$ rpki-client -vvf rpki-rsync.idnic.net/repo/24ba6778-b16d-4ba8-984f-34e419fc9c49/0/323430373a373234303a3a2f33322d3438203d3e203538383230.roa File: 323430373a373234303a3a2f33322d3438203d3e203538383230.roa (raw, json) Hash identifier: pbfRu1u/17aE+5jbLOXSjK5kSHLY3NJFYSy/GgweGtc= Subject key identifier: C6:2F:00:C5:EE:1F:A8:20:75:B3:9D:F9:24:46:D9:76:95:91:F8:30 Certificate issuer: /CN=D7B3D29A1C58F2A764EF71D90EEB34A08523E14B Certificate serial: 6FA4333BC44590E31C2F451C92FD2563602D625B Authority key identifier: D7:B3:D2:9A:1C:58:F2:A7:64:EF:71:D9:0E:EB:34:A0:85:23:E1:4B Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D7B3D29A1C58F2A764EF71D90EEB34A08523E14B.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/24ba6778-b16d-4ba8-984f-34e419fc9c49/0/323430373a373234303a3a2f33322d3438203d3e203538383230.roa Signing time: Sun 03 May 2026 02:20:20 +0000 ROA not before: Sun 03 May 2026 02:15:20 +0000 ROA not after: Sun 02 May 2027 02:20:20 +0000 asID: 58820 IP address blocks: 2407:7240::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/24ba6778-b16d-4ba8-984f-34e419fc9c49/0/D7B3D29A1C58F2A764EF71D90EEB34A08523E14B.crl rsync://rpki-rsync.idnic.net/repo/24ba6778-b16d-4ba8-984f-34e419fc9c49/0/D7B3D29A1C58F2A764EF71D90EEB34A08523E14B.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D7B3D29A1C58F2A764EF71D90EEB34A08523E14B.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:20:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:a4:33:3b:c4:45:90:e3:1c:2f:45:1c:92:fd:25:63:60:2d:62:5b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D7B3D29A1C58F2A764EF71D90EEB34A08523E14B Validity Not Before: May 3 02:15:20 2026 GMT Not After : May 2 02:20:20 2027 GMT Subject: CN=C62F00C5EE1FA82075B39DF92446D9769591F830 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:1c:f3:72:4a:95:e5:68:52:85:39:da:75:5f: d1:eb:d5:6b:87:88:06:9d:08:db:4c:cb:87:79:f6: bd:23:47:34:78:9a:cc:d6:64:21:de:f0:0d:2b:64: a3:0d:e3:27:a4:34:94:1a:15:b1:72:43:3e:99:f4: 29:fe:c6:79:3a:7a:1c:ca:fb:cc:c7:47:41:06:19: 9c:4c:74:72:d0:f3:58:0c:d9:40:25:cb:c8:d0:08: 4d:2d:b4:c2:09:6f:bc:c5:39:90:c2:25:a1:9f:87: 86:50:74:f8:ff:fb:5b:9b:ad:c3:29:10:5b:0c:e8: f6:22:e9:af:29:ef:6e:33:91:63:f4:46:8a:ff:4b: 35:e9:67:56:38:55:c6:89:b2:89:b9:f2:56:c1:5b: 51:2a:9f:93:09:23:43:46:b1:2e:c9:c9:51:ce:47: 49:12:4d:b8:a0:df:52:98:73:0f:3a:cc:86:2a:2a: ef:de:03:47:2f:5d:87:e9:af:5b:ec:ef:72:7d:15: 0c:c4:b3:18:06:b5:26:3b:03:6d:f8:a0:02:3f:9b: 60:65:b2:11:ce:27:6a:90:3a:86:18:d8:70:5c:5b: a5:26:c3:01:3d:29:69:2e:a7:b5:74:04:21:e3:ff: ca:68:a3:17:b8:99:8e:9d:45:12:97:94:6e:59:ee: 2e:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:2F:00:C5:EE:1F:A8:20:75:B3:9D:F9:24:46:D9:76:95:91:F8:30 X509v3 Authority Key Identifier: keyid:D7:B3:D2:9A:1C:58:F2:A7:64:EF:71:D9:0E:EB:34:A0:85:23:E1:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/24ba6778-b16d-4ba8-984f-34e419fc9c49/0/D7B3D29A1C58F2A764EF71D90EEB34A08523E14B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D7B3D29A1C58F2A764EF71D90EEB34A08523E14B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/24ba6778-b16d-4ba8-984f-34e419fc9c49/0/323430373a373234303a3a2f33322d3438203d3e203538383230.