$ rpki-client -vvf rpki-rsync.idnic.net/repo/165d88f1-b9c0-485e-916e-59b7e3698da1/0/323430343a643863303a3a2f33322d3438203d3e20313338383630.roa File: 323430343a643863303a3a2f33322d3438203d3e20313338383630.roa (raw, json) Hash identifier: OBT9V34k6UtzzKNYWF9awZ7+etL3ZsNE8k4xpnFdPg0= Subject key identifier: 6D:28:62:E1:36:F3:69:FF:3D:46:D0:00:5E:64:1B:0D:50:5D:58:16 Certificate issuer: /CN=9D92E93EB1580E3CD40FF34CFAB304ADDB068187 Certificate serial: 6161D73D2990A2BA869214D3AA5979918B5A051A Authority key identifier: 9D:92:E9:3E:B1:58:0E:3C:D4:0F:F3:4C:FA:B3:04:AD:DB:06:81:87 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9D92E93EB1580E3CD40FF34CFAB304ADDB068187.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/165d88f1-b9c0-485e-916e-59b7e3698da1/0/323430343a643863303a3a2f33322d3438203d3e20313338383630.roa Signing time: Sun 03 May 2026 02:15:13 +0000 ROA not before: Sun 03 May 2026 02:10:13 +0000 ROA not after: Sun 02 May 2027 02:15:13 +0000 asID: 138860 IP address blocks: 2404:d8c0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/165d88f1-b9c0-485e-916e-59b7e3698da1/0/9D92E93EB1580E3CD40FF34CFAB304ADDB068187.crl rsync://rpki-rsync.idnic.net/repo/165d88f1-b9c0-485e-916e-59b7e3698da1/0/9D92E93EB1580E3CD40FF34CFAB304ADDB068187.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9D92E93EB1580E3CD40FF34CFAB304ADDB068187.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 03:48:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:61:d7:3d:29:90:a2:ba:86:92:14:d3:aa:59:79:91:8b:5a:05:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9D92E93EB1580E3CD40FF34CFAB304ADDB068187 Validity Not Before: May 3 02:10:13 2026 GMT Not After : May 2 02:15:13 2027 GMT Subject: CN=6D2862E136F369FF3D46D0005E641B0D505D5816 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:ba:08:a5:d0:ff:31:1f:63:8a:d5:a9:0d:5a: d9:40:16:da:cc:59:75:51:14:7a:2d:26:2a:97:32: b8:d2:c0:f1:79:7e:6f:d1:8b:fe:c0:90:7d:ac:3b: 42:61:f0:2f:fc:8c:b2:c5:6f:88:4e:5e:15:f5:09: 87:72:f1:9b:2e:f3:e2:72:8c:3b:20:88:40:49:d4: e4:cb:ae:af:68:b8:ba:47:3a:4a:7d:2e:aa:61:46: 0a:dc:45:97:c9:38:90:46:c9:2d:a8:1b:fc:5e:0d: ad:98:46:c5:14:83:5f:a6:c6:62:0f:08:1c:7a:d0: f6:19:cc:a2:33:05:1c:1b:a4:e2:92:9c:e1:d6:b1: ad:f0:75:7d:4c:1c:e5:19:fc:92:d0:df:80:e0:4b: 39:1a:b9:36:8b:01:24:81:a2:ee:f2:8c:3f:dd:2a: 00:6c:61:95:97:d9:4e:f0:9d:77:e5:be:05:f4:8a: c2:d2:ef:3c:32:91:54:ae:88:47:54:63:b3:8d:f9: f5:c3:c5:aa:ca:a6:7a:2a:2b:21:f4:6d:de:85:ed: 73:6d:98:ed:23:6d:26:b9:a4:b2:d2:37:28:8e:9f: 7b:05:5a:66:59:06:36:95:14:54:17:aa:33:15:98: 1d:90:f7:70:e5:7f:75:f9:47:13:f9:0c:67:35:20: a8:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:28:62:E1:36:F3:69:FF:3D:46:D0:00:5E:64:1B:0D:50:5D:58:16 X509v3 Authority Key Identifier: keyid:9D:92:E9:3E:B1:58:0E:3C:D4:0F:F3:4C:FA:B3:04:AD:DB:06:81:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/165d88f1-b9c0-485e-916e-59b7e3698da1/0/9D92E93EB1580E3CD40FF34CFAB304ADDB068187.