$ rpki-client -vvf rpki-rsync.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a613030303a3a2f33362d3438203d3e20313430343233.roa File: 323430363a323063303a613030303a3a2f33362d3438203d3e20313430343233.roa (raw, json) Hash identifier: 5mdLxZ6k+cIBv/YF4496B7rIbx7i3OXe0U0jagA9JSg= Subject key identifier: 5B:E7:D6:DD:02:93:EC:0B:06:CE:C8:65:FD:48:2E:CC:C8:BD:A3:23 Certificate issuer: /CN=5D272EF1FF5F99603DFC2A2B9C5AB1A8BF322E73 Certificate serial: 5B079DCF83355AB8BAE427D7BE0F5BA44CFBFED8 Authority key identifier: 5D:27:2E:F1:FF:5F:99:60:3D:FC:2A:2B:9C:5A:B1:A8:BF:32:2E:73 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/5D272EF1FF5F99603DFC2A2B9C5AB1A8BF322E73.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a613030303a3a2f33362d3438203d3e20313430343233.roa Signing time: Sun 03 May 2026 02:16:42 +0000 ROA not before: Sun 03 May 2026 02:11:42 +0000 ROA not after: Sun 02 May 2027 02:16:42 +0000 asID: 140423 IP address blocks: 2406:20c0:a000::/36 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/5D272EF1FF5F99603DFC2A2B9C5AB1A8BF322E73.crl rsync://rpki-rsync.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/5D272EF1FF5F99603DFC2A2B9C5AB1A8BF322E73.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/5D272EF1FF5F99603DFC2A2B9C5AB1A8BF322E73.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 04:40:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:07:9d:cf:83:35:5a:b8:ba:e4:27:d7:be:0f:5b:a4:4c:fb:fe:d8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5D272EF1FF5F99603DFC2A2B9C5AB1A8BF322E73 Validity Not Before: May 3 02:11:42 2026 GMT Not After : May 2 02:16:42 2027 GMT Subject: CN=5BE7D6DD0293EC0B06CEC865FD482ECCC8BDA323 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:6b:5c:b2:68:76:af:08:2e:55:b0:fb:47:4c: d8:c9:55:4c:dd:14:83:55:68:9e:5d:f8:5b:20:af: 1a:65:81:d5:91:87:0c:fe:e0:22:9b:0e:85:76:b8: bb:e9:aa:74:ed:f8:53:8a:ed:d1:8a:95:9b:88:0f: de:a1:b3:5f:dc:9b:bd:48:3b:66:68:fd:fd:98:82: bc:34:c0:fe:ee:be:0a:ad:2e:35:72:61:0f:3f:68: 26:d0:af:a7:08:2b:64:49:b6:18:f1:03:55:59:f8: ea:2f:8e:e6:e3:b3:ab:f9:f0:8f:69:3d:24:46:19: 70:95:6e:14:6b:bb:09:b1:e2:9a:44:3b:9d:00:bd: ce:38:b0:35:fb:40:ff:79:ca:d5:4b:32:fc:c9:f8: 9e:e8:e8:7d:83:3a:89:90:1a:aa:c1:1e:87:b6:2e: a7:4d:5e:e9:51:4d:f0:31:13:dd:7a:3b:31:e9:44: f7:a6:dc:47:f2:ed:40:89:7f:0b:7c:70:78:59:e7: 07:e1:91:3e:00:f4:c0:35:9b:15:c4:38:ef:58:11: d4:e8:41:9a:03:2f:7c:07:b2:30:f0:ce:f4:35:ed: cc:9d:0d:5d:83:e1:76:7c:8a:01:d9:72:c9:23:e6: 78:69:6d:bd:d1:eb:7c:10:2d:1c:33:07:0d:c5:ab: 96:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:E7:D6:DD:02:93:EC:0B:06:CE:C8:65:FD:48:2E:CC:C8:BD:A3:23 X509v3 Authority Key Identifier: keyid:5D:27:2E:F1:FF:5F:99:60:3D:FC:2A:2B:9C:5A:B1:A8:BF:32:2E:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/5D272EF1FF5F99603DFC2A2B9C5AB1A8BF322E73.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/5D272EF1FF5F99603DFC2A2B9C5AB1A8BF322E73.