$ rpki-client -vvf rpki-rsync.idnic.net/repo/1192021e-3904-4115-af5e-3edb713baa14/0/323430373a613563303a3a2f34382d3438203d3e20313432333339.roa File: 323430373a613563303a3a2f34382d3438203d3e20313432333339.roa (raw, json) Hash identifier: y22RwJlcQ0nD5K4HN58evr6z1YokNMr+L0lhKw+Cv9w= Subject key identifier: 53:2B:AD:70:B5:FF:AE:44:D0:94:F2:93:B4:BA:37:2D:32:C7:6C:70 Certificate issuer: /CN=498FC3DB03528A64214589740CA13E84E4775306 Certificate serial: 6413CD1E007A1E90BE5A68D6B9E399C8C05BF578 Authority key identifier: 49:8F:C3:DB:03:52:8A:64:21:45:89:74:0C:A1:3E:84:E4:77:53:06 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/498FC3DB03528A64214589740CA13E84E4775306.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/1192021e-3904-4115-af5e-3edb713baa14/0/323430373a613563303a3a2f34382d3438203d3e20313432333339.roa Signing time: Sun 03 May 2026 02:14:05 +0000 ROA not before: Sun 03 May 2026 02:09:05 +0000 ROA not after: Sun 02 May 2027 02:14:05 +0000 asID: 142339 IP address blocks: 2407:a5c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/1192021e-3904-4115-af5e-3edb713baa14/0/498FC3DB03528A64214589740CA13E84E4775306.crl rsync://rpki-rsync.idnic.net/repo/1192021e-3904-4115-af5e-3edb713baa14/0/498FC3DB03528A64214589740CA13E84E4775306.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/498FC3DB03528A64214589740CA13E84E4775306.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 00:07:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:13:cd:1e:00:7a:1e:90:be:5a:68:d6:b9:e3:99:c8:c0:5b:f5:78 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=498FC3DB03528A64214589740CA13E84E4775306 Validity Not Before: May 3 02:09:05 2026 GMT Not After : May 2 02:14:05 2027 GMT Subject: CN=532BAD70B5FFAE44D094F293B4BA372D32C76C70 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:55:bb:88:7d:79:25:1e:18:e8:1c:2c:d6:d9: ff:e9:cb:2a:9a:45:e2:c3:e4:a0:7a:04:88:6d:db: c2:98:a6:08:40:fa:f4:a0:d3:d4:78:19:d7:80:34: 5a:74:a4:2c:e6:17:47:01:9d:0f:9b:1a:12:77:9a: 83:7b:36:a1:8b:87:af:86:62:2a:fd:75:b8:51:c6: 98:50:fa:e1:b6:cf:65:ed:cd:2e:ef:35:90:ad:e3: c6:7a:37:df:13:bc:5d:98:b8:7e:6f:2c:cb:d7:bd: 76:7a:5a:55:74:56:9f:6f:98:26:ef:b2:39:f3:70: 62:02:eb:ca:4e:3a:6f:27:b5:be:bb:91:a0:c0:9e: 2b:93:e9:c9:1d:39:4f:d2:07:ad:92:a6:ef:52:ba: ba:aa:cd:34:c8:50:a1:63:8c:09:2c:b7:6b:ed:a4: 33:98:40:9d:e9:f5:b4:6e:41:1c:27:6e:f8:c8:93: d9:3a:46:81:11:bc:3f:07:4b:34:0f:3f:1e:41:73: 8d:aa:05:e6:b5:f6:6f:93:c8:74:a1:48:04:c8:d7: b9:6b:0c:b8:7d:6e:62:48:8b:4b:07:b6:9c:6a:50: 6e:25:8c:17:64:79:fa:69:6f:fe:10:0a:65:17:b7: be:5b:e3:9f:a5:87:5a:21:b0:f2:f4:b3:b8:ff:a0: 89:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:2B:AD:70:B5:FF:AE:44:D0:94:F2:93:B4:BA:37:2D:32:C7:6C:70 X509v3 Authority Key Identifier: keyid:49:8F:C3:DB:03:52:8A:64:21:45:89:74:0C:A1:3E:84:E4:77:53:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/1192021e-3904-4115-af5e-3edb713baa14/0/498FC3DB03528A64214589740CA13E84E4775306.