$ rpki-client -vvf rpki-rsync.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a363030303a3a2f33362d3438203d3e20313430343233.roa File: 323430363a323063303a363030303a3a2f33362d3438203d3e20313430343233.roa (raw, json) Hash identifier: A/2SBhwflgcOv2ntZgcS5A11DoU+6wXindltGumWW9Y= Subject key identifier: 77:FF:6E:F7:4C:A1:BF:23:98:B0:42:5A:FC:53:60:59:38:AF:E3:64 Certificate issuer: /CN=5D272EF1FF5F99603DFC2A2B9C5AB1A8BF322E73 Certificate serial: 5C283212F20AF538ABF59E95DA3E62B795604B1A Authority key identifier: 5D:27:2E:F1:FF:5F:99:60:3D:FC:2A:2B:9C:5A:B1:A8:BF:32:2E:73 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/5D272EF1FF5F99603DFC2A2B9C5AB1A8BF322E73.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a363030303a3a2f33362d3438203d3e20313430343233.roa Signing time: Sun 03 May 2026 02:16:46 +0000 ROA not before: Sun 03 May 2026 02:11:46 +0000 ROA not after: Sun 02 May 2027 02:16:46 +0000 asID: 140423 IP address blocks: 2406:20c0:6000::/36 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/5D272EF1FF5F99603DFC2A2B9C5AB1A8BF322E73.crl rsync://rpki-rsync.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/5D272EF1FF5F99603DFC2A2B9C5AB1A8BF322E73.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/5D272EF1FF5F99603DFC2A2B9C5AB1A8BF322E73.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 04:40:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:28:32:12:f2:0a:f5:38:ab:f5:9e:95:da:3e:62:b7:95:60:4b:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5D272EF1FF5F99603DFC2A2B9C5AB1A8BF322E73 Validity Not Before: May 3 02:11:46 2026 GMT Not After : May 2 02:16:46 2027 GMT Subject: CN=77FF6EF74CA1BF2398B0425AFC53605938AFE364 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:2f:89:12:54:b8:ee:2f:99:ff:9f:b8:a5:15: df:9e:06:c3:07:31:f3:95:ed:ba:6a:df:4b:02:a4: 60:62:51:86:d1:32:3e:17:0e:77:c3:e7:a0:96:7f: 08:cf:ba:97:1e:c0:44:2f:f1:af:ca:e2:90:68:0e: 17:5d:a2:2b:d4:46:d1:1f:78:8b:cc:0b:f2:78:75: 1b:2a:d8:9b:fc:e0:72:f7:85:56:91:02:00:e0:d9: bf:ec:96:b3:10:db:c6:bb:ff:e6:8d:af:1d:e3:33: d7:6d:36:6d:e6:61:85:cd:f0:36:7a:ba:13:d0:79: 8a:95:34:6b:17:7c:08:b8:cb:07:da:d2:80:f8:81: 30:19:f5:cd:78:e0:57:81:f3:b8:fb:01:64:11:8b: 3b:23:71:93:7f:61:08:9d:27:66:19:26:08:06:8d: f6:12:b7:39:27:6d:58:10:9a:7f:5a:4f:0d:94:8d: ab:4d:10:9a:24:b8:ec:3e:6e:c2:9c:48:5b:aa:4f: de:f8:d6:11:0b:ab:ec:3d:3c:4d:89:86:0e:ce:f9: c2:21:34:b2:2b:fd:e0:69:1f:82:27:90:58:41:0d: a2:e9:bd:60:5a:90:e2:88:da:c9:49:2c:61:e1:59: 8c:cf:80:fc:78:f9:56:8a:b0:24:a4:1d:d1:68:6e: f0:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:FF:6E:F7:4C:A1:BF:23:98:B0:42:5A:FC:53:60:59:38:AF:E3:64 X509v3 Authority Key Identifier: keyid:5D:27:2E:F1:FF:5F:99:60:3D:FC:2A:2B:9C:5A:B1:A8:BF:32:2E:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/5D272EF1FF5F99603DFC2A2B9C5AB1A8BF322E73.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/5D272EF1FF5F99603DFC2A2B9C5AB1A8BF322E73.