$ rpki-client -vvf rpki-rsync.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a323030303a3a2f33362d3438203d3e20313430343233.roa File: 323430363a323063303a323030303a3a2f33362d3438203d3e20313430343233.roa (raw, json) Hash identifier: v8QPabhItaizBB9pxD/wXN2gHGs8Wr8CE7BFeI6GwE4= Subject key identifier: 03:FC:BD:63:74:B6:07:72:17:FD:2A:9D:40:EF:E3:0A:8F:A6:53:CD Certificate issuer: /CN=5D272EF1FF5F99603DFC2A2B9C5AB1A8BF322E73 Certificate serial: 3D082A30C3B3FD2C73568616EB7ED93A22F9EEE4 Authority key identifier: 5D:27:2E:F1:FF:5F:99:60:3D:FC:2A:2B:9C:5A:B1:A8:BF:32:2E:73 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/5D272EF1FF5F99603DFC2A2B9C5AB1A8BF322E73.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a323030303a3a2f33362d3438203d3e20313430343233.roa Signing time: Sun 03 May 2026 02:16:36 +0000 ROA not before: Sun 03 May 2026 02:11:36 +0000 ROA not after: Sun 02 May 2027 02:16:36 +0000 asID: 140423 IP address blocks: 2406:20c0:2000::/36 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/5D272EF1FF5F99603DFC2A2B9C5AB1A8BF322E73.crl rsync://rpki-rsync.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/5D272EF1FF5F99603DFC2A2B9C5AB1A8BF322E73.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/5D272EF1FF5F99603DFC2A2B9C5AB1A8BF322E73.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 04:40:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:08:2a:30:c3:b3:fd:2c:73:56:86:16:eb:7e:d9:3a:22:f9:ee:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5D272EF1FF5F99603DFC2A2B9C5AB1A8BF322E73 Validity Not Before: May 3 02:11:36 2026 GMT Not After : May 2 02:16:36 2027 GMT Subject: CN=03FCBD6374B6077217FD2A9D40EFE30A8FA653CD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:22:6a:fb:8f:8e:e2:0f:c9:50:68:ac:6f:4a: ec:c1:c2:d1:96:34:dd:03:a4:7e:31:a3:64:0b:2f: 44:32:05:61:b1:53:1c:d0:57:3f:05:9a:9d:93:ae: 46:44:7d:91:3e:94:17:da:c3:02:e8:c4:72:e3:4e: d3:6a:26:62:ea:47:a4:a9:9d:1e:4f:c4:13:37:c0: d1:d9:21:13:dc:b9:a9:97:32:db:b8:54:aa:72:54: 3f:d0:e6:23:ff:87:2d:65:61:1b:0d:6e:47:9a:f3: 14:55:70:aa:6f:b3:43:51:21:f0:31:76:76:07:3d: 77:63:68:4f:be:ba:5d:e9:b6:43:6a:17:fd:49:fb: 09:9a:4a:3a:00:1e:e5:d1:52:3c:92:1e:72:6a:88: 85:4b:61:07:00:18:ec:d9:a5:e1:ed:ce:9c:4c:57: 8b:91:03:77:e7:02:96:e0:ab:a5:e4:fd:30:22:bb: 84:ab:9f:1a:08:84:8e:83:40:18:7c:1f:74:c2:a7: 39:ee:cd:e1:9b:ef:ca:e5:5d:02:36:5d:5a:97:98: d7:9c:bb:39:bb:41:8d:4c:e3:6a:99:3d:d2:2d:03: 02:a0:60:df:1a:63:57:2b:73:60:bd:b5:5b:dc:0d: 6a:3c:7a:a5:d6:d8:77:da:0b:69:46:92:c9:48:c5: e1:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:FC:BD:63:74:B6:07:72:17:FD:2A:9D:40:EF:E3:0A:8F:A6:53:CD X509v3 Authority Key Identifier: keyid:5D:27:2E:F1:FF:5F:99:60:3D:FC:2A:2B:9C:5A:B1:A8:BF:32:2E:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/5D272EF1FF5F99603DFC2A2B9C5AB1A8BF322E73.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/5D272EF1FF5F99603DFC2A2B9C5AB1A8BF322E73.