$ rpki-client -vvf rpki-rsync.idnic.net/repo/1192021e-3904-4115-af5e-3edb713baa14/0/323430373a613563303a3a2f33322d3332203d3e20313432333339.roa File: 323430373a613563303a3a2f33322d3332203d3e20313432333339.roa (raw, json) Hash identifier: sbRZOMY4qXofH+gweW2UQPxdhQAQJDKmoZuKYzDjDd8= Subject key identifier: A9:A6:57:0F:F2:BC:4A:69:BC:55:A5:E6:D1:AC:71:BD:3D:91:79:53 Certificate issuer: /CN=498FC3DB03528A64214589740CA13E84E4775306 Certificate serial: 2C4F06120584C81DD79D1BB8BBB5B31C4DBAA160 Authority key identifier: 49:8F:C3:DB:03:52:8A:64:21:45:89:74:0C:A1:3E:84:E4:77:53:06 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/498FC3DB03528A64214589740CA13E84E4775306.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/1192021e-3904-4115-af5e-3edb713baa14/0/323430373a613563303a3a2f33322d3332203d3e20313432333339.roa Signing time: Sun 03 May 2026 02:14:05 +0000 ROA not before: Sun 03 May 2026 02:09:05 +0000 ROA not after: Sun 02 May 2027 02:14:05 +0000 asID: 142339 IP address blocks: 2407:a5c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/1192021e-3904-4115-af5e-3edb713baa14/0/498FC3DB03528A64214589740CA13E84E4775306.crl rsync://rpki-rsync.idnic.net/repo/1192021e-3904-4115-af5e-3edb713baa14/0/498FC3DB03528A64214589740CA13E84E4775306.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/498FC3DB03528A64214589740CA13E84E4775306.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 00:07:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:4f:06:12:05:84:c8:1d:d7:9d:1b:b8:bb:b5:b3:1c:4d:ba:a1:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=498FC3DB03528A64214589740CA13E84E4775306 Validity Not Before: May 3 02:09:05 2026 GMT Not After : May 2 02:14:05 2027 GMT Subject: CN=A9A6570FF2BC4A69BC55A5E6D1AC71BD3D917953 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:aa:95:14:f0:2b:d1:1d:cd:07:9f:76:e4:d2: 57:28:8a:b3:2a:8e:d5:ac:a9:6a:d5:b0:b8:c5:ff: 1d:49:18:8d:51:10:2c:c2:26:7a:0e:27:54:95:26: db:53:77:8c:25:11:b0:08:1c:b9:89:08:46:ce:8e: c2:ea:c4:15:05:83:7f:a9:d1:19:3b:dd:dc:9d:6f: e7:61:ae:4a:13:61:85:d0:9c:60:b7:56:a5:49:28: 81:26:1e:cb:ec:4b:81:22:e7:ae:3c:4c:0b:5c:44: 32:3c:98:df:a2:0e:bc:ce:d1:20:40:75:58:d6:18: 89:d4:a0:da:5d:f2:26:d5:83:fc:c0:80:b9:1f:77: 54:6a:df:a7:66:10:03:04:7e:bb:31:6c:95:cb:63: 1c:66:2a:ed:d8:96:0d:4e:a3:f0:a6:ee:6d:bf:0e: 89:22:c7:06:3d:79:9b:61:e2:ea:f8:d0:05:e4:bc: 0a:e0:d6:9f:5c:55:74:61:57:56:6f:a0:17:e4:26: 23:81:d5:6c:d9:b8:4e:e0:77:18:07:55:08:ae:b4: b2:e3:55:95:83:f8:86:12:d8:1e:a5:4e:57:0d:78: 55:9f:03:54:be:43:e6:4b:e8:11:e9:99:ff:bf:70: d4:c5:a9:30:48:33:53:d7:75:4d:b3:6a:62:2b:1a: e4:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:A6:57:0F:F2:BC:4A:69:BC:55:A5:E6:D1:AC:71:BD:3D:91:79:53 X509v3 Authority Key Identifier: keyid:49:8F:C3:DB:03:52:8A:64:21:45:89:74:0C:A1:3E:84:E4:77:53:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/1192021e-3904-4115-af5e-3edb713baa14/0/498FC3DB03528A64214589740CA13E84E4775306.