$ rpki-client -vvf rpki-rsync.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a3a2f33322d3438203d3e20313430343233.roa File: 323430363a323063303a3a2f33322d3438203d3e20313430343233.roa (raw, json) Hash identifier: O1fi2B87Nwf/m/9ZOriJRND1r1RTaVU2APZfVnmoIyE= Subject key identifier: 98:15:FD:26:31:5C:3E:EF:6E:FD:09:36:B0:9C:1F:8C:F1:AA:52:B7 Certificate issuer: /CN=5D272EF1FF5F99603DFC2A2B9C5AB1A8BF322E73 Certificate serial: 4361CAF0289C9D3C7D4F8675A87960BAA5437580 Authority key identifier: 5D:27:2E:F1:FF:5F:99:60:3D:FC:2A:2B:9C:5A:B1:A8:BF:32:2E:73 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/5D272EF1FF5F99603DFC2A2B9C5AB1A8BF322E73.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a3a2f33322d3438203d3e20313430343233.roa Signing time: Sun 03 May 2026 02:16:36 +0000 ROA not before: Sun 03 May 2026 02:11:36 +0000 ROA not after: Sun 02 May 2027 02:16:36 +0000 asID: 140423 IP address blocks: 2406:20c0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/5D272EF1FF5F99603DFC2A2B9C5AB1A8BF322E73.crl rsync://rpki-rsync.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/5D272EF1FF5F99603DFC2A2B9C5AB1A8BF322E73.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/5D272EF1FF5F99603DFC2A2B9C5AB1A8BF322E73.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 04:40:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:61:ca:f0:28:9c:9d:3c:7d:4f:86:75:a8:79:60:ba:a5:43:75:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5D272EF1FF5F99603DFC2A2B9C5AB1A8BF322E73 Validity Not Before: May 3 02:11:36 2026 GMT Not After : May 2 02:16:36 2027 GMT Subject: CN=9815FD26315C3EEF6EFD0936B09C1F8CF1AA52B7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:92:ea:c9:06:7b:41:41:31:56:a6:43:d6:4c: 70:b1:1a:2f:1d:74:d4:fd:86:fb:5b:2c:29:9c:3a: 80:ae:14:ba:a1:76:74:a4:45:c5:fa:d1:e5:2f:6f: db:00:e8:14:ec:87:b4:fc:63:ab:c0:e5:0c:fa:5c: 30:99:f6:17:5c:f7:1f:95:4f:12:86:b8:5b:1b:2f: 2a:15:4e:60:e5:0f:37:fd:5a:a3:22:5c:27:29:56: d2:dd:f1:ea:ef:b6:25:0f:7c:ed:43:75:3e:bf:f3: 5c:e3:59:73:e6:e8:08:e0:69:44:fb:e3:41:92:eb: ff:17:46:55:a9:36:7c:56:4c:7b:48:d8:62:98:11: 62:49:da:97:6c:e2:5e:38:5f:bf:f8:bf:89:97:9a: e2:a7:bc:33:ef:09:98:48:7a:9f:46:ab:b1:bc:26: 51:a4:a4:b3:10:a9:4f:1b:fe:62:cc:14:53:01:f5: 1c:f2:3a:4a:e2:8e:5b:f1:6c:e9:da:c4:a5:37:ce: a1:82:2a:04:a8:4b:20:2e:62:b8:8c:d8:27:1d:f7: f6:cb:55:15:78:7c:54:bc:0a:b3:83:c2:19:41:69: 70:bc:01:a2:f6:ab:b2:93:1c:04:6c:d4:31:1d:fe: 2e:dc:8a:b5:3a:9e:53:c6:39:1e:e3:c5:35:30:74: a5:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:15:FD:26:31:5C:3E:EF:6E:FD:09:36:B0:9C:1F:8C:F1:AA:52:B7 X509v3 Authority Key Identifier: keyid:5D:27:2E:F1:FF:5F:99:60:3D:FC:2A:2B:9C:5A:B1:A8:BF:32:2E:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/5D272EF1FF5F99603DFC2A2B9C5AB1A8BF322E73.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/5D272EF1FF5F99603DFC2A2B9C5AB1A8BF322E73.