$ rpki-client -vvf rpki-rsync.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a323030303a3a2f33352d3438203d3e20313430343233.roa File: 323430363a323063303a323030303a3a2f33352d3438203d3e20313430343233.roa (raw, json) Hash identifier: endKgrHDArNl7n+5PXQ+sWzCHjXcMSDERSN2h7iF7rg= Subject key identifier: 6C:50:3C:E1:41:EC:AB:8E:99:8C:18:50:99:5A:E6:B8:F9:7B:00:7B Certificate issuer: /CN=5D272EF1FF5F99603DFC2A2B9C5AB1A8BF322E73 Certificate serial: 1D1E57864947BA75788CC3F42F6225ED1C2A3F82 Authority key identifier: 5D:27:2E:F1:FF:5F:99:60:3D:FC:2A:2B:9C:5A:B1:A8:BF:32:2E:73 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/5D272EF1FF5F99603DFC2A2B9C5AB1A8BF322E73.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a323030303a3a2f33352d3438203d3e20313430343233.roa Signing time: Sun 03 May 2026 02:16:47 +0000 ROA not before: Sun 03 May 2026 02:11:47 +0000 ROA not after: Sun 02 May 2027 02:16:47 +0000 asID: 140423 IP address blocks: 2406:20c0:2000::/35 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/5D272EF1FF5F99603DFC2A2B9C5AB1A8BF322E73.crl rsync://rpki-rsync.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/5D272EF1FF5F99603DFC2A2B9C5AB1A8BF322E73.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/5D272EF1FF5F99603DFC2A2B9C5AB1A8BF322E73.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 04:40:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:1e:57:86:49:47:ba:75:78:8c:c3:f4:2f:62:25:ed:1c:2a:3f:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5D272EF1FF5F99603DFC2A2B9C5AB1A8BF322E73 Validity Not Before: May 3 02:11:47 2026 GMT Not After : May 2 02:16:47 2027 GMT Subject: CN=6C503CE141ECAB8E998C1850995AE6B8F97B007B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:d9:66:6b:da:50:7f:cf:f1:28:c3:37:26:6f: ad:b3:d5:bd:cc:27:3a:44:e0:5b:b4:e2:81:da:c3: b7:f8:53:cb:7a:51:94:2e:1b:5e:67:8c:b3:77:cb: 4c:d2:ba:b5:bc:35:6b:a0:d9:7d:d7:24:6a:12:50: 89:10:de:ca:a2:7a:d7:90:fb:ea:bb:92:e8:c7:b4: 0e:18:3b:c7:6c:aa:df:d4:6e:5c:f3:e3:98:f6:d1: d8:98:6d:b6:a8:2f:83:71:da:5a:8d:0d:65:c8:99: a7:97:96:59:cc:81:05:40:97:92:03:b7:16:31:e1: bf:84:05:d9:e1:de:38:1d:d2:81:5e:ba:08:d8:21: 57:9a:35:ab:bb:44:f3:25:2a:78:67:12:e9:78:ee: 0b:87:1a:e7:e3:46:9d:73:54:bb:65:73:42:4d:fd: a2:49:8d:c0:8b:fd:4c:bb:47:ea:cf:82:25:7d:18: 19:48:50:10:79:dd:02:ad:dc:e5:2a:ed:31:25:0b: 4d:6e:df:7e:81:04:eb:57:73:4e:46:26:3a:d5:98: fd:38:4f:d5:d7:fb:a8:b1:05:cd:f3:67:b0:13:29: 60:4b:1f:de:d1:e2:d7:82:df:e2:fc:d2:d2:7c:06: 4f:f8:ff:74:3b:3e:59:6d:10:ed:91:85:72:62:cb: 1d:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:50:3C:E1:41:EC:AB:8E:99:8C:18:50:99:5A:E6:B8:F9:7B:00:7B X509v3 Authority Key Identifier: keyid:5D:27:2E:F1:FF:5F:99:60:3D:FC:2A:2B:9C:5A:B1:A8:BF:32:2E:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/5D272EF1FF5F99603DFC2A2B9C5AB1A8BF322E73.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/5D272EF1FF5F99603DFC2A2B9C5AB1A8BF322E73.