$ rpki-client -vvf rpki-rsync.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a343030303a3a2f33352d3438203d3e20313430343233.roa File: 323430363a323063303a343030303a3a2f33352d3438203d3e20313430343233.roa (raw, json) Hash identifier: +z1Vecq5CLuGAdagNlNI4DXOKOFp6RCrAgPHXZAdHr4= Subject key identifier: A8:A7:C1:91:B1:9E:F0:E8:DC:31:21:84:E3:7D:DB:A7:9F:0A:C4:51 Certificate issuer: /CN=5D272EF1FF5F99603DFC2A2B9C5AB1A8BF322E73 Certificate serial: 0B775C74B00E031085CF232348ACF4E176A06ED6 Authority key identifier: 5D:27:2E:F1:FF:5F:99:60:3D:FC:2A:2B:9C:5A:B1:A8:BF:32:2E:73 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/5D272EF1FF5F99603DFC2A2B9C5AB1A8BF322E73.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a343030303a3a2f33352d3438203d3e20313430343233.roa Signing time: Sun 03 May 2026 02:16:39 +0000 ROA not before: Sun 03 May 2026 02:11:39 +0000 ROA not after: Sun 02 May 2027 02:16:39 +0000 asID: 140423 IP address blocks: 2406:20c0:4000::/35 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/5D272EF1FF5F99603DFC2A2B9C5AB1A8BF322E73.crl rsync://rpki-rsync.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/5D272EF1FF5F99603DFC2A2B9C5AB1A8BF322E73.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/5D272EF1FF5F99603DFC2A2B9C5AB1A8BF322E73.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 04:40:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:77:5c:74:b0:0e:03:10:85:cf:23:23:48:ac:f4:e1:76:a0:6e:d6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5D272EF1FF5F99603DFC2A2B9C5AB1A8BF322E73 Validity Not Before: May 3 02:11:39 2026 GMT Not After : May 2 02:16:39 2027 GMT Subject: CN=A8A7C191B19EF0E8DC312184E37DDBA79F0AC451 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:d0:e2:34:76:7d:91:bc:a4:62:b9:41:b0:29: 70:c1:d7:fc:a1:bf:a0:41:20:6c:50:2a:80:84:73: ee:13:7c:16:cb:e6:db:00:a4:3b:4b:8d:9c:1d:bc: 23:9a:74:b0:f9:42:6e:c9:2b:95:bc:71:c6:19:5e: f8:6b:83:a6:d9:55:b1:db:a9:1b:16:62:46:af:65: 3d:a8:b9:e0:36:84:58:82:3a:12:e1:0b:95:f1:d3: 15:da:31:ef:cb:4d:f0:95:4c:d1:63:74:6c:1b:be: 17:80:44:21:3a:60:cc:d5:49:f2:d3:5f:18:56:c2: 8f:ca:13:fd:44:90:ec:b3:50:68:45:90:b4:57:35: e7:c4:85:74:99:1f:f0:ab:5e:45:59:d9:e0:73:05: ca:96:2b:a0:29:de:33:4e:f8:70:d2:f0:c1:82:a1: 0f:ba:14:3e:76:d4:17:9c:b1:26:94:7a:ea:f5:3c: 90:06:77:01:d1:b2:29:ef:10:9a:03:a8:fe:3b:aa: ba:63:20:56:e4:94:04:7c:7d:d8:e8:18:d1:98:47: 21:7e:1e:85:b1:b6:6d:1d:3a:49:ce:0b:3a:4f:e2: 10:ba:fc:6b:f5:6c:64:dc:a1:ca:7a:d1:2c:7a:6a: 9c:05:07:7a:d5:c7:a7:3f:90:8a:e0:23:2d:b8:ca: 1b:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:A7:C1:91:B1:9E:F0:E8:DC:31:21:84:E3:7D:DB:A7:9F:0A:C4:51 X509v3 Authority Key Identifier: keyid:5D:27:2E:F1:FF:5F:99:60:3D:FC:2A:2B:9C:5A:B1:A8:BF:32:2E:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/5D272EF1FF5F99603DFC2A2B9C5AB1A8BF322E73.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/5D272EF1FF5F99603DFC2A2B9C5AB1A8BF322E73.