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/498FC3DB03528A64214589740CA13E84E4775306.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/1192021e-3904-4115-af5e-3edb713baa14/0/323430373a613563303a3a2f33322d3332203d3e20313432333339.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2407:a5c0::/32 Signature Algorithm: sha256WithRSAEncryption 6f:fc:8b:b7:c7:67:06:b0:65:b5:45:46:63:32:fb:fa:42:e7: 29:49:d5:82:8b:40:6f:ca:35:48:9b:ae:44:86:08:5d:69:38: 18:96:ce:59:2a:75:39:54:d7:b8:ce:90:8d:db:6f:9c:38:b8: 85:24:74:49:e9:ef:32:0b:1e:1c:96:e6:b0:e1:7b:6b:9e:d3: bc:6e:82:2d:d1:37:ba:9f:9a:a1:26:f9:75:b2:a7:8c:c9:3e: 3e:a8:29:b6:80:b2:07:56:e0:06:d2:73:23:f2:01:bc:2e:25: 12:7b:f9:1c:4e:27:fb:1c:df:c9:04:5d:c7:2d:c4:6f:90:10: 78:05:b5:b0:65:86:c8:69:81:fa:97:74:dd:8d:8f:28:c9:bc: 5e:25:e4:d7:2c:75:3e:4c:5d:70:e5:cd:66:de:b6:17:44:6f: 2a:e4:78:16:58:bf:78:bd:e7:ab:45:3c:c8:65:6c:ce:27:c2: b5:cf:e2:7e:a9:51:40:38:a1:ad:6a:d6:0d:3b:6b:54:69:b1: e7:e4:c2:f4:6c:1b:59:a2:3b:fb:cb:13:37:50:c8:6a:d0:18: 1e:0a:23:5f:a6:62:6e:5a:1c:01:5f:bf:9d:c3:6c:54:82:1c: 95:94:d3:db:63:9f:1f:f5:1c:f2:69:4c:45:25:07:0a:41:cf: 8c:a1:95:fa -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIULE8GEgWEyB3XnRu4u7WzHE26oWAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDk4RkMzREIwMzUyOEE2NDIxNDU4OTc0MENBMTNFODRF NDc3NTMwNjAeFw0yNjA1MDMwMjA5MDVaFw0yNzA1MDIwMjE0MDVaMDMxMTAvBgNV BAMTKEE5QTY1NzBGRjJCQzRBNjlCQzU1QTVFNkQxQUM3MUJEM0Q5MTc5NTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJqpUU8CvRHc0Hn3bk0lcoirMq jtWsqWrVsLjF/x1JGI1RECzCJnoOJ1SVJttTd4wlEbAIHLmJCEbOjsLqxBUFg3+p 0Rk73dydb+dhrkoTYYXQnGC3VqVJKIEmHsvsS4Ei5648TAtcRDI8mN+iDrzO0SBA dVjWGInUoNpd8ibVg/zAgLkfd1Rq36dmEAMEfrsxbJXLYxxmKu3Ylg1Oo/Cm7m2/ DokixwY9eZth4ur40AXkvArg1p9cVXRhV1ZvoBfkJiOB1WzZuE7gdxgHVQiutLLj VZWD+IYS2B6lTlcNeFWfA1S+Q+ZL6BHpmf+/cNTFqTBIM1PXdU2zamIrGuRhAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUqaZXD/K8Smm8VaXm0axxvT2ReVMwHwYDVR0j BBgwFoAUSY/D2wNSimQhRYl0DKE+hOR3UwYwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MTE5MjAyMWUtMzkwNC00MTE1LWFmNWUtM2VkYjcxM2JhYTE0LzAvNDk4RkMzREIw MzUyOEE2NDIxNDU4OTc0MENBMTNFODRFNDc3NTMwNi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS80OThGQzNEQjAzNTI4QTY0MjE0NTg5NzQwQ0ExM0U4NEU0Nzc1 MzA2LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzExOTIwMjFlLTM5MDQtNDExNS1h ZjVlLTNlZGI3MTNiYWExNC8wLzMyMzQzMDM3M2E2MTM1NjMzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzQzMjMzMzMzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQHpcAwDQYJKoZI hvcNAQELBQADggEBAG/8i7fHZwawZbVFRmMy+/pC5ylJ1YKLQG/KNUibrkSGCF1p OBiWzlkqdTlU17jOkI3bb5w4uIUkdEnp7zILHhyW5rDhe2ue07xugi3RN7qfmqEm +XWyp4zJPj6oKbaAsgdW4AbScyPyAbwuJRJ7+RxOJ/sc38kEXcctxG+QEHgFtbBl hshpgfqXdN2NjyjJvF4l5NcsdT5MXXDlzWbethdEbyrkeBZYv3i956tFPMhlbM4n wrXP4n6pUUA4oa1q1g07a1RpsefkwvRsG1miO/vLEzdQyGrQGB4KI1+mYm5aHAFf v53DbFSCHJWU09tjnx/1HPJpTEUlBwpBz4yhlfo= -----END CERTIFICATE-----Generated at Wed May 13 15:45:06 2026 by rpki-client