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2407:7240::/32 Signature Algorithm: sha256WithRSAEncryption 2a:92:b5:22:22:15:db:10:76:11:d7:b9:b0:3a:5d:a3:82:f0: 5d:26:78:c8:33:a4:e5:aa:44:29:0f:6c:b6:77:ca:b8:6c:d8: 9b:b4:b3:0e:00:96:76:fd:17:4d:37:08:df:12:70:36:fb:d1: cc:ce:b5:96:b8:01:b8:75:e9:b7:2a:a1:8a:61:05:0f:26:4e: 19:77:f2:17:4c:f7:42:be:03:2e:37:ae:68:2d:be:c8:90:5d: c8:68:c1:a5:7a:6e:0a:0e:0a:89:af:45:39:7b:77:5a:5b:89: 06:00:43:f1:84:5e:1c:a2:6f:63:07:c8:e3:7c:52:cb:99:dd: c1:ab:ee:96:fc:18:33:5c:d7:db:86:a1:b2:ba:23:eb:58:68: 7b:31:a2:89:70:c0:2f:10:31:f6:0b:34:15:f9:8e:07:61:09: 54:36:16:49:3b:82:35:08:5f:4f:5a:0a:b8:1e:93:76:bc:aa: 03:8f:1c:6e:84:43:3d:1a:c9:e2:58:45:89:29:30:d5:fe:b9: 85:9d:8f:91:d0:aa:be:2c:81:5e:4b:07:ee:52:ba:1e:4a:23: 95:39:b2:b1:46:d7:1f:32:0c:af:37:11:72:2c:a3:00:a1:19: 0e:e0:61:90:01:99:64:7b:06:86:93:2e:78:f5:0d:d1:1c:2b: 9d:ab:c2:6b -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUb6QzO8RFkOMcL0Uckv0lY2AtYlswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDdCM0QyOUExQzU4RjJBNzY0RUY3MUQ5MEVFQjM0QTA4 NTIzRTE0QjAeFw0yNjA1MDMwMjE1MjBaFw0yNzA1MDIwMjIwMjBaMDMxMTAvBgNV BAMTKEM2MkYwMEM1RUUxRkE4MjA3NUIzOURGOTI0NDZEOTc2OTU5MUY4MzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCeHPNySpXlaFKFOdp1X9Hr1WuH iAadCNtMy4d59r0jRzR4mszWZCHe8A0rZKMN4yekNJQaFbFyQz6Z9Cn+xnk6ehzK +8zHR0EGGZxMdHLQ81gM2UAly8jQCE0ttMIJb7zFOZDCJaGfh4ZQdPj/+1ubrcMp EFsM6PYi6a8p724zkWP0Ror/SzXpZ1Y4VcaJsom58lbBW1Eqn5MJI0NGsS7JyVHO R0kSTbig31KYcw86zIYqKu/eA0cvXYfpr1vs73J9FQzEsxgGtSY7A234oAI/m2Bl shHOJ2qQOoYY2HBcW6UmwwE9KWkup7V0BCHj/8pooxe4mY6dRRKXlG5Z7i5dAgMB AAGjggIxMIICLTAdBgNVHQ4EFgQUxi8Axe4fqCB1s535JEbZdpWR+DAwHwYDVR0j BBgwFoAU17PSmhxY8qdk73HZDus0oIUj4UswDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MjRiYTY3NzgtYjE2ZC00YmE4LTk4NGYtMzRlNDE5ZmM5YzQ5LzAvRDdCM0QyOUEx QzU4RjJBNzY0RUY3MUQ5MEVFQjM0QTA4NTIzRTE0Qi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9EN0IzRDI5QTFDNThGMkE3NjRFRjcxRDkwRUVCMzRBMDg1MjNF MTRCLmNlcjCBoQYIKwYBBQUHAQsEgZQwgZEwgY4GCCsGAQUFBzALhoGBcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzI0YmE2Nzc4LWIxNmQtNGJhOC05 ODRmLTM0ZTQxOWZjOWM0OS8wLzMyMzQzMDM3M2EzNzMyMzQzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDM1MzgzODMyMzAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkB3JAMA0GCSqGSIb3 DQEBCwUAA4IBAQAqkrUiIhXbEHYR17mwOl2jgvBdJnjIM6TlqkQpD2y2d8q4bNib tLMOAJZ2/RdNNwjfEnA2+9HMzrWWuAG4dem3KqGKYQUPJk4Zd/IXTPdCvgMuN65o Lb7IkF3IaMGlem4KDgqJr0U5e3daW4kGAEPxhF4com9jB8jjfFLLmd3Bq+6W/Bgz XNfbhqGyuiPrWGh7MaKJcMAvEDH2CzQV+Y4HYQlUNhZJO4I1CF9PWgq4HpN2vKoD jxxuhEM9GsniWEWJKTDV/rmFnY+R0Kq+LIFeSwfuUroeSiOVObKxRtcfMgyvNxFy LKMAoRkO4GGQAZlkewaGky549Q3RHCudq8Jr -----END CERTIFICATE-----Generated at Wed May 13 01:14:16 2026 by rpki-client