$ rpki-client -vvf rpki-rsync.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/323430313a323930303a3130363a3a2f34382d3438203d3e203233363739.roa File: 323430313a323930303a3130363a3a2f34382d3438203d3e203233363739.roa (raw, json) Hash identifier: Vp4ko87lq5S5VI/C85G0T2R46TKwp4Ak3vubynPxIX0= Subject key identifier: 29:B9:A2:13:8E:FD:3A:A6:B7:41:34:09:C9:E9:C1:E6:62:D2:50:B4 Certificate issuer: /CN=D09EA95FF10C0166C2954C997A8A4989BD890A87 Certificate serial: 2E16FC1E5479372BE8FE95C13353F5E3F3B6C70F Authority key identifier: D0:9E:A9:5F:F1:0C:01:66:C2:95:4C:99:7A:8A:49:89:BD:89:0A:87 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D09EA95FF10C0166C2954C997A8A4989BD890A87.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/323430313a323930303a3130363a3a2f34382d3438203d3e203233363739.roa Signing time: Sun 03 May 2026 02:18:43 +0000 ROA not before: Sun 03 May 2026 02:13:43 +0000 ROA not after: Sun 02 May 2027 02:18:43 +0000 asID: 23679 IP address blocks: 2401:2900:106::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/D09EA95FF10C0166C2954C997A8A4989BD890A87.crl rsync://rpki-rsync.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/D09EA95FF10C0166C2954C997A8A4989BD890A87.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D09EA95FF10C0166C2954C997A8A4989BD890A87.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 02:11:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:16:fc:1e:54:79:37:2b:e8:fe:95:c1:33:53:f5:e3:f3:b6:c7:0f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D09EA95FF10C0166C2954C997A8A4989BD890A87 Validity Not Before: May 3 02:13:43 2026 GMT Not After : May 2 02:18:43 2027 GMT Subject: CN=29B9A2138EFD3AA6B7413409C9E9C1E662D250B4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:2e:ed:56:95:d6:98:8e:03:60:6b:c2:a3:9a: 3e:e7:8f:1b:b4:8c:36:07:dc:51:b7:e9:41:20:15: ba:b2:ba:f7:01:6f:67:74:03:85:d6:cb:5c:47:db: 15:5b:9a:60:7a:e5:67:2c:46:bd:22:71:0e:49:06: ff:df:30:45:0a:b8:46:e6:af:29:14:5f:34:cb:be: f5:1d:bb:02:83:af:6b:9d:c5:17:8b:2d:fa:d0:59: d9:52:e0:13:e8:c7:51:d6:0a:a6:55:5e:97:4f:aa: 42:f1:d1:94:ad:b8:d0:78:d2:00:a5:7a:ac:9f:75: c6:fe:3f:33:96:89:6f:a3:2a:7b:0a:c6:be:4d:4a: 18:9a:35:a3:3b:d0:e7:c4:03:7d:39:35:1d:9f:1b: 83:16:8c:f6:67:5d:d3:2a:8f:f2:9b:c2:91:f7:d8: 29:f5:c4:a9:03:fc:0f:c3:d1:b0:a1:2f:da:7d:f6: 27:91:94:66:bc:17:b1:91:b7:9b:0a:13:02:74:e8: 2e:34:3c:e4:b4:ca:31:1b:bd:5d:85:54:3e:75:76: ba:da:7c:a1:50:64:ba:16:6a:76:3a:32:9f:ef:b0: 46:98:65:4b:9e:66:ed:76:06:f5:3c:33:1d:48:b0: 68:79:75:2f:ce:f9:2d:0f:3e:34:31:ae:8d:06:17: ff:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:B9:A2:13:8E:FD:3A:A6:B7:41:34:09:C9:E9:C1:E6:62:D2:50:B4 X509v3 Authority Key Identifier: keyid:D0:9E:A9:5F:F1:0C:01:66:C2:95:4C:99:7A:8A:49:89:BD:89:0A:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/D09EA95FF10C0166C2954C997A8A4989BD890A87.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D09EA95FF10C0166C2954C997A8A4989BD890A87.