1:ff:cb:27:80:69:67:3d:56:2e:b6:a5:23:6e:08: 6a:4e:b9:a0:f9:ad:40:ab:ad:ca:a6:29:53:3e:14: c6:99:0c:d1:18:0a:df:88:d0:a5:94:fd:55:a0:69: 82:ef:0c:fb:aa:2a:75:35:ea:99:4f:b7:5b:df:ab: 0d:bc:df:45:55:d8:81:7d:a5:27:6c:4a:0b:45:b0: 9f:e8:e8:65:56:be:53:cc:82:90:b7:9a:39:dc:be: 88:21:30:7c:24:3e:71:3b:93:e7:7b:c1:57:37:49: f1:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:9F:CA:7F:38:A6:3B:85:43:FE:7F:10:8E:2B:A3:BB:FB:98:43:90 X509v3 Authority Key Identifier: keyid:B8:35:A8:74:63:84:74:9B:F3:B9:A7:BA:EC:30:A1:EB:F1:33:71:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/06bedf3a-d7d1-49a6-93ed-b277f1f7a6eb/0/B835A8746384749BF3B9A7BAEC30A1EBF133716A.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B835A8746384749BF3B9A7BAEC30A1EBF133716A.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/06bedf3a-d7d1-49a6-93ed-b277f1f7a6eb/0/323430373a396363303a3a2f33322d3332203d3e20313431393833.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2407:9cc0::/32 Signature Algorithm: sha256WithRSAEncryption 22:f2:b2:d5:86:17:3e:a4:da:41:2d:4a:a2:b2:45:e1:bf:75: 9d:57:8c:6f:8e:93:fa:be:95:66:77:67:37:cc:e5:42:de:c2: b0:87:4e:e2:2a:1b:c0:c8:01:8c:62:21:b7:b0:3e:dd:3e:05: 7e:6b:22:98:45:30:23:7c:a1:34:c0:4f:b8:97:18:e2:cc:bb: 09:fc:d9:6e:ff:e5:d9:56:38:cd:86:3b:98:42:06:f2:bb:2a: bc:82:88:41:68:2d:40:ae:84:76:27:33:7c:6b:61:b3:fa:20: fb:1d:ca:f8:cf:97:a9:c1:1d:51:ce:e9:9e:cc:b7:05:c6:a5: f4:a1:23:89:f5:b5:49:fd:fe:60:ef:66:e8:70:b0:f2:aa:f1: 57:f5:23:88:2d:b0:2b:9d:8a:21:24:55:84:ce:2f:b4:2e:63: 61:f8:4a:11:ef:15:41:ad:18:5c:5c:f7:ba:c1:3b:d3:bc:cb: c6:2d:58:f4:47:c4:ff:91:24:44:f2:45:f0:f1:3f:5c:35:02: 5a:a4:56:a9:39:f3:f0:f1:31:7f:7f:e7:4a:ae:ed:51:4d:6b: e0:55:0e:14:6b:a6:24:70:cb:79:c2:4c:fa:ee:28:36:82:14: 8e:06:33:8d:1b:95:ec:37:36:f7:44:48:de:0f:2f:de:29:37: b0:8d:19:88 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUB2dvbQ/AcB2WBk5HM2jmWBvvT/UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjgzNUE4NzQ2Mzg0NzQ5QkYzQjlBN0JBRUMzMEExRUJG MTMzNzE2QTAeFw0yNjA1MDMwMjA3MDFaFw0yNzA1MDIwMjEyMDFaMDMxMTAvBgNV BAMTKDY4OUZDQTdGMzhBNjNCODU0M0ZFN0YxMDhFMkJBM0JCRkI5ODQzOTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHY60dQuCmWQ58wqHYpWkyRv51 FsHrEPiRHHIolIzhwVBpcOzIB2beOlYHyxGXhOF8gViJ66MfnQkZl9E2bvpSiwhs xRfddR+VOGaCmFyd7re0F9vX7nkdhWXDWfpxnkVV0beil3PB5CtTMWLHX11l0MBb z/6L4m5sVavGOuhTw9sMvDqdh9zzrfgFXrIlSPwK8l1V+aH/yyeAaWc9Vi62pSNu CGpOuaD5rUCrrcqmKVM+FMaZDNEYCt+I0KWU/VWgaYLvDPuqKnU16plPt1vfqw28 30VV2IF9pSdsSgtFsJ/o6GVWvlPMgpC3mjncvoghMHwkPnE7k+d7wVc3SfEHAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUaJ/KfzimO4VD/n8Qjiuju/uYQ5AwHwYDVR0j BBgwFoAUuDWodGOEdJvzuae67DCh6/EzcWowDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MDZiZWRmM2EtZDdkMS00OWE2LTkzZWQtYjI3N2YxZjdhNmViLzAvQjgzNUE4NzQ2 Mzg0NzQ5QkYzQjlBN0JBRUMzMEExRUJGMTMzNzE2QS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9CODM1QTg3NDYzODQ3NDlCRjNCOUE3QkFFQzMwQTFFQkYxMzM3 MTZBLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzA2YmVkZjNhLWQ3ZDEtNDlhNi05 M2VkLWIyNzdmMWY3YTZlYi8wLzMyMzQzMDM3M2EzOTYzNjMzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzQzMTM5MzgzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQHnMAwDQYJKoZI hvcNAQELBQADggEBACLystWGFz6k2kEtSqKyReG/dZ1XjG+Ok/q+lWZ3ZzfM5ULe wrCHTuIqG8DIAYxiIbewPt0+BX5rIphFMCN8oTTAT7iXGOLMuwn82W7/5dlWOM2G O5hCBvK7KryCiEFoLUCuhHYnM3xrYbP6IPsdyvjPl6nBHVHO6Z7MtwXGpfShI4n1 tUn9/mDvZuhwsPKq8Vf1I4gtsCudiiEkVYTOL7QuY2H4ShHvFUGtGFxc97rBO9O8 y8YtWPRHxP+RJETyRfDxP1w1AlqkVqk58/DxMX9/50qu7VFNa+BVDhRrpiRwy3nC TPruKDaCFI4GM40blew3NvdESN4PL94pN7CNGYg= -----END CERTIFICATE-----Generated at Wed May 13 07:35:50 2026 by rpki-client