$ rpki-client -vvf rpki-rsync.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a3a2f33362d3438203d3e20313430343233.roa File: 323430363a323063303a3a2f33362d3438203d3e20313430343233.roa (raw, json) Hash identifier: T+xSYDcTCytf9ge/CquyHcQiZcDvY1TdxC0CLyaCkFI= Subject key identifier: 82:06:09:03:4A:B4:F7:D3:3F:1C:21:2E:C8:96:03:7E:56:E8:2A:21 Certificate issuer: /CN=5D272EF1FF5F99603DFC2A2B9C5AB1A8BF322E73 Certificate serial: 3A12210A92A57CE5FB20531E3780C118A70BFE66 Authority key identifier: 5D:27:2E:F1:FF:5F:99:60:3D:FC:2A:2B:9C:5A:B1:A8:BF:32:2E:73 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/5D272EF1FF5F99603DFC2A2B9C5AB1A8BF322E73.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a3a2f33362d3438203d3e20313430343233.roa Signing time: Sun 03 May 2026 02:16:48 +0000 ROA not before: Sun 03 May 2026 02:11:48 +0000 ROA not after: Sun 02 May 2027 02:16:48 +0000 asID: 140423 IP address blocks: 2406:20c0::/36 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/5D272EF1FF5F99603DFC2A2B9C5AB1A8BF322E73.crl rsync://rpki-rsync.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/5D272EF1FF5F99603DFC2A2B9C5AB1A8BF322E73.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/5D272EF1FF5F99603DFC2A2B9C5AB1A8BF322E73.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 04:40:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:12:21:0a:92:a5:7c:e5:fb:20:53:1e:37:80:c1:18:a7:0b:fe:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5D272EF1FF5F99603DFC2A2B9C5AB1A8BF322E73 Validity Not Before: May 3 02:11:48 2026 GMT Not After : May 2 02:16:48 2027 GMT Subject: CN=820609034AB4F7D33F1C212EC896037E56E82A21 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:03:74:5e:c5:00:66:0f:30:86:c1:38:9a:18: 25:31:2a:d0:67:27:eb:f0:c7:80:02:da:25:14:7b: 58:69:f7:8d:65:cf:21:6a:d1:98:3c:36:ef:93:fc: fe:1a:48:ba:08:da:d4:eb:39:46:25:69:32:f3:ea: 93:5c:18:9b:7a:ca:d0:f8:54:de:05:19:14:5a:60: 15:c1:39:40:54:13:a4:a2:c0:55:b3:7a:80:c9:81: cc:00:59:c0:28:1e:87:3b:63:d8:f5:e4:d0:fd:e6: e3:09:b5:75:8e:b5:0a:57:58:60:12:f3:b9:00:f3: 0d:de:b7:94:78:a3:83:7f:4c:58:04:7b:1e:22:2f: 84:35:87:32:08:59:b0:8c:27:a0:23:31:7c:9e:0a: 7f:32:d9:e2:41:dd:ed:81:3b:e9:95:c2:22:e6:13: 10:75:60:d0:0b:93:fd:54:bc:61:a9:b4:ae:62:2f: 3c:ca:8f:97:a2:f6:fe:45:bb:ee:57:bc:60:19:e2: 7d:b5:96:af:4b:0d:fe:71:3c:f7:6b:78:f8:78:85: a1:2c:48:a1:ff:8e:16:d2:5f:03:70:8c:1a:35:64: 37:69:7c:66:49:eb:b2:48:e8:cf:ed:40:32:c5:26: 01:69:d8:0b:61:4e:d2:bd:61:17:84:87:80:b6:68: ca:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:06:09:03:4A:B4:F7:D3:3F:1C:21:2E:C8:96:03:7E:56:E8:2A:21 X509v3 Authority Key Identifier: keyid:5D:27:2E:F1:FF:5F:99:60:3D:FC:2A:2B:9C:5A:B1:A8:BF:32:2E:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/5D272EF1FF5F99603DFC2A2B9C5AB1A8BF322E73.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/5D272EF1FF5F99603DFC2A2B9C5AB1A8BF322E73.