$ rpki-client -vvf rpki-rsync.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a313030303a3a2f33362d3438203d3e20313430343233.roa File: 323430363a323063303a313030303a3a2f33362d3438203d3e20313430343233.roa (raw, json) Hash identifier: A7C5+KZ2ijYP53e/sGh2G1XODQch1w17LTW+GziPwDQ= Subject key identifier: BD:86:73:F0:E9:0E:D7:1F:4B:7F:E0:54:63:EC:B1:AE:E5:7B:E4:B6 Certificate issuer: /CN=5D272EF1FF5F99603DFC2A2B9C5AB1A8BF322E73 Certificate serial: 453043E68D4AFEC815C71DFD2767936694104C5A Authority key identifier: 5D:27:2E:F1:FF:5F:99:60:3D:FC:2A:2B:9C:5A:B1:A8:BF:32:2E:73 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/5D272EF1FF5F99603DFC2A2B9C5AB1A8BF322E73.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a313030303a3a2f33362d3438203d3e20313430343233.roa Signing time: Sun 03 May 2026 02:16:46 +0000 ROA not before: Sun 03 May 2026 02:11:46 +0000 ROA not after: Sun 02 May 2027 02:16:46 +0000 asID: 140423 IP address blocks: 2406:20c0:1000::/36 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/5D272EF1FF5F99603DFC2A2B9C5AB1A8BF322E73.crl rsync://rpki-rsync.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/5D272EF1FF5F99603DFC2A2B9C5AB1A8BF322E73.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/5D272EF1FF5F99603DFC2A2B9C5AB1A8BF322E73.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 04:40:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:30:43:e6:8d:4a:fe:c8:15:c7:1d:fd:27:67:93:66:94:10:4c:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5D272EF1FF5F99603DFC2A2B9C5AB1A8BF322E73 Validity Not Before: May 3 02:11:46 2026 GMT Not After : May 2 02:16:46 2027 GMT Subject: CN=BD8673F0E90ED71F4B7FE05463ECB1AEE57BE4B6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:a8:c0:20:1a:a5:1a:06:ea:0d:87:14:3f:1e: 10:c2:92:3c:3d:1b:8d:68:74:99:15:0e:ce:bd:93: 5b:c9:34:07:ab:2e:05:70:21:d5:fb:1e:aa:62:9c: f3:c2:24:df:44:87:79:70:3e:9a:1e:d8:f9:5f:9d: b7:fe:ab:40:83:d5:f9:4d:27:c8:5b:fa:ce:a2:41: 50:4c:17:cd:3c:0c:81:37:16:c4:6b:11:09:f4:4c: 6b:80:e2:92:ee:41:0e:3f:01:94:e4:a9:e8:45:0c: a0:89:5e:f6:c9:d5:79:db:14:52:47:3f:81:2f:8a: bf:b9:05:3a:d7:e2:28:7c:e9:c0:d7:7a:19:98:2f: 64:f3:12:99:75:ce:f9:ec:af:76:3e:ec:bb:e4:6d: 63:9d:e0:1c:5b:13:59:35:84:59:40:ce:99:21:fb: 05:79:a5:12:92:9e:5d:51:1e:c6:4b:ba:80:d8:52: 89:b3:c2:6b:a3:dc:dc:4b:cc:96:0f:d7:bf:f6:53: 2a:6f:3d:7c:e5:84:5c:a0:a1:97:d3:a7:e3:83:57: 1b:54:f2:22:5a:5c:14:a5:9a:ef:db:38:17:f9:f6: 5f:98:0c:68:b9:07:19:a4:a5:d5:36:82:69:3d:33: ea:f7:a5:d6:0f:f9:8f:49:f2:31:31:4a:19:fa:f9: 5d:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:86:73:F0:E9:0E:D7:1F:4B:7F:E0:54:63:EC:B1:AE:E5:7B:E4:B6 X509v3 Authority Key Identifier: keyid:5D:27:2E:F1:FF:5F:99:60:3D:FC:2A:2B:9C:5A:B1:A8:BF:32:2E:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/5D272EF1FF5F99603DFC2A2B9C5AB1A8BF322E73.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/5D272EF1FF5F99603DFC2A2B9C5AB1A8BF322E73.