$ rpki-client -vvf rpki-rsync.idnic.net/repo/0c765d51-b0b1-435d-a66b-604c6e5d29ef/0/323430363a353463303a383030303a3a2f33332d3333203d3e20313430343739.roa File: 323430363a353463303a383030303a3a2f33332d3333203d3e20313430343739.roa (raw, json) Hash identifier: bIsAPyP9rDpPX3/Ob3Qv6l0T0cqP2nXkNSsYJzMdy0g= Subject key identifier: C5:5A:00:7A:54:A1:0D:9C:9A:88:27:13:A3:4B:3C:41:CA:20:8C:D7 Certificate issuer: /CN=5FBEDE983A6322B999A46AB6AACCF6A7C6063FB5 Certificate serial: 43F9EA3AC49A71E3CD0E2646B1944EEE6019C76E Authority key identifier: 5F:BE:DE:98:3A:63:22:B9:99:A4:6A:B6:AA:CC:F6:A7:C6:06:3F:B5 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/5FBEDE983A6322B999A46AB6AACCF6A7C6063FB5.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/0c765d51-b0b1-435d-a66b-604c6e5d29ef/0/323430363a353463303a383030303a3a2f33332d3333203d3e20313430343739.roa Signing time: Sun 03 May 2026 02:13:03 +0000 ROA not before: Sun 03 May 2026 02:08:03 +0000 ROA not after: Sun 02 May 2027 02:13:03 +0000 asID: 140479 IP address blocks: 2406:54c0:8000::/33 maxlen: 33 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/0c765d51-b0b1-435d-a66b-604c6e5d29ef/0/5FBEDE983A6322B999A46AB6AACCF6A7C6063FB5.crl rsync://rpki-rsync.idnic.net/repo/0c765d51-b0b1-435d-a66b-604c6e5d29ef/0/5FBEDE983A6322B999A46AB6AACCF6A7C6063FB5.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/5FBEDE983A6322B999A46AB6AACCF6A7C6063FB5.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 08:43:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:f9:ea:3a:c4:9a:71:e3:cd:0e:26:46:b1:94:4e:ee:60:19:c7:6e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5FBEDE983A6322B999A46AB6AACCF6A7C6063FB5 Validity Not Before: May 3 02:08:03 2026 GMT Not After : May 2 02:13:03 2027 GMT Subject: CN=C55A007A54A10D9C9A882713A34B3C41CA208CD7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:6d:39:30:3e:5e:00:dc:e5:db:32:54:75:ce: 8c:70:14:ea:12:b9:a4:ae:a6:61:dc:2a:9a:95:06: 72:b0:16:b3:de:f0:eb:5f:74:57:40:4b:e1:76:93: 73:92:56:fc:fa:b9:da:2a:7d:62:0f:27:73:51:36: 47:87:18:38:02:b3:3b:e7:b2:5c:a5:6e:4b:5f:e0: 9a:a5:16:35:60:f4:a5:70:32:33:3f:88:91:60:75: 82:2a:97:fd:11:91:39:ed:de:43:07:39:76:22:84: 57:95:3a:83:51:7d:5d:90:8a:43:ab:84:7d:68:ad: 9e:90:af:6b:2e:aa:03:e2:97:8f:6b:f3:20:54:86: 54:cd:e3:6a:eb:7a:46:3f:b7:dd:cb:fd:f0:63:a3: 37:3f:59:7a:ab:78:6d:5d:69:33:8f:db:5e:0e:49: e5:b7:6f:cd:2f:bb:0b:15:de:62:22:97:d4:4a:9c: e6:55:3c:76:67:72:3b:69:23:a7:ec:bc:ca:a7:84: 49:db:2c:a1:7d:41:32:7f:75:24:a5:c9:d0:04:e2: 01:d7:b6:db:27:57:4e:35:8c:5c:21:d5:65:4d:e4: e2:7c:61:72:62:2e:31:d2:6d:36:f4:2c:9d:53:78: 9b:69:37:59:73:5b:8e:76:d4:96:0b:8e:79:41:0b: fe:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:5A:00:7A:54:A1:0D:9C:9A:88:27:13:A3:4B:3C:41:CA:20:8C:D7 X509v3 Authority Key Identifier: keyid:5F:BE:DE:98:3A:63:22:B9:99:A4:6A:B6:AA:CC:F6:A7:C6:06:3F:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/0c765d51-b0b1-435d-a66b-604c6e5d29ef/0/5FBEDE983A6322B999A46AB6AACCF6A7C6063FB5.