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/323430313a323930303a3130363a3a2f34382d3438203d3e203233363739.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:2900:106::/48 Signature Algorithm: sha256WithRSAEncryption 16:f1:aa:39:1f:d0:52:6d:8a:4c:bf:18:a7:41:fe:39:73:b1: dd:88:95:70:9a:ed:36:29:67:e0:b2:45:a3:60:4c:0c:f6:72: 30:e3:96:e9:02:4b:94:93:20:90:98:60:76:7a:99:7a:53:3f: 65:05:1a:32:24:5e:76:03:f8:72:49:d6:62:b9:09:02:e9:dd: fa:98:85:8d:35:71:47:a0:d2:58:0d:cb:cd:8e:ba:f8:d9:b3: e8:0f:f1:f7:18:12:c1:65:fb:4d:f6:d1:a0:40:e1:35:e4:5a: e9:e8:bc:d0:03:fe:96:11:de:3c:1b:b5:aa:bc:cf:1b:27:f2: 6c:58:87:b1:0c:0b:6b:ef:9c:0c:ca:69:d3:a9:2c:b3:71:ec: c5:31:83:b5:60:fd:c5:c4:3b:b8:3a:15:83:28:fd:c8:66:fd: 50:3b:39:1b:37:c2:7e:e9:05:d4:a1:fc:b9:38:f0:b4:52:d5: 44:58:51:02:34:5a:9a:1a:c1:4e:16:fe:6a:b4:57:d4:39:a0: ff:e1:82:b1:aa:12:f9:bc:9c:01:95:b6:2b:42:46:54:b8:5e: 5d:9a:55:6f:d6:4d:68:c0:d3:ba:ea:ba:bb:79:89:68:ae:b2: 84:ca:d2:b8:9c:49:58:f0:de:91:65:dc:dd:df:b6:97:34:ab: c2:25:42:5f -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIULhb8HlR5Nyvo/pXBM1P14/O2xw8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDA5RUE5NUZGMTBDMDE2NkMyOTU0Qzk5N0E4QTQ5ODlC RDg5MEE4NzAeFw0yNjA1MDMwMjEzNDNaFw0yNzA1MDIwMjE4NDNaMDMxMTAvBgNV BAMTKDI5QjlBMjEzOEVGRDNBQTZCNzQxMzQwOUM5RTlDMUU2NjJEMjUwQjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFLu1WldaYjgNga8Kjmj7njxu0 jDYH3FG36UEgFbqyuvcBb2d0A4XWy1xH2xVbmmB65WcsRr0icQ5JBv/fMEUKuEbm rykUXzTLvvUduwKDr2udxReLLfrQWdlS4BPox1HWCqZVXpdPqkLx0ZStuNB40gCl eqyfdcb+PzOWiW+jKnsKxr5NShiaNaM70OfEA305NR2fG4MWjPZnXdMqj/KbwpH3 2Cn1xKkD/A/D0bChL9p99ieRlGa8F7GRt5sKEwJ06C40POS0yjEbvV2FVD51drra fKFQZLoWanY6Mp/vsEaYZUueZu12BvU8Mx1IsGh5dS/O+S0PPjQxro0GF/8TAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUKbmiE479Oqa3QTQJyenB5mLSULQwHwYDVR0j BBgwFoAU0J6pX/EMAWbClUyZeopJib2JCocwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MjAxNDMyY2MtM2JjOS00ODU4LWI1MDYtMjE4YWFiMGIwODljLzAvRDA5RUE5NUZG MTBDMDE2NkMyOTU0Qzk5N0E4QTQ5ODlCRDg5MEE4Ny5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9EMDlFQTk1RkYxMEMwMTY2QzI5NTRDOTk3QThBNDk4OUJEODkw QTg3LmNlcjCBqQYIKwYBBQUHAQsEgZwwgZkwgZYGCCsGAQUFBzALhoGJcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzIwMTQzMmNjLTNiYzktNDg1OC1i NTA2LTIxOGFhYjBiMDg5Yy8wLzMyMzQzMDMxM2EzMjM5MzAzMDNhMzEzMDM2M2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzIzMzM2MzczOS5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQBKQAB BjANBgkqhkiG9w0BAQsFAAOCAQEAFvGqOR/QUm2KTL8Yp0H+OXOx3YiVcJrtNiln 4LJFo2BMDPZyMOOW6QJLlJMgkJhgdnqZelM/ZQUaMiRedgP4cknWYrkJAund+piF jTVxR6DSWA3LzY66+Nmz6A/x9xgSwWX7TfbRoEDhNeRa6ei80AP+lhHePBu1qrzP GyfybFiHsQwLa++cDMpp06kss3HsxTGDtWD9xcQ7uDoVgyj9yGb9UDs5GzfCfukF 1KH8uTjwtFLVRFhRAjRamhrBThb+arRX1Dmg/+GCsaoS+bycAZW2K0JGVLheXZpV b9ZNaMDTuuq6u3mJaK6yhMrSuJxJWPDekWXc3d+2lzSrwiVCXw== -----END CERTIFICATE-----Generated at Wed May 13 12:51:56 2026 by rpki-client