$ rpki-client -vvf rpki-rsync.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a653030303a3a2f34382d3438203d3e20313530323638.roa File: 323430363a323063303a653030303a3a2f34382d3438203d3e20313530323638.roa (raw, json) Hash identifier: Qc0NamOT28MuZWPLDiYfq0XB1AFMJsZuItdPi4bZLMg= Subject key identifier: AC:E4:91:89:01:83:78:2C:7B:9E:F4:73:80:8C:91:49:99:46:0E:AE Certificate issuer: /CN=5D272EF1FF5F99603DFC2A2B9C5AB1A8BF322E73 Certificate serial: 5E1568F941B731884983EA8E40E7390E4FAD8FBA Authority key identifier: 5D:27:2E:F1:FF:5F:99:60:3D:FC:2A:2B:9C:5A:B1:A8:BF:32:2E:73 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/5D272EF1FF5F99603DFC2A2B9C5AB1A8BF322E73.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a653030303a3a2f34382d3438203d3e20313530323638.roa Signing time: Sun 03 May 2026 02:16:41 +0000 ROA not before: Sun 03 May 2026 02:11:41 +0000 ROA not after: Sun 02 May 2027 02:16:41 +0000 asID: 150268 IP address blocks: 2406:20c0:e000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/5D272EF1FF5F99603DFC2A2B9C5AB1A8BF322E73.crl rsync://rpki-rsync.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/5D272EF1FF5F99603DFC2A2B9C5AB1A8BF322E73.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/5D272EF1FF5F99603DFC2A2B9C5AB1A8BF322E73.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 04:40:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:15:68:f9:41:b7:31:88:49:83:ea:8e:40:e7:39:0e:4f:ad:8f:ba Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5D272EF1FF5F99603DFC2A2B9C5AB1A8BF322E73 Validity Not Before: May 3 02:11:41 2026 GMT Not After : May 2 02:16:41 2027 GMT Subject: CN=ACE491890183782C7B9EF473808C914999460EAE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:83:f5:85:b8:f3:37:8b:e1:21:66:54:c2:8a:82: f6:ba:d9:08:85:58:7b:83:23:70:a9:6d:8e:d6:2a: 6d:8e:4e:a7:ab:38:f5:1e:ca:cf:15:89:b3:f1:e4: df:72:f8:6f:b2:19:86:7e:22:7e:ae:b5:0d:db:b3: b6:a7:b4:4b:a9:35:67:40:17:40:11:02:3c:7e:4e: b6:01:a5:ba:dc:8e:f5:f4:7a:b1:5a:dc:5f:3c:56: 0a:32:e8:6a:90:79:83:ee:4e:76:ea:4f:1c:73:73: 8f:4f:8d:ee:68:4f:76:52:62:97:5b:42:fb:6b:27: 1b:0d:81:71:43:c8:fa:e3:44:06:7b:6e:a2:9d:23: a2:b4:ba:3f:da:e7:5b:65:94:b8:59:31:7f:98:71: b9:c4:79:39:81:8f:6e:5a:d4:23:42:9b:13:fb:7f: 31:4f:fe:44:30:8b:0b:5a:67:0d:6e:37:6c:0c:31: b5:41:40:4b:48:43:4f:94:32:26:2f:0e:ff:8a:f0: ae:0b:3d:d4:b8:06:2c:91:43:37:41:ba:e6:ec:24: b8:e5:8b:c1:34:c1:e2:5a:17:25:1c:ac:d6:9b:1d: 99:80:b3:7a:ef:7f:e7:43:2c:ca:7c:8d:75:2e:ae: f6:7e:56:1d:0b:0f:ff:f6:e8:93:f5:b5:87:5d:9f: 49:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:E4:91:89:01:83:78:2C:7B:9E:F4:73:80:8C:91:49:99:46:0E:AE X509v3 Authority Key Identifier: keyid:5D:27:2E:F1:FF:5F:99:60:3D:FC:2A:2B:9C:5A:B1:A8:BF:32:2E:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/5D272EF1FF5F99603DFC2A2B9C5AB1A8BF322E73.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/5D272EF1FF5F99603DFC2A2B9C5AB1A8BF322E73.