$ rpki-client -vvf rpki-rsync.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a383030303a3a2f33342d3438203d3e20313430343233.roa File: 323430363a323063303a383030303a3a2f33342d3438203d3e20313430343233.roa (raw, json) Hash identifier: /s+gPK6juMCKnDiQzNEnsHewLj79DjE+hgG0nN04WS0= Subject key identifier: B2:A6:5B:4B:F0:A1:70:48:7F:78:8B:00:92:8E:44:AF:B9:C8:73:52 Certificate issuer: /CN=5D272EF1FF5F99603DFC2A2B9C5AB1A8BF322E73 Certificate serial: 4A5A5F0075D932D14DCC910B669C577E777B3F2C Authority key identifier: 5D:27:2E:F1:FF:5F:99:60:3D:FC:2A:2B:9C:5A:B1:A8:BF:32:2E:73 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/5D272EF1FF5F99603DFC2A2B9C5AB1A8BF322E73.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a383030303a3a2f33342d3438203d3e20313430343233.roa Signing time: Sun 03 May 2026 02:16:39 +0000 ROA not before: Sun 03 May 2026 02:11:39 +0000 ROA not after: Sun 02 May 2027 02:16:39 +0000 asID: 140423 IP address blocks: 2406:20c0:8000::/34 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/5D272EF1FF5F99603DFC2A2B9C5AB1A8BF322E73.crl rsync://rpki-rsync.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/5D272EF1FF5F99603DFC2A2B9C5AB1A8BF322E73.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/5D272EF1FF5F99603DFC2A2B9C5AB1A8BF322E73.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 04:40:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:5a:5f:00:75:d9:32:d1:4d:cc:91:0b:66:9c:57:7e:77:7b:3f:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5D272EF1FF5F99603DFC2A2B9C5AB1A8BF322E73 Validity Not Before: May 3 02:11:39 2026 GMT Not After : May 2 02:16:39 2027 GMT Subject: CN=B2A65B4BF0A170487F788B00928E44AFB9C87352 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:5a:ed:5c:31:4a:66:70:75:08:b1:f2:58:bf: a8:23:b9:dc:97:bb:ef:9b:2c:46:0f:d8:f1:8c:69: 0d:b7:d4:da:71:dd:df:7a:da:f9:8c:07:b4:10:e9: 09:ae:eb:0e:09:35:7e:61:ef:ef:89:d6:73:f1:33: f3:a6:2c:ac:d9:46:b1:0a:33:a3:25:23:a3:28:8e: e1:d0:b0:67:2f:2b:02:27:70:97:79:14:f6:6d:de: f7:da:c6:88:3e:ec:56:51:14:39:5f:3f:c0:40:ca: c8:24:b4:0d:f8:28:de:0e:af:16:21:21:a6:2f:14: 3d:56:02:c9:ad:5e:56:f7:32:bd:43:74:47:ce:4d: 67:b4:87:37:fd:0e:d8:33:5a:de:dd:0a:9c:5d:fa: a6:bb:8f:be:3e:33:aa:49:b5:85:e0:47:0f:b2:f9: 98:87:a1:4e:02:27:39:47:8e:b4:b1:20:f2:2f:90: ba:c9:c9:5e:d8:17:f2:ca:1b:a1:7f:cf:28:67:02: 2c:22:08:a5:9e:d0:3c:2e:58:11:14:ad:4e:35:d8: 84:51:12:4a:c4:d5:60:81:db:e7:2b:92:31:91:d8: 69:c0:a0:80:73:d6:05:76:3c:64:fc:60:39:35:19: ea:9d:e5:53:e5:3f:5d:a9:f3:89:08:19:12:f5:91: 4f:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:A6:5B:4B:F0:A1:70:48:7F:78:8B:00:92:8E:44:AF:B9:C8:73:52 X509v3 Authority Key Identifier: keyid:5D:27:2E:F1:FF:5F:99:60:3D:FC:2A:2B:9C:5A:B1:A8:BF:32:2E:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/5D272EF1FF5F99603DFC2A2B9C5AB1A8BF322E73.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/5D272EF1FF5F99603DFC2A2B9C5AB1A8BF322E73.