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a3a2f33322d3438203d3e20313430343233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:20c0::/32 Signature Algorithm: sha256WithRSAEncryption 15:a7:ed:5d:a3:ad:07:74:6b:c7:81:7a:d9:e3:c9:b1:a9:8a: ad:e1:19:bc:62:6e:62:f1:1d:2e:54:cb:f3:57:de:8f:32:3e: 2d:56:d8:89:45:9c:8d:fc:ed:1f:e9:ba:bc:5d:01:df:e3:39: 03:93:03:34:19:b5:5a:29:94:ee:0b:a1:ce:74:fd:9a:10:43: fe:9c:d4:01:b7:8a:97:2e:68:6a:48:13:73:f9:8e:86:91:67: 7a:da:56:18:49:f7:ec:5c:96:bf:8a:da:19:ba:b7:e9:24:10: ea:96:ff:7d:8f:74:2f:39:ed:48:28:02:84:fe:ff:2a:7d:c4: 36:ae:65:98:59:9b:5d:a2:6b:8c:83:85:a0:de:d7:d7:41:52: b2:35:87:96:a6:8e:25:94:f4:ca:1f:3d:a7:6e:4f:6a:7f:c2: ef:17:60:08:3c:54:f4:94:c3:4c:d0:48:5c:e4:63:2c:c2:27: 2c:06:32:fd:a3:fa:7c:b8:7b:08:00:41:00:d8:43:7d:4b:33: 0c:70:5b:06:04:e3:ae:d5:30:65:85:46:d7:aa:91:22:0e:75: 3c:90:16:d5:cb:0b:6e:9c:41:c6:a0:24:08:70:51:1f:80:83: 09:82:86:26:cb:a9:a0:cc:76:68:14:af:87:6a:15:fe:6d:cc: 8a:14:53:77 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUQ2HK8CicnTx9T4Z1qHlguqVDdYAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUQyNzJFRjFGRjVGOTk2MDNERkMyQTJCOUM1QUIxQThC RjMyMkU3MzAeFw0yNjA1MDMwMjExMzZaFw0yNzA1MDIwMjE2MzZaMDMxMTAvBgNV BAMTKDk4MTVGRDI2MzE1QzNFRUY2RUZEMDkzNkIwOUMxRjhDRjFBQTUyQjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCmkurJBntBQTFWpkPWTHCxGi8d dNT9hvtbLCmcOoCuFLqhdnSkRcX60eUvb9sA6BTsh7T8Y6vA5Qz6XDCZ9hdc9x+V TxKGuFsbLyoVTmDlDzf9WqMiXCcpVtLd8ervtiUPfO1DdT6/81zjWXPm6AjgaUT7 40GS6/8XRlWpNnxWTHtI2GKYEWJJ2pds4l44X7/4v4mXmuKnvDPvCZhIep9Gq7G8 JlGkpLMQqU8b/mLMFFMB9RzyOkrijlvxbOnaxKU3zqGCKgSoSyAuYriM2Ccd9/bL VRV4fFS8CrODwhlBaXC8AaL2q7KTHARs1DEd/i7cirU6nlPGOR7jxTUwdKUDAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUmBX9JjFcPu9u/Qk2sJwfjPGqUrcwHwYDVR0j BBgwFoAUXScu8f9fmWA9/CornFqxqL8yLnMwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MTlhMDAzNjktNjg0MC00YTk1LTg5YjEtYTQ4NTE4Zjk4ZGM3LzAvNUQyNzJFRjFG RjVGOTk2MDNERkMyQTJCOUM1QUIxQThCRjMyMkU3My5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS81RDI3MkVGMUZGNUY5OTYwM0RGQzJBMkI5QzVBQjFBOEJGMzIy RTczLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzE5YTAwMzY5LTY4NDAtNGE5NS04 OWIxLWE0ODUxOGY5OGRjNy8wLzMyMzQzMDM2M2EzMjMwNjMzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMxMzQzMDM0MzIzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQGIMAwDQYJKoZI hvcNAQELBQADggEBABWn7V2jrQd0a8eBetnjybGpiq3hGbxibmLxHS5Uy/NX3o8y Pi1W2IlFnI387R/purxdAd/jOQOTAzQZtVoplO4Loc50/ZoQQ/6c1AG3ipcuaGpI E3P5joaRZ3raVhhJ9+xclr+K2hm6t+kkEOqW/32PdC857UgoAoT+/yp9xDauZZhZ m12ia4yDhaDe19dBUrI1h5amjiWU9MofPaduT2p/wu8XYAg8VPSUw0zQSFzkYyzC JywGMv2j+ny4ewgAQQDYQ31LMwxwWwYE467VMGWFRteqkSIOdTyQFtXLC26cQcag JAhwUR+AgwmChibLqaDMdmgUr4dqFf5tzIoUU3c= -----END CERTIFICATE-----Generated at Wed May 13 14:57:41 2026 by rpki-client