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a323030303a3a2f33352d3438203d3e20313430343233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:20c0:2000::/35 Signature Algorithm: sha256WithRSAEncryption 7d:31:7d:3b:45:07:0b:87:15:57:00:58:75:33:9f:8f:fc:86: a0:b4:bc:06:dc:b8:94:91:f3:b7:4f:bb:23:28:b6:46:9b:15: 0e:f9:28:70:39:05:df:ff:47:99:15:64:75:47:7c:6d:69:8e: 39:8f:8e:71:b4:4c:64:4a:aa:13:c1:68:d3:b4:c2:b3:92:ff: c7:4a:31:8e:6c:17:db:71:ab:e4:f4:1e:37:fd:f5:cb:1a:d5: 58:bb:cf:93:0e:ad:16:20:5c:5d:f6:b5:79:69:e1:2e:7f:1c: 1b:2a:08:a4:76:27:40:97:ad:6d:cb:95:a2:83:29:bb:bb:dc: 95:07:59:b7:be:61:1e:01:ba:19:44:db:a3:06:e0:bb:4b:b6: 25:56:e7:63:81:6a:d6:6c:a6:4b:23:e8:a6:d4:5b:75:7a:d9: 09:13:a1:9c:52:9d:5c:b6:e3:ba:40:9e:c4:96:cf:fa:04:8c: 82:12:21:ed:ce:e7:2d:9d:ce:6c:e4:df:41:75:fc:2d:fd:c6: 1d:5b:a2:e2:73:5b:61:49:b4:be:69:f9:60:5e:c9:23:37:1f: a2:df:35:4b:f3:08:4b:c3:21:b5:52:d9:50:35:f9:bb:5b:89: ef:2b:72:db:3a:a9:97:d0:48:d7:0e:ff:5d:48:a2:aa:ba:ed: 3c:c5:41:dd -----BEGIN CERTIFICATE----- MIIFNDCCBBygAwIBAgIUHR5XhklHunV4jMP0L2Il7RwqP4IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUQyNzJFRjFGRjVGOTk2MDNERkMyQTJCOUM1QUIxQThC RjMyMkU3MzAeFw0yNjA1MDMwMjExNDdaFw0yNzA1MDIwMjE2NDdaMDMxMTAvBgNV BAMTKDZDNTAzQ0UxNDFFQ0FCOEU5OThDMTg1MDk5NUFFNkI4Rjk3QjAwN0IwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDI2WZr2lB/z/Eowzcmb62z1b3M JzpE4Fu04oHaw7f4U8t6UZQuG15njLN3y0zSurW8NWug2X3XJGoSUIkQ3sqieteQ ++q7kujHtA4YO8dsqt/Ublzz45j20diYbbaoL4Nx2lqNDWXImaeXllnMgQVAl5ID txYx4b+EBdnh3jgd0oFeugjYIVeaNau7RPMlKnhnEul47guHGufjRp1zVLtlc0JN /aJJjcCL/Uy7R+rPgiV9GBlIUBB53QKt3OUq7TElC01u336BBOtXc05GJjrVmP04 T9XX+6ixBc3zZ7ATKWBLH97R4teC3+L80tJ8Bk/4/3Q7PlltEO2RhXJiyx1TAgMB AAGjggI+MIICOjAdBgNVHQ4EFgQUbFA84UHsq46ZjBhQmVrmuPl7AHswHwYDVR0j BBgwFoAUXScu8f9fmWA9/CornFqxqL8yLnMwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MTlhMDAzNjktNjg0MC00YTk1LTg5YjEtYTQ4NTE4Zjk4ZGM3LzAvNUQyNzJFRjFG RjVGOTk2MDNERkMyQTJCOUM1QUIxQThCRjMyMkU3My5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS81RDI3MkVGMUZGNUY5OTYwM0RGQzJBMkI5QzVBQjFBOEJGMzIy RTczLmNlcjCBrQYIKwYBBQUHAQsEgaAwgZ0wgZoGCCsGAQUFBzALhoGNcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzE5YTAwMzY5LTY4NDAtNGE5NS04 OWIxLWE0ODUxOGY5OGRjNy8wLzMyMzQzMDM2M2EzMjMwNjMzMDNhMzIzMDMwMzAz YTNhMmYzMzM1MmQzNDM4MjAzZDNlMjAzMTM0MzAzNDMyMzMucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgUk BiDAIDANBgkqhkiG9w0BAQsFAAOCAQEAfTF9O0UHC4cVVwBYdTOfj/yGoLS8Bty4 lJHzt0+7Iyi2RpsVDvkocDkF3/9HmRVkdUd8bWmOOY+OcbRMZEqqE8Fo07TCs5L/ x0oxjmwX23Gr5PQeN/31yxrVWLvPkw6tFiBcXfa1eWnhLn8cGyoIpHYnQJetbcuV ooMpu7vclQdZt75hHgG6GUTbowbgu0u2JVbnY4Fq1mymSyPoptRbdXrZCROhnFKd XLbjukCexJbP+gSMghIh7c7nLZ3ObOTfQXX8Lf3GHVui4nNbYUm0vmn5YF7JIzcf ot81S/MIS8MhtVLZUDX5u1uJ7yty2zqpl9BI1w7/XUiiqrrtPMVB3Q== -----END CERTIFICATE-----Generated at Wed May 13 13:54:11 2026 by rpki-client