$ rpki-client -vvf rpki-rsync.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a383030303a3a2f33352d3438203d3e20313430343233.roa File: 323430363a323063303a383030303a3a2f33352d3438203d3e20313430343233.roa (raw, json) Hash identifier: wDyLhmWZnJb6tcvP+n4reZF/nWVRgISHasE8lo6DHLQ= Subject key identifier: 3B:80:75:A9:3E:BD:28:79:2D:64:4B:86:85:68:E8:52:30:54:43:4F Certificate issuer: /CN=5D272EF1FF5F99603DFC2A2B9C5AB1A8BF322E73 Certificate serial: 53A3F24B959B2DD602AD1EC735F5440B8A393F78 Authority key identifier: 5D:27:2E:F1:FF:5F:99:60:3D:FC:2A:2B:9C:5A:B1:A8:BF:32:2E:73 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/5D272EF1FF5F99603DFC2A2B9C5AB1A8BF322E73.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a383030303a3a2f33352d3438203d3e20313430343233.roa Signing time: Sun 03 May 2026 02:16:46 +0000 ROA not before: Sun 03 May 2026 02:11:46 +0000 ROA not after: Sun 02 May 2027 02:16:46 +0000 asID: 140423 IP address blocks: 2406:20c0:8000::/35 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/5D272EF1FF5F99603DFC2A2B9C5AB1A8BF322E73.crl rsync://rpki-rsync.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/5D272EF1FF5F99603DFC2A2B9C5AB1A8BF322E73.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/5D272EF1FF5F99603DFC2A2B9C5AB1A8BF322E73.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 04:40:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:a3:f2:4b:95:9b:2d:d6:02:ad:1e:c7:35:f5:44:0b:8a:39:3f:78 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5D272EF1FF5F99603DFC2A2B9C5AB1A8BF322E73 Validity Not Before: May 3 02:11:46 2026 GMT Not After : May 2 02:16:46 2027 GMT Subject: CN=3B8075A93EBD28792D644B868568E8523054434F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:66:21:d3:74:aa:ca:c3:a6:00:d0:52:d7:40: 20:ca:e8:7f:e4:80:be:22:d4:41:25:a8:8f:a5:81: a6:4a:cd:7e:35:ea:61:e9:a8:83:2e:69:72:ba:04: 31:48:98:6b:b8:21:9a:a9:70:4b:da:97:f2:a0:4d: f0:0a:84:40:3b:63:b7:e9:58:b2:56:ab:a4:5a:0e: 86:15:21:f6:36:12:1c:d8:b2:0e:4f:a3:32:37:99: db:64:0b:58:9c:7e:48:cd:e9:e7:64:d4:dc:61:af: b6:0a:79:4a:e9:d1:67:d8:10:d6:cf:fd:a0:58:b6: 92:20:f6:ae:3f:89:48:9f:f5:ef:64:a2:b1:09:e9: df:1b:4a:23:41:92:bb:dd:7f:e4:5e:12:3e:c1:a1: ff:d0:4b:0d:2c:dc:1e:e5:fd:d0:a8:2f:fa:80:8a: a5:62:4c:e6:af:02:00:49:ac:33:ee:86:ca:2d:1e: 56:7c:c8:88:02:1e:41:9a:87:d6:0d:1f:eb:1e:8b: 2e:b5:cb:79:22:58:a5:8d:39:7a:24:0a:cf:cc:12: f7:55:49:31:8d:31:56:fe:45:88:51:d4:61:59:65: 3d:12:d4:15:ab:99:cf:62:8e:10:b8:e2:df:03:70: 05:d6:d8:7d:b2:c2:b5:35:c8:fd:fa:c0:7b:98:78: d2:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:80:75:A9:3E:BD:28:79:2D:64:4B:86:85:68:E8:52:30:54:43:4F X509v3 Authority Key Identifier: keyid:5D:27:2E:F1:FF:5F:99:60:3D:FC:2A:2B:9C:5A:B1:A8:BF:32:2E:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/5D272EF1FF5F99603DFC2A2B9C5AB1A8BF322E73.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/5D272EF1FF5F99603DFC2A2B9C5AB1A8BF322E73.