$ rpki-client -vvf rpki-rsync.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/323430313a323930303a383838383a3a2f34382d3438203d3e203233363739.roa File: 323430313a323930303a383838383a3a2f34382d3438203d3e203233363739.roa (raw, json) Hash identifier: BqPMzb/Ae4PuQyhinZTcbToC+4jPEaMMEpFdcdM12Sc= Subject key identifier: 12:A3:53:50:B7:DD:37:7A:33:0A:A3:9E:CF:69:C1:4F:9A:1D:AF:48 Certificate issuer: /CN=D09EA95FF10C0166C2954C997A8A4989BD890A87 Certificate serial: 7E4E4797DDA7880C2B841C70B787F98DCF365DE1 Authority key identifier: D0:9E:A9:5F:F1:0C:01:66:C2:95:4C:99:7A:8A:49:89:BD:89:0A:87 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D09EA95FF10C0166C2954C997A8A4989BD890A87.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/323430313a323930303a383838383a3a2f34382d3438203d3e203233363739.roa Signing time: Sun 03 May 2026 02:19:00 +0000 ROA not before: Sun 03 May 2026 02:14:00 +0000 ROA not after: Sun 02 May 2027 02:19:00 +0000 asID: 23679 IP address blocks: 2401:2900:8888::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/D09EA95FF10C0166C2954C997A8A4989BD890A87.crl rsync://rpki-rsync.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/D09EA95FF10C0166C2954C997A8A4989BD890A87.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D09EA95FF10C0166C2954C997A8A4989BD890A87.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 02:11:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:4e:47:97:dd:a7:88:0c:2b:84:1c:70:b7:87:f9:8d:cf:36:5d:e1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D09EA95FF10C0166C2954C997A8A4989BD890A87 Validity Not Before: May 3 02:14:00 2026 GMT Not After : May 2 02:19:00 2027 GMT Subject: CN=12A35350B7DD377A330AA39ECF69C14F9A1DAF48 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:b6:9d:77:a3:46:e0:3b:09:a5:1b:a4:78:43: 8a:8a:f1:f4:83:70:f3:a4:28:e0:3d:5a:eb:f0:38: 5e:88:81:ac:d0:01:34:eb:72:4e:c4:e6:26:2c:65: 8c:9f:b0:06:e5:ca:62:74:0d:a8:77:e7:0a:4f:f3: e8:f0:83:42:80:93:98:a2:37:68:cf:a7:68:28:58: f4:22:42:3d:8a:56:fa:66:27:b0:b4:00:78:7f:d4: 62:e2:2e:1d:98:92:3a:62:48:e0:0c:c1:95:be:f4: b6:09:0f:44:ac:f3:cd:d2:56:a3:00:02:32:80:16: 75:d8:26:6d:3e:ae:32:9b:eb:39:09:bd:47:e9:cf: d8:51:36:95:84:28:73:40:84:c3:92:9a:5a:e7:6d: bf:25:cd:64:f3:ee:be:4c:53:b8:2b:ee:c2:ee:6f: 65:b1:f3:5e:f3:b7:fd:d8:45:57:aa:0f:a6:72:6c: 1f:17:73:14:9d:90:6c:3e:77:ec:29:8e:c0:62:a7: 6a:df:95:e5:a2:67:11:8a:04:66:1b:72:ed:dc:76: 85:e5:6c:b5:75:53:b2:e4:f5:c8:b7:10:fc:98:2e: 9e:5f:2c:5f:33:72:67:0d:da:73:d4:74:b4:cf:d4: 45:67:19:93:63:69:b2:19:a5:77:32:af:7e:81:7b: a8:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:A3:53:50:B7:DD:37:7A:33:0A:A3:9E:CF:69:C1:4F:9A:1D:AF:48 X509v3 Authority Key Identifier: keyid:D0:9E:A9:5F:F1:0C:01:66:C2:95:4C:99:7A:8A:49:89:BD:89:0A:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/D09EA95FF10C0166C2954C997A8A4989BD890A87.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D09EA95FF10C0166C2954C997A8A4989BD890A87.