$ rpki-client -vvf rpki-rsync.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/323430313a323930303a3130343a3a2f34372d3437203d3e203233363739.roa File: 323430313a323930303a3130343a3a2f34372d3437203d3e203233363739.roa (raw, json) Hash identifier: xWQcWE1I8sJu4k/CC47g/TELOAKtJgbaLXqifKSOuhA= Subject key identifier: BC:E1:24:1C:28:5E:8D:93:23:AA:7B:7E:27:F4:A2:14:25:A4:9B:AC Certificate issuer: /CN=D09EA95FF10C0166C2954C997A8A4989BD890A87 Certificate serial: 0AA66D0E54BF36F0E216310198CDD34E7AB0815B Authority key identifier: D0:9E:A9:5F:F1:0C:01:66:C2:95:4C:99:7A:8A:49:89:BD:89:0A:87 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D09EA95FF10C0166C2954C997A8A4989BD890A87.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/323430313a323930303a3130343a3a2f34372d3437203d3e203233363739.roa Signing time: Sun 03 May 2026 02:18:52 +0000 ROA not before: Sun 03 May 2026 02:13:52 +0000 ROA not after: Sun 02 May 2027 02:18:52 +0000 asID: 23679 IP address blocks: 2401:2900:104::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/D09EA95FF10C0166C2954C997A8A4989BD890A87.crl rsync://rpki-rsync.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/D09EA95FF10C0166C2954C997A8A4989BD890A87.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D09EA95FF10C0166C2954C997A8A4989BD890A87.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 02:11:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:a6:6d:0e:54:bf:36:f0:e2:16:31:01:98:cd:d3:4e:7a:b0:81:5b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D09EA95FF10C0166C2954C997A8A4989BD890A87 Validity Not Before: May 3 02:13:52 2026 GMT Not After : May 2 02:18:52 2027 GMT Subject: CN=BCE1241C285E8D9323AA7B7E27F4A21425A49BAC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:00:88:97:29:d8:fd:ab:d8:19:8d:c1:f6:63: 23:3e:fd:ba:45:90:07:e3:05:44:49:48:51:0d:78: 1f:0a:e7:d0:12:66:ac:c5:ba:f8:f8:a0:3d:a4:af: bd:d7:d2:68:0c:52:db:bc:30:2e:5e:91:5e:77:d2: a5:8f:7c:50:3d:ed:8b:85:28:fb:23:c3:60:d2:03: 83:cc:83:85:9b:14:d5:bc:87:ad:6b:39:79:e8:22: 00:96:c3:0b:53:f6:da:02:a2:e6:d3:f9:7b:af:89: 65:64:a4:18:0d:15:ab:3a:4a:1f:08:97:cd:10:0f: 72:7b:17:90:36:1d:6b:32:f2:ae:4d:ab:82:a7:28: 74:4e:80:7a:7b:40:25:49:56:25:cf:f8:37:e8:a4: 88:de:f8:79:c8:bb:d9:00:cd:8a:09:e7:39:e3:fd: ef:f6:f6:ca:89:1d:c8:27:d4:d2:31:c2:c5:b2:9a: 2a:a8:36:d6:d4:3f:3f:7f:c1:10:65:40:33:98:ce: 4c:f2:77:84:6b:ad:77:c2:ea:7f:5b:fe:66:9e:81: 8e:f2:39:b3:7d:ec:de:1f:2b:82:53:9e:15:a2:83: e2:71:c9:a0:e0:53:bd:1e:cf:b3:3d:96:db:81:0f: 67:57:f1:da:7a:4e:5a:37:bd:3d:84:4a:2a:79:c9: 79:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:E1:24:1C:28:5E:8D:93:23:AA:7B:7E:27:F4:A2:14:25:A4:9B:AC X509v3 Authority Key Identifier: keyid:D0:9E:A9:5F:F1:0C:01:66:C2:95:4C:99:7A:8A:49:89:BD:89:0A:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/D09EA95FF10C0166C2954C997A8A4989BD890A87.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D09EA95FF10C0166C2954C997A8A4989BD890A87.