$ rpki-client -vvf rpki-rsync.idnic.net/repo/0e46a305-df77-4587-8703-a905c53779ac/0/323430363a653930303a3a2f34382d3438203d3e20313332363439.roa File: 323430363a653930303a3a2f34382d3438203d3e20313332363439.roa (raw, json) Hash identifier: aJngYofxYM8aRo7ASuGSX++bpTmrKYXt3y7dtT5WC2Y= Subject key identifier: 1B:21:4D:79:F1:B1:BA:27:19:09:84:D4:50:08:B4:A1:12:33:E5:D9 Certificate issuer: /CN=AAB4671D9735066964F008C9DDFC52C3A710E040 Certificate serial: 1E2C2A893C130E47C8C8C4CE10FD028B7124E466 Authority key identifier: AA:B4:67:1D:97:35:06:69:64:F0:08:C9:DD:FC:52:C3:A7:10:E0:40 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AAB4671D9735066964F008C9DDFC52C3A710E040.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/0e46a305-df77-4587-8703-a905c53779ac/0/323430363a653930303a3a2f34382d3438203d3e20313332363439.roa Signing time: Sun 03 May 2026 02:13:20 +0000 ROA not before: Sun 03 May 2026 02:08:20 +0000 ROA not after: Sun 02 May 2027 02:13:20 +0000 asID: 132649 IP address blocks: 2406:e900::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/0e46a305-df77-4587-8703-a905c53779ac/0/AAB4671D9735066964F008C9DDFC52C3A710E040.crl rsync://rpki-rsync.idnic.net/repo/0e46a305-df77-4587-8703-a905c53779ac/0/AAB4671D9735066964F008C9DDFC52C3A710E040.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AAB4671D9735066964F008C9DDFC52C3A710E040.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 21:14:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:2c:2a:89:3c:13:0e:47:c8:c8:c4:ce:10:fd:02:8b:71:24:e4:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AAB4671D9735066964F008C9DDFC52C3A710E040 Validity Not Before: May 3 02:08:20 2026 GMT Not After : May 2 02:13:20 2027 GMT Subject: CN=1B214D79F1B1BA27190984D45008B4A11233E5D9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:92:c9:be:1c:93:94:06:77:01:1c:9d:a1:ae: 27:67:48:7a:c8:5d:c8:42:2a:89:53:9a:e8:b4:3f: 74:8d:c5:9d:77:f2:52:5b:bc:f1:79:65:b5:8d:8b: bd:33:10:68:36:4e:9e:d6:fa:66:5e:a8:6c:99:b7: ad:10:76:af:76:49:9a:1f:7c:85:30:2a:9b:1d:d0: a9:ea:88:9d:a1:f8:cf:71:b6:31:c9:9b:f5:f2:46: d9:d7:1c:8c:42:0f:09:3c:1f:8d:a2:d4:a3:99:49: a7:ee:23:87:45:59:41:b4:27:0c:22:01:02:5d:0c: f3:cf:64:6e:bb:63:71:f8:d3:41:fc:14:09:c2:b2: f2:07:ad:51:7c:ce:64:d2:05:1b:58:4a:3e:b0:42: 93:56:2f:da:82:c6:62:f7:c1:8b:cc:64:0e:76:33: 7a:23:9d:5d:d7:17:27:99:06:c2:ab:f2:0f:a5:ba: 16:26:e1:ca:ea:7b:23:76:75:b8:98:8a:ab:38:09: 91:f0:b8:e7:c9:f6:22:cf:75:af:65:29:77:16:90: ae:b5:fd:0a:c0:98:eb:e1:01:d2:9b:b7:07:3f:3b: 93:95:fb:19:51:11:0a:7a:4b:0a:c2:c5:77:29:6e: 3b:a7:d1:ea:9e:b5:e3:9d:5f:ba:4a:58:c0:84:51: 1b:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:21:4D:79:F1:B1:BA:27:19:09:84:D4:50:08:B4:A1:12:33:E5:D9 X509v3 Authority Key Identifier: keyid:AA:B4:67:1D:97:35:06:69:64:F0:08:C9:DD:FC:52:C3:A7:10:E0:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/0e46a305-df77-4587-8703-a905c53779ac/0/AAB4671D9735066964F008C9DDFC52C3A710E040.