$ rpki-client -vvf rpki-rsync.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/323430313a323930303a3a2f34302d3430203d3e203233363739.roa File: 323430313a323930303a3a2f34302d3430203d3e203233363739.roa (raw, json) Hash identifier: TrX27GUrlWHy4UmdNn0DOLuNoqu35JDk2aI6N2MNHwo= Subject key identifier: 44:0E:40:3D:FB:5A:7B:AB:AD:D6:8A:C4:11:92:72:A0:4B:F1:BC:4B Certificate issuer: /CN=D09EA95FF10C0166C2954C997A8A4989BD890A87 Certificate serial: 7546F00691AA0E84A17F40F78AF4051B26AB87A5 Authority key identifier: D0:9E:A9:5F:F1:0C:01:66:C2:95:4C:99:7A:8A:49:89:BD:89:0A:87 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D09EA95FF10C0166C2954C997A8A4989BD890A87.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/323430313a323930303a3a2f34302d3430203d3e203233363739.roa Signing time: Sun 03 May 2026 02:18:55 +0000 ROA not before: Sun 03 May 2026 02:13:55 +0000 ROA not after: Sun 02 May 2027 02:18:55 +0000 asID: 23679 IP address blocks: 2401:2900::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/D09EA95FF10C0166C2954C997A8A4989BD890A87.crl rsync://rpki-rsync.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/D09EA95FF10C0166C2954C997A8A4989BD890A87.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D09EA95FF10C0166C2954C997A8A4989BD890A87.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 02:11:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:46:f0:06:91:aa:0e:84:a1:7f:40:f7:8a:f4:05:1b:26:ab:87:a5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D09EA95FF10C0166C2954C997A8A4989BD890A87 Validity Not Before: May 3 02:13:55 2026 GMT Not After : May 2 02:18:55 2027 GMT Subject: CN=440E403DFB5A7BABADD68AC4119272A04BF1BC4B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:8c:99:f3:40:3a:b1:a8:bf:04:f4:62:aa:12: ff:9d:83:10:51:fe:24:9e:9b:e5:e0:df:35:08:dd: b6:e5:b2:0e:48:24:2f:67:80:7c:52:db:2b:fc:15: 39:86:8a:b2:4c:1b:36:23:0b:5b:1f:ce:64:00:b4: 92:38:f7:b7:e7:7d:71:7d:52:4e:0b:13:8c:3f:4e: 3a:3f:84:6b:81:f6:8b:d7:80:34:0e:34:b7:a7:5e: 60:ec:52:48:47:ea:9c:a2:80:c5:e1:3f:20:55:42: 4e:b2:0d:83:0e:3b:d6:25:37:d8:1c:12:f6:f2:83: 99:58:82:0a:ba:c9:8b:0f:f2:c9:e3:be:7b:10:cb: c4:5d:3c:55:f6:d3:db:e9:e3:2e:56:49:9a:1d:be: ca:5f:0f:0f:5b:ac:84:91:c2:2c:3b:77:4c:d0:ae: d6:64:7a:49:f1:a9:bd:57:51:68:5d:04:62:b8:db: 13:b7:30:10:10:04:f8:29:44:a5:8e:70:51:db:e4: 8a:b1:13:3a:71:0f:03:4a:66:74:e7:81:17:60:bb: ea:a4:dd:69:1c:e3:7d:cd:62:47:70:e0:be:3f:96: dc:c5:e6:02:73:db:79:5a:ea:02:00:3f:05:96:15: 6d:ce:ee:f4:3e:2e:46:5b:50:0b:8f:70:d4:97:67: 94:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:0E:40:3D:FB:5A:7B:AB:AD:D6:8A:C4:11:92:72:A0:4B:F1:BC:4B X509v3 Authority Key Identifier: keyid:D0:9E:A9:5F:F1:0C:01:66:C2:95:4C:99:7A:8A:49:89:BD:89:0A:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/D09EA95FF10C0166C2954C997A8A4989BD890A87.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D09EA95FF10C0166C2954C997A8A4989BD890A87.