$ rpki-client -vvf rpki-rsync.idnic.net/repo/07304b83-30aa-4bbf-9fd7-2fceadbf0030/0/323430313a626534303a3a2f33322d3438203d3e20313336383431.roa File: 323430313a626534303a3a2f33322d3438203d3e20313336383431.roa (raw, json) Hash identifier: pUzTSX764GWtHHO9jcVOxnVCQQd9HOcC1kC/yiGkLr8= Subject key identifier: 21:06:12:C0:04:52:D1:3F:7C:E8:76:81:7C:FE:CB:C8:B9:C7:97:FA Certificate issuer: /CN=4DA11D5AF5F17AE716519F84A263E1A5E57D5244 Certificate serial: 57808412C20BE3E0735F9559BBCB53F4EC83F927 Authority key identifier: 4D:A1:1D:5A:F5:F1:7A:E7:16:51:9F:84:A2:63:E1:A5:E5:7D:52:44 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/4DA11D5AF5F17AE716519F84A263E1A5E57D5244.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/07304b83-30aa-4bbf-9fd7-2fceadbf0030/0/323430313a626534303a3a2f33322d3438203d3e20313336383431.roa Signing time: Sun 03 May 2026 02:12:04 +0000 ROA not before: Sun 03 May 2026 02:07:04 +0000 ROA not after: Sun 02 May 2027 02:12:04 +0000 asID: 136841 IP address blocks: 2401:be40::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/07304b83-30aa-4bbf-9fd7-2fceadbf0030/0/4DA11D5AF5F17AE716519F84A263E1A5E57D5244.crl rsync://rpki-rsync.idnic.net/repo/07304b83-30aa-4bbf-9fd7-2fceadbf0030/0/4DA11D5AF5F17AE716519F84A263E1A5E57D5244.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/4DA11D5AF5F17AE716519F84A263E1A5E57D5244.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 00:42:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:80:84:12:c2:0b:e3:e0:73:5f:95:59:bb:cb:53:f4:ec:83:f9:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4DA11D5AF5F17AE716519F84A263E1A5E57D5244 Validity Not Before: May 3 02:07:04 2026 GMT Not After : May 2 02:12:04 2027 GMT Subject: CN=210612C00452D13F7CE876817CFECBC8B9C797FA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:d6:35:ff:6c:09:e2:f1:8b:b3:66:75:17:50: 1a:df:f5:82:71:0e:0d:b1:98:57:77:2a:3a:5a:0a: 1b:87:f4:e8:32:a3:79:99:1d:ea:e6:84:b9:25:17: 70:5e:74:4a:48:49:7a:7e:83:5d:f7:d9:2d:22:7c: fb:81:78:7d:2d:13:fe:bf:63:94:3b:ec:ce:0b:09: 96:b9:16:7f:ce:ae:7c:46:77:85:ab:24:82:15:c4: 7e:98:20:0f:9f:2f:de:bf:b3:87:d1:24:4b:ad:ac: da:a3:1e:e5:57:8e:50:db:14:59:64:5c:40:3f:e5: 34:02:15:e5:34:4e:b7:c2:99:c1:e2:02:c5:64:34: 5b:71:7f:4e:c5:e0:9a:f3:44:a9:cc:5d:92:f5:13: c5:3e:0f:15:ba:8d:c9:e4:c9:49:fa:47:be:dd:a1: a8:c4:d8:db:ab:6f:53:fb:4d:bb:f9:a3:9b:7e:0f: 0f:eb:de:f9:bd:7f:3e:48:b7:16:ba:ea:d2:7f:bc: ef:f3:7f:03:13:a9:35:04:1a:14:2a:94:db:a6:ab: 96:42:1a:6d:76:96:84:61:37:6b:88:e3:19:0e:ce: 27:83:d8:ab:5c:47:9c:81:89:7d:84:95:ff:b4:cf: 28:15:5b:c9:1d:56:36:2d:73:97:2a:db:94:aa:03: 8c:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:06:12:C0:04:52:D1:3F:7C:E8:76:81:7C:FE:CB:C8:B9:C7:97:FA X509v3 Authority Key Identifier: keyid:4D:A1:1D:5A:F5:F1:7A:E7:16:51:9F:84:A2:63:E1:A5:E5:7D:52:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/07304b83-30aa-4bbf-9fd7-2fceadbf0030/0/4DA11D5AF5F17AE716519F84A263E1A5E57D5244.