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a3a2f33362d3438203d3e20313430343233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:20c0::/36 Signature Algorithm: sha256WithRSAEncryption 81:32:15:73:eb:db:00:bc:2d:dd:b7:dc:e9:f5:5f:47:84:86: 34:6e:70:16:b4:0b:b8:5b:6d:70:f8:dc:a8:c5:2d:09:70:d0: 0b:da:78:d1:ee:b9:2e:23:b7:d0:99:f6:3f:94:81:e6:a1:4b: 23:e7:49:1a:75:79:5f:bc:a3:69:7b:92:7e:b0:b6:db:1b:31: 6e:fd:86:f7:c9:46:5f:d7:30:fc:a8:74:c8:de:db:b7:65:83: c4:90:18:18:42:61:26:ea:08:ba:9a:b6:16:b4:76:49:91:11: fc:99:bd:d8:41:4e:a0:33:39:f2:e2:0f:32:e9:3d:db:39:f7: fd:fc:c3:73:b1:6d:37:ca:89:30:60:1e:c3:86:6f:ff:63:5a: 4e:e7:8f:26:dc:54:2b:e2:84:ff:6c:cb:87:ef:8b:bb:f1:61: 9d:75:8b:31:5d:ca:89:bf:c2:f1:4a:c6:42:b5:9e:dd:2a:bf: 01:d1:ec:f2:92:fd:90:d2:15:5e:39:06:27:69:59:c7:c4:21: f3:7a:18:18:11:7c:bf:69:3b:b4:73:8f:64:6b:5f:a9:f4:65: 8e:0b:0b:3d:ad:a4:a0:44:35:d1:00:71:30:6b:10:0e:3e:3c: 00:e3:05:f7:f2:3c:d9:0b:64:76:cc:a1:11:fa:08:e3:2e:ba: 5a:c6:55:aa -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUOhIhCpKlfOX7IFMeN4DBGKcL/mYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUQyNzJFRjFGRjVGOTk2MDNERkMyQTJCOUM1QUIxQThC RjMyMkU3MzAeFw0yNjA1MDMwMjExNDhaFw0yNzA1MDIwMjE2NDhaMDMxMTAvBgNV BAMTKDgyMDYwOTAzNEFCNEY3RDMzRjFDMjEyRUM4OTYwMzdFNTZFODJBMjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDfA3RexQBmDzCGwTiaGCUxKtBn J+vwx4AC2iUUe1hp941lzyFq0Zg8Nu+T/P4aSLoI2tTrOUYlaTLz6pNcGJt6ytD4 VN4FGRRaYBXBOUBUE6SiwFWzeoDJgcwAWcAoHoc7Y9j15ND95uMJtXWOtQpXWGAS 87kA8w3et5R4o4N/TFgEex4iL4Q1hzIIWbCMJ6AjMXyeCn8y2eJB3e2BO+mVwiLm ExB1YNALk/1UvGGptK5iLzzKj5ei9v5Fu+5XvGAZ4n21lq9LDf5xPPdrePh4haEs SKH/jhbSXwNwjBo1ZDdpfGZJ67JI6M/tQDLFJgFp2AthTtK9YReEh4C2aMoNAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUggYJA0q099M/HCEuyJYDflboKiEwHwYDVR0j BBgwFoAUXScu8f9fmWA9/CornFqxqL8yLnMwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MTlhMDAzNjktNjg0MC00YTk1LTg5YjEtYTQ4NTE4Zjk4ZGM3LzAvNUQyNzJFRjFG RjVGOTk2MDNERkMyQTJCOUM1QUIxQThCRjMyMkU3My5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS81RDI3MkVGMUZGNUY5OTYwM0RGQzJBMkI5QzVBQjFBOEJGMzIy RTczLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzE5YTAwMzY5LTY4NDAtNGE5NS04 OWIxLWE0ODUxOGY5OGRjNy8wLzMyMzQzMDM2M2EzMjMwNjMzMDNhM2EyZjMzMzYy ZDM0MzgyMDNkM2UyMDMxMzQzMDM0MzIzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGBCQGIMAAMA0GCSqG SIb3DQEBCwUAA4IBAQCBMhVz69sAvC3dt9zp9V9HhIY0bnAWtAu4W21w+NyoxS0J cNAL2njR7rkuI7fQmfY/lIHmoUsj50kadXlfvKNpe5J+sLbbGzFu/Yb3yUZf1zD8 qHTI3tu3ZYPEkBgYQmEm6gi6mrYWtHZJkRH8mb3YQU6gMzny4g8y6T3bOff9/MNz sW03yokwYB7Dhm//Y1pO548m3FQr4oT/bMuH74u78WGddYsxXcqJv8LxSsZCtZ7d Kr8B0ezykv2Q0hVeOQYnaVnHxCHzehgYEXy/aTu0c49ka1+p9GWOCws9raSgRDXR AHEwaxAOPjwA4wX38jzZC2R2zKER+gjjLrpaxlWq -----END CERTIFICATE-----Generated at Wed May 13 13:00:14 2026 by rpki-client