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a363030303a3a2f33362d3438203d3e20313430343233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:20c0:6000::/36 Signature Algorithm: sha256WithRSAEncryption 47:9e:0f:53:82:44:0a:58:9a:97:d1:ee:05:3a:55:3e:a9:fc: 25:e2:2e:57:a3:1d:70:1a:38:2f:4f:b4:c0:da:46:6c:a9:73: 20:f5:6f:81:73:27:f8:fd:f1:1b:13:b0:66:2d:a4:0f:42:b0: f6:04:aa:a5:06:14:d1:23:8f:80:b0:a9:a7:d9:a0:a7:38:82: b8:79:4f:92:f3:65:49:33:89:b4:b6:7c:8a:45:26:14:01:23: f6:dc:8c:c8:3f:41:91:35:63:60:7f:3d:4e:69:9f:d2:5c:f6: cd:38:e7:83:36:92:7f:e1:f0:54:a4:ba:4a:9f:f9:ef:06:64: 76:94:e8:2c:89:17:38:c2:4b:40:e4:4e:e4:7d:b8:da:24:75: e8:49:dd:45:04:58:80:45:af:49:df:a0:90:12:9e:27:de:2f: 4d:5b:81:8f:75:5c:3f:22:8b:e7:ba:8e:3e:a2:ff:30:0a:2e: 16:6a:9c:5c:36:d3:c1:08:ce:b0:88:ab:b9:ff:2a:89:24:f1: 93:88:40:86:d5:ac:8d:98:23:ea:6e:bc:f0:0a:69:4b:58:2f: 14:d5:45:dc:f8:34:b1:71:04:58:50:9c:72:7a:84:5a:b6:cc: d4:cf:b8:7e:68:a3:f5:8f:f3:7a:70:e1:d3:91:78:af:5e:9f: e0:0f:d1:9f -----BEGIN CERTIFICATE----- MIIFNDCCBBygAwIBAgIUXCgyEvIK9Tir9Z6V2j5it5VgSxowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUQyNzJFRjFGRjVGOTk2MDNERkMyQTJCOUM1QUIxQThC RjMyMkU3MzAeFw0yNjA1MDMwMjExNDZaFw0yNzA1MDIwMjE2NDZaMDMxMTAvBgNV BAMTKDc3RkY2RUY3NENBMUJGMjM5OEIwNDI1QUZDNTM2MDU5MzhBRkUzNjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTL4kSVLjuL5n/n7ilFd+eBsMH MfOV7bpq30sCpGBiUYbRMj4XDnfD56CWfwjPupcewEQv8a/K4pBoDhddoivURtEf eIvMC/J4dRsq2Jv84HL3hVaRAgDg2b/slrMQ28a7/+aNrx3jM9dtNm3mYYXN8DZ6 uhPQeYqVNGsXfAi4ywfa0oD4gTAZ9c144FeB87j7AWQRizsjcZN/YQidJ2YZJggG jfYStzknbVgQmn9aTw2UjatNEJokuOw+bsKcSFuqT9741hELq+w9PE2Jhg7O+cIh NLIr/eBpH4InkFhBDaLpvWBakOKI2slJLGHhWYzPgPx4+VaKsCSkHdFobvBnAgMB AAGjggI+MIICOjAdBgNVHQ4EFgQUd/9u90yhvyOYsEJa/FNgWTiv42QwHwYDVR0j BBgwFoAUXScu8f9fmWA9/CornFqxqL8yLnMwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MTlhMDAzNjktNjg0MC00YTk1LTg5YjEtYTQ4NTE4Zjk4ZGM3LzAvNUQyNzJFRjFG RjVGOTk2MDNERkMyQTJCOUM1QUIxQThCRjMyMkU3My5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS81RDI3MkVGMUZGNUY5OTYwM0RGQzJBMkI5QzVBQjFBOEJGMzIy RTczLmNlcjCBrQYIKwYBBQUHAQsEgaAwgZ0wgZoGCCsGAQUFBzALhoGNcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzE5YTAwMzY5LTY4NDAtNGE5NS04 OWIxLWE0ODUxOGY5OGRjNy8wLzMyMzQzMDM2M2EzMjMwNjMzMDNhMzYzMDMwMzAz YTNhMmYzMzM2MmQzNDM4MjAzZDNlMjAzMTM0MzAzNDMyMzMucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgQk BiDAYDANBgkqhkiG9w0BAQsFAAOCAQEAR54PU4JEClial9HuBTpVPqn8JeIuV6Md cBo4L0+0wNpGbKlzIPVvgXMn+P3xGxOwZi2kD0Kw9gSqpQYU0SOPgLCpp9mgpziC uHlPkvNlSTOJtLZ8ikUmFAEj9tyMyD9BkTVjYH89Tmmf0lz2zTjngzaSf+HwVKS6 Sp/57wZkdpToLIkXOMJLQORO5H242iR16EndRQRYgEWvSd+gkBKeJ94vTVuBj3Vc PyKL57qOPqL/MAouFmqcXDbTwQjOsIiruf8qiSTxk4hAhtWsjZgj6m688AppS1gv FNVF3Pg0sXEEWFCccnqEWrbM1M+4fmij9Y/zenDh05F4r16f4A/Rnw== -----END CERTIFICATE-----Generated at Wed May 13 14:58:30 2026 by rpki-client