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AAB4671D9735066964F008C9DDFC52C3A710E040.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/0e46a305-df77-4587-8703-a905c53779ac/0/323430363a653930303a3a2f34382d3438203d3e20313332363439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:e900::/48 Signature Algorithm: sha256WithRSAEncryption 1d:57:67:e6:cf:c0:96:4d:1d:0c:0e:ca:01:2d:3d:90:16:39: 05:d3:1d:62:f1:4c:ba:2a:17:b8:1d:6c:71:84:0d:dc:7a:50: 1f:0f:0c:08:06:c1:13:33:1a:15:b0:96:32:de:2e:f0:06:d2: 79:6d:1d:06:f6:8d:d5:43:0c:6d:01:19:8c:0a:0c:e1:f0:72: d6:9c:2f:d9:6e:88:1f:b4:1a:72:2d:f4:32:f9:95:23:34:56: 1c:c4:20:da:0b:d0:50:a3:40:d0:fe:19:36:0c:be:40:1b:cb: eb:be:a2:ff:f7:d5:69:b4:25:42:01:d7:25:1a:ca:bb:ae:cb: 5b:f4:ff:ef:e0:7b:a0:cb:16:cb:3b:65:85:a0:0b:98:f9:80: 45:0e:d6:eb:f8:9e:c7:03:61:52:d1:44:41:e6:c0:b2:24:9f: 99:49:81:4d:67:92:0d:af:7c:0b:58:98:07:a9:1f:d0:96:dd: 61:af:df:c9:5d:ac:3c:80:cc:6d:09:f0:26:31:18:b9:b3:d7: 0a:71:09:ea:f6:2c:f7:a2:1e:cf:24:72:3b:c2:14:d5:5f:0e: 0e:f9:65:1b:19:3b:35:6b:0f:cd:1a:6e:c3:c5:ea:df:de:00: c2:a3:13:4f:67:5c:9d:c8:81:6d:bc:bc:f0:35:1a:c8:42:0b: 3b:9d:e9:b2 -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgIUHiwqiTwTDkfIyMTOEP0Ci3Ek5GYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUFCNDY3MUQ5NzM1MDY2OTY0RjAwOEM5RERGQzUyQzNB NzEwRTA0MDAeFw0yNjA1MDMwMjA4MjBaFw0yNzA1MDIwMjEzMjBaMDMxMTAvBgNV BAMTKDFCMjE0RDc5RjFCMUJBMjcxOTA5ODRENDUwMDhCNEExMTIzM0U1RDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCYksm+HJOUBncBHJ2hridnSHrI XchCKolTmui0P3SNxZ138lJbvPF5ZbWNi70zEGg2Tp7W+mZeqGyZt60Qdq92SZof fIUwKpsd0KnqiJ2h+M9xtjHJm/XyRtnXHIxCDwk8H42i1KOZSafuI4dFWUG0Jwwi AQJdDPPPZG67Y3H400H8FAnCsvIHrVF8zmTSBRtYSj6wQpNWL9qCxmL3wYvMZA52 M3ojnV3XFyeZBsKr8g+luhYm4crqeyN2dbiYiqs4CZHwuOfJ9iLPda9lKXcWkK61 /QrAmOvhAdKbtwc/O5OV+xlREQp6SwrCxXcpbjun0eqeteOdX7pKWMCEURuLAgMB AAGjggI1MIICMTAdBgNVHQ4EFgQUGyFNefGxuicZCYTUUAi0oRIz5dkwHwYDVR0j BBgwFoAUqrRnHZc1Bmlk8AjJ3fxSw6cQ4EAwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MGU0NmEzMDUtZGY3Ny00NTg3LTg3MDMtYTkwNWM1Mzc3OWFjLzAvQUFCNDY3MUQ5 NzM1MDY2OTY0RjAwOEM5RERGQzUyQzNBNzEwRTA0MC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9BQUI0NjcxRDk3MzUwNjY5NjRGMDA4QzlEREZDNTJDM0E3MTBF MDQwLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzBlNDZhMzA1LWRmNzctNDU4Ny04 NzAzLWE5MDVjNTM3NzlhYy8wLzMyMzQzMDM2M2E2NTM5MzAzMDNhM2EyZjM0Mzgy ZDM0MzgyMDNkM2UyMDMxMzMzMjM2MzQzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQG6QAAADANBgkq hkiG9w0BAQsFAAOCAQEAHVdn5s/Alk0dDA7KAS09kBY5BdMdYvFMuioXuB1scYQN 3HpQHw8MCAbBEzMaFbCWMt4u8AbSeW0dBvaN1UMMbQEZjAoM4fBy1pwv2W6IH7Qa ci30MvmVIzRWHMQg2gvQUKNA0P4ZNgy+QBvL676i//fVabQlQgHXJRrKu67LW/T/ 7+B7oMsWyztlhaALmPmARQ7W6/iexwNhUtFEQebAsiSfmUmBTWeSDa98C1iYB6kf 0JbdYa/fyV2sPIDMbQnwJjEYubPXCnEJ6vYs96IezyRyO8IU1V8ODvllGxk7NWsP zRpuw8Xq394AwqMTT2dcnciBbby88DUayEILO53psg== -----END CERTIFICATE-----Generated at Wed May 13 12:24:27 2026 by rpki-client