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/4DA11D5AF5F17AE716519F84A263E1A5E57D5244.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/07304b83-30aa-4bbf-9fd7-2fceadbf0030/0/323430313a626534303a3a2f33322d3438203d3e20313336383431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:be40::/32 Signature Algorithm: sha256WithRSAEncryption 18:1e:07:3d:5c:8d:9c:d2:28:92:26:64:71:49:bc:8d:6b:8c: 17:60:56:03:2c:4b:97:ce:b0:37:d3:2b:cc:ed:f7:0e:0d:47: 7c:37:7d:5c:00:41:64:42:9d:eb:31:a3:f2:c5:0b:d4:a8:e9: 3c:2d:ad:ce:68:77:25:e7:d3:a3:dd:c9:ee:7e:37:f1:1c:58: fe:f2:2d:56:f5:59:61:0b:ad:c3:2d:6f:7f:66:ae:7f:74:b7: 09:68:cb:e3:b1:cc:ad:f4:21:46:d9:64:5e:49:ee:5f:e0:97: b3:18:4c:8b:0d:24:7a:75:7a:82:de:96:ba:02:56:1a:cb:fa: 84:eb:2b:7b:dc:28:05:6d:92:63:a2:e1:65:1f:6c:5c:0a:1d: 73:96:e0:70:c1:65:e7:00:10:c2:d2:e6:b3:d5:43:30:a9:d6: 06:27:ec:2d:b0:5c:22:83:8c:14:a1:c1:0f:eb:81:bb:6e:fa: 6e:3b:bc:76:77:10:29:46:7e:71:91:83:8a:3a:c3:57:6c:58: a1:30:6d:2c:67:74:e2:56:20:d2:71:ac:b1:24:36:25:cb:5e: f1:71:cd:14:3f:8a:fa:04:0a:32:76:16:9e:12:b3:ab:73:36: 09:6d:8a:bc:7c:b2:4a:62:43:12:30:66:ca:26:7a:c7:a3:d6: 2b:77:83:38 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUV4CEEsIL4+BzX5VZu8tT9OyD+ScwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNERBMTFENUFGNUYxN0FFNzE2NTE5Rjg0QTI2M0UxQTVF NTdENTI0NDAeFw0yNjA1MDMwMjA3MDRaFw0yNzA1MDIwMjEyMDRaMDMxMTAvBgNV BAMTKDIxMDYxMkMwMDQ1MkQxM0Y3Q0U4NzY4MTdDRkVDQkM4QjlDNzk3RkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCt1jX/bAni8YuzZnUXUBrf9YJx Dg2xmFd3KjpaChuH9Ogyo3mZHermhLklF3BedEpISXp+g1332S0ifPuBeH0tE/6/ Y5Q77M4LCZa5Fn/OrnxGd4WrJIIVxH6YIA+fL96/s4fRJEutrNqjHuVXjlDbFFlk XEA/5TQCFeU0TrfCmcHiAsVkNFtxf07F4JrzRKnMXZL1E8U+DxW6jcnkyUn6R77d oajE2Nurb1P7Tbv5o5t+Dw/r3vm9fz5Itxa66tJ/vO/zfwMTqTUEGhQqlNumq5ZC Gm12loRhN2uI4xkOzieD2KtcR5yBiX2Elf+0zygVW8kdVjYtc5cq25SqA4xvAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUIQYSwARS0T986HaBfP7LyLnHl/owHwYDVR0j BBgwFoAUTaEdWvXxeucWUZ+EomPhpeV9UkQwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MDczMDRiODMtMzBhYS00YmJmLTlmZDctMmZjZWFkYmYwMDMwLzAvNERBMTFENUFG NUYxN0FFNzE2NTE5Rjg0QTI2M0UxQTVFNTdENTI0NC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS80REExMUQ1QUY1RjE3QUU3MTY1MTlGODRBMjYzRTFBNUU1N0Q1 MjQ0LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzA3MzA0YjgzLTMwYWEtNGJiZi05 ZmQ3LTJmY2VhZGJmMDAzMC8wLzMyMzQzMDMxM2E2MjY1MzQzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMxMzMzNjM4MzQzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQBvkAwDQYJKoZI hvcNAQELBQADggEBABgeBz1cjZzSKJImZHFJvI1rjBdgVgMsS5fOsDfTK8zt9w4N R3w3fVwAQWRCnesxo/LFC9So6Twtrc5odyXn06Pdye5+N/EcWP7yLVb1WWELrcMt b39mrn90twloy+OxzK30IUbZZF5J7l/gl7MYTIsNJHp1eoLelroCVhrL+oTrK3vc KAVtkmOi4WUfbFwKHXOW4HDBZecAEMLS5rPVQzCp1gYn7C2wXCKDjBShwQ/rgbtu +m47vHZ3EClGfnGRg4o6w1dsWKEwbSxndOJWINJxrLEkNiXLXvFxzRQ/ivoECjJ2 Fp4Ss6tzNgltirx8skpiQxIwZsomesej1it3gzg= -----END CERTIFICATE-----Generated at Wed May 13 05:36:13 2026 by rpki-client