$ rpki-client -vvf rpki-rsync.idnic.net/repo/24ba6778-b16d-4ba8-984f-34e419fc9c49/0/323430373a373234303a3a2f33322d3332203d3e203538383230.roa File: 323430373a373234303a3a2f33322d3332203d3e203538383230.roa (raw, json) Hash identifier: XbL3x6HL60HenYCDQv+H+1fWOEpLqL6GUYrIDXhN5Ec= Subject key identifier: CB:D1:A3:FC:00:A0:05:E7:F7:C9:88:3C:7D:3D:F8:10:E4:D0:78:D5 Certificate issuer: /CN=D7B3D29A1C58F2A764EF71D90EEB34A08523E14B Certificate serial: 19AD10EA4C06BE7902957B837D50D40A875DB8C2 Authority key identifier: D7:B3:D2:9A:1C:58:F2:A7:64:EF:71:D9:0E:EB:34:A0:85:23:E1:4B Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D7B3D29A1C58F2A764EF71D90EEB34A08523E14B.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/24ba6778-b16d-4ba8-984f-34e419fc9c49/0/323430373a373234303a3a2f33322d3332203d3e203538383230.roa Signing time: Sun 03 May 2026 02:20:20 +0000 ROA not before: Sun 03 May 2026 02:15:20 +0000 ROA not after: Sun 02 May 2027 02:20:20 +0000 asID: 58820 IP address blocks: 2407:7240::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/24ba6778-b16d-4ba8-984f-34e419fc9c49/0/D7B3D29A1C58F2A764EF71D90EEB34A08523E14B.crl rsync://rpki-rsync.idnic.net/repo/24ba6778-b16d-4ba8-984f-34e419fc9c49/0/D7B3D29A1C58F2A764EF71D90EEB34A08523E14B.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D7B3D29A1C58F2A764EF71D90EEB34A08523E14B.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:20:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:ad:10:ea:4c:06:be:79:02:95:7b:83:7d:50:d4:0a:87:5d:b8:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D7B3D29A1C58F2A764EF71D90EEB34A08523E14B Validity Not Before: May 3 02:15:20 2026 GMT Not After : May 2 02:20:20 2027 GMT Subject: CN=CBD1A3FC00A005E7F7C9883C7D3DF810E4D078D5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:1d:f8:8e:e2:33:c7:a7:c1:2f:b9:59:48:77: 82:a6:84:07:c7:5b:44:a4:ec:db:35:39:04:ba:59: 38:2c:5d:26:a5:d8:f4:80:7b:bd:e4:71:e3:1b:03: 06:f8:96:d1:a1:5c:e3:2a:a8:09:52:6f:3f:61:05: 2b:35:09:2a:67:58:1e:51:2e:db:b2:e5:9a:fc:6f: 16:e4:2b:ce:69:49:bb:50:9c:9d:9c:e4:64:96:ae: f0:20:df:cb:93:01:b6:f6:de:e5:ad:ae:d7:15:e8: e6:80:34:11:50:76:cf:13:67:57:74:5f:98:9b:15: 60:8c:29:93:90:a1:74:56:ac:02:0b:42:21:35:4f: 2f:4b:ff:7c:76:51:a5:67:fe:25:57:9f:34:23:d7: c9:34:55:3a:a7:1c:9f:c4:f2:90:1f:88:08:df:27: 65:33:e3:b3:56:4d:aa:5a:6d:70:7b:97:c2:af:bc: c8:c1:d3:01:35:4f:71:c9:11:7c:73:1e:a8:86:da: 4a:d9:3d:02:cd:10:9e:09:8d:c1:73:84:93:9f:c2: fb:42:8f:e2:fb:f2:a8:50:4a:36:f1:e0:03:5d:5e: 03:84:45:43:a4:4f:a7:8e:ef:3a:22:c7:03:43:55: cc:7d:1e:87:25:31:2a:57:1f:f2:aa:77:c0:a6:d6: 6a:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:D1:A3:FC:00:A0:05:E7:F7:C9:88:3C:7D:3D:F8:10:E4:D0:78:D5 X509v3 Authority Key Identifier: keyid:D7:B3:D2:9A:1C:58:F2:A7:64:EF:71:D9:0E:EB:34:A0:85:23:E1:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/24ba6778-b16d-4ba8-984f-34e419fc9c49/0/D7B3D29A1C58F2A764EF71D90EEB34A08523E14B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D7B3D29A1C58F2A764EF71D90EEB34A08523E14B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/24ba6778-b16d-4ba8-984f-34e419fc9c49/0/323430373a373234303a3a2f33322d3332203d3e203538383230.