$ rpki-client -vvf rpki-rsync.idnic.net/repo/1bd3dd79-8635-4857-8a3c-985954516f9e/0/323430363a3563303a3a2f33322d3438203d3e20313430333935.roa File: 323430363a3563303a3a2f33322d3438203d3e20313430333935.roa (raw, json) Hash identifier: hXYZBw+zcNWgfpkr4qfi2P6UAXZrhjOtAH+ubipVz38= Subject key identifier: 25:FD:66:8C:FA:49:DC:72:2A:1D:74:C0:5D:6B:2C:EB:E5:8C:55:4F Certificate issuer: /CN=2E5B4D919AE6E098454A21D83BEE489C0A1DF687 Certificate serial: 3FBF218F1DD985EB5F033FB8C122CE850CD2EF8A Authority key identifier: 2E:5B:4D:91:9A:E6:E0:98:45:4A:21:D8:3B:EE:48:9C:0A:1D:F6:87 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2E5B4D919AE6E098454A21D83BEE489C0A1DF687.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/1bd3dd79-8635-4857-8a3c-985954516f9e/0/323430363a3563303a3a2f33322d3438203d3e20313430333935.roa Signing time: Sun 03 May 2026 02:17:16 +0000 ROA not before: Sun 03 May 2026 02:12:16 +0000 ROA not after: Sun 02 May 2027 02:17:16 +0000 asID: 140395 IP address blocks: 2406:5c0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/1bd3dd79-8635-4857-8a3c-985954516f9e/0/2E5B4D919AE6E098454A21D83BEE489C0A1DF687.crl rsync://rpki-rsync.idnic.net/repo/1bd3dd79-8635-4857-8a3c-985954516f9e/0/2E5B4D919AE6E098454A21D83BEE489C0A1DF687.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2E5B4D919AE6E098454A21D83BEE489C0A1DF687.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 04:31:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:bf:21:8f:1d:d9:85:eb:5f:03:3f:b8:c1:22:ce:85:0c:d2:ef:8a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2E5B4D919AE6E098454A21D83BEE489C0A1DF687 Validity Not Before: May 3 02:12:16 2026 GMT Not After : May 2 02:17:16 2027 GMT Subject: CN=25FD668CFA49DC722A1D74C05D6B2CEBE58C554F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:b2:a2:ac:a6:e8:08:0e:4b:fc:fe:27:51:f3: 8b:d9:48:4e:c1:5a:ef:29:d1:93:f7:1d:de:e1:0b: 59:e7:1e:a6:5c:9d:ba:5b:fe:62:1e:34:68:ba:84: 67:d0:9e:61:35:45:33:f3:14:4e:8e:32:71:d5:2a: 27:9e:d6:18:d7:b3:52:cc:03:31:77:83:c4:65:cc: c5:02:de:d7:d6:d7:55:04:d3:9a:2e:21:27:6f:07: 67:d3:32:1d:f0:74:5f:4c:cd:92:cc:bc:f2:59:5f: bc:c2:94:6b:8b:43:77:0e:35:23:cc:00:f5:7e:07: 93:87:c0:1b:2f:b9:65:eb:72:2f:eb:6c:10:d7:4e: 95:01:51:b9:10:cd:d1:9c:a5:d6:b2:0a:d7:14:d4: 87:fa:e2:6d:eb:e8:bc:16:b7:26:d1:4f:2f:d8:70: a7:5c:41:94:4d:18:a6:1e:cb:64:7d:e8:43:f6:51: e1:79:62:1b:08:20:c3:db:f7:bb:6e:9b:32:7f:92: 1b:9a:63:dd:3a:d4:4c:45:90:aa:e7:aa:01:2a:3e: b5:38:69:3f:dc:b2:05:ea:4f:15:a3:4a:17:0f:65: f4:d7:99:a9:ae:95:67:d4:5a:b4:0f:bc:8c:98:44: ad:b7:58:e2:91:8d:a9:9a:de:c4:52:21:cc:b5:f9: f5:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:FD:66:8C:FA:49:DC:72:2A:1D:74:C0:5D:6B:2C:EB:E5:8C:55:4F X509v3 Authority Key Identifier: keyid:2E:5B:4D:91:9A:E6:E0:98:45:4A:21:D8:3B:EE:48:9C:0A:1D:F6:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/1bd3dd79-8635-4857-8a3c-985954516f9e/0/2E5B4D919AE6E098454A21D83BEE489C0A1DF687.