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/323430313a323930303a383838383a3a2f34382d3438203d3e203233363739.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:2900:8888::/48 Signature Algorithm: sha256WithRSAEncryption 65:69:27:06:0a:1d:77:cf:ab:de:0e:a3:4d:a4:7e:84:07:1f: f6:46:eb:05:cb:4b:dc:c7:40:18:32:44:5a:ca:04:91:4c:a0: 2e:9c:08:e9:a7:d1:4c:73:b4:c0:18:ff:1a:ea:1e:2d:83:02: 24:6e:5a:af:5f:cf:17:74:ab:9b:06:89:d3:48:bd:06:d7:b5: d4:12:4f:eb:50:13:a9:5f:29:8d:cd:ef:1c:76:ad:5c:32:92: a7:ff:83:9f:c2:1c:78:16:a6:5d:14:cc:0f:46:fd:47:b7:c7: 7d:a9:79:a6:31:a1:80:49:59:8b:dc:70:97:21:41:b4:9b:d7: 90:ab:58:52:8c:96:58:9f:2f:b3:35:63:91:e7:ea:02:f5:63: 64:ef:a2:a5:fa:6d:e9:47:fe:bb:84:29:d5:cf:57:04:77:09: c0:e9:95:e5:4a:6d:9a:82:de:94:d1:5e:de:99:43:bf:93:df: 5a:43:99:ba:d9:55:3e:3e:29:1a:27:2d:91:c7:c2:bd:92:f5: 6b:26:c7:29:78:ee:c5:aa:b3:aa:75:9c:38:b3:ba:bb:e5:15: b6:9d:75:77:b9:90:e9:d1:e3:0e:95:e6:21:4e:0c:c9:0c:63: c4:55:d3:b6:8a:5d:c4:01:48:0f:55:bc:c2:18:c0:d3:dc:36: 71:a7:f1:4c -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUfk5Hl92niAwrhBxwt4f5jc82XeEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDA5RUE5NUZGMTBDMDE2NkMyOTU0Qzk5N0E4QTQ5ODlC RDg5MEE4NzAeFw0yNjA1MDMwMjE0MDBaFw0yNzA1MDIwMjE5MDBaMDMxMTAvBgNV BAMTKDEyQTM1MzUwQjdERDM3N0EzMzBBQTM5RUNGNjlDMTRGOUExREFGNDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxtp13o0bgOwmlG6R4Q4qK8fSD cPOkKOA9WuvwOF6IgazQATTrck7E5iYsZYyfsAblymJ0Dah35wpP8+jwg0KAk5ii N2jPp2goWPQiQj2KVvpmJ7C0AHh/1GLiLh2YkjpiSOAMwZW+9LYJD0Ss883SVqMA AjKAFnXYJm0+rjKb6zkJvUfpz9hRNpWEKHNAhMOSmlrnbb8lzWTz7r5MU7gr7sLu b2Wx817zt/3YRVeqD6ZybB8XcxSdkGw+d+wpjsBip2rfleWiZxGKBGYbcu3cdoXl bLV1U7Lk9ci3EPyYLp5fLF8zcmcN2nPUdLTP1EVnGZNjabIZpXcyr36Be6hvAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUEqNTULfdN3ozCqOez2nBT5odr0gwHwYDVR0j BBgwFoAU0J6pX/EMAWbClUyZeopJib2JCocwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MjAxNDMyY2MtM2JjOS00ODU4LWI1MDYtMjE4YWFiMGIwODljLzAvRDA5RUE5NUZG MTBDMDE2NkMyOTU0Qzk5N0E4QTQ5ODlCRDg5MEE4Ny5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9EMDlFQTk1RkYxMEMwMTY2QzI5NTRDOTk3QThBNDk4OUJEODkw QTg3LmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUFBzALhoGLcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzIwMTQzMmNjLTNiYzktNDg1OC1i NTA2LTIxOGFhYjBiMDg5Yy8wLzMyMzQzMDMxM2EzMjM5MzAzMDNhMzgzODM4Mzgz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMjMzMzYzNzM5LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAEp AIiIMA0GCSqGSIb3DQEBCwUAA4IBAQBlaScGCh13z6veDqNNpH6EBx/2RusFy0vc x0AYMkRaygSRTKAunAjpp9FMc7TAGP8a6h4tgwIkblqvX88XdKubBonTSL0G17XU Ek/rUBOpXymNze8cdq1cMpKn/4Ofwhx4FqZdFMwPRv1Ht8d9qXmmMaGASVmL3HCX IUG0m9eQq1hSjJZYny+zNWOR5+oC9WNk76Kl+m3pR/67hCnVz1cEdwnA6ZXlSm2a gt6U0V7emUO/k99aQ5m62VU+PikaJy2Rx8K9kvVrJscpeO7FqrOqdZw4s7q75RW2 nXV3uZDp0eMOleYhTgzJDGPEVdO2il3EAUgPVbzCGMDT3DZxp/FM -----END CERTIFICATE-----Generated at Wed May 13 14:56:51 2026 by rpki-client