$ rpki-client -vvf rpki-rsync.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a383030303a3a2f33332d3438203d3e20313430343233.roa File: 323430363a323063303a383030303a3a2f33332d3438203d3e20313430343233.roa (raw, json) Hash identifier: Jpk6crOmL/vZ1AkXCiKQEhlEo1ezNIVJ147ItGt4nOA= Subject key identifier: 21:20:D4:68:4F:C0:EA:10:D4:60:FD:A4:8B:66:63:F5:AD:F2:7C:FD Certificate issuer: /CN=5D272EF1FF5F99603DFC2A2B9C5AB1A8BF322E73 Certificate serial: 3168B0FA992EF8447206CFC27580103F644F7D64 Authority key identifier: 5D:27:2E:F1:FF:5F:99:60:3D:FC:2A:2B:9C:5A:B1:A8:BF:32:2E:73 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/5D272EF1FF5F99603DFC2A2B9C5AB1A8BF322E73.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a383030303a3a2f33332d3438203d3e20313430343233.roa Signing time: Sun 03 May 2026 02:16:44 +0000 ROA not before: Sun 03 May 2026 02:11:44 +0000 ROA not after: Sun 02 May 2027 02:16:44 +0000 asID: 140423 IP address blocks: 2406:20c0:8000::/33 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/5D272EF1FF5F99603DFC2A2B9C5AB1A8BF322E73.crl rsync://rpki-rsync.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/5D272EF1FF5F99603DFC2A2B9C5AB1A8BF322E73.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/5D272EF1FF5F99603DFC2A2B9C5AB1A8BF322E73.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 04:40:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:68:b0:fa:99:2e:f8:44:72:06:cf:c2:75:80:10:3f:64:4f:7d:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5D272EF1FF5F99603DFC2A2B9C5AB1A8BF322E73 Validity Not Before: May 3 02:11:44 2026 GMT Not After : May 2 02:16:44 2027 GMT Subject: CN=2120D4684FC0EA10D460FDA48B6663F5ADF27CFD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:03:c9:81:d9:e0:f2:70:22:bd:9e:5f:b0:f5: 14:10:c2:23:24:6a:32:10:c2:09:b2:c6:9c:56:27: c8:a4:6f:bf:b3:6c:b6:ad:c4:6b:4f:dd:f7:d1:8d: 00:d4:ed:07:38:2c:e3:e4:fb:c0:2e:46:ea:3b:c9: 61:0d:36:67:e3:b8:c5:0c:ca:da:ad:31:47:4a:3e: c7:66:ac:e3:82:6d:ec:2d:17:36:b8:da:2b:93:8a: b1:91:a1:34:b3:3f:e2:51:89:cf:cc:ad:64:ff:6a: 23:b0:01:29:1d:0c:e7:a4:fd:59:23:88:d3:1b:5f: e2:60:1d:c0:a5:cb:e4:7f:2f:fa:9b:2b:03:a2:7f: 81:c0:0a:57:0f:a0:22:43:4b:05:0c:4c:1c:2a:c4: 66:f1:5c:f0:6e:56:00:7e:4f:9b:fb:8d:7b:e3:51: 01:a0:38:aa:20:b7:21:3b:74:ed:84:7c:99:49:bc: d2:01:c8:e1:48:09:cd:27:5a:9d:d9:ad:6e:0a:6c: 4f:f6:45:bc:69:60:10:98:9f:38:ce:fc:42:f1:7d: b2:e5:01:9c:50:5a:60:08:de:08:7f:8f:4a:ee:5a: 6c:73:ae:a9:b3:1c:6b:79:f7:86:b0:43:08:23:62: 71:ee:07:63:7d:49:e6:15:2b:f7:fa:48:43:b5:f7: 56:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:20:D4:68:4F:C0:EA:10:D4:60:FD:A4:8B:66:63:F5:AD:F2:7C:FD X509v3 Authority Key Identifier: keyid:5D:27:2E:F1:FF:5F:99:60:3D:FC:2A:2B:9C:5A:B1:A8:BF:32:2E:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/5D272EF1FF5F99603DFC2A2B9C5AB1A8BF322E73.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/5D272EF1FF5F99603DFC2A2B9C5AB1A8BF322E73.