$ rpki-client -vvf rpki-rsync.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/323430313a323930303a336630303a3a2f34382d3438203d3e203233363739.roa File: 323430313a323930303a336630303a3a2f34382d3438203d3e203233363739.roa (raw, json) Hash identifier: mSFrI1Y0G1cNJmkbiPYs9q6W/uuyWAtzD8b366MQot0= Subject key identifier: E0:B9:A2:40:F2:9C:9A:40:4A:ED:64:A6:81:C2:63:EF:64:FA:42:79 Certificate issuer: /CN=D09EA95FF10C0166C2954C997A8A4989BD890A87 Certificate serial: 623849AF8CA29D942A518761182317C18AED0B5C Authority key identifier: D0:9E:A9:5F:F1:0C:01:66:C2:95:4C:99:7A:8A:49:89:BD:89:0A:87 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D09EA95FF10C0166C2954C997A8A4989BD890A87.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/323430313a323930303a336630303a3a2f34382d3438203d3e203233363739.roa Signing time: Sun 03 May 2026 02:18:52 +0000 ROA not before: Sun 03 May 2026 02:13:52 +0000 ROA not after: Sun 02 May 2027 02:18:52 +0000 asID: 23679 IP address blocks: 2401:2900:3f00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/D09EA95FF10C0166C2954C997A8A4989BD890A87.crl rsync://rpki-rsync.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/D09EA95FF10C0166C2954C997A8A4989BD890A87.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D09EA95FF10C0166C2954C997A8A4989BD890A87.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 02:11:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:38:49:af:8c:a2:9d:94:2a:51:87:61:18:23:17:c1:8a:ed:0b:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D09EA95FF10C0166C2954C997A8A4989BD890A87 Validity Not Before: May 3 02:13:52 2026 GMT Not After : May 2 02:18:52 2027 GMT Subject: CN=E0B9A240F29C9A404AED64A681C263EF64FA4279 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:ee:be:90:5d:d8:6e:b3:76:24:49:01:01:1e: ef:97:ac:d5:b5:e8:f4:0a:ca:1d:01:42:80:88:4e: 87:80:2a:31:8f:e9:5d:96:21:42:6a:e9:57:5d:8b: 74:a2:93:78:19:87:1f:37:df:dc:b3:99:5d:69:66: 0e:62:d0:24:f2:92:00:cd:96:e5:59:51:5d:45:38: 68:dd:12:ce:d6:ef:c1:93:9a:90:4e:ce:e7:a8:3e: 0a:a8:43:35:c0:c0:68:5d:8f:ff:fb:b8:67:3d:82: 9d:79:7b:95:60:23:55:5d:d7:ea:fb:dc:e9:77:b0: 9b:64:0f:81:81:4a:16:ff:4c:9b:79:5d:d5:4f:7f: f2:7f:15:0e:d6:c2:12:58:22:4b:15:d7:3d:dc:14: b7:a3:8a:55:e9:a2:8d:47:68:93:59:19:07:00:81: e7:83:3f:a9:c9:4c:9f:e9:1f:ea:77:b3:a9:8c:fd: 3d:d3:a7:ca:b7:59:9c:ea:ee:c7:08:e4:e1:53:3d: 14:c8:0c:3e:59:6b:33:50:22:f4:a9:66:ac:f7:79: ad:c1:7d:f1:c1:ee:ee:9f:8e:ec:9a:c5:d7:e0:30: 1b:f9:5c:ad:9c:6f:03:d6:82:02:fd:fb:b8:95:1e: 3a:a3:85:c3:7d:9e:87:31:df:ee:d4:aa:9e:1f:67: 9d:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:B9:A2:40:F2:9C:9A:40:4A:ED:64:A6:81:C2:63:EF:64:FA:42:79 X509v3 Authority Key Identifier: keyid:D0:9E:A9:5F:F1:0C:01:66:C2:95:4C:99:7A:8A:49:89:BD:89:0A:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/D09EA95FF10C0166C2954C997A8A4989BD890A87.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D09EA95FF10C0166C2954C997A8A4989BD890A87.