$ rpki-client -vvf rpki-rsync.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/323430323a663038303a323a3a2f34382d3438203d3e203338313530.roa File: 323430323a663038303a323a3a2f34382d3438203d3e203338313530.roa (raw, json) Hash identifier: sOHfwxxz4WtkgkX9/GptGhrfX40Hb7Ok9OU92SIpJPU= Subject key identifier: 33:02:BF:EF:44:54:53:29:7F:35:B3:67:3F:5B:D1:F4:44:8E:77:68 Certificate issuer: /CN=102CB228255AC59C06F56BF9291AABDD49CD72E1 Certificate serial: 0BCBAA2E315993DB603775DB957ED7B247146E36 Authority key identifier: 10:2C:B2:28:25:5A:C5:9C:06:F5:6B:F9:29:1A:AB:DD:49:CD:72:E1 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/102CB228255AC59C06F56BF9291AABDD49CD72E1.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/323430323a663038303a323a3a2f34382d3438203d3e203338313530.roa Signing time: Sun 03 May 2026 02:15:56 +0000 ROA not before: Sun 03 May 2026 02:10:56 +0000 ROA not after: Sun 02 May 2027 02:15:56 +0000 asID: 38150 IP address blocks: 2402:f080:2::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/102CB228255AC59C06F56BF9291AABDD49CD72E1.crl rsync://rpki-rsync.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/102CB228255AC59C06F56BF9291AABDD49CD72E1.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/102CB228255AC59C06F56BF9291AABDD49CD72E1.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 04:24:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:cb:aa:2e:31:59:93:db:60:37:75:db:95:7e:d7:b2:47:14:6e:36 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=102CB228255AC59C06F56BF9291AABDD49CD72E1 Validity Not Before: May 3 02:10:56 2026 GMT Not After : May 2 02:15:56 2027 GMT Subject: CN=3302BFEF445453297F35B3673F5BD1F4448E7768 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:33:40:2f:95:c4:98:01:41:79:7f:08:6d:6d: e5:20:07:82:ba:47:f4:a8:88:b0:79:86:17:72:c7: c9:a2:f1:97:a8:d5:a5:14:fa:8c:5c:13:a7:f6:a6: b4:ea:0c:c4:cc:19:30:a1:b0:04:ba:14:49:b9:08: d0:7a:9e:6f:c0:28:34:93:f3:cd:d1:66:72:c1:20: 8f:ba:9d:13:e3:32:0b:b6:08:58:c1:ab:60:85:9c: 32:61:c9:4a:70:46:58:e1:11:e5:27:c7:ed:ff:e4: 08:4a:bc:a3:cb:3a:f7:30:21:75:8b:13:6b:7d:8b: af:cd:49:9c:56:fa:bb:73:c9:ee:00:86:6a:4a:98: e0:da:0d:bf:ca:da:a2:18:e4:4c:10:31:2a:30:c5: c3:cc:31:08:fd:1a:99:40:12:bc:e8:2c:20:84:48: a8:87:27:43:b1:cb:be:87:7d:ed:81:e2:7d:5c:28: 1f:1d:85:89:31:df:d2:12:88:33:27:41:c3:e1:aa: e4:52:96:16:a2:e0:28:37:c8:0f:c0:a6:a2:48:21: 0c:8c:75:a3:14:ed:83:2c:04:4c:6d:1a:c1:48:ab: c3:fe:58:f1:16:c9:e6:b9:57:2e:d8:75:5f:00:d9: 83:86:f3:e8:d9:86:36:1d:9a:23:9d:0e:c7:dc:f6: 92:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:02:BF:EF:44:54:53:29:7F:35:B3:67:3F:5B:D1:F4:44:8E:77:68 X509v3 Authority Key Identifier: keyid:10:2C:B2:28:25:5A:C5:9C:06:F5:6B:F9:29:1A:AB:DD:49:CD:72:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/102CB228255AC59C06F56BF9291AABDD49CD72E1.