$ rpki-client -vvf rpki-rsync.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/323430313a323930303a383030343a3a2f34382d3438203d3e203233363739.roa File: 323430313a323930303a383030343a3a2f34382d3438203d3e203233363739.roa (raw, json) Hash identifier: tO0IsnXr5XGXmwmSm7FjW9Rux9tOq9eu+k23czXCRX8= Subject key identifier: 58:40:B4:C7:B2:3C:E9:46:72:0A:91:43:BE:58:5C:DE:2C:D7:B3:25 Certificate issuer: /CN=D09EA95FF10C0166C2954C997A8A4989BD890A87 Certificate serial: 79C145450BEC3704A254AEAAA9782764D816D4BD Authority key identifier: D0:9E:A9:5F:F1:0C:01:66:C2:95:4C:99:7A:8A:49:89:BD:89:0A:87 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D09EA95FF10C0166C2954C997A8A4989BD890A87.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/323430313a323930303a383030343a3a2f34382d3438203d3e203233363739.roa Signing time: Sun 03 May 2026 02:18:48 +0000 ROA not before: Sun 03 May 2026 02:13:48 +0000 ROA not after: Sun 02 May 2027 02:18:48 +0000 asID: 23679 IP address blocks: 2401:2900:8004::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/D09EA95FF10C0166C2954C997A8A4989BD890A87.crl rsync://rpki-rsync.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/D09EA95FF10C0166C2954C997A8A4989BD890A87.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D09EA95FF10C0166C2954C997A8A4989BD890A87.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 02:11:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:c1:45:45:0b:ec:37:04:a2:54:ae:aa:a9:78:27:64:d8:16:d4:bd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D09EA95FF10C0166C2954C997A8A4989BD890A87 Validity Not Before: May 3 02:13:48 2026 GMT Not After : May 2 02:18:48 2027 GMT Subject: CN=5840B4C7B23CE946720A9143BE585CDE2CD7B325 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:aa:8c:53:20:7b:1d:f4:c4:33:7b:49:19:bb: 3b:b7:75:0f:31:3e:48:20:92:1c:8c:e1:9f:29:c3: c4:ef:d3:31:f9:25:82:23:61:44:30:16:ad:b6:de: 30:9e:36:12:a9:98:16:da:5b:6e:a3:54:6b:36:aa: 56:61:d8:1c:56:37:64:1a:d8:49:75:f6:96:6e:49: 18:56:d5:94:1a:5e:51:f1:39:81:eb:49:b2:15:7a: 12:2e:a5:e1:dc:24:5d:d4:a5:8d:db:61:7a:79:da: 62:ed:ea:01:42:db:c2:01:8d:a7:04:72:d6:20:46: 93:64:fd:d2:e3:97:9b:96:52:15:3e:dc:37:9b:38: 78:49:d0:59:af:4f:0d:71:ff:41:66:a4:7c:e9:4a: 9e:47:fd:50:83:33:69:63:51:21:f9:fa:02:18:1b: f0:93:d6:0e:36:f8:7d:da:c3:af:35:f8:ab:67:94: 78:af:52:88:cf:a3:69:55:23:d6:23:15:c1:52:30: b1:10:32:dc:b3:23:40:19:c4:54:ab:0f:72:97:b4: d6:f1:e1:a3:2c:9f:ac:22:5f:03:96:d7:e8:e0:1b: e2:5f:2e:09:88:56:2e:8f:0e:62:2b:bc:ad:98:9c: ae:a1:68:5b:2c:5e:88:1b:ea:8f:88:e6:d1:5a:94: 52:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:40:B4:C7:B2:3C:E9:46:72:0A:91:43:BE:58:5C:DE:2C:D7:B3:25 X509v3 Authority Key Identifier: keyid:D0:9E:A9:5F:F1:0C:01:66:C2:95:4C:99:7A:8A:49:89:BD:89:0A:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/D09EA95FF10C0166C2954C997A8A4989BD890A87.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D09EA95FF10C0166C2954C997A8A4989BD890A87.