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2407:7240::/32 Signature Algorithm: sha256WithRSAEncryption a6:2c:5b:8e:1e:2c:73:bc:7b:c1:9c:aa:0d:d6:0d:55:12:3d: 06:ca:81:25:5f:f2:e5:f9:10:cb:28:da:0b:9b:f5:2a:25:77: 74:9d:f5:aa:95:d7:7f:b0:76:07:e1:aa:b2:25:20:50:9c:12: 57:6a:09:5c:91:3e:69:22:1e:b9:41:8f:31:61:32:63:43:28: c7:d3:da:f7:e2:5f:46:6b:39:79:dc:d4:f9:a0:2b:c1:6a:74: 29:ff:66:36:d4:b9:33:ea:e9:c2:12:69:b4:03:a2:90:2b:5e: 69:68:9e:bc:8f:36:cd:c4:e4:98:bb:ba:e0:5b:2d:bf:d4:ac: b3:37:f4:52:6c:90:57:0e:11:4b:47:fd:5b:88:b0:50:e3:36: 2c:95:8b:0b:0e:11:54:3d:5b:f5:84:f7:a6:05:11:79:47:26: a0:a8:2b:af:69:16:57:f8:ba:7c:8b:15:12:eb:8e:89:7f:d6: 36:2d:d8:e6:c2:d0:ac:ab:3f:99:7d:65:52:1e:a6:01:7f:10: 38:95:51:83:74:c8:16:d7:74:35:d4:37:52:46:0d:e1:d8:c4: 78:5d:c0:11:62:36:06:2a:13:bc:14:2a:e5:3f:63:67:c3:f8: 6e:62:d3:9b:ca:84:0b:b9:67:ff:91:3a:2f:34:e8:92:8d:a7: bc:3b:0e:a6 -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUGa0Q6kwGvnkClXuDfVDUCodduMIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDdCM0QyOUExQzU4RjJBNzY0RUY3MUQ5MEVFQjM0QTA4 NTIzRTE0QjAeFw0yNjA1MDMwMjE1MjBaFw0yNzA1MDIwMjIwMjBaMDMxMTAvBgNV BAMTKENCRDFBM0ZDMDBBMDA1RTdGN0M5ODgzQzdEM0RGODEwRTREMDc4RDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBHfiO4jPHp8EvuVlId4KmhAfH W0Sk7Ns1OQS6WTgsXSal2PSAe73kceMbAwb4ltGhXOMqqAlSbz9hBSs1CSpnWB5R Ltuy5Zr8bxbkK85pSbtQnJ2c5GSWrvAg38uTAbb23uWtrtcV6OaANBFQds8TZ1d0 X5ibFWCMKZOQoXRWrAILQiE1Ty9L/3x2UaVn/iVXnzQj18k0VTqnHJ/E8pAfiAjf J2Uz47NWTapabXB7l8KvvMjB0wE1T3HJEXxzHqiG2krZPQLNEJ4JjcFzhJOfwvtC j+L78qhQSjbx4ANdXgOERUOkT6eO7zoixwNDVcx9HoclMSpXH/Kqd8Cm1mpLAgMB AAGjggIxMIICLTAdBgNVHQ4EFgQUy9Gj/ACgBef3yYg8fT34EOTQeNUwHwYDVR0j BBgwFoAU17PSmhxY8qdk73HZDus0oIUj4UswDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MjRiYTY3NzgtYjE2ZC00YmE4LTk4NGYtMzRlNDE5ZmM5YzQ5LzAvRDdCM0QyOUEx QzU4RjJBNzY0RUY3MUQ5MEVFQjM0QTA4NTIzRTE0Qi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9EN0IzRDI5QTFDNThGMkE3NjRFRjcxRDkwRUVCMzRBMDg1MjNF MTRCLmNlcjCBoQYIKwYBBQUHAQsEgZQwgZEwgY4GCCsGAQUFBzALhoGBcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzI0YmE2Nzc4LWIxNmQtNGJhOC05 ODRmLTM0ZTQxOWZjOWM0OS8wLzMyMzQzMDM3M2EzNzMyMzQzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDM1MzgzODMyMzAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkB3JAMA0GCSqGSIb3 DQEBCwUAA4IBAQCmLFuOHixzvHvBnKoN1g1VEj0GyoElX/Ll+RDLKNoLm/UqJXd0 nfWqldd/sHYH4aqyJSBQnBJXaglckT5pIh65QY8xYTJjQyjH09r34l9Gazl53NT5 oCvBanQp/2Y21Lkz6unCEmm0A6KQK15paJ68jzbNxOSYu7rgWy2/1KyzN/RSbJBX DhFLR/1biLBQ4zYslYsLDhFUPVv1hPemBRF5RyagqCuvaRZX+Lp8ixUS646Jf9Y2 LdjmwtCsqz+ZfWVSHqYBfxA4lVGDdMgW13Q11DdSRg3h2MR4XcARYjYGKhO8FCrl P2Nnw/huYtObyoQLuWf/kTovNOiSjae8Ow6m -----END CERTIFICATE-----Generated at Wed May 13 02:11:39 2026 by rpki-client