$ rpki-client -vvf rpki-rsync.idnic.net/repo/146f33f2-f06e-4eb6-ae61-5529bca1cdcd/0/323430353a343663303a3a2f33322d3332203d3e20313339343331.roa File: 323430353a343663303a3a2f33322d3332203d3e20313339343331.roa (raw, json) Hash identifier: 72ltkdAz77XwydUIwwc3kpnQIFXbCRX8QiK7JdJ6abI= Subject key identifier: 2D:7B:3C:65:82:BF:88:3A:76:80:9B:2F:04:D2:3B:DB:A5:C3:AC:23 Certificate issuer: /CN=D5B392E916885394AA1C2B31FE082DC317BCE686 Certificate serial: 0F3563EDE78585BA316A4BA2007856574554302E Authority key identifier: D5:B3:92:E9:16:88:53:94:AA:1C:2B:31:FE:08:2D:C3:17:BC:E6:86 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D5B392E916885394AA1C2B31FE082DC317BCE686.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/146f33f2-f06e-4eb6-ae61-5529bca1cdcd/0/323430353a343663303a3a2f33322d3332203d3e20313339343331.roa Signing time: Sun 03 May 2026 02:14:45 +0000 ROA not before: Sun 03 May 2026 02:09:45 +0000 ROA not after: Sun 02 May 2027 02:14:45 +0000 asID: 139431 IP address blocks: 2405:46c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/146f33f2-f06e-4eb6-ae61-5529bca1cdcd/0/D5B392E916885394AA1C2B31FE082DC317BCE686.crl rsync://rpki-rsync.idnic.net/repo/146f33f2-f06e-4eb6-ae61-5529bca1cdcd/0/D5B392E916885394AA1C2B31FE082DC317BCE686.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D5B392E916885394AA1C2B31FE082DC317BCE686.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 21:36:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:35:63:ed:e7:85:85:ba:31:6a:4b:a2:00:78:56:57:45:54:30:2e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D5B392E916885394AA1C2B31FE082DC317BCE686 Validity Not Before: May 3 02:09:45 2026 GMT Not After : May 2 02:14:45 2027 GMT Subject: CN=2D7B3C6582BF883A76809B2F04D23BDBA5C3AC23 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:62:0a:e5:e8:04:1e:9c:2b:c2:48:70:be:f6: 2c:b7:e0:04:50:21:23:58:88:7a:cc:c5:91:c8:a9: f9:93:f4:79:2e:31:fe:b5:d3:17:be:99:ed:47:e2: 7a:1a:1d:87:18:03:71:dd:11:5c:58:80:8b:2c:f7: bb:07:a2:93:d2:fb:ad:24:2a:c3:33:71:1b:ed:94: cf:9b:f9:3c:f8:a2:a1:d3:a7:9c:85:1a:c6:b1:a7: 9b:a9:e1:20:3c:73:17:5f:a0:bb:12:73:c7:9d:8c: ed:c6:a6:c1:06:31:9d:8d:46:96:54:b7:21:ab:d7: 60:ce:d1:e0:32:6f:99:60:2f:59:4c:eb:70:56:b2: fd:11:2b:8d:ad:22:97:cd:51:73:67:7f:69:0c:7e: 6c:48:c1:35:b7:44:67:5d:74:56:ec:d2:13:bd:65: 4b:fa:95:5f:44:e2:d8:c2:b0:ca:bc:0a:54:c0:11: 82:6e:a1:fe:ea:ef:7f:2b:a0:8b:5e:71:e7:2f:38: f6:41:2c:81:c7:5a:7e:9a:19:09:fb:1d:9d:79:39: 92:86:c9:36:d6:82:8d:37:36:f7:0d:a4:85:6f:65: 1b:25:c3:9f:4d:48:f1:f8:e4:e2:aa:c3:98:f5:dd: b5:af:f6:d7:5d:01:7d:de:5c:1f:3c:91:bc:00:7c: 20:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:7B:3C:65:82:BF:88:3A:76:80:9B:2F:04:D2:3B:DB:A5:C3:AC:23 X509v3 Authority Key Identifier: keyid:D5:B3:92:E9:16:88:53:94:AA:1C:2B:31:FE:08:2D:C3:17:BC:E6:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/146f33f2-f06e-4eb6-ae61-5529bca1cdcd/0/D5B392E916885394AA1C2B31FE082DC317BCE686.