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a383030303a3a2f33352d3438203d3e20313430343233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:20c0:8000::/35 Signature Algorithm: sha256WithRSAEncryption 43:23:e4:9c:c2:2a:03:42:66:96:08:36:18:be:b0:88:46:3a: 3a:ea:69:80:4c:9f:da:bc:12:52:9c:49:ea:70:9e:8d:78:99: 89:ef:f3:1f:ca:a7:4c:54:45:b5:a7:63:be:7f:89:2c:c1:1c: b8:65:25:df:50:0c:a2:aa:02:bb:c4:99:71:4d:22:4d:1a:bd: 6a:55:a4:e2:d0:04:3a:89:cf:c8:ff:e0:dc:2d:b3:cb:2c:f3: e4:f1:94:1c:40:68:1e:d3:f6:b7:bd:d8:22:a4:5e:1b:f9:4e: 8b:6a:91:cd:22:6e:01:93:87:05:43:e4:53:f0:44:95:db:85: 99:ef:9b:6d:d2:2d:a6:15:0d:31:ff:94:12:53:bb:9f:fb:12: 33:36:fd:76:22:73:59:a3:1e:04:19:bb:93:5d:d3:a0:96:a8: 0d:59:4b:53:0d:3c:e0:a0:ba:2d:24:38:ca:83:a1:f9:c6:62: f8:76:5a:7f:6a:f3:a4:8c:a0:d1:c5:2b:cc:88:83:72:6d:f4: 9b:48:91:d4:1f:5e:e1:b8:9c:bd:dd:37:08:bc:38:31:0c:33: 0b:83:35:d6:30:e9:55:a0:a3:af:c4:05:ab:59:8e:f3:61:81: 3f:88:91:18:9c:12:44:44:cc:67:95:b8:e8:85:8f:2d:20:07: 6f:5a:66:17 -----BEGIN CERTIFICATE----- MIIFNDCCBBygAwIBAgIUU6PyS5WbLdYCrR7HNfVEC4o5P3gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUQyNzJFRjFGRjVGOTk2MDNERkMyQTJCOUM1QUIxQThC RjMyMkU3MzAeFw0yNjA1MDMwMjExNDZaFw0yNzA1MDIwMjE2NDZaMDMxMTAvBgNV BAMTKDNCODA3NUE5M0VCRDI4NzkyRDY0NEI4Njg1NjhFODUyMzA1NDQzNEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0ZiHTdKrKw6YA0FLXQCDK6H/k gL4i1EElqI+lgaZKzX416mHpqIMuaXK6BDFImGu4IZqpcEval/KgTfAKhEA7Y7fp WLJWq6RaDoYVIfY2EhzYsg5PozI3mdtkC1icfkjN6edk1Nxhr7YKeUrp0WfYENbP /aBYtpIg9q4/iUif9e9korEJ6d8bSiNBkrvdf+ReEj7Bof/QSw0s3B7l/dCoL/qA iqViTOavAgBJrDPuhsotHlZ8yIgCHkGah9YNH+seiy61y3kiWKWNOXokCs/MEvdV STGNMVb+RYhR1GFZZT0S1BWrmc9ijhC44t8DcAXW2H2ywrU1yP36wHuYeNJ7AgMB AAGjggI+MIICOjAdBgNVHQ4EFgQUO4B1qT69KHktZEuGhWjoUjBUQ08wHwYDVR0j BBgwFoAUXScu8f9fmWA9/CornFqxqL8yLnMwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MTlhMDAzNjktNjg0MC00YTk1LTg5YjEtYTQ4NTE4Zjk4ZGM3LzAvNUQyNzJFRjFG RjVGOTk2MDNERkMyQTJCOUM1QUIxQThCRjMyMkU3My5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS81RDI3MkVGMUZGNUY5OTYwM0RGQzJBMkI5QzVBQjFBOEJGMzIy RTczLmNlcjCBrQYIKwYBBQUHAQsEgaAwgZ0wgZoGCCsGAQUFBzALhoGNcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzE5YTAwMzY5LTY4NDAtNGE5NS04 OWIxLWE0ODUxOGY5OGRjNy8wLzMyMzQzMDM2M2EzMjMwNjMzMDNhMzgzMDMwMzAz YTNhMmYzMzM1MmQzNDM4MjAzZDNlMjAzMTM0MzAzNDMyMzMucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgUk BiDAgDANBgkqhkiG9w0BAQsFAAOCAQEAQyPknMIqA0Jmlgg2GL6wiEY6OuppgEyf 2rwSUpxJ6nCejXiZie/zH8qnTFRFtadjvn+JLMEcuGUl31AMoqoCu8SZcU0iTRq9 alWk4tAEOonPyP/g3C2zyyzz5PGUHEBoHtP2t73YIqReG/lOi2qRzSJuAZOHBUPk U/BElduFme+bbdItphUNMf+UElO7n/sSMzb9diJzWaMeBBm7k13ToJaoDVlLUw08 4KC6LSQ4yoOh+cZi+HZaf2rzpIyg0cUrzIiDcm30m0iR1B9e4bicvd03CLw4MQwz C4M11jDpVaCjr8QFq1mO82GBP4iRGJwSRETMZ5W46IWPLSAHb1pmFw== -----END CERTIFICATE-----Generated at Wed May 13 15:03:30 2026 by rpki-client