$ rpki-client -vvf rpki-rsync.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a373030303a3a2f33362d3438203d3e20313430343233.roa File: 323430363a323063303a373030303a3a2f33362d3438203d3e20313430343233.roa (raw, json) Hash identifier: A0iKimPBe5FHTwF9ZBavCc6lcL3pnQfd10Ynmjdk5YQ= Subject key identifier: C7:98:6D:6C:26:4F:EB:0D:46:36:83:27:DC:79:1F:8E:1F:07:AB:B3 Certificate issuer: /CN=5D272EF1FF5F99603DFC2A2B9C5AB1A8BF322E73 Certificate serial: A8759CC78DAE2AAD4A14D09ED0159E65FEABF7 Authority key identifier: 5D:27:2E:F1:FF:5F:99:60:3D:FC:2A:2B:9C:5A:B1:A8:BF:32:2E:73 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/5D272EF1FF5F99603DFC2A2B9C5AB1A8BF322E73.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a373030303a3a2f33362d3438203d3e20313430343233.roa Signing time: Sun 03 May 2026 02:16:42 +0000 ROA not before: Sun 03 May 2026 02:11:42 +0000 ROA not after: Sun 02 May 2027 02:16:42 +0000 asID: 140423 IP address blocks: 2406:20c0:7000::/36 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/5D272EF1FF5F99603DFC2A2B9C5AB1A8BF322E73.crl rsync://rpki-rsync.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/5D272EF1FF5F99603DFC2A2B9C5AB1A8BF322E73.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/5D272EF1FF5F99603DFC2A2B9C5AB1A8BF322E73.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 04:40:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: a8:75:9c:c7:8d:ae:2a:ad:4a:14:d0:9e:d0:15:9e:65:fe:ab:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5D272EF1FF5F99603DFC2A2B9C5AB1A8BF322E73 Validity Not Before: May 3 02:11:42 2026 GMT Not After : May 2 02:16:42 2027 GMT Subject: CN=C7986D6C264FEB0D46368327DC791F8E1F07ABB3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:18:29:46:7e:01:32:e1:6d:18:a4:4d:42:be: 08:90:61:63:3c:18:21:fc:f3:90:e3:0d:24:3d:de: ee:48:c9:76:b0:ff:0e:7a:2b:e0:6b:cd:e0:b4:5c: 9e:3d:a1:2b:47:6e:64:37:96:f2:f2:4b:2f:69:fb: 8a:45:f2:9e:56:28:d0:31:80:d8:08:87:56:e8:85: f6:93:5e:c6:25:82:de:b7:b9:18:9b:f3:72:23:b1: f4:fc:64:e4:dc:6b:cf:86:b8:0b:63:c3:73:93:f0: cc:77:7e:b3:90:99:1c:71:4b:b9:f6:6e:9b:2e:20: 8a:53:73:df:f1:38:d0:3e:9a:da:24:9e:74:48:43: 79:23:07:00:a5:1f:c2:f8:cd:e6:f2:68:a4:89:14: cc:89:91:4d:54:56:ba:64:3a:5d:b2:52:9f:63:2b: e4:a3:8f:b9:cf:82:ce:a2:6b:62:71:21:d3:0e:f8: 8e:31:d5:04:c9:91:ff:9c:40:0a:18:dc:70:7f:42: 0a:9f:46:65:14:98:d6:26:aa:86:26:a4:df:25:02: 6c:13:7b:0c:9a:3c:11:4e:b0:d9:10:be:6a:4d:64: 51:c3:c0:d0:1a:ba:f2:b4:24:72:78:44:94:ad:7f: b1:c8:cf:c7:aa:39:a1:5e:fd:27:9c:a4:6d:fe:f5: 05:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:98:6D:6C:26:4F:EB:0D:46:36:83:27:DC:79:1F:8E:1F:07:AB:B3 X509v3 Authority Key Identifier: keyid:5D:27:2E:F1:FF:5F:99:60:3D:FC:2A:2B:9C:5A:B1:A8:BF:32:2E:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/5D272EF1FF5F99603DFC2A2B9C5AB1A8BF322E73.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/5D272EF1FF5F99603DFC2A2B9C5AB1A8BF322E73.