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/323430313a323930303a383030343a3a2f34382d3438203d3e203233363739.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:2900:8004::/48 Signature Algorithm: sha256WithRSAEncryption 75:69:46:0f:ac:17:75:5f:bd:0a:34:d7:21:05:bc:df:d7:ce: a4:6a:ab:ae:5f:cc:56:9f:ca:bb:cf:6f:4f:70:ad:e4:4a:8a: a9:4e:e5:30:e7:29:5d:8a:bd:91:cb:46:be:ca:d9:99:d8:39: 0a:c8:45:ec:e8:bd:80:c1:c7:28:09:6a:e8:43:70:de:0f:34: 25:60:95:39:67:f7:35:52:19:05:e7:31:46:91:64:30:68:3a: 26:2d:e4:58:df:3c:4a:3f:48:ba:64:21:c9:b3:7e:a2:92:c3: f9:41:f3:bd:fb:45:71:8b:18:01:5a:72:61:85:da:57:ff:7a: 73:56:9e:3a:4b:3e:e7:85:84:d5:c6:8f:06:41:eb:bd:80:39: a5:af:1e:82:3f:6d:1d:75:70:d3:b9:c4:d1:cf:34:ec:36:0a: 91:56:3d:1c:3c:ff:f2:30:5e:25:30:0b:90:40:18:5f:65:c6: ca:a5:41:7b:93:a8:e1:30:24:66:f4:16:ea:68:9b:42:54:79: 05:84:6a:ad:62:51:65:75:b2:a2:fb:0a:d3:86:23:b6:7e:9b: c1:43:de:48:31:3f:6c:f8:54:26:8a:21:45:5b:db:d6:3c:70: 26:48:5f:f2:80:ec:ba:5b:b9:24:6d:da:f1:16:19:b1:ce:43: c1:66:bd:09 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUecFFRQvsNwSiVK6qqXgnZNgW1L0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDA5RUE5NUZGMTBDMDE2NkMyOTU0Qzk5N0E4QTQ5ODlC RDg5MEE4NzAeFw0yNjA1MDMwMjEzNDhaFw0yNzA1MDIwMjE4NDhaMDMxMTAvBgNV BAMTKDU4NDBCNEM3QjIzQ0U5NDY3MjBBOTE0M0JFNTg1Q0RFMkNEN0IzMjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGqoxTIHsd9MQze0kZuzu3dQ8x PkggkhyM4Z8pw8Tv0zH5JYIjYUQwFq223jCeNhKpmBbaW26jVGs2qlZh2BxWN2Qa 2El19pZuSRhW1ZQaXlHxOYHrSbIVehIupeHcJF3UpY3bYXp52mLt6gFC28IBjacE ctYgRpNk/dLjl5uWUhU+3DebOHhJ0FmvTw1x/0FmpHzpSp5H/VCDM2ljUSH5+gIY G/CT1g42+H3aw681+KtnlHivUojPo2lVI9YjFcFSMLEQMtyzI0AZxFSrD3KXtNbx 4aMsn6wiXwOW1+jgG+JfLgmIVi6PDmIrvK2YnK6haFssXogb6o+I5tFalFJ5AgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUWEC0x7I86UZyCpFDvlhc3izXsyUwHwYDVR0j BBgwFoAU0J6pX/EMAWbClUyZeopJib2JCocwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MjAxNDMyY2MtM2JjOS00ODU4LWI1MDYtMjE4YWFiMGIwODljLzAvRDA5RUE5NUZG MTBDMDE2NkMyOTU0Qzk5N0E4QTQ5ODlCRDg5MEE4Ny5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9EMDlFQTk1RkYxMEMwMTY2QzI5NTRDOTk3QThBNDk4OUJEODkw QTg3LmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUFBzALhoGLcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzIwMTQzMmNjLTNiYzktNDg1OC1i NTA2LTIxOGFhYjBiMDg5Yy8wLzMyMzQzMDMxM2EzMjM5MzAzMDNhMzgzMDMwMzQz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMjMzMzYzNzM5LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAEp AIAEMA0GCSqGSIb3DQEBCwUAA4IBAQB1aUYPrBd1X70KNNchBbzf186kaquuX8xW n8q7z29PcK3kSoqpTuUw5yldir2Ry0a+ytmZ2DkKyEXs6L2AwccoCWroQ3DeDzQl YJU5Z/c1UhkF5zFGkWQwaDomLeRY3zxKP0i6ZCHJs36iksP5QfO9+0VxixgBWnJh hdpX/3pzVp46Sz7nhYTVxo8GQeu9gDmlrx6CP20ddXDTucTRzzTsNgqRVj0cPP/y MF4lMAuQQBhfZcbKpUF7k6jhMCRm9BbqaJtCVHkFhGqtYlFldbKi+wrThiO2fpvB Q95IMT9s+FQmiiFFW9vWPHAmSF/ygOy6W7kkbdrxFhmxzkPBZr0J -----END CERTIFICATE-----Generated at Wed May 13 14:47:07 2026 by rpki-client