$ rpki-client -vvf rpki-rsync.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/323430363a633634303a323a3a2f34382d3438203d3e20313431313337.roa File: 323430363a633634303a323a3a2f34382d3438203d3e20313431313337.roa (raw, json) Hash identifier: qh5eFZWjtfs6SGeMUmGMmglBO26iaZvOjL82WMbtwVc= Subject key identifier: B1:4D:B4:25:52:CE:68:45:92:5E:05:6A:76:19:6D:EE:62:88:A9:E4 Certificate issuer: /CN=AC861103DDC024E3BEB681351D66B027A8BA785A Certificate serial: 61D6B20F86061CF61C393D135BC9CF43EA2833DC Authority key identifier: AC:86:11:03:DD:C0:24:E3:BE:B6:81:35:1D:66:B0:27:A8:BA:78:5A Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AC861103DDC024E3BEB681351D66B027A8BA785A.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/323430363a633634303a323a3a2f34382d3438203d3e20313431313337.roa Signing time: Sun 03 May 2026 02:20:19 +0000 ROA not before: Sun 03 May 2026 02:15:19 +0000 ROA not after: Sun 02 May 2027 02:20:19 +0000 asID: 141137 IP address blocks: 2406:c640:2::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/AC861103DDC024E3BEB681351D66B027A8BA785A.crl rsync://rpki-rsync.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/AC861103DDC024E3BEB681351D66B027A8BA785A.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AC861103DDC024E3BEB681351D66B027A8BA785A.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 21:02:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:d6:b2:0f:86:06:1c:f6:1c:39:3d:13:5b:c9:cf:43:ea:28:33:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AC861103DDC024E3BEB681351D66B027A8BA785A Validity Not Before: May 3 02:15:19 2026 GMT Not After : May 2 02:20:19 2027 GMT Subject: CN=B14DB42552CE6845925E056A76196DEE6288A9E4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:19:ee:13:01:4a:aa:6c:6c:e9:a2:15:24:3d: 1f:39:5a:ab:80:7d:bd:d1:90:1a:36:1f:bc:a8:ea: 3f:08:de:f9:df:83:71:4b:bd:fd:c1:41:20:6b:f5: 84:f8:e5:e3:68:fd:77:ed:3d:17:29:06:7c:4b:4e: 51:89:53:9a:78:80:15:2a:6f:f6:49:9b:8e:a4:28: d6:37:7c:ff:54:53:be:50:25:a6:e0:fe:bf:f3:03: cd:6e:a5:86:b9:ed:05:83:a4:be:9c:5e:31:cd:b6: c7:3f:f7:ea:b8:31:03:6f:db:3b:ce:9e:c1:76:40: ca:d7:5c:c3:60:41:f2:fd:2b:77:95:e7:1e:cc:50: 5f:12:6d:a8:9f:f1:76:de:ad:63:7c:e2:64:92:7c: 66:34:72:66:09:e8:bb:75:cd:66:cf:fc:48:8a:d6: 63:60:d4:8a:5e:37:2c:a0:0a:bf:ee:e9:20:2e:ba: 87:3d:64:b5:06:98:70:77:23:6f:d1:16:aa:e9:be: 58:21:85:57:3a:9e:2b:a3:35:23:3d:ae:6d:92:03: 8c:45:a2:a6:91:5b:f5:9f:e7:5a:8d:85:78:eb:5a: b8:6d:17:70:21:96:23:25:8f:71:19:ef:25:29:bb: 30:20:6c:73:1c:5b:37:56:0b:18:b9:1c:5d:e0:7a: 16:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:4D:B4:25:52:CE:68:45:92:5E:05:6A:76:19:6D:EE:62:88:A9:E4 X509v3 Authority Key Identifier: keyid:AC:86:11:03:DD:C0:24:E3:BE:B6:81:35:1D:66:B0:27:A8:BA:78:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/AC861103DDC024E3BEB681351D66B027A8BA785A.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AC861103DDC024E3BEB681351D66B027A8BA785A.