$ rpki-client -vvf rpki-rsync.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/323430363a313363303a373a3a2f34382d3438203d3e20313430343133.roa File: 323430363a313363303a373a3a2f34382d3438203d3e20313430343133.roa (raw, json) Hash identifier: dbjeUfofaAZBLKBCceZ22YQLnJ60T/u4G98K58+vimo= Subject key identifier: EC:1D:10:9A:1E:D1:57:01:52:88:F7:93:7C:A8:69:4D:3A:61:98:17 Certificate issuer: /CN=0DED71031394AA16715F3D03F26571528F1A6B78 Certificate serial: 08F8A46605B13781A7C6C80A208C819F10A8FC0A Authority key identifier: 0D:ED:71:03:13:94:AA:16:71:5F:3D:03:F2:65:71:52:8F:1A:6B:78 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/0DED71031394AA16715F3D03F26571528F1A6B78.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/323430363a313363303a373a3a2f34382d3438203d3e20313430343133.roa Signing time: Sun 03 May 2026 02:20:41 +0000 ROA not before: Sun 03 May 2026 02:15:41 +0000 ROA not after: Sun 02 May 2027 02:20:41 +0000 asID: 140413 IP address blocks: 2406:13c0:7::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/0DED71031394AA16715F3D03F26571528F1A6B78.crl rsync://rpki-rsync.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/0DED71031394AA16715F3D03F26571528F1A6B78.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/0DED71031394AA16715F3D03F26571528F1A6B78.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 15:56:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:f8:a4:66:05:b1:37:81:a7:c6:c8:0a:20:8c:81:9f:10:a8:fc:0a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0DED71031394AA16715F3D03F26571528F1A6B78 Validity Not Before: May 3 02:15:41 2026 GMT Not After : May 2 02:20:41 2027 GMT Subject: CN=EC1D109A1ED157015288F7937CA8694D3A619817 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:31:4e:0b:64:a1:3e:c1:24:f5:7d:43:d5:ca: 0d:4e:ff:8c:59:2f:d5:a9:2e:c7:fe:7d:65:0f:1d: 5e:74:94:ae:c3:9c:96:40:05:08:76:3d:ad:cf:73: bc:cf:bb:19:52:db:7c:f7:ca:83:15:4a:a8:64:f1: 37:a7:44:ba:3d:c9:74:9c:7f:39:6a:50:e6:0c:3d: d4:bd:1c:ae:11:1b:17:a3:bc:08:ff:2d:e4:1a:0b: b9:53:2f:7a:3c:36:b4:c1:c5:5e:d1:ff:27:28:30: 2c:8c:07:bd:17:c8:e8:89:5d:f3:9e:00:38:16:19: 8e:a8:e4:a9:69:ab:64:fb:f7:ee:a6:52:b2:14:6e: 58:1a:3c:49:62:8c:bc:75:85:22:93:95:e4:94:c4: c5:88:e9:60:cd:a7:94:c4:9d:ae:2a:ba:f9:54:67: e0:26:df:76:0e:43:1e:fd:46:56:45:87:20:58:28: 37:56:e2:5a:90:c9:f6:c6:f7:d2:91:96:63:f0:2b: 65:5c:96:18:67:29:b8:d1:7c:70:7a:da:3b:e9:12: 8e:ba:bf:9d:09:2e:a6:e7:4a:86:83:d7:8c:48:76: cf:5c:48:96:bd:e1:8e:d2:18:d9:19:e5:36:bc:73: 63:38:d3:58:28:17:7b:6e:e0:24:39:4d:04:f7:df: b0:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:1D:10:9A:1E:D1:57:01:52:88:F7:93:7C:A8:69:4D:3A:61:98:17 X509v3 Authority Key Identifier: keyid:0D:ED:71:03:13:94:AA:16:71:5F:3D:03:F2:65:71:52:8F:1A:6B:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/0DED71031394AA16715F3D03F26571528F1A6B78.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/0DED71031394AA16715F3D03F26571528F1A6B78.