$ rpki-client -vvf rpki-rsync.idnic.net/repo/222e1f3c-5a48-4f39-aac7-e012ed709d6a/0/323430353a326434303a36343a3a2f34382d3438203d3e203535363935.roa File: 323430353a326434303a36343a3a2f34382d3438203d3e203535363935.roa (raw, json) Hash identifier: yXjHOo1VGbJmJqyGKpG7QhsHY0G1S2EWqXUcTRW8WwE= Subject key identifier: 45:70:CF:1B:21:29:13:35:CB:6C:29:A5:97:4A:A3:C0:7E:1F:BB:1B Certificate issuer: /CN=6E6A5F0E4DD7C2138003363A1A331EFD4330AEB9 Certificate serial: 4C3D4CF358611C19D70955AAED303A123B105432 Authority key identifier: 6E:6A:5F:0E:4D:D7:C2:13:80:03:36:3A:1A:33:1E:FD:43:30:AE:B9 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/6E6A5F0E4DD7C2138003363A1A331EFD4330AEB9.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/222e1f3c-5a48-4f39-aac7-e012ed709d6a/0/323430353a326434303a36343a3a2f34382d3438203d3e203535363935.roa Signing time: Sun 03 May 2026 02:19:46 +0000 ROA not before: Sun 03 May 2026 02:14:46 +0000 ROA not after: Sun 02 May 2027 02:19:46 +0000 asID: 55695 IP address blocks: 2405:2d40:64::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/222e1f3c-5a48-4f39-aac7-e012ed709d6a/0/6E6A5F0E4DD7C2138003363A1A331EFD4330AEB9.crl rsync://rpki-rsync.idnic.net/repo/222e1f3c-5a48-4f39-aac7-e012ed709d6a/0/6E6A5F0E4DD7C2138003363A1A331EFD4330AEB9.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/6E6A5F0E4DD7C2138003363A1A331EFD4330AEB9.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 01:46:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:3d:4c:f3:58:61:1c:19:d7:09:55:aa:ed:30:3a:12:3b:10:54:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6E6A5F0E4DD7C2138003363A1A331EFD4330AEB9 Validity Not Before: May 3 02:14:46 2026 GMT Not After : May 2 02:19:46 2027 GMT Subject: CN=4570CF1B21291335CB6C29A5974AA3C07E1FBB1B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:1b:52:e4:c6:65:a2:d7:11:41:c0:c2:fe:76: 30:39:05:ce:aa:78:2e:eb:c5:5c:6b:41:20:7d:41: 2f:1f:76:a7:78:a1:a7:58:18:30:18:74:9c:00:8a: 11:c2:0a:b1:99:b5:c7:bf:9d:39:f1:5f:2c:1f:44: 0e:00:fc:12:3a:39:60:5b:ad:7d:f7:31:0e:28:16: 51:6d:78:26:9a:3e:c3:07:71:00:5e:5c:db:e8:80: f6:a8:75:e6:92:62:d4:0f:d1:01:0d:75:3c:29:70: 0d:b1:3a:9a:49:62:e3:8f:59:5c:fc:36:e3:88:cc: 05:45:bd:7e:2c:d5:c6:47:a7:38:f0:fd:bb:46:52: 0a:9e:46:71:8b:54:c7:35:6c:a3:51:92:64:f1:d2: d8:3c:01:ae:32:95:08:71:be:a8:16:76:f1:46:9a: d5:2d:eb:d1:21:27:2f:0d:52:68:8c:5e:1b:04:8c: bf:cd:89:14:74:f7:3c:d2:97:64:92:42:4d:ca:9f: d1:d9:fe:b6:f3:0f:8d:8c:1c:0c:b6:32:3b:6c:e8: 5f:35:90:8b:67:66:6f:0e:bd:53:b9:9b:35:95:96: b5:d3:4a:cd:05:f8:d5:ce:26:ff:91:a5:00:ad:aa: 30:ca:10:17:a1:82:e5:60:f8:e9:23:bc:e1:ca:a6: 81:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:70:CF:1B:21:29:13:35:CB:6C:29:A5:97:4A:A3:C0:7E:1F:BB:1B X509v3 Authority Key Identifier: keyid:6E:6A:5F:0E:4D:D7:C2:13:80:03:36:3A:1A:33:1E:FD:43:30:AE:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/222e1f3c-5a48-4f39-aac7-e012ed709d6a/0/6E6A5F0E4DD7C2138003363A1A331EFD4330AEB9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/6E6A5F0E4DD7C2138003363A1A331EFD4330AEB9.