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/323430363a633634303a323a3a2f34382d3438203d3e20313431313337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:c640:2::/48 Signature Algorithm: sha256WithRSAEncryption 38:a8:fe:58:b4:72:94:a7:97:3e:2e:3f:a0:d6:ce:36:a7:a7: be:f4:dc:d6:f8:f2:f7:e1:08:1d:b4:f9:a8:ec:f5:fa:22:87: c1:35:bd:50:7c:1d:e9:16:60:9c:88:cc:45:5b:05:44:a1:83: 28:f0:b2:95:3f:1b:1e:89:89:21:18:7d:7b:94:ef:55:b9:2c: c0:c9:bb:c4:14:b5:35:f0:49:49:91:90:88:4c:04:0f:21:7b: 71:75:b6:57:87:6b:49:d9:ec:94:01:01:9d:bd:b9:6b:1b:1c: 46:a4:14:cd:03:8e:7a:4c:0c:dc:78:26:66:9f:11:1e:a8:57: 29:23:b5:f0:05:22:8e:ec:fc:81:a7:fb:65:6f:2f:2e:56:c2: d2:1a:c9:df:04:f1:2b:c7:ec:79:5e:1a:60:d2:a2:e3:29:6c: 7f:0c:5c:6e:a0:df:32:f8:88:10:80:37:04:dc:12:8e:6a:0a: 77:d4:a6:7e:fc:03:6b:db:c9:c9:26:d1:bc:7c:ac:30:92:fc: cd:dd:90:5b:7f:e6:4d:b2:29:49:2d:66:f5:49:c7:a1:3c:5f: c5:14:a2:2c:d3:f2:1c:5b:02:03:09:03:32:3c:bd:d0:85:08: 57:7e:e1:e7:09:35:fa:3b:f5:93:c9:87:ed:2a:e8:e1:31:72: 35:d9:4d:a5 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUYdayD4YGHPYcOT0TW8nPQ+ooM9wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUM4NjExMDNEREMwMjRFM0JFQjY4MTM1MUQ2NkIwMjdB OEJBNzg1QTAeFw0yNjA1MDMwMjE1MTlaFw0yNzA1MDIwMjIwMTlaMDMxMTAvBgNV BAMTKEIxNERCNDI1NTJDRTY4NDU5MjVFMDU2QTc2MTk2REVFNjI4OEE5RTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBGe4TAUqqbGzpohUkPR85WquA fb3RkBo2H7yo6j8I3vnfg3FLvf3BQSBr9YT45eNo/XftPRcpBnxLTlGJU5p4gBUq b/ZJm46kKNY3fP9UU75QJabg/r/zA81upYa57QWDpL6cXjHNtsc/9+q4MQNv2zvO nsF2QMrXXMNgQfL9K3eV5x7MUF8Sbaif8XberWN84mSSfGY0cmYJ6Lt1zWbP/EiK 1mNg1IpeNyygCr/u6SAuuoc9ZLUGmHB3I2/RFqrpvlghhVc6niujNSM9rm2SA4xF oqaRW/Wf51qNhXjrWrhtF3AhliMlj3EZ7yUpuzAgbHMcWzdWCxi5HF3gehbNAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUsU20JVLOaEWSXgVqdhlt7mKIqeQwHwYDVR0j BBgwFoAUrIYRA93AJOO+toE1HWawJ6i6eFowDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MjQ5MDM0NWUtMmQ1Ny00MzQ5LWI3OGYtYzhiMThhNDQyNDQ1LzAvQUM4NjExMDNE REMwMjRFM0JFQjY4MTM1MUQ2NkIwMjdBOEJBNzg1QS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9BQzg2MTEwM0REQzAyNEUzQkVCNjgxMzUxRDY2QjAyN0E4QkE3 ODVBLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzI0OTAzNDVlLTJkNTctNDM0OS1i NzhmLWM4YjE4YTQ0MjQ0NS8wLzMyMzQzMDM2M2E2MzM2MzQzMDNhMzIzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTM0MzEzMTMzMzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBsZAAAIw DQYJKoZIhvcNAQELBQADggEBADio/li0cpSnlz4uP6DWzjanp7703Nb48vfhCB20 +ajs9foih8E1vVB8HekWYJyIzEVbBUShgyjwspU/Gx6JiSEYfXuU71W5LMDJu8QU tTXwSUmRkIhMBA8he3F1tleHa0nZ7JQBAZ29uWsbHEakFM0DjnpMDNx4JmafER6o VykjtfAFIo7s/IGn+2VvLy5WwtIayd8E8SvH7HleGmDSouMpbH8MXG6g3zL4iBCA NwTcEo5qCnfUpn78A2vbyckm0bx8rDCS/M3dkFt/5k2yKUktZvVJx6E8X8UUoizT 8hxbAgMJAzI8vdCFCFd+4ecJNfo79ZPJh+0q6OExcjXZTaU= -----END CERTIFICATE-----Generated at Wed May 13 12:42:22 2026 by rpki-client