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a653030303a3a2f34382d3438203d3e20313530323638.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:20c0:e000::/48 Signature Algorithm: sha256WithRSAEncryption 72:8e:30:f6:cd:7f:77:45:c4:6d:79:cb:3d:77:de:76:aa:0c: f6:0f:89:12:6c:32:49:93:02:d8:f7:2d:cc:98:ae:82:66:df: 8c:df:13:8a:4a:f7:5f:0e:3a:c2:6c:62:42:e0:29:34:ed:3e: 10:1c:29:4a:33:f5:1d:9d:47:29:cd:a6:d6:b4:e3:0e:10:00: aa:d5:b8:7f:4f:b8:c7:46:8b:bb:20:ed:41:ff:6c:46:c2:a3: e6:a4:0d:be:2a:d3:f9:69:49:61:9b:eb:1a:69:f3:8f:e3:91: 63:7b:f5:1d:e8:23:dc:be:33:10:1e:83:a5:40:45:9f:18:37: cb:bd:fe:80:9b:4a:3b:5f:ad:6e:8b:2c:c9:3e:11:f9:8c:85: 0c:26:53:1b:2f:27:36:78:21:a1:dd:d2:b1:ec:a9:f3:eb:46: 48:69:8f:03:ca:87:14:19:b0:dc:70:c0:aa:92:37:a9:9f:59: 95:1e:c2:74:31:89:19:94:a9:99:49:f6:2e:6c:5d:ca:06:b4: c6:52:92:63:ae:6a:7f:66:d6:75:cc:ee:ac:14:9d:9c:ad:b0: 93:e9:35:a7:75:3d:85:08:16:45:bd:5b:f8:f8:a6:8b:f6:86: 3f:58:89:ac:e8:9a:c8:71:03:05:3b:e7:89:e1:37:4d:09:36: 4a:4e:12:8e -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUXhVo+UG3MYhJg+qOQOc5Dk+tj7owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUQyNzJFRjFGRjVGOTk2MDNERkMyQTJCOUM1QUIxQThC RjMyMkU3MzAeFw0yNjA1MDMwMjExNDFaFw0yNzA1MDIwMjE2NDFaMDMxMTAvBgNV BAMTKEFDRTQ5MTg5MDE4Mzc4MkM3QjlFRjQ3MzgwOEM5MTQ5OTk0NjBFQUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCD9YW48zeL4SFmVMKKgva62QiF WHuDI3CpbY7WKm2OTqerOPUeys8VibPx5N9y+G+yGYZ+In6utQ3bs7antEupNWdA F0ARAjx+TrYBpbrcjvX0erFa3F88Vgoy6GqQeYPuTnbqTxxzc49Pje5oT3ZSYpdb QvtrJxsNgXFDyPrjRAZ7bqKdI6K0uj/a51tllLhZMX+YcbnEeTmBj25a1CNCmxP7 fzFP/kQwiwtaZw1uN2wMMbVBQEtIQ0+UMiYvDv+K8K4LPdS4BiyRQzdBuubsJLjl i8E0weJaFyUcrNabHZmAs3rvf+dDLMp8jXUurvZ+Vh0LD//26JP1tYddn0m1AgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUrOSRiQGDeCx7nvRzgIyRSZlGDq4wHwYDVR0j BBgwFoAUXScu8f9fmWA9/CornFqxqL8yLnMwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MTlhMDAzNjktNjg0MC00YTk1LTg5YjEtYTQ4NTE4Zjk4ZGM3LzAvNUQyNzJFRjFG RjVGOTk2MDNERkMyQTJCOUM1QUIxQThCRjMyMkU3My5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS81RDI3MkVGMUZGNUY5OTYwM0RGQzJBMkI5QzVBQjFBOEJGMzIy RTczLmNlcjCBrQYIKwYBBQUHAQsEgaAwgZ0wgZoGCCsGAQUFBzALhoGNcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzE5YTAwMzY5LTY4NDAtNGE5NS04 OWIxLWE0ODUxOGY5OGRjNy8wLzMyMzQzMDM2M2EzMjMwNjMzMDNhNjUzMDMwMzAz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTM1MzAzMjM2Mzgucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk BiDA4AAwDQYJKoZIhvcNAQELBQADggEBAHKOMPbNf3dFxG15yz133naqDPYPiRJs MkmTAtj3LcyYroJm34zfE4pK918OOsJsYkLgKTTtPhAcKUoz9R2dRynNpta04w4Q AKrVuH9PuMdGi7sg7UH/bEbCo+akDb4q0/lpSWGb6xpp84/jkWN79R3oI9y+MxAe g6VARZ8YN8u9/oCbSjtfrW6LLMk+EfmMhQwmUxsvJzZ4IaHd0rHsqfPrRkhpjwPK hxQZsNxwwKqSN6mfWZUewnQxiRmUqZlJ9i5sXcoGtMZSkmOuan9m1nXM7qwUnZyt sJPpNad1PYUIFkW9W/j4pov2hj9YiazomshxAwU754nhN00JNkpOEo4= -----END CERTIFICATE-----Generated at Wed May 13 17:44:51 2026 by rpki-client