$ rpki-client -vvf rpki-rsync.idnic.net/repo/12ea77b5-88f7-4085-b331-975024cd046d/0/323430313a663563303a3a2f33322d3438203d3e20313336383631.roa File: 323430313a663563303a3a2f33322d3438203d3e20313336383631.roa (raw, json) Hash identifier: V6br3oy3hs0OOu8Dz1+fY0LTjJEB4hDJ9zYWF2RIZyk= Subject key identifier: F6:7C:D8:32:1E:24:19:60:B3:6F:54:93:61:FA:CC:A8:D6:68:56:01 Certificate issuer: /CN=F39DB214D9DBE3B2113CE09349A4C9C8287122BC Certificate serial: 083415756831F67D194473569B11E0AE84653A00 Authority key identifier: F3:9D:B2:14:D9:DB:E3:B2:11:3C:E0:93:49:A4:C9:C8:28:71:22:BC Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F39DB214D9DBE3B2113CE09349A4C9C8287122BC.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/12ea77b5-88f7-4085-b331-975024cd046d/0/323430313a663563303a3a2f33322d3438203d3e20313336383631.roa Signing time: Sun 03 May 2026 02:14:17 +0000 ROA not before: Sun 03 May 2026 02:09:17 +0000 ROA not after: Sun 02 May 2027 02:14:17 +0000 asID: 136861 IP address blocks: 2401:f5c0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/12ea77b5-88f7-4085-b331-975024cd046d/0/F39DB214D9DBE3B2113CE09349A4C9C8287122BC.crl rsync://rpki-rsync.idnic.net/repo/12ea77b5-88f7-4085-b331-975024cd046d/0/F39DB214D9DBE3B2113CE09349A4C9C8287122BC.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F39DB214D9DBE3B2113CE09349A4C9C8287122BC.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 04:31:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:34:15:75:68:31:f6:7d:19:44:73:56:9b:11:e0:ae:84:65:3a:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F39DB214D9DBE3B2113CE09349A4C9C8287122BC Validity Not Before: May 3 02:09:17 2026 GMT Not After : May 2 02:14:17 2027 GMT Subject: CN=F67CD8321E241960B36F549361FACCA8D6685601 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:65:77:81:17:34:d5:32:63:1e:0b:cd:d5:b4: de:87:8f:48:d8:c5:8d:5b:5b:0d:01:60:80:06:b5: 46:9c:fe:b7:df:9a:94:34:2b:12:53:a4:d7:23:51: a0:8e:66:58:f5:c0:1d:2f:f1:c6:15:62:41:ac:29: 8f:c6:d6:38:35:e5:39:41:40:97:2f:eb:65:6f:cf: 69:1d:37:9b:0a:6d:97:00:7b:3e:19:33:8b:f8:f4: 44:5b:94:92:1c:d4:a0:16:c4:c9:44:f6:c8:2b:bc: 88:d1:66:ac:8b:80:8c:b0:4d:32:6b:74:dd:0c:8f: 40:a9:cc:32:66:be:59:e8:5a:96:83:8c:5c:2e:20: f3:61:67:be:29:9e:57:54:e0:2d:57:e9:d9:42:83: fa:04:35:71:da:f7:54:4f:75:f7:e4:d9:ab:e6:53: 19:d3:69:23:fe:a8:49:b8:67:d3:21:f7:d8:e1:f4: f0:e4:ca:5f:fe:4a:14:af:15:71:c1:f1:58:bd:ff: 9f:ac:46:07:53:42:28:30:64:64:21:f6:8a:13:1f: d0:0a:32:38:71:dc:74:1e:60:8f:b8:0b:8a:ec:a7: fb:5f:c6:f6:68:ef:6b:08:a5:bc:cf:b6:05:de:b1: 31:82:1d:8f:0f:c3:4a:71:0b:b3:91:a9:1a:53:a3: 1c:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:7C:D8:32:1E:24:19:60:B3:6F:54:93:61:FA:CC:A8:D6:68:56:01 X509v3 Authority Key Identifier: keyid:F3:9D:B2:14:D9:DB:E3:B2:11:3C:E0:93:49:A4:C9:C8:28:71:22:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/12ea77b5-88f7-4085-b331-975024cd046d/0/F39DB214D9DBE3B2113CE09349A4C9C8287122BC.