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a323030303a3a2f33362d3438203d3e20313430343233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:20c0:2000::/36 Signature Algorithm: sha256WithRSAEncryption 58:e9:d1:7f:70:4b:7f:e0:41:ea:13:29:80:82:d2:e4:f7:e9: b3:29:82:0f:5c:a1:e2:e9:44:1c:f0:c1:9c:d7:2d:6d:77:c4: 1d:cd:87:ab:79:a1:f6:01:65:7b:ce:b5:ae:16:36:c0:4b:2c: 7a:3a:5c:29:1a:ad:b9:ea:05:43:8f:49:c6:b7:3c:3d:0d:4f: d9:22:06:46:35:9f:01:8f:e1:c3:c7:f9:a5:ec:18:ff:73:60: af:ac:56:02:6c:96:9b:b0:5f:1d:1f:cb:de:ff:3a:69:ab:b9: 23:53:79:4c:21:6e:4b:60:b0:27:09:85:c8:ed:59:24:16:20: 1b:e4:71:1f:36:e0:0b:72:f7:b9:40:d5:36:40:04:fd:f8:3a: 6b:9d:e0:55:9d:8c:f9:4d:cf:35:4a:7f:1b:52:87:28:98:aa: 13:a8:b7:e1:63:be:74:25:08:1a:89:47:33:46:22:0b:2d:35: 3d:d6:04:ba:6a:42:1c:87:75:fe:ad:db:62:10:8a:a0:a8:3c: ad:3c:03:57:3f:95:6c:fb:ea:61:9b:0b:43:cb:63:0f:b1:29: 48:ac:dd:9b:27:08:aa:5a:14:05:bf:28:23:fb:cc:ba:0a:57: fa:09:27:a7:a1:a7:54:b5:cf:26:01:fc:1c:6d:04:4e:b6:05: 58:96:1c:72 -----BEGIN CERTIFICATE----- MIIFNDCCBBygAwIBAgIUPQgqMMOz/SxzVoYW637ZOiL57uQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUQyNzJFRjFGRjVGOTk2MDNERkMyQTJCOUM1QUIxQThC RjMyMkU3MzAeFw0yNjA1MDMwMjExMzZaFw0yNzA1MDIwMjE2MzZaMDMxMTAvBgNV BAMTKDAzRkNCRDYzNzRCNjA3NzIxN0ZEMkE5RDQwRUZFMzBBOEZBNjUzQ0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZImr7j47iD8lQaKxvSuzBwtGW NN0DpH4xo2QLL0QyBWGxUxzQVz8Fmp2TrkZEfZE+lBfawwLoxHLjTtNqJmLqR6Sp nR5PxBM3wNHZIRPcuamXMtu4VKpyVD/Q5iP/hy1lYRsNbkea8xRVcKpvs0NRIfAx dnYHPXdjaE++ul3ptkNqF/1J+wmaSjoAHuXRUjySHnJqiIVLYQcAGOzZpeHtzpxM V4uRA3fnApbgq6Xk/TAiu4SrnxoIhI6DQBh8H3TCpznuzeGb78rlXQI2XVqXmNec uzm7QY1M42qZPdItAwKgYN8aY1crc2C9tVvcDWo8eqXW2HfaC2lGkslIxeHhAgMB AAGjggI+MIICOjAdBgNVHQ4EFgQUA/y9Y3S2B3IX/SqdQO/jCo+mU80wHwYDVR0j BBgwFoAUXScu8f9fmWA9/CornFqxqL8yLnMwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MTlhMDAzNjktNjg0MC00YTk1LTg5YjEtYTQ4NTE4Zjk4ZGM3LzAvNUQyNzJFRjFG RjVGOTk2MDNERkMyQTJCOUM1QUIxQThCRjMyMkU3My5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS81RDI3MkVGMUZGNUY5OTYwM0RGQzJBMkI5QzVBQjFBOEJGMzIy RTczLmNlcjCBrQYIKwYBBQUHAQsEgaAwgZ0wgZoGCCsGAQUFBzALhoGNcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzE5YTAwMzY5LTY4NDAtNGE5NS04 OWIxLWE0ODUxOGY5OGRjNy8wLzMyMzQzMDM2M2EzMjMwNjMzMDNhMzIzMDMwMzAz YTNhMmYzMzM2MmQzNDM4MjAzZDNlMjAzMTM0MzAzNDMyMzMucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgQk BiDAIDANBgkqhkiG9w0BAQsFAAOCAQEAWOnRf3BLf+BB6hMpgILS5PfpsymCD1yh 4ulEHPDBnNctbXfEHc2Hq3mh9gFle861rhY2wEssejpcKRqtueoFQ49Jxrc8PQ1P 2SIGRjWfAY/hw8f5pewY/3Ngr6xWAmyWm7BfHR/L3v86aau5I1N5TCFuS2CwJwmF yO1ZJBYgG+RxHzbgC3L3uUDVNkAE/fg6a53gVZ2M+U3PNUp/G1KHKJiqE6i34WO+ dCUIGolHM0YiCy01PdYEumpCHId1/q3bYhCKoKg8rTwDVz+VbPvqYZsLQ8tjD7Ep SKzdmycIqloUBb8oI/vMugpX+gknp6GnVLXPJgH8HG0ETrYFWJYccg== -----END CERTIFICATE-----Generated at Wed May 13 15:04:17 2026 by rpki-client