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/5FBEDE983A6322B999A46AB6AACCF6A7C6063FB5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/0c765d51-b0b1-435d-a66b-604c6e5d29ef/0/323430363a353463303a383030303a3a2f33332d3333203d3e20313430343739.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:54c0:8000::/33 Signature Algorithm: sha256WithRSAEncryption 91:7e:ab:10:6e:c1:bf:43:0b:74:84:7b:11:ce:7d:05:03:ba: e1:cc:ee:84:12:bd:2c:0c:91:ca:9e:a3:26:85:8c:9a:44:6e: dc:27:9d:f5:bc:59:24:25:e6:97:cd:82:4b:6b:fa:63:ee:95: df:f4:be:d0:bd:a0:62:e5:77:b1:82:d0:3b:51:2f:74:8c:88: 5a:6a:d1:9c:96:e7:15:7b:c2:34:ae:66:25:b9:e0:cc:21:8f: 0e:af:2e:3c:a9:d5:5b:1d:35:67:09:d5:f3:6a:82:56:c3:70: d0:d5:cc:10:fe:d5:85:0a:b2:8d:f2:fa:e6:b1:8e:f4:a1:73: 62:cd:ad:f8:1d:23:ac:c6:57:80:3d:25:6c:8a:85:51:be:53: 86:91:80:f0:96:6c:19:b0:f2:d2:c5:d8:66:7b:5c:95:f8:c2: 1d:d5:2c:90:ed:12:0f:b1:4f:c3:f2:6a:a2:29:72:5d:22:42: be:08:07:ad:c9:a0:0b:fe:cc:5b:91:57:05:f3:a7:1c:51:48: 12:d7:e3:2b:77:c4:5f:6f:30:7f:09:71:47:cd:73:76:92:6c: 88:88:97:df:b8:fe:8a:b8:33:b9:74:be:f7:80:8d:d9:88:24: dc:a7:00:74:c3:4d:d7:0e:27:41:d3:02:f1:a0:23:69:7a:40: 7f:b5:2c:90 -----BEGIN CERTIFICATE----- MIIFNDCCBBygAwIBAgIUQ/nqOsSacePNDiZGsZRO7mAZx24wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUZCRURFOTgzQTYzMjJCOTk5QTQ2QUI2QUFDQ0Y2QTdD NjA2M0ZCNTAeFw0yNjA1MDMwMjA4MDNaFw0yNzA1MDIwMjEzMDNaMDMxMTAvBgNV BAMTKEM1NUEwMDdBNTRBMTBEOUM5QTg4MjcxM0EzNEIzQzQxQ0EyMDhDRDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDmbTkwPl4A3OXbMlR1zoxwFOoS uaSupmHcKpqVBnKwFrPe8OtfdFdAS+F2k3OSVvz6udoqfWIPJ3NRNkeHGDgCszvn slylbktf4JqlFjVg9KVwMjM/iJFgdYIql/0RkTnt3kMHOXYihFeVOoNRfV2QikOr hH1orZ6Qr2suqgPil49r8yBUhlTN42rrekY/t93L/fBjozc/WXqreG1daTOP214O SeW3b80vuwsV3mIil9RKnOZVPHZncjtpI6fsvMqnhEnbLKF9QTJ/dSSlydAE4gHX ttsnV041jFwh1WVN5OJ8YXJiLjHSbTb0LJ1TeJtpN1lzW4521JYLjnlBC/7RAgMB AAGjggI+MIICOjAdBgNVHQ4EFgQUxVoAelShDZyaiCcTo0s8QcogjNcwHwYDVR0j BBgwFoAUX77emDpjIrmZpGq2qsz2p8YGP7UwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MGM3NjVkNTEtYjBiMS00MzVkLWE2NmItNjA0YzZlNWQyOWVmLzAvNUZCRURFOTgz QTYzMjJCOTk5QTQ2QUI2QUFDQ0Y2QTdDNjA2M0ZCNS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS81RkJFREU5ODNBNjMyMkI5OTlBNDZBQjZBQUNDRjZBN0M2MDYz RkI1LmNlcjCBrQYIKwYBBQUHAQsEgaAwgZ0wgZoGCCsGAQUFBzALhoGNcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzBjNzY1ZDUxLWIwYjEtNDM1ZC1h NjZiLTYwNGM2ZTVkMjllZi8wLzMyMzQzMDM2M2EzNTM0NjMzMDNhMzgzMDMwMzAz YTNhMmYzMzMzMmQzMzMzMjAzZDNlMjAzMTM0MzAzNDM3Mzkucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgck BlTAgDANBgkqhkiG9w0BAQsFAAOCAQEAkX6rEG7Bv0MLdIR7Ec59BQO64czuhBK9 LAyRyp6jJoWMmkRu3Ced9bxZJCXml82CS2v6Y+6V3/S+0L2gYuV3sYLQO1EvdIyI WmrRnJbnFXvCNK5mJbngzCGPDq8uPKnVWx01ZwnV82qCVsNw0NXMEP7VhQqyjfL6 5rGO9KFzYs2t+B0jrMZXgD0lbIqFUb5ThpGA8JZsGbDy0sXYZntclfjCHdUskO0S D7FPw/JqoilyXSJCvggHrcmgC/7MW5FXBfOnHFFIEtfjK3fEX28wfwlxR81zdpJs iIiX37j+irgzuXS+94CN2Ygk3KcAdMNN1w4nQdMC8aAjaXpAf7UskA== -----END CERTIFICATE-----Generated at Wed May 13 13:42:50 2026 by rpki-client