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/323430313a323930303a3130343a3a2f34372d3437203d3e203233363739.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:2900:104::/47 Signature Algorithm: sha256WithRSAEncryption 49:0b:df:cd:4b:f5:d4:07:ec:be:86:e9:b8:e1:03:48:70:c9: 61:fa:a8:e6:45:06:14:a0:49:8f:17:77:6f:97:5f:c5:d7:02: cc:a4:81:cb:b8:68:67:cb:92:49:e9:52:cb:ed:aa:01:67:1d: 5a:24:00:06:65:c9:11:00:3c:32:18:44:d0:09:a1:3a:01:7e: fe:97:34:21:df:91:90:5e:01:76:e1:0d:3a:eb:88:03:f4:c2: b4:6c:1e:04:9b:c2:f3:08:66:53:08:e0:6f:60:86:62:cc:91: 2c:f8:ee:05:e0:de:10:f4:bd:27:da:0e:22:29:16:93:ec:65: 7d:6a:9c:5a:ec:5a:d7:3c:5a:e3:eb:19:84:a1:fd:a2:f4:c0: d6:df:00:c8:cf:07:a4:fd:35:1c:df:4d:6b:2a:af:32:24:69: 1f:3e:87:66:de:55:63:f9:f7:81:85:eb:a2:7c:11:89:8c:3f: 48:e1:e7:0d:0f:4c:12:5e:ba:7e:ec:51:8f:8a:8b:8b:d5:40: d0:e0:41:ed:04:60:36:87:87:45:0c:01:13:d1:a6:53:5b:16: d3:83:8b:1f:b9:31:06:ea:5f:7f:03:bb:de:78:0f:cc:05:8f: 08:61:e1:b1:3b:09:e7:f2:fc:7e:7c:86:48:01:1a:13:b1:4f: ca:54:42:f4 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUCqZtDlS/NvDiFjEBmM3TTnqwgVswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDA5RUE5NUZGMTBDMDE2NkMyOTU0Qzk5N0E4QTQ5ODlC RDg5MEE4NzAeFw0yNjA1MDMwMjEzNTJaFw0yNzA1MDIwMjE4NTJaMDMxMTAvBgNV BAMTKEJDRTEyNDFDMjg1RThEOTMyM0FBN0I3RTI3RjRBMjE0MjVBNDlCQUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBAIiXKdj9q9gZjcH2YyM+/bpF kAfjBURJSFENeB8K59ASZqzFuvj4oD2kr73X0mgMUtu8MC5ekV530qWPfFA97YuF KPsjw2DSA4PMg4WbFNW8h61rOXnoIgCWwwtT9toCoubT+XuviWVkpBgNFas6Sh8I l80QD3J7F5A2HWsy8q5Nq4KnKHROgHp7QCVJViXP+DfopIje+HnIu9kAzYoJ5znj /e/29sqJHcgn1NIxwsWymiqoNtbUPz9/wRBlQDOYzkzyd4RrrXfC6n9b/maegY7y ObN97N4fK4JTnhWig+JxyaDgU70ez7M9ltuBD2dX8dp6Tlo3vT2ESip5yXldAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUvOEkHChejZMjqnt+J/SiFCWkm6wwHwYDVR0j BBgwFoAU0J6pX/EMAWbClUyZeopJib2JCocwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MjAxNDMyY2MtM2JjOS00ODU4LWI1MDYtMjE4YWFiMGIwODljLzAvRDA5RUE5NUZG MTBDMDE2NkMyOTU0Qzk5N0E4QTQ5ODlCRDg5MEE4Ny5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9EMDlFQTk1RkYxMEMwMTY2QzI5NTRDOTk3QThBNDk4OUJEODkw QTg3LmNlcjCBqQYIKwYBBQUHAQsEgZwwgZkwgZYGCCsGAQUFBzALhoGJcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzIwMTQzMmNjLTNiYzktNDg1OC1i NTA2LTIxOGFhYjBiMDg5Yy8wLzMyMzQzMDMxM2EzMjM5MzAzMDNhMzEzMDM0M2Ez YTJmMzQzNzJkMzQzNzIwM2QzZTIwMzIzMzM2MzczOS5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHASQBKQAB BDANBgkqhkiG9w0BAQsFAAOCAQEASQvfzUv11AfsvobpuOEDSHDJYfqo5kUGFKBJ jxd3b5dfxdcCzKSBy7hoZ8uSSelSy+2qAWcdWiQABmXJEQA8MhhE0AmhOgF+/pc0 Id+RkF4BduENOuuIA/TCtGweBJvC8whmUwjgb2CGYsyRLPjuBeDeEPS9J9oOIikW k+xlfWqcWuxa1zxa4+sZhKH9ovTA1t8AyM8HpP01HN9NayqvMiRpHz6HZt5VY/n3 gYXronwRiYw/SOHnDQ9MEl66fuxRj4qLi9VA0OBB7QRgNoeHRQwBE9GmU1sW04OL H7kxBupffwO73ngPzAWPCGHhsTsJ5/L8fnyGSAEaE7FPylRC9A== -----END CERTIFICATE-----Generated at Wed May 13 12:06:04 2026 by rpki-client