$ rpki-client -vvf rpki-rsync.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/323430363a313363303a333a3a2f34382d3438203d3e20313430343133.roa File: 323430363a313363303a333a3a2f34382d3438203d3e20313430343133.roa (raw, json) Hash identifier: YUzbLQ5j/NrlJLr3BA5MdjrGyteXCKBcOA9XM5EndXY= Subject key identifier: 7A:11:D7:B8:44:76:C6:DC:02:F4:CC:8E:56:69:7B:86:74:EB:0C:87 Certificate issuer: /CN=0DED71031394AA16715F3D03F26571528F1A6B78 Certificate serial: 3202983971DE4FD144EEDBD4C48500A7679063EF Authority key identifier: 0D:ED:71:03:13:94:AA:16:71:5F:3D:03:F2:65:71:52:8F:1A:6B:78 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/0DED71031394AA16715F3D03F26571528F1A6B78.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/323430363a313363303a333a3a2f34382d3438203d3e20313430343133.roa Signing time: Sun 03 May 2026 02:20:43 +0000 ROA not before: Sun 03 May 2026 02:15:43 +0000 ROA not after: Sun 02 May 2027 02:20:43 +0000 asID: 140413 IP address blocks: 2406:13c0:3::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/0DED71031394AA16715F3D03F26571528F1A6B78.crl rsync://rpki-rsync.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/0DED71031394AA16715F3D03F26571528F1A6B78.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/0DED71031394AA16715F3D03F26571528F1A6B78.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 15:56:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:02:98:39:71:de:4f:d1:44:ee:db:d4:c4:85:00:a7:67:90:63:ef Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0DED71031394AA16715F3D03F26571528F1A6B78 Validity Not Before: May 3 02:15:43 2026 GMT Not After : May 2 02:20:43 2027 GMT Subject: CN=7A11D7B84476C6DC02F4CC8E56697B8674EB0C87 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:61:8d:68:69:00:f9:b6:70:55:e2:1f:3f:dc: 8f:15:eb:92:e2:a5:4b:dc:d1:32:d5:cd:71:b8:58: 03:9d:ca:0e:e8:18:c6:d4:72:eb:3a:7d:88:e9:5f: ab:f2:98:d6:4d:c5:3f:ee:14:73:17:a5:12:13:b6: 76:03:63:3b:45:c1:d6:97:33:55:e1:36:03:26:a8: 6c:28:44:b2:67:c0:5a:d2:ac:9a:6e:7e:c6:f7:fc: c6:7b:83:5b:e8:10:6a:e9:1b:6d:f0:87:f6:bd:f7: 31:91:ba:52:1e:19:a4:b9:81:76:5e:ab:1f:38:d2: cf:74:bb:96:74:43:2e:1f:e7:aa:25:0e:3c:74:b7: 77:2b:59:e3:b8:03:f0:ec:e6:71:50:82:ab:19:9e: f8:b6:c6:27:0e:fe:b3:2f:d2:cb:ab:4b:98:7d:ec: df:44:45:4a:92:ef:16:49:a9:77:93:98:1c:1a:20: 55:02:c7:df:ee:d1:75:c7:d8:05:7e:d0:87:0e:48: 86:e1:4b:15:9a:af:1c:1f:c7:2e:15:40:a7:9c:60: 85:39:38:ea:f7:89:d1:49:8c:41:37:3d:86:5e:77: 74:e9:57:24:07:06:7f:0d:c9:2c:89:27:24:e0:5a: 0e:74:83:c3:02:ee:10:00:05:ba:2c:f1:47:93:a3: 52:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:11:D7:B8:44:76:C6:DC:02:F4:CC:8E:56:69:7B:86:74:EB:0C:87 X509v3 Authority Key Identifier: keyid:0D:ED:71:03:13:94:AA:16:71:5F:3D:03:F2:65:71:52:8F:1A:6B:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/0DED71031394AA16715F3D03F26571528F1A6B78.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/0DED71031394AA16715F3D03F26571528F1A6B78.