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/323430313a323930303a336630303a3a2f34382d3438203d3e203233363739.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:2900:3f00::/48 Signature Algorithm: sha256WithRSAEncryption 24:f6:f5:03:4e:13:57:9b:2d:46:78:38:4c:28:f0:d1:c9:a1: 69:59:c4:c3:8d:29:66:86:11:d3:37:79:cd:07:ec:ca:03:94: 40:5d:c4:e8:8e:ea:de:5d:a0:b2:0a:6c:e9:df:21:b3:e0:58: d4:fa:0d:15:02:84:dc:5c:99:ae:c6:9e:fd:32:d6:e0:fd:db: 75:14:21:e4:cb:fd:7e:d3:94:f1:1e:1d:51:a7:a5:8c:00:4b: fe:6d:55:da:ba:a8:e7:ec:83:c3:90:d1:00:24:77:c7:7f:db: 66:47:fd:e2:c2:39:a5:48:0c:f9:64:65:30:9e:5f:68:3c:6d: 14:2e:ed:4a:18:cb:e3:9d:86:2c:59:66:73:51:59:56:a2:82: 32:c3:cf:0c:65:52:e6:49:81:b6:d9:76:da:a8:d6:94:8e:2a: c7:77:24:ba:41:43:22:aa:e8:8d:19:f3:82:8c:b1:e8:5e:3b: 98:86:d4:11:bc:8f:45:97:cb:ae:93:3d:16:ff:f2:36:b9:36: f7:3e:f0:05:bd:ba:b6:ab:d4:b5:4c:9e:22:d2:86:3f:d7:5e: 36:ba:c3:33:b5:b1:ba:2b:88:cc:53:39:7e:0b:c7:08:72:6f: bb:63:b1:33:50:7e:58:5a:91:c6:1a:4b:e3:fb:31:5b:e0:b8: 92:71:f7:55 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUYjhJr4yinZQqUYdhGCMXwYrtC1wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDA5RUE5NUZGMTBDMDE2NkMyOTU0Qzk5N0E4QTQ5ODlC RDg5MEE4NzAeFw0yNjA1MDMwMjEzNTJaFw0yNzA1MDIwMjE4NTJaMDMxMTAvBgNV BAMTKEUwQjlBMjQwRjI5QzlBNDA0QUVENjRBNjgxQzI2M0VGNjRGQTQyNzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD27r6QXdhus3YkSQEBHu+XrNW1 6PQKyh0BQoCIToeAKjGP6V2WIUJq6Vddi3Sik3gZhx8339yzmV1pZg5i0CTykgDN luVZUV1FOGjdEs7W78GTmpBOzueoPgqoQzXAwGhdj//7uGc9gp15e5VgI1Vd1+r7 3Ol3sJtkD4GBShb/TJt5XdVPf/J/FQ7WwhJYIksV1z3cFLejilXpoo1HaJNZGQcA geeDP6nJTJ/pH+p3s6mM/T3Tp8q3WZzq7scI5OFTPRTIDD5ZazNQIvSpZqz3ea3B ffHB7u6fjuyaxdfgMBv5XK2cbwPWggL9+7iVHjqjhcN9nocx3+7Uqp4fZ50xAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQU4LmiQPKcmkBK7WSmgcJj72T6QnkwHwYDVR0j BBgwFoAU0J6pX/EMAWbClUyZeopJib2JCocwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MjAxNDMyY2MtM2JjOS00ODU4LWI1MDYtMjE4YWFiMGIwODljLzAvRDA5RUE5NUZG MTBDMDE2NkMyOTU0Qzk5N0E4QTQ5ODlCRDg5MEE4Ny5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9EMDlFQTk1RkYxMEMwMTY2QzI5NTRDOTk3QThBNDk4OUJEODkw QTg3LmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUFBzALhoGLcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzIwMTQzMmNjLTNiYzktNDg1OC1i NTA2LTIxOGFhYjBiMDg5Yy8wLzMyMzQzMDMxM2EzMjM5MzAzMDNhMzM2NjMwMzAz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMjMzMzYzNzM5LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAEp AD8AMA0GCSqGSIb3DQEBCwUAA4IBAQAk9vUDThNXmy1GeDhMKPDRyaFpWcTDjSlm hhHTN3nNB+zKA5RAXcTojureXaCyCmzp3yGz4FjU+g0VAoTcXJmuxp79Mtbg/dt1 FCHky/1+05TxHh1Rp6WMAEv+bVXauqjn7IPDkNEAJHfHf9tmR/3iwjmlSAz5ZGUw nl9oPG0ULu1KGMvjnYYsWWZzUVlWooIyw88MZVLmSYG22XbaqNaUjirHdyS6QUMi quiNGfOCjLHoXjuYhtQRvI9Fl8uukz0W//I2uTb3PvAFvbq2q9S1TJ4i0oY/1142 usMztbG6K4jMUzl+C8cIcm+7Y7EzUH5YWpHGGkvj+zFb4LiScfdV -----END CERTIFICATE-----Generated at Wed May 13 13:57:58 2026 by rpki-client