$ rpki-client -vvf rpki-rsync.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a3a2f33342d3438203d3e20313430343233.roa File: 323430363a323063303a3a2f33342d3438203d3e20313430343233.roa (raw, json) Hash identifier: oHO/mBu6n4LBvzlkBxlFTrrfD03ZECOXoWTm30eVx0k= Subject key identifier: F2:B8:40:76:51:9A:7C:53:27:2B:BD:74:29:EC:5F:4D:1C:F9:49:A2 Certificate issuer: /CN=5D272EF1FF5F99603DFC2A2B9C5AB1A8BF322E73 Certificate serial: 5772C2FA286F8165CC887AD2B59122295F960650 Authority key identifier: 5D:27:2E:F1:FF:5F:99:60:3D:FC:2A:2B:9C:5A:B1:A8:BF:32:2E:73 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/5D272EF1FF5F99603DFC2A2B9C5AB1A8BF322E73.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a3a2f33342d3438203d3e20313430343233.roa Signing time: Sun 03 May 2026 02:16:44 +0000 ROA not before: Sun 03 May 2026 02:11:44 +0000 ROA not after: Sun 02 May 2027 02:16:44 +0000 asID: 140423 IP address blocks: 2406:20c0::/34 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/5D272EF1FF5F99603DFC2A2B9C5AB1A8BF322E73.crl rsync://rpki-rsync.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/5D272EF1FF5F99603DFC2A2B9C5AB1A8BF322E73.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/5D272EF1FF5F99603DFC2A2B9C5AB1A8BF322E73.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 04:40:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:72:c2:fa:28:6f:81:65:cc:88:7a:d2:b5:91:22:29:5f:96:06:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5D272EF1FF5F99603DFC2A2B9C5AB1A8BF322E73 Validity Not Before: May 3 02:11:44 2026 GMT Not After : May 2 02:16:44 2027 GMT Subject: CN=F2B84076519A7C53272BBD7429EC5F4D1CF949A2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:1f:a5:80:c9:61:fc:d2:a7:bc:8d:5d:77:3b: bb:33:0e:dd:61:1c:94:61:af:45:5c:bb:0e:3a:5a: 68:74:b2:78:f3:62:13:43:56:00:08:21:52:3b:d8: 68:e1:eb:c3:47:75:1e:42:2e:64:9f:60:dd:93:0c: b6:01:7e:41:53:10:4e:a1:4b:66:f8:8b:eb:30:ba: b9:94:0e:0e:42:53:94:4a:b3:22:5e:d8:f0:4d:44: ea:d3:7a:47:4f:39:b2:41:4d:b9:c4:60:c3:33:68: 4f:d2:61:c3:dd:af:a8:85:1e:5c:27:31:10:e1:e2: 24:bb:76:5b:58:a9:56:c1:46:b2:3b:67:12:d3:36: 1b:b5:8d:44:b0:94:06:81:94:0b:ce:ec:06:93:ce: eb:db:f1:18:d0:73:c0:cd:47:0c:82:8f:89:93:97: c3:bb:14:9d:d7:ef:32:1e:ae:1d:25:44:22:39:39: 4f:87:c2:06:04:90:ea:65:6d:2e:74:73:ac:9d:b1: 27:5c:81:86:94:12:08:b2:f2:33:d9:9b:7f:75:70: 84:a4:73:e5:02:9f:be:a8:53:1a:4e:e3:de:fe:25: 97:e7:3f:e1:e1:d8:ea:f2:7e:00:4e:f9:cb:5a:e3: e7:c8:da:cf:4e:a5:ba:80:07:5a:44:fd:92:b3:d3: 9e:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:B8:40:76:51:9A:7C:53:27:2B:BD:74:29:EC:5F:4D:1C:F9:49:A2 X509v3 Authority Key Identifier: keyid:5D:27:2E:F1:FF:5F:99:60:3D:FC:2A:2B:9C:5A:B1:A8:BF:32:2E:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/5D272EF1FF5F99603DFC2A2B9C5AB1A8BF322E73.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/5D272EF1FF5F99603DFC2A2B9C5AB1A8BF322E73.