$ rpki-client -vvf rpki-rsync.idnic.net/repo/0c765d51-b0b1-435d-a66b-604c6e5d29ef/0/323430363a353463303a3a2f33332d3333203d3e20313430343739.roa File: 323430363a353463303a3a2f33332d3333203d3e20313430343739.roa (raw, json) Hash identifier: 2cV6nPzmY4kD2CJExVdWuMSGfjJCPD1xihnYeBD8ieA= Subject key identifier: 2A:1B:8C:1C:60:CA:03:36:B0:C0:AA:D1:FD:46:B3:DA:CF:C9:6A:49 Certificate issuer: /CN=5FBEDE983A6322B999A46AB6AACCF6A7C6063FB5 Certificate serial: 3F54C4A52F3C38A88EF23594C2E58B8DBFFAF76B Authority key identifier: 5F:BE:DE:98:3A:63:22:B9:99:A4:6A:B6:AA:CC:F6:A7:C6:06:3F:B5 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/5FBEDE983A6322B999A46AB6AACCF6A7C6063FB5.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/0c765d51-b0b1-435d-a66b-604c6e5d29ef/0/323430363a353463303a3a2f33332d3333203d3e20313430343739.roa Signing time: Sun 03 May 2026 02:13:03 +0000 ROA not before: Sun 03 May 2026 02:08:03 +0000 ROA not after: Sun 02 May 2027 02:13:03 +0000 asID: 140479 IP address blocks: 2406:54c0::/33 maxlen: 33 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/0c765d51-b0b1-435d-a66b-604c6e5d29ef/0/5FBEDE983A6322B999A46AB6AACCF6A7C6063FB5.crl rsync://rpki-rsync.idnic.net/repo/0c765d51-b0b1-435d-a66b-604c6e5d29ef/0/5FBEDE983A6322B999A46AB6AACCF6A7C6063FB5.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/5FBEDE983A6322B999A46AB6AACCF6A7C6063FB5.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 15:19:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:54:c4:a5:2f:3c:38:a8:8e:f2:35:94:c2:e5:8b:8d:bf:fa:f7:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5FBEDE983A6322B999A46AB6AACCF6A7C6063FB5 Validity Not Before: May 3 02:08:03 2026 GMT Not After : May 2 02:13:03 2027 GMT Subject: CN=2A1B8C1C60CA0336B0C0AAD1FD46B3DACFC96A49 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:06:7d:7a:d7:5b:bc:39:0a:94:13:b2:88:3d: ff:e6:c5:8c:52:d9:36:52:03:63:0e:f8:c0:27:90: d2:c5:a1:42:b7:70:9d:b0:5e:8e:94:28:f2:38:c4: 25:fb:21:3b:69:50:09:5f:26:02:5b:fb:b2:6e:ba: b9:b2:22:1d:1d:42:74:a9:29:78:78:cf:e8:33:91: d9:02:e1:52:70:fc:d4:d7:26:f8:95:95:f2:27:7a: cf:11:3a:fe:d9:a1:a9:9d:e5:32:0c:5e:21:a8:26: 72:d4:2e:13:f9:f4:78:1f:63:3f:67:bb:dc:d4:37: a1:51:30:74:38:51:64:e0:eb:55:0a:c4:65:b6:33: 1b:b8:24:83:8b:e5:99:cd:9b:78:5d:45:56:00:31: aa:c6:c9:63:2b:45:83:5b:88:98:68:ca:7e:12:1b: ee:a9:ae:57:60:81:f9:74:8c:15:cc:b5:fa:f4:a3: 90:e3:e5:39:6c:69:dc:cd:a3:1c:87:ff:3a:84:98: 39:15:11:24:ff:35:b7:c5:3f:5c:d7:71:64:6a:4e: 5c:8c:5f:f9:d7:e1:d6:79:85:ea:eb:ff:5c:5b:16: 46:16:b2:6b:18:ad:cf:b1:5b:ea:54:b2:1d:58:48: 4f:80:b3:5c:59:88:74:be:9a:85:bf:30:24:78:10: b5:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:1B:8C:1C:60:CA:03:36:B0:C0:AA:D1:FD:46:B3:DA:CF:C9:6A:49 X509v3 Authority Key Identifier: keyid:5F:BE:DE:98:3A:63:22:B9:99:A4:6A:B6:AA:CC:F6:A7:C6:06:3F:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/0c765d51-b0b1-435d-a66b-604c6e5d29ef/0/5FBEDE983A6322B999A46AB6AACCF6A7C6063FB5.