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a343030303a3a2f33352d3438203d3e20313430343233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:20c0:4000::/35 Signature Algorithm: sha256WithRSAEncryption 6c:d1:3e:72:9c:67:6b:c7:ef:5a:be:40:59:b5:d6:8e:79:f9: 95:79:e4:85:d1:06:08:62:1b:1b:eb:1d:56:6d:a5:a6:7a:84: 04:d4:5a:33:64:61:56:45:8d:8d:da:4c:82:9e:82:2b:13:6c: 26:9f:f9:7e:18:b5:9d:74:7b:87:3c:80:08:f6:e2:6d:aa:d2: 43:30:ec:08:06:f3:27:eb:b8:e0:38:10:90:43:de:94:37:c6: 92:0d:50:e4:0b:5d:4c:21:1c:08:e7:f4:53:31:0a:27:5f:93: 64:08:ce:35:27:0c:72:10:94:ca:ab:b5:23:52:04:7a:52:11: f4:8b:ea:3a:0e:aa:aa:37:40:fa:6e:83:17:e5:f0:42:4c:64: 3e:1d:43:00:1d:a5:5a:26:bf:ac:11:1d:6e:10:fa:a6:ce:d7: 82:8c:6f:02:2b:73:5f:15:ce:44:86:18:14:5f:ce:9e:83:5a: 36:7e:f1:9a:0a:0e:0a:08:a0:d6:61:f3:a7:c0:35:09:20:36: 3f:0c:b2:79:23:fb:a1:17:58:0d:8c:e5:c3:21:e9:b3:d1:b2: 1f:98:4c:e1:57:26:84:e3:db:86:af:f1:3f:dc:c9:ac:03:85: 19:1c:11:3b:fa:e2:35:f1:88:3c:9d:78:b6:bd:d5:f5:25:22: ea:f1:6c:78 -----BEGIN CERTIFICATE----- MIIFNDCCBBygAwIBAgIUC3dcdLAOAxCFzyMjSKz04XagbtYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUQyNzJFRjFGRjVGOTk2MDNERkMyQTJCOUM1QUIxQThC RjMyMkU3MzAeFw0yNjA1MDMwMjExMzlaFw0yNzA1MDIwMjE2MzlaMDMxMTAvBgNV BAMTKEE4QTdDMTkxQjE5RUYwRThEQzMxMjE4NEUzN0REQkE3OUYwQUM0NTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDH0OI0dn2RvKRiuUGwKXDB1/yh v6BBIGxQKoCEc+4TfBbL5tsApDtLjZwdvCOadLD5Qm7JK5W8ccYZXvhrg6bZVbHb qRsWYkavZT2oueA2hFiCOhLhC5Xx0xXaMe/LTfCVTNFjdGwbvheARCE6YMzVSfLT XxhWwo/KE/1EkOyzUGhFkLRXNefEhXSZH/CrXkVZ2eBzBcqWK6Ap3jNO+HDS8MGC oQ+6FD521BecsSaUeur1PJAGdwHRsinvEJoDqP47qrpjIFbklAR8fdjoGNGYRyF+ HoWxtm0dOknOCzpP4hC6/Gv1bGTcocp60Sx6apwFB3rVx6c/kIrgIy24yhvtAgMB AAGjggI+MIICOjAdBgNVHQ4EFgQUqKfBkbGe8OjcMSGE433bp58KxFEwHwYDVR0j BBgwFoAUXScu8f9fmWA9/CornFqxqL8yLnMwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MTlhMDAzNjktNjg0MC00YTk1LTg5YjEtYTQ4NTE4Zjk4ZGM3LzAvNUQyNzJFRjFG RjVGOTk2MDNERkMyQTJCOUM1QUIxQThCRjMyMkU3My5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS81RDI3MkVGMUZGNUY5OTYwM0RGQzJBMkI5QzVBQjFBOEJGMzIy RTczLmNlcjCBrQYIKwYBBQUHAQsEgaAwgZ0wgZoGCCsGAQUFBzALhoGNcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzE5YTAwMzY5LTY4NDAtNGE5NS04 OWIxLWE0ODUxOGY5OGRjNy8wLzMyMzQzMDM2M2EzMjMwNjMzMDNhMzQzMDMwMzAz YTNhMmYzMzM1MmQzNDM4MjAzZDNlMjAzMTM0MzAzNDMyMzMucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgUk BiDAQDANBgkqhkiG9w0BAQsFAAOCAQEAbNE+cpxna8fvWr5AWbXWjnn5lXnkhdEG CGIbG+sdVm2lpnqEBNRaM2RhVkWNjdpMgp6CKxNsJp/5fhi1nXR7hzyACPbibarS QzDsCAbzJ+u44DgQkEPelDfGkg1Q5AtdTCEcCOf0UzEKJ1+TZAjONScMchCUyqu1 I1IEelIR9IvqOg6qqjdA+m6DF+XwQkxkPh1DAB2lWia/rBEdbhD6ps7XgoxvAitz XxXORIYYFF/OnoNaNn7xmgoOCgig1mHzp8A1CSA2PwyyeSP7oRdYDYzlwyHps9Gy H5hM4VcmhOPbhq/xP9zJrAOFGRwRO/riNfGIPJ14tr3V9SUi6vFseA== -----END CERTIFICATE-----Generated at Wed May 13 14:58:13 2026 by rpki-client