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a373030303a3a2f33362d3438203d3e20313430343233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:20c0:7000::/36 Signature Algorithm: sha256WithRSAEncryption 37:c1:90:e8:26:e0:bc:f7:32:02:e9:3e:2f:f7:ad:1b:5c:05: fa:ab:9d:58:dc:cf:79:a6:79:94:0b:34:8a:af:14:5b:87:60: a7:63:aa:55:f1:b3:d1:d7:da:56:20:84:3a:50:a4:dd:6b:df: 92:f0:0a:9f:89:41:a3:84:39:84:1a:a7:54:8b:1e:8c:b0:44: 60:ed:8e:85:7c:96:b7:36:18:91:da:3b:ec:2e:76:7e:de:62: 1e:09:92:ec:5c:c6:5e:71:a5:46:a6:2b:d3:b2:41:6f:27:dd: 54:c1:85:6a:68:4b:59:71:98:c6:b6:8d:a2:1e:1b:dd:8a:27: 01:8f:e5:0b:3b:c7:96:fa:3b:8e:13:41:c6:0d:50:b1:0a:ad: ad:c4:c9:3e:1b:d6:bc:85:3e:ba:29:b2:e7:8e:d7:fc:cd:7c: a8:e8:92:1b:22:87:c7:e1:5f:a3:28:28:94:b3:99:5d:d4:8d: bf:c7:a9:e9:49:dc:d9:84:7d:fd:4e:e1:96:c1:ea:2f:66:fb: 65:0f:90:03:81:38:5c:4c:fe:ff:8e:69:d8:db:77:cb:f2:dc: 4e:cc:14:ac:26:c2:40:62:ec:91:e5:0c:31:df:ea:8f:d6:47: a3:f6:18:b1:2b:fa:e9:06:03:24:34:43:95:37:75:68:6c:84: 34:58:5b:98 -----BEGIN CERTIFICATE----- MIIFNDCCBBygAwIBAgIUAKh1nMeNriqtShTQntAVnmX+q/cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUQyNzJFRjFGRjVGOTk2MDNERkMyQTJCOUM1QUIxQThC RjMyMkU3MzAeFw0yNjA1MDMwMjExNDJaFw0yNzA1MDIwMjE2NDJaMDMxMTAvBgNV BAMTKEM3OTg2RDZDMjY0RkVCMEQ0NjM2ODMyN0RDNzkxRjhFMUYwN0FCQjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCVGClGfgEy4W0YpE1CvgiQYWM8 GCH885DjDSQ93u5IyXaw/w56K+BrzeC0XJ49oStHbmQ3lvLySy9p+4pF8p5WKNAx gNgIh1bohfaTXsYlgt63uRib83IjsfT8ZOTca8+GuAtjw3OT8Mx3frOQmRxxS7n2 bpsuIIpTc9/xONA+mtoknnRIQ3kjBwClH8L4zebyaKSJFMyJkU1UVrpkOl2yUp9j K+Sjj7nPgs6ia2JxIdMO+I4x1QTJkf+cQAoY3HB/QgqfRmUUmNYmqoYmpN8lAmwT ewyaPBFOsNkQvmpNZFHDwNAauvK0JHJ4RJStf7HIz8eqOaFe/SecpG3+9QUvAgMB AAGjggI+MIICOjAdBgNVHQ4EFgQUx5htbCZP6w1GNoMn3Hkfjh8Hq7MwHwYDVR0j BBgwFoAUXScu8f9fmWA9/CornFqxqL8yLnMwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MTlhMDAzNjktNjg0MC00YTk1LTg5YjEtYTQ4NTE4Zjk4ZGM3LzAvNUQyNzJFRjFG RjVGOTk2MDNERkMyQTJCOUM1QUIxQThCRjMyMkU3My5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS81RDI3MkVGMUZGNUY5OTYwM0RGQzJBMkI5QzVBQjFBOEJGMzIy RTczLmNlcjCBrQYIKwYBBQUHAQsEgaAwgZ0wgZoGCCsGAQUFBzALhoGNcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzE5YTAwMzY5LTY4NDAtNGE5NS04 OWIxLWE0ODUxOGY5OGRjNy8wLzMyMzQzMDM2M2EzMjMwNjMzMDNhMzczMDMwMzAz YTNhMmYzMzM2MmQzNDM4MjAzZDNlMjAzMTM0MzAzNDMyMzMucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgQk BiDAcDANBgkqhkiG9w0BAQsFAAOCAQEAN8GQ6CbgvPcyAuk+L/etG1wF+qudWNzP eaZ5lAs0iq8UW4dgp2OqVfGz0dfaViCEOlCk3WvfkvAKn4lBo4Q5hBqnVIsejLBE YO2OhXyWtzYYkdo77C52ft5iHgmS7FzGXnGlRqYr07JBbyfdVMGFamhLWXGYxraN oh4b3YonAY/lCzvHlvo7jhNBxg1QsQqtrcTJPhvWvIU+uimy547X/M18qOiSGyKH x+FfoygolLOZXdSNv8ep6Unc2YR9/U7hlsHqL2b7ZQ+QA4E4XEz+/45p2Nt3y/Lc TswUrCbCQGLskeUMMd/qj9ZHo/YYsSv66QYDJDRDlTd1aGyENFhbmA== -----END CERTIFICATE-----Generated at Wed May 13 15:39:05 2026 by rpki-client