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D5B392E916885394AA1C2B31FE082DC317BCE686.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/146f33f2-f06e-4eb6-ae61-5529bca1cdcd/0/323430353a343663303a3a2f33322d3332203d3e20313339343331.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:46c0::/32 Signature Algorithm: sha256WithRSAEncryption 08:fc:e5:ba:fc:6d:ca:e3:6d:a3:77:46:f5:fd:e8:86:f7:cd: 45:68:76:9f:b3:bb:3e:c4:bc:66:05:ff:27:03:c2:dc:05:44: 35:7c:e5:ef:bd:74:87:0d:67:18:16:11:bf:82:e1:f6:df:fb: 53:4d:cf:7d:01:9a:ba:3f:59:b0:b5:22:84:7b:24:87:fe:0f: 71:bf:f1:c5:a6:00:c7:eb:88:1b:e0:f1:9f:7d:d7:4d:79:30: e3:15:83:40:55:b8:8c:65:da:3b:a3:cc:9e:87:63:81:b5:39: c0:30:34:c0:a4:35:14:dd:48:8b:1a:10:d8:79:6d:c8:84:f3: a8:fd:7a:3d:fe:43:e4:a7:aa:59:50:18:77:a1:9b:a2:11:36: 66:73:81:44:ab:83:e9:ed:0d:71:20:bc:b4:64:7a:6f:aa:ff: 20:84:d7:43:f1:83:19:35:35:35:69:9a:a1:f7:0c:8d:d9:26: 4c:b9:56:49:81:8a:c6:87:ac:61:8a:77:04:87:0f:e3:1d:66: 2d:3c:f4:ce:65:42:a7:0b:28:5c:bf:72:96:f4:e8:84:78:89: 94:06:ad:4f:cf:6e:b8:60:5e:54:8e:8c:1f:1b:bf:8d:5d:0f: 87:b6:15:1f:f1:14:6f:5f:36:f6:6c:fd:fa:23:fe:e8:e9:c9: a8:4a:1d:02 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUDzVj7eeFhboxakuiAHhWV0VUMC4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDVCMzkyRTkxNjg4NTM5NEFBMUMyQjMxRkUwODJEQzMx N0JDRTY4NjAeFw0yNjA1MDMwMjA5NDVaFw0yNzA1MDIwMjE0NDVaMDMxMTAvBgNV BAMTKDJEN0IzQzY1ODJCRjg4M0E3NjgwOUIyRjA0RDIzQkRCQTVDM0FDMjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6Ygrl6AQenCvCSHC+9iy34ARQ ISNYiHrMxZHIqfmT9HkuMf610xe+me1H4noaHYcYA3HdEVxYgIss97sHopPS+60k KsMzcRvtlM+b+Tz4oqHTp5yFGsaxp5up4SA8cxdfoLsSc8edjO3GpsEGMZ2NRpZU tyGr12DO0eAyb5lgL1lM63BWsv0RK42tIpfNUXNnf2kMfmxIwTW3RGdddFbs0hO9 ZUv6lV9E4tjCsMq8ClTAEYJuof7q738roItececvOPZBLIHHWn6aGQn7HZ15OZKG yTbWgo03NvcNpIVvZRslw59NSPH45OKqw5j13bWv9tddAX3eXB88kbwAfCAnAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQULXs8ZYK/iDp2gJsvBNI726XDrCMwHwYDVR0j BBgwFoAU1bOS6RaIU5SqHCsx/ggtwxe85oYwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MTQ2ZjMzZjItZjA2ZS00ZWI2LWFlNjEtNTUyOWJjYTFjZGNkLzAvRDVCMzkyRTkx Njg4NTM5NEFBMUMyQjMxRkUwODJEQzMxN0JDRTY4Ni5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9ENUIzOTJFOTE2ODg1Mzk0QUExQzJCMzFGRTA4MkRDMzE3QkNF Njg2LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzE0NmYzM2YyLWYwNmUtNGViNi1h ZTYxLTU1MjliY2ExY2RjZC8wLzMyMzQzMDM1M2EzNDM2NjMzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzMzOTM0MzMzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQFRsAwDQYJKoZI hvcNAQELBQADggEBAAj85br8bcrjbaN3RvX96Ib3zUVodp+zuz7EvGYF/ycDwtwF RDV85e+9dIcNZxgWEb+C4fbf+1NNz30Bmro/WbC1IoR7JIf+D3G/8cWmAMfriBvg 8Z991015MOMVg0BVuIxl2jujzJ6HY4G1OcAwNMCkNRTdSIsaENh5bciE86j9ej3+ Q+SnqllQGHehm6IRNmZzgUSrg+ntDXEgvLRkem+q/yCE10Pxgxk1NTVpmqH3DI3Z Jky5VkmBisaHrGGKdwSHD+MdZi089M5lQqcLKFy/cpb06IR4iZQGrU/PbrhgXlSO jB8bv41dD4e2FR/xFG9fNvZs/foj/ujpyahKHQI= -----END CERTIFICATE-----Generated at Wed May 13 10:32:55 2026 by rpki-client