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/498FC3DB03528A64214589740CA13E84E4775306.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/1192021e-3904-4115-af5e-3edb713baa14/0/323430373a613563303a3a2f34382d3438203d3e20313432333339.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2407:a5c0::/48 Signature Algorithm: sha256WithRSAEncryption 4d:28:f4:ed:5c:7e:cb:72:72:57:39:99:eb:ab:02:61:80:08: 85:71:dc:03:90:cb:2e:96:3b:10:3b:a2:0c:61:eb:5e:2f:53: c1:aa:0a:b6:e3:f6:7b:38:aa:83:6d:22:10:c9:f7:8a:16:84: 3d:3d:44:e3:e8:7a:e6:9e:f6:93:a5:d8:34:17:95:d1:cc:0f: c1:ed:20:30:e1:52:81:18:17:2c:79:d8:47:ae:8b:61:67:2a: ca:23:37:6e:6f:8a:a2:3b:3f:9d:1d:32:fe:af:67:85:f2:54: 42:c8:59:57:05:4a:19:70:c1:2b:94:d9:d3:38:2f:a3:1e:b1: c8:d5:df:7d:ee:e1:bb:77:30:ae:dd:df:52:e4:f0:36:88:8e: 9d:f9:ab:d0:a1:1d:e0:58:0e:dd:cc:b4:bc:f9:42:c0:fd:5c: 9a:f7:05:a6:47:1a:b3:4c:77:47:e3:d7:f4:c1:a4:9c:ef:b7: 10:d6:03:19:61:ab:3a:1e:8c:5b:2a:35:39:f9:cd:55:4f:c9: 67:f7:89:6e:ca:5c:4a:be:77:6e:d9:04:92:51:eb:c6:61:60: cb:ce:a8:55:d8:7d:aa:9e:d9:4e:56:44:de:c2:c5:e5:7c:0c: 8e:4e:ed:e9:5c:5c:e3:8b:9c:9d:bb:17:c0:0e:c4:d4:55:cf: e3:46:54:35 -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgIUZBPNHgB6HpC+WmjWueOZyMBb9XgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDk4RkMzREIwMzUyOEE2NDIxNDU4OTc0MENBMTNFODRF NDc3NTMwNjAeFw0yNjA1MDMwMjA5MDVaFw0yNzA1MDIwMjE0MDVaMDMxMTAvBgNV BAMTKDUzMkJBRDcwQjVGRkFFNDREMDk0RjI5M0I0QkEzNzJEMzJDNzZDNzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIVbuIfXklHhjoHCzW2f/pyyqa ReLD5KB6BIht28KYpghA+vSg09R4GdeANFp0pCzmF0cBnQ+bGhJ3moN7NqGLh6+G Yir9dbhRxphQ+uG2z2XtzS7vNZCt48Z6N98TvF2YuH5vLMvXvXZ6WlV0Vp9vmCbv sjnzcGIC68pOOm8ntb67kaDAniuT6ckdOU/SB62Spu9SurqqzTTIUKFjjAkst2vt pDOYQJ3p9bRuQRwnbvjIk9k6RoERvD8HSzQPPx5Bc42qBea19m+TyHShSATI17lr DLh9bmJIi0sHtpxqUG4ljBdkefppb/4QCmUXt75b45+lh1ohsPL0s7j/oIkDAgMB AAGjggI1MIICMTAdBgNVHQ4EFgQUUyutcLX/rkTQlPKTtLo3LTLHbHAwHwYDVR0j BBgwFoAUSY/D2wNSimQhRYl0DKE+hOR3UwYwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MTE5MjAyMWUtMzkwNC00MTE1LWFmNWUtM2VkYjcxM2JhYTE0LzAvNDk4RkMzREIw MzUyOEE2NDIxNDU4OTc0MENBMTNFODRFNDc3NTMwNi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS80OThGQzNEQjAzNTI4QTY0MjE0NTg5NzQwQ0ExM0U4NEU0Nzc1 MzA2LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzExOTIwMjFlLTM5MDQtNDExNS1h ZjVlLTNlZGI3MTNiYWExNC8wLzMyMzQzMDM3M2E2MTM1NjMzMDNhM2EyZjM0Mzgy ZDM0MzgyMDNkM2UyMDMxMzQzMjMzMzMzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQHpcAAADANBgkq hkiG9w0BAQsFAAOCAQEATSj07Vx+y3JyVzmZ66sCYYAIhXHcA5DLLpY7EDuiDGHr Xi9TwaoKtuP2eziqg20iEMn3ihaEPT1E4+h65p72k6XYNBeV0cwPwe0gMOFSgRgX LHnYR66LYWcqyiM3bm+Kojs/nR0y/q9nhfJUQshZVwVKGXDBK5TZ0zgvox6xyNXf fe7hu3cwrt3fUuTwNoiOnfmr0KEd4FgO3cy0vPlCwP1cmvcFpkcas0x3R+PX9MGk nO+3ENYDGWGrOh6MWyo1OfnNVU/JZ/eJbspcSr53btkEklHrxmFgy86oVdh9qp7Z TlZE3sLF5XwMjk7t6Vxc44ucnbsXwA7E1FXP40ZUNQ== -----END CERTIFICATE-----Generated at Wed May 13 15:06:16 2026 by rpki-client