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a613030303a3a2f33362d3438203d3e20313430343233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:20c0:a000::/36 Signature Algorithm: sha256WithRSAEncryption b1:78:a2:bc:85:28:23:b7:e1:27:2e:ec:59:18:1e:d9:0a:fc: 0f:ef:5b:62:7d:33:e6:9e:38:2d:19:67:35:58:64:b1:55:a0: 42:40:61:a1:da:45:f0:eb:7f:b7:ce:4f:5e:83:85:f7:df:d4: 85:8b:67:1f:21:89:b5:15:55:f6:44:ee:0d:21:aa:e8:3f:0d: ba:86:3c:e7:00:19:ea:b9:60:2d:75:c3:4f:99:78:e8:6d:12: 26:36:1c:fd:3f:45:a6:63:4c:2d:a5:57:18:de:d4:ca:02:a2: fe:6e:9e:34:e7:dd:a3:9d:c1:2b:93:fa:98:84:f5:03:8f:01: 61:fe:d7:70:23:96:ad:ad:81:69:a5:04:94:69:af:47:47:0c: 2b:d4:fb:69:7f:7e:82:19:4e:a3:36:7a:50:1e:0a:8b:40:75: fd:82:8e:88:98:88:8d:af:f9:9f:96:c0:a1:37:1f:dc:bc:5d: 90:23:b1:37:3d:d7:a4:72:61:b5:b2:a6:8f:05:5a:07:c0:be: f3:0f:0a:8b:19:89:f8:df:8b:d0:58:33:7c:f4:11:44:5f:2a: 38:0a:49:fd:02:a7:fe:a5:11:a2:6c:4d:0c:c2:44:dd:c3:50: 7b:7d:3a:d2:c5:bd:79:2a:6d:f3:03:67:4d:70:09:3a:9f:2c: 2c:be:0e:b8 -----BEGIN CERTIFICATE----- MIIFNDCCBBygAwIBAgIUWwedz4M1Wri65CfXvg9bpEz7/tgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUQyNzJFRjFGRjVGOTk2MDNERkMyQTJCOUM1QUIxQThC RjMyMkU3MzAeFw0yNjA1MDMwMjExNDJaFw0yNzA1MDIwMjE2NDJaMDMxMTAvBgNV BAMTKDVCRTdENkREMDI5M0VDMEIwNkNFQzg2NUZENDgyRUNDQzhCREEzMjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCsa1yyaHavCC5VsPtHTNjJVUzd FINVaJ5d+FsgrxplgdWRhwz+4CKbDoV2uLvpqnTt+FOK7dGKlZuID96hs1/cm71I O2Zo/f2Ygrw0wP7uvgqtLjVyYQ8/aCbQr6cIK2RJthjxA1VZ+Oovjubjs6v58I9p PSRGGXCVbhRruwmx4ppEO50Avc44sDX7QP95ytVLMvzJ+J7o6H2DOomQGqrBHoe2 LqdNXulRTfAxE916OzHpRPem3Efy7UCJfwt8cHhZ5wfhkT4A9MA1mxXEOO9YEdTo QZoDL3wHsjDwzvQ17cydDV2D4XZ8igHZcskj5nhpbb3R63wQLRwzBw3Fq5bbAgMB AAGjggI+MIICOjAdBgNVHQ4EFgQUW+fW3QKT7AsGzshl/UguzMi9oyMwHwYDVR0j BBgwFoAUXScu8f9fmWA9/CornFqxqL8yLnMwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MTlhMDAzNjktNjg0MC00YTk1LTg5YjEtYTQ4NTE4Zjk4ZGM3LzAvNUQyNzJFRjFG RjVGOTk2MDNERkMyQTJCOUM1QUIxQThCRjMyMkU3My5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS81RDI3MkVGMUZGNUY5OTYwM0RGQzJBMkI5QzVBQjFBOEJGMzIy RTczLmNlcjCBrQYIKwYBBQUHAQsEgaAwgZ0wgZoGCCsGAQUFBzALhoGNcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzE5YTAwMzY5LTY4NDAtNGE5NS04 OWIxLWE0ODUxOGY5OGRjNy8wLzMyMzQzMDM2M2EzMjMwNjMzMDNhNjEzMDMwMzAz YTNhMmYzMzM2MmQzNDM4MjAzZDNlMjAzMTM0MzAzNDMyMzMucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgQk BiDAoDANBgkqhkiG9w0BAQsFAAOCAQEAsXiivIUoI7fhJy7sWRge2Qr8D+9bYn0z 5p44LRlnNVhksVWgQkBhodpF8Ot/t85PXoOF99/UhYtnHyGJtRVV9kTuDSGq6D8N uoY85wAZ6rlgLXXDT5l46G0SJjYc/T9FpmNMLaVXGN7UygKi/m6eNOfdo53BK5P6 mIT1A48BYf7XcCOWra2BaaUElGmvR0cMK9T7aX9+ghlOozZ6UB4Ki0B1/YKOiJiI ja/5n5bAoTcf3LxdkCOxNz3XpHJhtbKmjwVaB8C+8w8KixmJ+N+L0FgzfPQRRF8q OApJ/QKn/qURomxNDMJE3cNQe3060sW9eSpt8wNnTXAJOp8sLL4OuA== -----END CERTIFICATE-----Generated at Wed May 13 15:02:50 2026 by rpki-client