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a383030303a3a2f33342d3438203d3e20313430343233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:20c0:8000::/34 Signature Algorithm: sha256WithRSAEncryption ba:5e:83:9e:8b:c4:1b:8a:b4:1d:c8:ce:a6:fd:9e:dd:04:7a: 3e:d0:e3:d6:a2:8f:cf:14:7d:c3:c7:ca:39:e4:0e:76:79:ea: 38:61:e9:4f:c3:9e:79:ad:ea:87:da:db:74:77:49:cd:75:58: 34:d1:60:19:b7:1b:a2:88:ba:3d:bc:d9:41:9f:cd:04:00:b9: 7b:59:a4:e1:35:58:41:07:d6:22:d5:e7:91:6a:66:af:a7:aa: ab:5a:a2:88:cf:3f:48:4d:dc:ea:7f:71:3d:00:8f:57:f7:9e: 24:3b:d7:f2:13:14:6c:93:06:fa:1a:7f:86:d9:b7:11:5a:68: 83:3c:21:fb:87:bf:e4:44:82:f5:63:eb:cc:7e:65:d2:d2:e9: 4c:8d:a0:3b:11:f1:a8:9d:47:49:0e:f7:71:1f:69:70:3f:08: 33:0d:0f:47:d5:5d:6f:5c:41:4b:1a:74:31:a8:46:c4:9d:e9: f7:0b:c0:c4:19:f4:98:1b:ea:f4:10:9f:cb:52:b1:ce:b2:fc: c1:eb:20:b5:c0:bf:d2:18:8a:b7:4b:54:62:b3:84:c9:e0:04: c2:ec:09:60:c4:eb:a6:9f:18:c1:5c:11:07:18:8d:e3:08:4f: 8e:c0:31:4c:10:54:e5:57:a3:39:2a:36:cb:9a:5d:44:15:fc: 9c:42:98:bf -----BEGIN CERTIFICATE----- MIIFNDCCBBygAwIBAgIUSlpfAHXZMtFNzJELZpxXfnd7PywwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUQyNzJFRjFGRjVGOTk2MDNERkMyQTJCOUM1QUIxQThC RjMyMkU3MzAeFw0yNjA1MDMwMjExMzlaFw0yNzA1MDIwMjE2MzlaMDMxMTAvBgNV BAMTKEIyQTY1QjRCRjBBMTcwNDg3Rjc4OEIwMDkyOEU0NEFGQjlDODczNTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDcWu1cMUpmcHUIsfJYv6gjudyX u++bLEYP2PGMaQ231Npx3d962vmMB7QQ6Qmu6w4JNX5h7++J1nPxM/OmLKzZRrEK M6MlI6MojuHQsGcvKwIncJd5FPZt3vfaxog+7FZRFDlfP8BAysgktA34KN4OrxYh IaYvFD1WAsmtXlb3Mr1DdEfOTWe0hzf9DtgzWt7dCpxd+qa7j74+M6pJtYXgRw+y +ZiHoU4CJzlHjrSxIPIvkLrJyV7YF/LKG6F/zyhnAiwiCKWe0DwuWBEUrU412IRR EkrE1WCB2+crkjGR2GnAoIBz1gV2PGT8YDk1Geqd5VPlP12p84kIGRL1kU+5AgMB AAGjggI+MIICOjAdBgNVHQ4EFgQUsqZbS/ChcEh/eIsAko5Er7nIc1IwHwYDVR0j BBgwFoAUXScu8f9fmWA9/CornFqxqL8yLnMwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MTlhMDAzNjktNjg0MC00YTk1LTg5YjEtYTQ4NTE4Zjk4ZGM3LzAvNUQyNzJFRjFG RjVGOTk2MDNERkMyQTJCOUM1QUIxQThCRjMyMkU3My5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS81RDI3MkVGMUZGNUY5OTYwM0RGQzJBMkI5QzVBQjFBOEJGMzIy RTczLmNlcjCBrQYIKwYBBQUHAQsEgaAwgZ0wgZoGCCsGAQUFBzALhoGNcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzE5YTAwMzY5LTY4NDAtNGE5NS04 OWIxLWE0ODUxOGY5OGRjNy8wLzMyMzQzMDM2M2EzMjMwNjMzMDNhMzgzMDMwMzAz YTNhMmYzMzM0MmQzNDM4MjAzZDNlMjAzMTM0MzAzNDMyMzMucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgYk BiDAgDANBgkqhkiG9w0BAQsFAAOCAQEAul6DnovEG4q0HcjOpv2e3QR6PtDj1qKP zxR9w8fKOeQOdnnqOGHpT8Oeea3qh9rbdHdJzXVYNNFgGbcbooi6PbzZQZ/NBAC5 e1mk4TVYQQfWItXnkWpmr6eqq1qiiM8/SE3c6n9xPQCPV/eeJDvX8hMUbJMG+hp/ htm3EVpogzwh+4e/5ESC9WPrzH5l0tLpTI2gOxHxqJ1HSQ73cR9pcD8IMw0PR9Vd b1xBSxp0MahGxJ3p9wvAxBn0mBvq9BCfy1KxzrL8wesgtcC/0hiKt0tUYrOEyeAE wuwJYMTrpp8YwVwRBxiN4whPjsAxTBBU5VejOSo2y5pdRBX8nEKYvw== -----END CERTIFICATE-----Generated at Wed May 13 15:03:17 2026 by rpki-client