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/323430363a313363303a373a3a2f34382d3438203d3e20313430343133.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:13c0:7::/48 Signature Algorithm: sha256WithRSAEncryption 95:f4:d2:02:27:8d:af:04:ec:86:a9:0f:67:19:79:71:8f:c9: b7:5a:3f:de:0f:7c:7e:b8:6a:1b:bc:47:23:9c:b4:a2:19:17: 15:db:53:9f:d1:45:0a:09:eb:2b:b8:ef:04:45:b1:6e:f6:b8: af:f1:d3:9f:64:c2:2e:ad:0a:05:ed:6f:c8:27:90:34:6c:82: a5:ab:ec:3c:e4:a0:77:4c:1d:8d:3f:42:bf:11:4e:05:91:8a: 2d:94:8d:03:87:12:e7:74:a1:7a:d8:2f:af:fd:71:a1:1e:99: e5:6c:14:5e:d5:7b:84:d8:94:f9:d9:33:37:ad:8d:fd:63:a3: 34:dc:b8:e4:e0:83:d1:5b:20:01:b5:4a:23:fd:30:8c:c3:e0: ba:a5:1d:43:72:68:05:b8:2e:74:48:05:31:19:0e:88:41:4a: 98:d4:c8:37:8d:7c:d9:60:c8:25:b9:61:24:b0:5b:eb:94:6a: b4:63:2f:1b:e4:0a:cd:f0:87:ef:79:97:b6:13:6e:49:01:3b: 15:2e:76:90:1e:ce:e1:87:6f:1a:4f:0e:8f:b3:66:07:96:5e: 68:81:e6:e2:2a:28:ab:01:e9:dd:f3:2a:5c:46:c3:7c:48:74: 64:45:0b:a3:75:ff:1d:ba:1c:86:b5:1b:5c:0d:c2:52:75:e6: 3e:7f:84:ce -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUCPikZgWxN4GnxsgKIIyBnxCo/AowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMERFRDcxMDMxMzk0QUExNjcxNUYzRDAzRjI2NTcxNTI4 RjFBNkI3ODAeFw0yNjA1MDMwMjE1NDFaFw0yNzA1MDIwMjIwNDFaMDMxMTAvBgNV BAMTKEVDMUQxMDlBMUVEMTU3MDE1Mjg4Rjc5MzdDQTg2OTREM0E2MTk4MTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCQMU4LZKE+wST1fUPVyg1O/4xZ L9WpLsf+fWUPHV50lK7DnJZABQh2Pa3Pc7zPuxlS23z3yoMVSqhk8TenRLo9yXSc fzlqUOYMPdS9HK4RGxejvAj/LeQaC7lTL3o8NrTBxV7R/ycoMCyMB70XyOiJXfOe ADgWGY6o5Klpq2T79+6mUrIUblgaPElijLx1hSKTleSUxMWI6WDNp5TEna4quvlU Z+Am33YOQx79RlZFhyBYKDdW4lqQyfbG99KRlmPwK2VclhhnKbjRfHB62jvpEo66 v50JLqbnSoaD14xIds9cSJa94Y7SGNkZ5Ta8c2M401goF3tu4CQ5TQT337DXAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQU7B0Qmh7RVwFSiPeTfKhpTTphmBcwHwYDVR0j BBgwFoAUDe1xAxOUqhZxXz0D8mVxUo8aa3gwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MjZkN2VkZTEtM2ZkMC00NjI0LWJlZjgtMGU3M2U4NDk5NGJjLzAvMERFRDcxMDMx Mzk0QUExNjcxNUYzRDAzRjI2NTcxNTI4RjFBNkI3OC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8wREVENzEwMzEzOTRBQTE2NzE1RjNEMDNGMjY1NzE1MjhGMUE2 Qjc4LmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzI2ZDdlZGUxLTNmZDAtNDYyNC1i ZWY4LTBlNzNlODQ5OTRiYy8wLzMyMzQzMDM2M2EzMTMzNjMzMDNhMzczYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTM0MzAzNDMxMzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBhPAAAcw DQYJKoZIhvcNAQELBQADggEBAJX00gInja8E7IapD2cZeXGPybdaP94PfH64ahu8 RyOctKIZFxXbU5/RRQoJ6yu47wRFsW72uK/x059kwi6tCgXtb8gnkDRsgqWr7Dzk oHdMHY0/Qr8RTgWRii2UjQOHEud0oXrYL6/9caEemeVsFF7Ve4TYlPnZMzetjf1j ozTcuOTgg9FbIAG1SiP9MIzD4LqlHUNyaAW4LnRIBTEZDohBSpjUyDeNfNlgyCW5 YSSwW+uUarRjLxvkCs3wh+95l7YTbkkBOxUudpAezuGHbxpPDo+zZgeWXmiB5uIq KKsB6d3zKlxGw3xIdGRFC6N1/x26HIa1G1wNwlJ15j5/hM4= -----END CERTIFICATE-----Generated at Wed May 13 06:48:05 2026 by rpki-client