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9D92E93EB1580E3CD40FF34CFAB304ADDB068187.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/165d88f1-b9c0-485e-916e-59b7e3698da1/0/323430343a643863303a3a2f33322d3438203d3e20313338383630.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:d8c0::/32 Signature Algorithm: sha256WithRSAEncryption 9a:29:6a:76:01:55:d6:ca:e0:b6:f0:1b:f5:91:f0:c8:c5:f3: d8:96:f1:fc:1c:19:3e:ee:f6:4a:32:61:36:38:9f:4e:e0:6c: 76:4c:ed:bb:93:2a:8f:07:cb:c3:9d:7f:16:96:d2:2c:d1:e0: 0e:f2:16:21:58:4d:77:6a:fa:e8:ca:09:26:cc:e2:9d:5c:ea: 3a:e7:88:6d:aa:f4:b0:7a:12:cc:36:99:a6:f7:47:3a:89:64: ea:8f:1a:d6:f5:bf:db:7b:5c:0b:12:ff:e3:2a:76:57:4c:27: 2e:18:85:16:81:e7:43:3c:87:5b:05:2f:08:5d:16:1e:ac:6d: 09:24:59:65:fa:9c:09:a8:52:1b:3e:77:61:e1:3a:c8:e3:36: 9c:9c:bd:40:73:50:0f:b4:d8:80:7c:4b:8d:85:4a:cf:05:2f: fc:48:e0:1a:d7:7b:2d:5b:76:58:b4:01:4b:00:08:5e:af:53: c8:66:3f:59:2d:c7:4c:58:83:62:cc:fb:3b:32:42:7b:03:b2: 55:44:c0:9a:28:19:ab:ed:b4:a8:d1:d2:35:b4:e5:e2:bc:e9: 4e:72:15:da:c5:40:7b:8c:40:9a:25:17:f0:4c:ea:bd:da:24: 54:8c:1b:66:0a:72:6a:51:bf:79:0d:8e:6a:dd:39:72:fa:1d: 26:d4:71:8f -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUYWHXPSmQorqGkhTTqll5kYtaBRowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUQ5MkU5M0VCMTU4MEUzQ0Q0MEZGMzRDRkFCMzA0QURE QjA2ODE4NzAeFw0yNjA1MDMwMjEwMTNaFw0yNzA1MDIwMjE1MTNaMDMxMTAvBgNV BAMTKDZEMjg2MkUxMzZGMzY5RkYzRDQ2RDAwMDVFNjQxQjBENTA1RDU4MTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCiugil0P8xH2OK1akNWtlAFtrM WXVRFHotJiqXMrjSwPF5fm/Ri/7AkH2sO0Jh8C/8jLLFb4hOXhX1CYdy8Zsu8+Jy jDsgiEBJ1OTLrq9ouLpHOkp9LqphRgrcRZfJOJBGyS2oG/xeDa2YRsUUg1+mxmIP CBx60PYZzKIzBRwbpOKSnOHWsa3wdX1MHOUZ/JLQ34DgSzkauTaLASSBou7yjD/d KgBsYZWX2U7wnXflvgX0isLS7zwykVSuiEdUY7ON+fXDxarKpnoqKyH0bd6F7XNt mO0jbSa5pLLSNyiOn3sFWmZZBjaVFFQXqjMVmB2Q93Dlf3X5RxP5DGc1IKjrAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUbShi4Tbzaf89RtAAXmQbDVBdWBYwHwYDVR0j BBgwFoAUnZLpPrFYDjzUD/NM+rMErdsGgYcwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MTY1ZDg4ZjEtYjljMC00ODVlLTkxNmUtNTliN2UzNjk4ZGExLzAvOUQ5MkU5M0VC MTU4MEUzQ0Q0MEZGMzRDRkFCMzA0QUREQjA2ODE4Ny5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS85RDkyRTkzRUIxNTgwRTNDRDQwRkYzNENGQUIzMDRBRERCMDY4 MTg3LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzE2NWQ4OGYxLWI5YzAtNDg1ZS05 MTZlLTU5YjdlMzY5OGRhMS8wLzMyMzQzMDM0M2E2NDM4NjMzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMxMzMzODM4MzYzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQE2MAwDQYJKoZI hvcNAQELBQADggEBAJopanYBVdbK4LbwG/WR8MjF89iW8fwcGT7u9koyYTY4n07g bHZM7buTKo8Hy8OdfxaW0izR4A7yFiFYTXdq+ujKCSbM4p1c6jrniG2q9LB6Esw2 mab3RzqJZOqPGtb1v9t7XAsS/+MqdldMJy4YhRaB50M8h1sFLwhdFh6sbQkkWWX6 nAmoUhs+d2HhOsjjNpycvUBzUA+02IB8S42FSs8FL/xI4BrXey1bdli0AUsACF6v U8hmP1ktx0xYg2LM+zsyQnsDslVEwJooGavttKjR0jW05eK86U5yFdrFQHuMQJol F/BM6r3aJFSMG2YKcmpRv3kNjmrdOXL6HSbUcY8= -----END CERTIFICATE-----Generated at Wed May 13 10:16:50 2026 by rpki-client