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a313030303a3a2f33362d3438203d3e20313430343233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:20c0:1000::/36 Signature Algorithm: sha256WithRSAEncryption 33:f3:48:b2:b0:e8:35:af:21:c5:43:81:2e:f4:7b:bc:69:3c: 82:00:68:31:f9:e7:2a:4d:d1:7c:a2:27:9d:7d:72:f1:fd:eb: 42:ac:8b:23:c5:9c:b5:f5:b3:82:c4:b0:a6:f4:62:1c:2d:a4: 4f:70:44:cf:60:eb:ea:9d:83:99:ee:28:36:1e:db:8b:39:f2: 76:f3:c4:5f:7a:ec:df:ee:95:88:19:b6:f0:fe:7d:dc:91:52: 83:8d:7e:29:43:91:a9:7f:fd:aa:d9:0a:aa:a7:3b:a1:48:f4: 2a:7e:c4:2d:57:6c:d9:6d:22:99:d1:36:ae:f1:12:15:4c:4c: 3a:23:9f:2f:dc:19:1f:a7:5b:39:a6:6d:55:11:20:46:44:91: 8e:47:cc:3b:72:6a:f7:be:b6:92:52:a4:e6:7c:0d:03:8f:db: 18:69:aa:43:95:c1:7f:9e:5c:ba:bf:8c:94:b4:ec:c2:24:93: d3:7f:f0:33:7d:99:99:5d:a3:cf:6b:a9:e1:03:59:eb:d8:1e: f1:6c:0e:fd:84:f4:15:c4:26:c1:bc:21:cb:45:38:70:8c:fc: c3:3c:c6:db:f3:94:9c:43:58:1e:d3:3e:41:fe:dd:fb:a0:88: a8:e2:f4:d6:63:e0:9d:15:69:3b:5d:56:53:bd:27:b2:7f:ba: e2:58:8e:4c -----BEGIN CERTIFICATE----- MIIFNDCCBBygAwIBAgIURTBD5o1K/sgVxx39J2eTZpQQTFowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUQyNzJFRjFGRjVGOTk2MDNERkMyQTJCOUM1QUIxQThC RjMyMkU3MzAeFw0yNjA1MDMwMjExNDZaFw0yNzA1MDIwMjE2NDZaMDMxMTAvBgNV BAMTKEJEODY3M0YwRTkwRUQ3MUY0QjdGRTA1NDYzRUNCMUFFRTU3QkU0QjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQClqMAgGqUaBuoNhxQ/HhDCkjw9 G41odJkVDs69k1vJNAerLgVwIdX7HqpinPPCJN9Eh3lwPpoe2Plfnbf+q0CD1flN J8hb+s6iQVBMF808DIE3FsRrEQn0TGuA4pLuQQ4/AZTkqehFDKCJXvbJ1XnbFFJH P4Evir+5BTrX4ih86cDXehmYL2TzEpl1zvnsr3Y+7LvkbWOd4BxbE1k1hFlAzpkh +wV5pRKSnl1RHsZLuoDYUomzwmuj3NxLzJYP17/2UypvPXzlhFygoZfTp+ODVxtU 8iJaXBSlmu/bOBf59l+YDGi5BxmkpdU2gmk9M+r3pdYP+Y9J8jExShn6+V1bAgMB AAGjggI+MIICOjAdBgNVHQ4EFgQUvYZz8OkO1x9Lf+BUY+yxruV75LYwHwYDVR0j BBgwFoAUXScu8f9fmWA9/CornFqxqL8yLnMwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MTlhMDAzNjktNjg0MC00YTk1LTg5YjEtYTQ4NTE4Zjk4ZGM3LzAvNUQyNzJFRjFG RjVGOTk2MDNERkMyQTJCOUM1QUIxQThCRjMyMkU3My5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS81RDI3MkVGMUZGNUY5OTYwM0RGQzJBMkI5QzVBQjFBOEJGMzIy RTczLmNlcjCBrQYIKwYBBQUHAQsEgaAwgZ0wgZoGCCsGAQUFBzALhoGNcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzE5YTAwMzY5LTY4NDAtNGE5NS04 OWIxLWE0ODUxOGY5OGRjNy8wLzMyMzQzMDM2M2EzMjMwNjMzMDNhMzEzMDMwMzAz YTNhMmYzMzM2MmQzNDM4MjAzZDNlMjAzMTM0MzAzNDMyMzMucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgQk BiDAEDANBgkqhkiG9w0BAQsFAAOCAQEAM/NIsrDoNa8hxUOBLvR7vGk8ggBoMfnn Kk3RfKInnX1y8f3rQqyLI8WctfWzgsSwpvRiHC2kT3BEz2Dr6p2Dme4oNh7bizny dvPEX3rs3+6ViBm28P593JFSg41+KUORqX/9qtkKqqc7oUj0Kn7ELVds2W0imdE2 rvESFUxMOiOfL9wZH6dbOaZtVREgRkSRjkfMO3Jq9762klKk5nwNA4/bGGmqQ5XB f55cur+MlLTswiST03/wM32ZmV2jz2up4QNZ69ge8WwO/YT0FcQmwbwhy0U4cIz8 wzzG2/OUnENYHtM+Qf7d+6CIqOL01mPgnRVpO11WU70nsn+64liOTA== -----END CERTIFICATE-----Generated at Wed May 13 15:24:01 2026 by rpki-client