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/5FBEDE983A6322B999A46AB6AACCF6A7C6063FB5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/0c765d51-b0b1-435d-a66b-604c6e5d29ef/0/323430363a353463303a3a2f33332d3333203d3e20313430343739.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:54c0::/33 Signature Algorithm: sha256WithRSAEncryption b6:81:f6:f7:f1:c2:88:62:3e:90:57:06:03:f7:70:1b:91:15: 78:32:08:7c:17:de:03:c3:a3:a2:f4:ee:f5:aa:63:e0:42:32: 56:d1:89:5c:c2:58:99:14:e0:22:3a:28:6d:39:80:c1:05:b5: 52:f8:7f:e5:2d:42:c5:01:98:58:c7:f7:6b:98:18:1f:5b:2f: 43:d2:ee:46:1c:c8:c1:92:6d:a9:12:d1:eb:eb:5a:05:73:ba: 88:cb:51:b3:b2:bb:92:eb:38:9c:16:6b:03:93:dd:08:53:51: d9:40:c0:c2:d8:e6:b2:40:2e:cb:d6:87:a8:9e:83:96:bd:d4: 1c:15:82:a3:b9:73:8f:a5:a4:2e:07:8d:e4:4e:b4:eb:49:7e: a5:c0:44:7b:78:64:0d:6d:2d:f2:7e:e9:ea:c9:db:91:b5:36: 61:11:cf:a7:1e:ad:f6:ad:bf:5d:20:94:a7:fa:38:3c:90:9c: 61:33:d3:f7:48:b9:85:e6:bf:75:e5:81:ec:81:5a:df:26:21: e2:0e:32:28:87:1d:ee:b8:09:d8:cc:c8:5e:f7:fa:a1:da:fb: 19:62:65:1e:77:13:60:1c:71:7e:ef:c7:0f:9c:95:19:da:04: e5:9c:a2:33:5e:a0:58:52:1e:81:0c:ae:aa:6a:4f:d1:5f:55: ee:4a:1b:1a -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUP1TEpS88OKiO8jWUwuWLjb/692swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUZCRURFOTgzQTYzMjJCOTk5QTQ2QUI2QUFDQ0Y2QTdD NjA2M0ZCNTAeFw0yNjA1MDMwMjA4MDNaFw0yNzA1MDIwMjEzMDNaMDMxMTAvBgNV BAMTKDJBMUI4QzFDNjBDQTAzMzZCMEMwQUFEMUZENDZCM0RBQ0ZDOTZBNDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvBn1611u8OQqUE7KIPf/mxYxS 2TZSA2MO+MAnkNLFoUK3cJ2wXo6UKPI4xCX7ITtpUAlfJgJb+7JuurmyIh0dQnSp KXh4z+gzkdkC4VJw/NTXJviVlfInes8ROv7Zoamd5TIMXiGoJnLULhP59HgfYz9n u9zUN6FRMHQ4UWTg61UKxGW2Mxu4JIOL5ZnNm3hdRVYAMarGyWMrRYNbiJhoyn4S G+6prldggfl0jBXMtfr0o5Dj5TlsadzNoxyH/zqEmDkVEST/NbfFP1zXcWRqTlyM X/nX4dZ5herr/1xbFkYWsmsYrc+xW+pUsh1YSE+As1xZiHS+moW/MCR4ELWXAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUKhuMHGDKAzawwKrR/Uaz2s/JakkwHwYDVR0j BBgwFoAUX77emDpjIrmZpGq2qsz2p8YGP7UwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MGM3NjVkNTEtYjBiMS00MzVkLWE2NmItNjA0YzZlNWQyOWVmLzAvNUZCRURFOTgz QTYzMjJCOTk5QTQ2QUI2QUFDQ0Y2QTdDNjA2M0ZCNS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS81RkJFREU5ODNBNjMyMkI5OTlBNDZBQjZBQUNDRjZBN0M2MDYz RkI1LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzBjNzY1ZDUxLWIwYjEtNDM1ZC1h NjZiLTYwNGM2ZTVkMjllZi8wLzMyMzQzMDM2M2EzNTM0NjMzMDNhM2EyZjMzMzMy ZDMzMzMyMDNkM2UyMDMxMzQzMDM0MzczOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGByQGVMAAMA0GCSqG SIb3DQEBCwUAA4IBAQC2gfb38cKIYj6QVwYD93AbkRV4Mgh8F94Dw6Oi9O71qmPg QjJW0YlcwliZFOAiOihtOYDBBbVS+H/lLULFAZhYx/drmBgfWy9D0u5GHMjBkm2p EtHr61oFc7qIy1GzsruS6zicFmsDk90IU1HZQMDC2OayQC7L1oeonoOWvdQcFYKj uXOPpaQuB43kTrTrSX6lwER7eGQNbS3yfunqyduRtTZhEc+nHq32rb9dIJSn+jg8 kJxhM9P3SLmF5r915YHsgVrfJiHiDjIohx3uuAnYzMhe9/qh2vsZYmUedxNgHHF+ 78cPnJUZ2gTlnKIzXqBYUh6BDK6qak/RX1XuShsa -----END CERTIFICATE-----Generated at Wed May 13 09:18:13 2026 by rpki-client