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a3a2f33342d3438203d3e20313430343233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:20c0::/34 Signature Algorithm: sha256WithRSAEncryption 28:f8:2d:e4:52:4e:5c:31:6f:58:7f:27:d7:6f:02:c2:2a:da: 86:94:8f:08:e7:0f:f4:eb:db:08:3b:49:cf:24:df:e4:e2:ab: 1b:4b:58:3b:f0:d2:a0:90:85:84:7d:45:c3:94:95:8e:98:74: 6b:68:0d:ff:4a:9b:97:d0:63:e6:cc:1f:ae:8b:b5:9d:94:f7: 4a:ce:ea:97:c1:81:f1:95:98:cb:17:18:c2:dd:e2:61:3a:c6: 9d:94:7d:af:5c:8f:49:a5:51:a9:68:8c:0d:61:45:98:9a:f2: 3d:54:58:0c:e0:9d:ac:9f:4c:cd:7f:b3:41:ba:01:84:ff:f5: 9d:39:fe:67:05:6c:d3:65:92:61:9c:f8:0f:c7:09:32:6e:25: 4d:bf:4f:71:72:fe:b7:0f:e9:5a:fa:37:e4:73:04:c2:ba:23: ef:5e:ba:42:c2:e2:70:c8:0d:97:6d:87:b9:0f:b9:ea:ff:10: 29:b8:87:1a:e2:bf:36:cd:33:ac:a7:ad:82:83:ce:38:bd:06: ba:0d:53:8a:5a:a8:50:72:f0:6f:cc:08:3d:d6:c0:cf:7f:b3: 72:6b:ff:9e:81:2a:e9:ea:bd:67:b9:02:e8:e0:84:18:63:62: f3:5d:bc:c7:a1:77:95:fd:1e:43:11:31:f3:2e:b1:d8:aa:c5: ca:0a:5d:87 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUV3LC+ihvgWXMiHrStZEiKV+WBlAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUQyNzJFRjFGRjVGOTk2MDNERkMyQTJCOUM1QUIxQThC RjMyMkU3MzAeFw0yNjA1MDMwMjExNDRaFw0yNzA1MDIwMjE2NDRaMDMxMTAvBgNV BAMTKEYyQjg0MDc2NTE5QTdDNTMyNzJCQkQ3NDI5RUM1RjREMUNGOTQ5QTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCYH6WAyWH80qe8jV13O7szDt1h HJRhr0Vcuw46Wmh0snjzYhNDVgAIIVI72Gjh68NHdR5CLmSfYN2TDLYBfkFTEE6h S2b4i+swurmUDg5CU5RKsyJe2PBNROrTekdPObJBTbnEYMMzaE/SYcPdr6iFHlwn MRDh4iS7dltYqVbBRrI7ZxLTNhu1jUSwlAaBlAvO7AaTzuvb8RjQc8DNRwyCj4mT l8O7FJ3X7zIerh0lRCI5OU+HwgYEkOplbS50c6ydsSdcgYaUEgiy8jPZm391cISk c+UCn76oUxpO497+JZfnP+Hh2OryfgBO+cta4+fI2s9OpbqAB1pE/ZKz055RAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU8rhAdlGafFMnK710KexfTRz5SaIwHwYDVR0j BBgwFoAUXScu8f9fmWA9/CornFqxqL8yLnMwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MTlhMDAzNjktNjg0MC00YTk1LTg5YjEtYTQ4NTE4Zjk4ZGM3LzAvNUQyNzJFRjFG RjVGOTk2MDNERkMyQTJCOUM1QUIxQThCRjMyMkU3My5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS81RDI3MkVGMUZGNUY5OTYwM0RGQzJBMkI5QzVBQjFBOEJGMzIy RTczLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzE5YTAwMzY5LTY4NDAtNGE5NS04 OWIxLWE0ODUxOGY5OGRjNy8wLzMyMzQzMDM2M2EzMjMwNjMzMDNhM2EyZjMzMzQy ZDM0MzgyMDNkM2UyMDMxMzQzMDM0MzIzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGBiQGIMAAMA0GCSqG SIb3DQEBCwUAA4IBAQAo+C3kUk5cMW9YfyfXbwLCKtqGlI8I5w/069sIO0nPJN/k 4qsbS1g78NKgkIWEfUXDlJWOmHRraA3/SpuX0GPmzB+ui7WdlPdKzuqXwYHxlZjL FxjC3eJhOsadlH2vXI9JpVGpaIwNYUWYmvI9VFgM4J2sn0zNf7NBugGE//WdOf5n BWzTZZJhnPgPxwkybiVNv09xcv63D+la+jfkcwTCuiPvXrpCwuJwyA2XbYe5D7nq /xApuIca4r82zTOsp62Cg844vQa6DVOKWqhQcvBvzAg91sDPf7Nya/+egSrp6r1n uQLo4IQYY2LzXbzHoXeV/R5DETHzLrHYqsXKCl2H -----END CERTIFICATE-----Generated at Wed May 13 12:18:34 2026 by rpki-client