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F39DB214D9DBE3B2113CE09349A4C9C8287122BC.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/12ea77b5-88f7-4085-b331-975024cd046d/0/323430313a663563303a3a2f33322d3438203d3e20313336383631.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:f5c0::/32 Signature Algorithm: sha256WithRSAEncryption 97:c1:8a:1f:64:65:b0:7b:a6:0d:bf:3e:d9:30:f7:47:e9:f9: 79:3f:d1:15:b2:12:1f:21:11:d6:cb:d3:d3:11:9a:11:a3:91: ef:8c:3d:7c:ef:71:0f:85:00:7f:d4:6e:5b:7c:c5:02:8a:26: 10:21:3b:4f:23:97:5f:d9:c7:42:f7:6f:ef:ee:92:71:4c:47: c7:7b:0b:9b:35:3d:62:59:e2:e3:a0:69:0b:20:ba:4a:9d:08: b5:10:00:24:79:7c:ae:ca:c6:62:6a:93:22:9b:75:c1:50:97: 30:2a:9c:99:fd:16:25:af:43:9a:af:f2:42:72:fc:23:10:ce: 47:37:7c:52:35:c9:80:6b:7c:fd:9e:55:ea:66:91:b1:11:54: 27:f4:5f:eb:8a:1f:b5:60:7b:2e:50:e0:1e:9d:bc:65:47:5e: d3:ad:36:e5:bd:12:3b:09:c3:c7:94:15:bc:da:9d:b3:c1:17: 36:fe:c8:b3:57:99:10:0d:93:fe:8a:c5:e3:eb:a8:79:5c:49: 5d:18:14:10:73:2c:35:75:ac:60:95:0c:0d:55:16:5d:dc:b7: d3:7d:b4:b8:de:7c:01:1b:7a:13:7b:7e:2c:2b:42:5c:7e:8c: 79:a7:bb:9d:31:1e:9e:5e:77:47:66:3c:b7:f4:9f:fa:47:38: 5c:d4:2b:fd -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUCDQVdWgx9n0ZRHNWmxHgroRlOgAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM5REIyMTREOURCRTNCMjExM0NFMDkzNDlBNEM5Qzgy ODcxMjJCQzAeFw0yNjA1MDMwMjA5MTdaFw0yNzA1MDIwMjE0MTdaMDMxMTAvBgNV BAMTKEY2N0NEODMyMUUyNDE5NjBCMzZGNTQ5MzYxRkFDQ0E4RDY2ODU2MDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpZXeBFzTVMmMeC83VtN6Hj0jY xY1bWw0BYIAGtUac/rffmpQ0KxJTpNcjUaCOZlj1wB0v8cYVYkGsKY/G1jg15TlB QJcv62Vvz2kdN5sKbZcAez4ZM4v49ERblJIc1KAWxMlE9sgrvIjRZqyLgIywTTJr dN0Mj0CpzDJmvlnoWpaDjFwuIPNhZ74pnldU4C1X6dlCg/oENXHa91RPdffk2avm UxnTaSP+qEm4Z9Mh99jh9PDkyl/+ShSvFXHB8Vi9/5+sRgdTQigwZGQh9ooTH9AK Mjhx3HQeYI+4C4rsp/tfxvZo72sIpbzPtgXesTGCHY8Pw0pxC7ORqRpToxzjAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQU9nzYMh4kGWCzb1STYfrMqNZoVgEwHwYDVR0j BBgwFoAU852yFNnb47IRPOCTSaTJyChxIrwwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MTJlYTc3YjUtODhmNy00MDg1LWIzMzEtOTc1MDI0Y2QwNDZkLzAvRjM5REIyMTRE OURCRTNCMjExM0NFMDkzNDlBNEM5QzgyODcxMjJCQy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9GMzlEQjIxNEQ5REJFM0IyMTEzQ0UwOTM0OUE0QzlDODI4NzEy MkJDLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzEyZWE3N2I1LTg4ZjctNDA4NS1i MzMxLTk3NTAyNGNkMDQ2ZC8wLzMyMzQzMDMxM2E2NjM1NjMzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMxMzMzNjM4MzYzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQB9cAwDQYJKoZI hvcNAQELBQADggEBAJfBih9kZbB7pg2/Ptkw90fp+Xk/0RWyEh8hEdbL09MRmhGj ke+MPXzvcQ+FAH/Ublt8xQKKJhAhO08jl1/Zx0L3b+/uknFMR8d7C5s1PWJZ4uOg aQsgukqdCLUQACR5fK7KxmJqkyKbdcFQlzAqnJn9FiWvQ5qv8kJy/CMQzkc3fFI1 yYBrfP2eVepmkbERVCf0X+uKH7Vgey5Q4B6dvGVHXtOtNuW9EjsJw8eUFbzanbPB Fzb+yLNXmRANk/6KxePrqHlcSV0YFBBzLDV1rGCVDA1VFl3ct9N9tLjefAEbehN7 fiwrQlx+jHmnu50xHp5ed0dmPLf0n/pHOFzUK/0= -----END CERTIFICATE-----Generated at Wed May 13 10:23:07 2026 by rpki-client