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/222e1f3c-5a48-4f39-aac7-e012ed709d6a/0/323430353a326434303a36343a3a2f34382d3438203d3e203535363935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:2d40:64::/48 Signature Algorithm: sha256WithRSAEncryption 7d:21:dd:3f:09:cc:c3:3f:d6:13:78:61:80:92:1e:14:c4:e6: a2:4c:e7:8e:4d:0b:51:7a:6c:70:a2:97:bc:90:5a:a0:ac:0e: db:8a:77:9d:b0:75:49:e4:4a:a8:ce:66:c9:3d:fb:e6:d1:63: b6:4c:90:cd:bf:40:13:d0:53:d2:9e:c7:61:56:3a:7a:78:24: b7:d6:4c:a1:a2:a4:f8:5c:00:93:f5:b2:1e:c8:7d:7f:a3:76: ca:4d:a0:95:8c:9e:28:ca:83:ee:21:67:14:a4:2c:39:41:14: 39:c9:69:db:ab:0e:9a:66:96:bd:96:53:bc:19:b6:22:c7:83: 9f:84:4e:5e:db:b7:94:3d:08:cb:95:f8:2c:22:e1:ff:b1:34: 7a:79:2a:4d:9d:e1:93:8f:64:45:3e:bc:69:6f:ef:00:40:e3: 69:13:84:94:62:90:d9:d7:5a:dd:5f:87:79:3a:10:6c:93:83: 21:a2:15:90:51:2c:c5:12:fa:6b:6c:bf:e7:cc:a5:5d:27:18: 15:63:70:9f:a0:60:97:5a:61:1b:69:7c:d7:f3:62:ce:c6:91: b3:b4:f7:a2:bb:46:5d:6f:c6:8f:42:1f:a6:45:ab:87:4e:26: dd:91:9d:97:29:b5:04:18:1e:bb:23:8f:80:04:6f:5b:33:59: a1:01:43:ba -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUTD1M81hhHBnXCVWq7TA6EjsQVDIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkU2QTVGMEU0REQ3QzIxMzgwMDMzNjNBMUEzMzFFRkQ0 MzMwQUVCOTAeFw0yNjA1MDMwMjE0NDZaFw0yNzA1MDIwMjE5NDZaMDMxMTAvBgNV BAMTKDQ1NzBDRjFCMjEyOTEzMzVDQjZDMjlBNTk3NEFBM0MwN0UxRkJCMUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCnG1LkxmWi1xFBwML+djA5Bc6q eC7rxVxrQSB9QS8fdqd4oadYGDAYdJwAihHCCrGZtce/nTnxXywfRA4A/BI6OWBb rX33MQ4oFlFteCaaPsMHcQBeXNvogPaodeaSYtQP0QENdTwpcA2xOppJYuOPWVz8 NuOIzAVFvX4s1cZHpzjw/btGUgqeRnGLVMc1bKNRkmTx0tg8Aa4ylQhxvqgWdvFG mtUt69EhJy8NUmiMXhsEjL/NiRR09zzSl2SSQk3Kn9HZ/rbzD42MHAy2Mjts6F81 kItnZm8OvVO5mzWVlrXTSs0F+NXOJv+RpQCtqjDKEBehguVg+OkjvOHKpoElAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQURXDPGyEpEzXLbCmll0qjwH4fuxswHwYDVR0j BBgwFoAUbmpfDk3XwhOAAzY6GjMe/UMwrrkwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MjIyZTFmM2MtNWE0OC00ZjM5LWFhYzctZTAxMmVkNzA5ZDZhLzAvNkU2QTVGMEU0 REQ3QzIxMzgwMDMzNjNBMUEzMzFFRkQ0MzMwQUVCOS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS82RTZBNUYwRTRERDdDMjEzODAwMzM2M0ExQTMzMUVGRDQzMzBB RUI5LmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzIyMmUxZjNjLTVhNDgtNGYzOS1h YWM3LWUwMTJlZDcwOWQ2YS8wLzMyMzQzMDM1M2EzMjY0MzQzMDNhMzYzNDNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzUzNjM5MzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBS1AAGQw DQYJKoZIhvcNAQELBQADggEBAH0h3T8JzMM/1hN4YYCSHhTE5qJM545NC1F6bHCi l7yQWqCsDtuKd52wdUnkSqjOZsk9++bRY7ZMkM2/QBPQU9Kex2FWOnp4JLfWTKGi pPhcAJP1sh7IfX+jdspNoJWMnijKg+4hZxSkLDlBFDnJadurDppmlr2WU7wZtiLH g5+ETl7bt5Q9CMuV+Cwi4f+xNHp5Kk2d4ZOPZEU+vGlv7wBA42kThJRikNnXWt1f h3k6EGyTgyGiFZBRLMUS+mtsv+fMpV0nGBVjcJ+gYJdaYRtpfNfzYs7GkbO096K7 Rl1vxo9CH6ZFq4dOJt2RnZcptQQYHrsjj4AEb1szWaEBQ7o= -----END CERTIFICATE-----Generated at Wed May 13 04:08:47 2026 by rpki-client