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a383030303a3a2f33332d3438203d3e20313430343233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:20c0:8000::/33 Signature Algorithm: sha256WithRSAEncryption 47:df:a9:0a:45:69:91:f9:14:c2:94:73:d1:6b:39:fb:df:7f: fd:53:2a:94:91:f3:ab:45:2b:3c:e0:57:80:46:d2:41:37:3a: 7a:9d:47:2d:90:4b:cc:46:17:0a:71:59:5d:1e:12:51:8a:df: 01:d1:53:3a:c0:99:3e:b2:45:a1:f1:7b:e7:d7:d1:94:6a:75: 1c:3d:11:ef:45:c0:69:c2:af:fa:55:d3:7e:85:9f:e8:7c:21: 9f:6d:20:63:a5:38:e9:e9:13:ae:13:e1:cf:c9:8a:b3:1f:54: 33:8d:0f:bc:c8:e5:94:12:22:d2:06:30:45:0e:a2:62:d2:c0: 66:a1:b1:0e:90:62:90:4f:39:be:3a:aa:36:48:da:5b:a9:fd: ab:ba:13:89:0b:3c:9f:a1:76:60:9b:d5:96:4a:cf:e4:ba:5a: 6d:7c:26:4a:d0:02:b5:94:56:0d:92:6c:e5:6e:a0:b1:3e:9c: 60:24:aa:ea:94:cc:30:70:e7:55:63:6b:58:5a:f0:bc:60:41: 8c:7e:e3:27:d4:e4:b8:d3:3a:73:27:0a:d2:0d:72:86:8b:a1: f2:36:ac:e0:4d:4f:90:a9:5c:28:36:73:5e:8e:10:b1:7d:70: 8a:e5:0e:7e:66:27:96:6c:85:0f:50:36:27:22:8f:ee:4e:7a: e4:2c:bc:e7 -----BEGIN CERTIFICATE----- MIIFNDCCBBygAwIBAgIUMWiw+pku+ERyBs/CdYAQP2RPfWQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUQyNzJFRjFGRjVGOTk2MDNERkMyQTJCOUM1QUIxQThC RjMyMkU3MzAeFw0yNjA1MDMwMjExNDRaFw0yNzA1MDIwMjE2NDRaMDMxMTAvBgNV BAMTKDIxMjBENDY4NEZDMEVBMTBENDYwRkRBNDhCNjY2M0Y1QURGMjdDRkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCdA8mB2eDycCK9nl+w9RQQwiMk ajIQwgmyxpxWJ8ikb7+zbLatxGtP3ffRjQDU7Qc4LOPk+8AuRuo7yWENNmfjuMUM ytqtMUdKPsdmrOOCbewtFza42iuTirGRoTSzP+JRic/MrWT/aiOwASkdDOek/Vkj iNMbX+JgHcCly+R/L/qbKwOif4HAClcPoCJDSwUMTBwqxGbxXPBuVgB+T5v7jXvj UQGgOKogtyE7dO2EfJlJvNIByOFICc0nWp3ZrW4KbE/2RbxpYBCYnzjO/ELxfbLl AZxQWmAI3gh/j0ruWmxzrqmzHGt594awQwgjYnHuB2N9SeYVK/f6SEO191atAgMB AAGjggI+MIICOjAdBgNVHQ4EFgQUISDUaE/A6hDUYP2ki2Zj9a3yfP0wHwYDVR0j BBgwFoAUXScu8f9fmWA9/CornFqxqL8yLnMwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MTlhMDAzNjktNjg0MC00YTk1LTg5YjEtYTQ4NTE4Zjk4ZGM3LzAvNUQyNzJFRjFG RjVGOTk2MDNERkMyQTJCOUM1QUIxQThCRjMyMkU3My5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS81RDI3MkVGMUZGNUY5OTYwM0RGQzJBMkI5QzVBQjFBOEJGMzIy RTczLmNlcjCBrQYIKwYBBQUHAQsEgaAwgZ0wgZoGCCsGAQUFBzALhoGNcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzE5YTAwMzY5LTY4NDAtNGE5NS04 OWIxLWE0ODUxOGY5OGRjNy8wLzMyMzQzMDM2M2EzMjMwNjMzMDNhMzgzMDMwMzAz YTNhMmYzMzMzMmQzNDM4MjAzZDNlMjAzMTM0MzAzNDMyMzMucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgck BiDAgDANBgkqhkiG9w0BAQsFAAOCAQEAR9+pCkVpkfkUwpRz0Ws5+99//VMqlJHz q0UrPOBXgEbSQTc6ep1HLZBLzEYXCnFZXR4SUYrfAdFTOsCZPrJFofF759fRlGp1 HD0R70XAacKv+lXTfoWf6Hwhn20gY6U46ekTrhPhz8mKsx9UM40PvMjllBIi0gYw RQ6iYtLAZqGxDpBikE85vjqqNkjaW6n9q7oTiQs8n6F2YJvVlkrP5LpabXwmStAC tZRWDZJs5W6gsT6cYCSq6pTMMHDnVWNrWFrwvGBBjH7jJ9TkuNM6cycK0g1yhouh 8jas4E1PkKlcKDZzXo4QsX1wiuUOfmYnlmyFD1A2JyKP7k565Cy85w== -----END CERTIFICATE-----Generated at Wed May 13 15:36:36 2026 by rpki-client