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2E5B4D919AE6E098454A21D83BEE489C0A1DF687.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/1bd3dd79-8635-4857-8a3c-985954516f9e/0/323430363a3563303a3a2f33322d3438203d3e20313430333935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:5c0::/32 Signature Algorithm: sha256WithRSAEncryption 1f:58:74:21:01:89:2e:ca:fe:a3:ab:61:03:23:d1:cc:a7:8b: 2a:9c:c8:b8:af:32:da:cc:7e:80:7c:df:db:fb:7a:08:13:89: e4:15:0a:aa:f9:d5:7a:da:e6:0a:21:98:3e:1d:44:a6:6b:37: ad:67:ae:45:f8:95:a0:fa:28:8a:0a:48:3b:92:ff:4b:bf:e2: d7:f1:f5:71:ba:4c:ff:a9:d6:f7:dc:a6:83:9b:dd:9b:95:3e: f8:f2:1b:34:8f:8c:30:84:c4:63:99:c0:7d:4f:fe:3d:52:60: d2:eb:45:2c:99:a2:13:08:70:0a:76:d3:92:a3:78:6f:75:f2: 11:c4:20:61:0d:8b:9b:7c:43:da:90:d2:d5:3c:ec:32:c5:e5: 02:4d:0f:2d:ae:c4:77:7a:00:18:95:95:e4:46:0b:be:cc:4a: f3:2c:3e:69:48:c8:e4:70:a5:89:35:af:d9:6e:02:8e:4e:8d: 5b:0b:d2:ba:45:25:ca:e2:da:81:b6:22:56:79:d4:e1:84:de: 59:6d:d9:ac:90:2d:22:b3:53:a9:c9:67:97:1e:e0:83:72:14: 16:95:ed:b6:70:14:9f:fc:b9:49:0b:f4:d6:a9:f7:fd:8e:90: ae:a6:5a:a2:4e:9e:c4:10:06:6d:81:79:ae:99:b7:a8:0d:f4: a2:e6:07:bc -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUP78hjx3ZhetfAz+4wSLOhQzS74owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkU1QjREOTE5QUU2RTA5ODQ1NEEyMUQ4M0JFRTQ4OUMw QTFERjY4NzAeFw0yNjA1MDMwMjEyMTZaFw0yNzA1MDIwMjE3MTZaMDMxMTAvBgNV BAMTKDI1RkQ2NjhDRkE0OURDNzIyQTFENzRDMDVENkIyQ0VCRTU4QzU1NEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1sqKspugIDkv8/idR84vZSE7B Wu8p0ZP3Hd7hC1nnHqZcnbpb/mIeNGi6hGfQnmE1RTPzFE6OMnHVKiee1hjXs1LM AzF3g8RlzMUC3tfW11UE05ouISdvB2fTMh3wdF9MzZLMvPJZX7zClGuLQ3cONSPM APV+B5OHwBsvuWXrci/rbBDXTpUBUbkQzdGcpdayCtcU1If64m3r6LwWtybRTy/Y cKdcQZRNGKYey2R96EP2UeF5YhsIIMPb97tumzJ/khuaY9061ExFkKrnqgEqPrU4 aT/csgXqTxWjShcPZfTXmamulWfUWrQPvIyYRK23WOKRjama3sRSIcy1+fVTAgMB AAGjggIxMIICLTAdBgNVHQ4EFgQUJf1mjPpJ3HIqHXTAXWss6+WMVU8wHwYDVR0j BBgwFoAULltNkZrm4JhFSiHYO+5InAod9ocwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MWJkM2RkNzktODYzNS00ODU3LThhM2MtOTg1OTU0NTE2ZjllLzAvMkU1QjREOTE5 QUU2RTA5ODQ1NEEyMUQ4M0JFRTQ4OUMwQTFERjY4Ny5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8yRTVCNEQ5MTlBRTZFMDk4NDU0QTIxRDgzQkVFNDg5QzBBMURG Njg3LmNlcjCBoQYIKwYBBQUHAQsEgZQwgZEwgY4GCCsGAQUFBzALhoGBcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzFiZDNkZDc5LTg2MzUtNDg1Ny04 YTNjLTk4NTk1NDUxNmY5ZS8wLzMyMzQzMDM2M2EzNTYzMzAzYTNhMmYzMzMyMmQz NDM4MjAzZDNlMjAzMTM0MzAzMzM5MzUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkBgXAMA0GCSqGSIb3 DQEBCwUAA4IBAQAfWHQhAYkuyv6jq2EDI9HMp4sqnMi4rzLazH6AfN/b+3oIE4nk FQqq+dV62uYKIZg+HUSmazetZ65F+JWg+iiKCkg7kv9Lv+LX8fVxukz/qdb33KaD m92blT748hs0j4wwhMRjmcB9T/49UmDS60UsmaITCHAKdtOSo3hvdfIRxCBhDYub fEPakNLVPOwyxeUCTQ8trsR3egAYlZXkRgu+zErzLD5pSMjkcKWJNa/ZbgKOTo1b C9K6RSXK4tqBtiJWedThhN5ZbdmskC0is1OpyWeXHuCDchQWle22cBSf/LlJC/TW qff9jpCuplqiTp7EEAZtgXmumbeoDfSi5ge8 -----END CERTIFICATE-----Generated at Wed May 13 07:15:17 2026 by rpki-client