$ rpki-client -vvf rpki-rsync.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/323430313a323930303a3130363a3a2f34372d3437203d3e203233363739.roa File: 323430313a323930303a3130363a3a2f34372d3437203d3e203233363739.roa (raw, json) Hash identifier: JTimL5rxHqvR5K12XkCZAsF7ddXWR4b0yPuziq4LBLM= Subject key identifier: 79:54:A7:AF:6F:F2:0E:32:15:54:C4:E7:D5:75:4A:59:70:27:CB:AE Certificate issuer: /CN=D09EA95FF10C0166C2954C997A8A4989BD890A87 Certificate serial: 7225EE2DCB6816D15671A5278793C19B7CC71432 Authority key identifier: D0:9E:A9:5F:F1:0C:01:66:C2:95:4C:99:7A:8A:49:89:BD:89:0A:87 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D09EA95FF10C0166C2954C997A8A4989BD890A87.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/323430313a323930303a3130363a3a2f34372d3437203d3e203233363739.roa Signing time: Sun 03 May 2026 02:18:42 +0000 ROA not before: Sun 03 May 2026 02:13:42 +0000 ROA not after: Sun 02 May 2027 02:18:42 +0000 asID: 23679 IP address blocks: 2401:2900:106::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/D09EA95FF10C0166C2954C997A8A4989BD890A87.crl rsync://rpki-rsync.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/D09EA95FF10C0166C2954C997A8A4989BD890A87.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D09EA95FF10C0166C2954C997A8A4989BD890A87.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 02:11:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:25:ee:2d:cb:68:16:d1:56:71:a5:27:87:93:c1:9b:7c:c7:14:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D09EA95FF10C0166C2954C997A8A4989BD890A87 Validity Not Before: May 3 02:13:42 2026 GMT Not After : May 2 02:18:42 2027 GMT Subject: CN=7954A7AF6FF20E321554C4E7D5754A597027CBAE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:68:30:48:71:7e:db:9c:eb:1c:7f:5c:82:7f: ee:5f:12:cb:da:e4:84:2f:ea:4f:99:3e:f8:1f:b4: cc:94:8c:e6:9b:9f:44:23:f2:90:58:73:be:ec:6c: 5b:b1:c0:24:87:63:96:5e:5b:5c:9d:69:5c:33:e8: cd:d5:da:0e:ba:d4:a4:61:a4:04:7c:9d:c1:3f:4a: c8:a1:3b:a8:ae:b0:26:b4:64:06:4b:40:0a:48:b2: 6d:5a:7c:65:2c:0d:fe:6b:93:54:94:db:b5:46:5d: 83:b1:cd:86:43:4f:a9:eb:5b:8f:1d:73:fd:48:67: 23:0d:e9:81:b9:1c:df:20:ee:6c:9b:f4:f2:87:23: e0:08:1f:8e:43:26:b9:93:c7:71:f9:e0:9b:d7:f3: 79:ae:3f:b1:90:51:cf:bc:22:cc:3d:7b:a1:55:11: db:8a:c6:a3:a7:7c:d1:cb:f0:64:f9:7a:53:cd:19: d8:ff:07:ce:b8:ef:44:e1:be:47:42:35:37:c9:5d: c0:45:e6:8b:b8:a7:c5:bc:73:9e:5b:cd:9f:34:a3: 0a:21:02:e7:b7:b5:37:f8:13:21:34:65:64:9f:94: 45:b0:b4:31:15:cf:cb:d4:a7:a2:39:10:a4:a4:d3: b9:99:b3:e8:ed:d3:7f:a0:90:63:64:44:1e:f4:0c: aa:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:54:A7:AF:6F:F2:0E:32:15:54:C4:E7:D5:75:4A:59:70:27:CB:AE X509v3 Authority Key Identifier: keyid:D0:9E:A9:5F:F1:0C:01:66:C2:95:4C:99:7A:8A:49:89:BD:89:0A:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/D09EA95FF10C0166C2954C997A8A4989BD890A87.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D09EA95FF10C0166C2954C997A8A4989BD890A87.