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/323430313a323930303a3a2f34302d3430203d3e203233363739.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:2900::/40 Signature Algorithm: sha256WithRSAEncryption 84:4e:3a:78:f2:ee:f7:2d:22:29:14:ca:44:bd:d1:10:a9:e8: d8:51:08:60:44:93:4e:16:9a:6e:b4:b0:50:bf:b8:ed:84:9a: e6:21:6a:7f:8e:17:9b:f4:dc:1c:94:29:55:4d:60:7d:a7:7d: ec:12:59:74:6c:a2:b1:ef:f6:a2:7c:6c:26:71:6f:78:14:70: db:e4:35:37:bf:5d:b6:40:26:e8:81:0a:9b:4e:d0:17:dc:c5: 7e:3e:21:7e:b2:35:46:05:a7:a7:3a:31:87:eb:aa:10:e7:9f: 5c:cf:a2:39:39:68:e4:c5:42:d9:25:19:2b:33:d2:59:42:6f: 45:b9:d3:2d:22:df:96:d0:11:93:7e:75:3f:ae:33:88:86:6c: 4e:6f:ed:07:49:77:34:b3:55:1d:8b:7c:bf:d8:96:8a:02:e8: 8b:46:a5:cb:8f:6c:b3:d8:63:05:7d:aa:1d:c5:d2:8a:4d:e6: 06:50:21:bf:d8:ca:e7:b9:a4:5f:53:e3:3b:50:d9:64:99:b5: 23:82:92:4d:99:13:78:7f:14:7b:b8:8a:2b:2b:63:8f:6d:36: 30:99:71:69:fb:fc:6a:e1:ed:8a:7a:fb:bf:03:9c:d0:9f:16: 86:b6:35:4c:67:f6:c4:63:8e:43:5f:c3:41:52:1a:dd:72:a5: 25:8e:1c:6b -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUdUbwBpGqDoShf0D3ivQFGyarh6UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDA5RUE5NUZGMTBDMDE2NkMyOTU0Qzk5N0E4QTQ5ODlC RDg5MEE4NzAeFw0yNjA1MDMwMjEzNTVaFw0yNzA1MDIwMjE4NTVaMDMxMTAvBgNV BAMTKDQ0MEU0MDNERkI1QTdCQUJBREQ2OEFDNDExOTI3MkEwNEJGMUJDNEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtjJnzQDqxqL8E9GKqEv+dgxBR /iSem+Xg3zUI3bblsg5IJC9ngHxS2yv8FTmGirJMGzYjC1sfzmQAtJI497fnfXF9 Uk4LE4w/Tjo/hGuB9ovXgDQONLenXmDsUkhH6pyigMXhPyBVQk6yDYMOO9YlN9gc Evbyg5lYggq6yYsP8snjvnsQy8RdPFX209vp4y5WSZodvspfDw9brISRwiw7d0zQ rtZkeknxqb1XUWhdBGK42xO3MBAQBPgpRKWOcFHb5IqxEzpxDwNKZnTngRdgu+qk 3Wkc433NYkdw4L4/ltzF5gJz23la6gIAPwWWFW3O7vQ+LkZbUAuPcNSXZ5RjAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQURA5APftae6ut1orEEZJyoEvxvEswHwYDVR0j BBgwFoAU0J6pX/EMAWbClUyZeopJib2JCocwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MjAxNDMyY2MtM2JjOS00ODU4LWI1MDYtMjE4YWFiMGIwODljLzAvRDA5RUE5NUZG MTBDMDE2NkMyOTU0Qzk5N0E4QTQ5ODlCRDg5MEE4Ny5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9EMDlFQTk1RkYxMEMwMTY2QzI5NTRDOTk3QThBNDk4OUJEODkw QTg3LmNlcjCBoQYIKwYBBQUHAQsEgZQwgZEwgY4GCCsGAQUFBzALhoGBcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzIwMTQzMmNjLTNiYzktNDg1OC1i NTA2LTIxOGFhYjBiMDg5Yy8wLzMyMzQzMDMxM2EzMjM5MzAzMDNhM2EyZjM0MzAy ZDM0MzAyMDNkM2UyMDMyMzMzNjM3Mzkucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgAkASkAADANBgkqhkiG 9w0BAQsFAAOCAQEAhE46ePLu9y0iKRTKRL3REKno2FEIYESTThaabrSwUL+47YSa 5iFqf44Xm/TcHJQpVU1gfad97BJZdGyise/2onxsJnFveBRw2+Q1N79dtkAm6IEK m07QF9zFfj4hfrI1RgWnpzoxh+uqEOefXM+iOTlo5MVC2SUZKzPSWUJvRbnTLSLf ltARk351P64ziIZsTm/tB0l3NLNVHYt8v9iWigLoi0aly49ss9hjBX2qHcXSik3m BlAhv9jK57mkX1PjO1DZZJm1I4KSTZkTeH8Ue7iKKytjj202MJlxafv8auHtinr7 vwOc0J8WhrY1TGf2xGOOQ1/DQVIa3XKlJY4caw== -----END CERTIFICATE-----Generated at Wed May 13 07:15:22 2026 by rpki-client