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/323430363a313363303a333a3a2f34382d3438203d3e20313430343133.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:13c0:3::/48 Signature Algorithm: sha256WithRSAEncryption 9f:91:83:42:ac:ae:16:97:a3:c5:89:e4:dc:89:d2:3b:1e:61: bf:4e:1b:f2:5c:ce:e2:c1:bc:f9:d5:28:56:6c:1f:61:53:c1: a2:23:2e:61:04:83:02:ad:ef:0e:06:25:61:e2:fd:e3:fe:c1: 4b:7d:a7:94:0e:2e:34:69:b1:04:66:1f:ce:dc:16:fb:25:2f: aa:d4:32:8b:ba:8f:fa:e3:45:2f:b8:df:8b:4e:83:b7:e1:9c: e9:c2:20:30:0f:83:26:5c:ee:2d:77:20:2e:1c:c4:3a:d1:d8: 3e:f0:34:32:da:6f:7a:e3:4e:24:44:cd:9f:b1:ac:6c:d9:eb: 9c:c7:af:5b:cd:d2:aa:29:1e:62:b1:02:f7:93:5c:75:c7:5e: 98:67:c8:52:2c:c6:f2:8c:b7:e1:15:91:54:5c:70:3c:2b:e0: 2c:0c:f8:b2:1d:7c:b1:fe:5b:ba:06:dc:3d:b1:28:a6:af:bf: 58:b1:55:a4:75:7d:ff:07:df:47:9c:55:b7:9f:52:8f:11:4b: be:ee:4c:ba:da:ef:80:e6:20:4a:a4:98:68:01:94:3e:df:94: 95:bb:f6:e5:c4:0c:6f:20:e9:53:f9:3f:8a:43:53:29:d3:fb: 6e:fb:58:b4:50:05:5d:75:22:96:31:00:42:8c:e4:ba:41:26: 50:78:f2:14 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUMgKYOXHeT9FE7tvUxIUAp2eQY+8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMERFRDcxMDMxMzk0QUExNjcxNUYzRDAzRjI2NTcxNTI4 RjFBNkI3ODAeFw0yNjA1MDMwMjE1NDNaFw0yNzA1MDIwMjIwNDNaMDMxMTAvBgNV BAMTKDdBMTFEN0I4NDQ3NkM2REMwMkY0Q0M4RTU2Njk3Qjg2NzRFQjBDODcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCsYY1oaQD5tnBV4h8/3I8V65Li pUvc0TLVzXG4WAOdyg7oGMbUcus6fYjpX6vymNZNxT/uFHMXpRITtnYDYztFwdaX M1XhNgMmqGwoRLJnwFrSrJpufsb3/MZ7g1voEGrpG23wh/a99zGRulIeGaS5gXZe qx840s90u5Z0Qy4f56olDjx0t3crWeO4A/Ds5nFQgqsZnvi2xicO/rMv0surS5h9 7N9ERUqS7xZJqXeTmBwaIFUCx9/u0XXH2AV+0IcOSIbhSxWarxwfxy4VQKecYIU5 OOr3idFJjEE3PYZed3TpVyQHBn8NySyJJyTgWg50g8MC7hAABbos8UeTo1INAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUehHXuER2xtwC9MyOVml7hnTrDIcwHwYDVR0j BBgwFoAUDe1xAxOUqhZxXz0D8mVxUo8aa3gwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MjZkN2VkZTEtM2ZkMC00NjI0LWJlZjgtMGU3M2U4NDk5NGJjLzAvMERFRDcxMDMx Mzk0QUExNjcxNUYzRDAzRjI2NTcxNTI4RjFBNkI3OC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8wREVENzEwMzEzOTRBQTE2NzE1RjNEMDNGMjY1NzE1MjhGMUE2 Qjc4LmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzI2ZDdlZGUxLTNmZDAtNDYyNC1i ZWY4LTBlNzNlODQ5OTRiYy8wLzMyMzQzMDM2M2EzMTMzNjMzMDNhMzMzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTM0MzAzNDMxMzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBhPAAAMw DQYJKoZIhvcNAQELBQADggEBAJ+Rg0KsrhaXo8WJ5NyJ0jseYb9OG/JczuLBvPnV KFZsH2FTwaIjLmEEgwKt7w4GJWHi/eP+wUt9p5QOLjRpsQRmH87cFvslL6rUMou6 j/rjRS+434tOg7fhnOnCIDAPgyZc7i13IC4cxDrR2D7wNDLab3rjTiREzZ+xrGzZ 65zHr1vN0qopHmKxAveTXHXHXphnyFIsxvKMt+EVkVRccDwr4CwM+LIdfLH+W7oG 3D2xKKavv1ixVaR1ff8H30ecVbefUo8RS77uTLra74DmIEqkmGgBlD7flJW79uXE DG8g6VP5P4pDUynT+277WLRQBV11IpYxAEKM5LpBJlB48hQ= -----END CERTIFICATE-----Generated at Wed May 13 06:55:28 2026 by rpki-client