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/323430313a323930303a3130363a3a2f34372d3437203d3e203233363739.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:2900:106::/47 Signature Algorithm: sha256WithRSAEncryption 2e:4a:bf:5b:11:5e:1a:5a:0d:fd:48:8a:5f:ef:23:91:2e:9e: 2b:f0:7c:23:48:0a:20:a5:56:8d:ee:09:5b:df:b9:59:ec:17: 05:b1:1f:9d:d2:cc:63:b2:b9:db:0f:58:e2:30:c7:af:d2:89: ea:35:58:80:33:bf:93:f7:e5:77:54:18:f9:14:a4:9d:7b:18: e6:08:38:d6:09:70:e6:70:9e:9b:07:bc:93:47:99:76:0d:33: 7c:a4:94:18:d9:a5:91:e8:fb:19:5a:11:dc:c3:25:6f:1e:1e: 20:61:f6:41:24:f9:4c:f0:36:42:66:94:2f:68:78:c5:54:8e: 16:c9:70:78:0b:81:df:bb:f9:3a:6e:70:3f:c6:c3:16:da:10: 8c:92:0a:09:f7:75:f3:db:20:d5:49:1e:e3:4f:ef:96:32:6a: d1:d6:2a:63:fa:5d:3b:bb:3e:85:a1:07:5c:ea:f1:c3:cf:12: 1d:50:8c:7d:f4:99:ea:0a:4d:02:9e:50:84:39:df:af:28:ff: 17:66:80:19:ed:22:d9:c3:b9:1d:11:6f:2e:30:5c:77:c0:e6: 4c:b6:9a:6a:f4:a8:30:fa:c0:ae:4e:d4:fa:99:6b:4d:64:c5: dc:27:79:57:c6:d7:81:ea:6a:62:fc:07:7f:0e:02:1b:7b:6e: 47:ae:1e:b1 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUciXuLctoFtFWcaUnh5PBm3zHFDIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDA5RUE5NUZGMTBDMDE2NkMyOTU0Qzk5N0E4QTQ5ODlC RDg5MEE4NzAeFw0yNjA1MDMwMjEzNDJaFw0yNzA1MDIwMjE4NDJaMDMxMTAvBgNV BAMTKDc5NTRBN0FGNkZGMjBFMzIxNTU0QzRFN0Q1NzU0QTU5NzAyN0NCQUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDtaDBIcX7bnOscf1yCf+5fEsva 5IQv6k+ZPvgftMyUjOabn0Qj8pBYc77sbFuxwCSHY5ZeW1ydaVwz6M3V2g661KRh pAR8ncE/SsihO6iusCa0ZAZLQApIsm1afGUsDf5rk1SU27VGXYOxzYZDT6nrW48d c/1IZyMN6YG5HN8g7myb9PKHI+AIH45DJrmTx3H54JvX83muP7GQUc+8Isw9e6FV EduKxqOnfNHL8GT5elPNGdj/B86470ThvkdCNTfJXcBF5ou4p8W8c55bzZ80owoh Aue3tTf4EyE0ZWSflEWwtDEVz8vUp6I5EKSk07mZs+jt03+gkGNkRB70DKohAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUeVSnr2/yDjIVVMTn1XVKWXAny64wHwYDVR0j BBgwFoAU0J6pX/EMAWbClUyZeopJib2JCocwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MjAxNDMyY2MtM2JjOS00ODU4LWI1MDYtMjE4YWFiMGIwODljLzAvRDA5RUE5NUZG MTBDMDE2NkMyOTU0Qzk5N0E4QTQ5ODlCRDg5MEE4Ny5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9EMDlFQTk1RkYxMEMwMTY2QzI5NTRDOTk3QThBNDk4OUJEODkw QTg3LmNlcjCBqQYIKwYBBQUHAQsEgZwwgZkwgZYGCCsGAQUFBzALhoGJcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzIwMTQzMmNjLTNiYzktNDg1OC1i NTA2LTIxOGFhYjBiMDg5Yy8wLzMyMzQzMDMxM2EzMjM5MzAzMDNhMzEzMDM2M2Ez YTJmMzQzNzJkMzQzNzIwM2QzZTIwMzIzMzM2MzczOS5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHASQBKQAB BjANBgkqhkiG9w0BAQsFAAOCAQEALkq/WxFeGloN/UiKX+8jkS6eK/B8I0gKIKVW je4JW9+5WewXBbEfndLMY7K52w9Y4jDHr9KJ6jVYgDO/k/fld1QY+RSknXsY5gg4 1glw5nCemwe8k0eZdg0zfKSUGNmlkej7GVoR3MMlbx4eIGH2QST5TPA2QmaUL2h4 xVSOFslweAuB37v5Om5wP8bDFtoQjJIKCfd189sg1Uke40/vljJq0dYqY/pdO7s+ haEHXOrxw88SHVCMffSZ6gpNAp5QhDnfryj/F2aAGe0i2cO5HRFvLjBcd8DmTLaa avSoMPrArk7U+plrTWTF3Cd5V8bXgepqYvwHfw4CG3tuR64esQ== -----END CERTIFICATE-----Generated at Wed May 13 11:35:13 2026 by rpki-client