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/102CB228255AC59C06F56BF9291AABDD49CD72E1.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/323430323a663038303a323a3a2f34382d3438203d3e203338313530.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:f080:2::/48 Signature Algorithm: sha256WithRSAEncryption 2f:e2:07:f5:f5:39:fe:5a:c6:bb:d2:6a:99:6e:5e:01:df:2b: af:ec:f6:46:2d:12:cd:48:2c:fd:af:e3:8d:1a:75:2a:0a:ff: fa:f2:2b:cc:51:c1:e9:62:4b:04:15:be:93:77:e0:7d:39:d5: ef:b4:e1:97:8e:6a:5a:5b:a5:1c:69:2d:3e:7c:34:28:78:fb: 3a:0b:0c:a4:d4:ff:ec:62:bd:eb:c3:05:a2:33:55:92:b4:7d: d4:c3:53:92:5b:c3:0e:ff:46:79:5b:2f:9a:19:f6:75:4b:a0: a8:49:60:c0:4d:18:a3:fc:2a:9f:75:b8:0d:7e:cc:0d:36:3b: 49:da:fe:59:73:7a:b7:1d:b7:db:f2:96:bc:50:3c:83:8c:5c: 04:61:5d:c0:e5:15:58:99:b0:00:dc:32:29:f6:65:71:ab:b3: dd:57:9d:71:4e:80:97:44:ce:26:1c:be:53:1f:2e:18:db:99: 5b:97:70:ff:09:51:c7:e4:42:88:e9:07:7d:c3:fb:2c:70:78: 68:ce:77:7e:a3:05:ff:6d:ff:95:17:4c:08:9d:7c:f2:06:45: 1c:85:ff:6b:a0:72:dd:e3:74:6e:f1:a4:6f:28:16:b2:59:94: b4:cc:78:eb:e7:85:ab:47:79:e1:70:46:3c:e8:09:51:89:3e: 34:f3:c7:53 -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUC8uqLjFZk9tgN3XblX7XskcUbjYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTAyQ0IyMjgyNTVBQzU5QzA2RjU2QkY5MjkxQUFCREQ0 OUNENzJFMTAeFw0yNjA1MDMwMjEwNTZaFw0yNzA1MDIwMjE1NTZaMDMxMTAvBgNV BAMTKDMzMDJCRkVGNDQ1NDUzMjk3RjM1QjM2NzNGNUJEMUY0NDQ4RTc3NjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDlM0AvlcSYAUF5fwhtbeUgB4K6 R/SoiLB5hhdyx8mi8Zeo1aUU+oxcE6f2prTqDMTMGTChsAS6FEm5CNB6nm/AKDST 883RZnLBII+6nRPjMgu2CFjBq2CFnDJhyUpwRljhEeUnx+3/5AhKvKPLOvcwIXWL E2t9i6/NSZxW+rtzye4AhmpKmODaDb/K2qIY5EwQMSowxcPMMQj9GplAErzoLCCE SKiHJ0Oxy76Hfe2B4n1cKB8dhYkx39ISiDMnQcPhquRSlhai4Cg3yA/ApqJIIQyM daMU7YMsBExtGsFIq8P+WPEWyea5Vy7YdV8A2YOG8+jZhjYdmiOdDsfc9pJPAgMB AAGjggI3MIICMzAdBgNVHQ4EFgQUMwK/70RUUyl/NbNnP1vR9ESOd2gwHwYDVR0j BBgwFoAUECyyKCVaxZwG9Wv5KRqr3UnNcuEwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MTdlNjViNjctOTA1Yy00MDNjLThjNzktMjMxNTY1OTY2OGFhLzAvMTAyQ0IyMjgy NTVBQzU5QzA2RjU2QkY5MjkxQUFCREQ0OUNENzJFMS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8xMDJDQjIyODI1NUFDNTlDMDZGNTZCRjkyOTFBQUJERDQ5Q0Q3 MkUxLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzE3ZTY1YjY3LTkwNWMtNDAzYy04 Yzc5LTIzMTU2NTk2NjhhYS8wLzMyMzQzMDMyM2E2NjMwMzgzMDNhMzIzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMzM4MzEzNTMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJALwgAACMA0G CSqGSIb3DQEBCwUAA4IBAQAv4gf19Tn+Wsa70mqZbl4B3yuv7PZGLRLNSCz9r+ON GnUqCv/68ivMUcHpYksEFb6Td+B9OdXvtOGXjmpaW6UcaS0+fDQoePs6Cwyk1P/s Yr3rwwWiM1WStH3Uw1OSW8MO/0Z5Wy+aGfZ1S6CoSWDATRij/CqfdbgNfswNNjtJ 2v5Zc3q3Hbfb8pa8UDyDjFwEYV3A5RVYmbAA3DIp9mVxq7PdV51xToCXRM4mHL5T Hy4Y25lbl3D/CVHH5EKI6Qd9w/sscHhoznd+owX/bf+VF0wInXzyBkUchf9roHLd 43Ru8aRvKBayWZS0zHjr54WrR3nhcEY86AlRiT4088dT -----END CERTIFICATE-----Generated at Wed May 13 12:43:02 2026 by rpki-client