$ rpki-client -vvf rpki-rsync.idnic.net/repo/2a97bcf4-e1aa-47d6-bde6-2e667b9d6134/0/323430353a6263303a3a2f33332d3438203d3e20313336383432.roa File: 323430353a6263303a3a2f33332d3438203d3e20313336383432.roa (raw, json) Hash identifier: CVrUJTlhlyjQcXWYw9mEs6T2cItEcY6BENuMI3nROC0= Subject key identifier: 46:C2:9F:5C:9A:B8:7C:51:21:F2:7F:DA:F2:31:0E:29:7C:86:A0:C5 Certificate issuer: /CN=629E74A60B52AC9FC2F7A111A68376BB57C1CABD Certificate serial: 15BCB66A4EA42D1CBD9F8522F7AE1D495225B9A7 Authority key identifier: 62:9E:74:A6:0B:52:AC:9F:C2:F7:A1:11:A6:83:76:BB:57:C1:CA:BD Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/629E74A60B52AC9FC2F7A111A68376BB57C1CABD.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/2a97bcf4-e1aa-47d6-bde6-2e667b9d6134/0/323430353a6263303a3a2f33332d3438203d3e20313336383432.roa Signing time: Sun 03 May 2026 02:21:54 +0000 ROA not before: Sun 03 May 2026 02:16:54 +0000 ROA not after: Sun 02 May 2027 02:21:54 +0000 asID: 136842 IP address blocks: 2405:bc0::/33 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/2a97bcf4-e1aa-47d6-bde6-2e667b9d6134/0/629E74A60B52AC9FC2F7A111A68376BB57C1CABD.crl rsync://rpki-rsync.idnic.net/repo/2a97bcf4-e1aa-47d6-bde6-2e667b9d6134/0/629E74A60B52AC9FC2F7A111A68376BB57C1CABD.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/629E74A60B52AC9FC2F7A111A68376BB57C1CABD.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 08:45:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:bc:b6:6a:4e:a4:2d:1c:bd:9f:85:22:f7:ae:1d:49:52:25:b9:a7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=629E74A60B52AC9FC2F7A111A68376BB57C1CABD Validity Not Before: May 3 02:16:54 2026 GMT Not After : May 2 02:21:54 2027 GMT Subject: CN=46C29F5C9AB87C5121F27FDAF2310E297C86A0C5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:46:ba:92:50:71:b5:22:aa:9c:f2:11:40:7c: 65:a4:58:5b:74:25:2d:a4:cd:e0:e9:18:da:ec:49: 81:3c:20:d1:b9:7b:e2:43:e1:81:fc:09:15:ee:a3: 55:e1:69:0f:fb:dc:43:b9:eb:0e:7f:11:97:0d:28: 0e:23:a1:6e:ac:05:89:6f:eb:9c:82:e2:17:af:26: bf:90:4a:88:fe:6c:68:18:a6:a5:f5:b4:76:28:90: 29:01:a0:4d:00:4a:67:99:27:26:ad:04:a9:92:d3: 3c:c9:9d:14:fa:9a:a6:9f:4f:ce:55:b3:9e:bd:b1: fa:1c:f8:e1:6c:22:a6:25:9e:e1:55:44:98:2b:88: 1c:f5:59:56:fa:51:66:22:d1:eb:4e:02:aa:cb:f7: 2c:56:42:8c:e7:d9:5e:ac:20:6d:da:4f:e9:de:4a: 19:5b:c7:6d:97:51:20:6b:c7:0a:fb:2e:2b:db:c5: 7d:e0:d5:f6:09:12:ce:75:c6:f3:98:02:cc:83:6d: 08:ec:e8:0f:a9:f4:20:18:5a:b3:f5:e5:7d:34:b3: a4:25:59:74:0a:fd:67:a9:b2:37:ec:21:98:4b:54: de:2b:9e:eb:f9:59:6a:77:44:42:ec:8e:63:2b:44: dd:b7:45:76:b2:5d:83:5a:49:88:ef:a9:8d:fc:81: 6b:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:C2:9F:5C:9A:B8:7C:51:21:F2:7F:DA:F2:31:0E:29:7C:86:A0:C5 X509v3 Authority Key Identifier: keyid:62:9E:74:A6:0B:52:AC:9F:C2:F7:A1:11:A6:83:76:BB:57:C1:CA:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/2a97bcf4-e1aa-47d6-bde6-2e667b9d6134/0/629E74A60B52AC9FC2F7A111A68376BB57C1CABD.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/629E74A60B52AC9FC2F7A111A68376BB57C1CABD.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/2a97bcf4-e1aa-47d6-bde6-2e667b9d6134/0/323430353a6263303a3a2f33332d3438203d3e20313336383432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:bc0::/33 Signature Algorithm: sha256WithRSAEncryption 7f:a4:1c:7f:95:dc:4e:fe:5d:80:a5:b7:42:1a:ef:06:19:73: ab:13:27:5d:ed:b4:0e:52:46:24:32:6d:3c:0a:a9:0c:00:95: 21:6a:58:53:b4:58:e3:e2:c3:bd:ca:56:6f:78:44:cb:13:27: db:01:60:fd:87:7a:15:96:54:c8:ce:11:63:10:e6:f2:df:84: 84:b4:41:88:c7:e9:f9:d0:4a:74:ac:74:80:2f:a4:ff:a4:bb: ed:a8:7c:5f:83:b8:51:ef:eb:23:e5:59:28:a7:ef:59:d1:9e: 39:d5:85:0c:8d:c3:23:13:18:90:16:6b:44:ea:c6:5a:27:38: bb:49:68:10:10:f6:b8:31:b8:09:0a:e7:e2:14:11:0a:90:5e: 3a:ca:53:83:d3:04:cd:69:e4:bd:4e:a1:d2:2c:32:78:5e:a0: 9a:fc:46:17:e6:4d:1d:0f:8b:ff:bb:31:c0:36:d5:67:05:29: 0f:f2:49:7b:b0:cf:ba:09:cb:7c:58:79:69:03:3b:2b:20:2d: 98:40:2e:50:d7:89:5d:b1:5d:00:79:96:f2:29:b6:68:72:b5: fd:5a:e3:05:b7:4c:af:a7:da:99:e9:4f:90:9c:e3:2e:2b:77: e4:e9:4a:4c:b6:78:f1:5f:38:af:f7:2a:e6:74:1f:be:55:34: 20:23:01:ec -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUFby2ak6kLRy9n4Ui964dSVIluacwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjI5RTc0QTYwQjUyQUM5RkMyRjdBMTExQTY4Mzc2QkI1 N0MxQ0FCRDAeFw0yNjA1MDMwMjE2NTRaFw0yNzA1MDIwMjIxNTRaMDMxMTAvBgNV BAMTKDQ2QzI5RjVDOUFCODdDNTEyMUYyN0ZEQUYyMzEwRTI5N0M4NkEwQzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxRrqSUHG1Iqqc8hFAfGWkWFt0 JS2kzeDpGNrsSYE8ING5e+JD4YH8CRXuo1XhaQ/73EO56w5/EZcNKA4joW6sBYlv 65yC4hevJr+QSoj+bGgYpqX1tHYokCkBoE0ASmeZJyatBKmS0zzJnRT6mqafT85V s569sfoc+OFsIqYlnuFVRJgriBz1WVb6UWYi0etOAqrL9yxWQozn2V6sIG3aT+ne Shlbx22XUSBrxwr7LivbxX3g1fYJEs51xvOYAsyDbQjs6A+p9CAYWrP15X00s6Ql WXQK/WepsjfsIZhLVN4rnuv5WWp3RELsjmMrRN23RXayXYNaSYjvqY38gWufAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQURsKfXJq4fFEh8n/a8jEOKXyGoMUwHwYDVR0j BBgwFoAUYp50pgtSrJ/C96ERpoN2u1fByr0wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MmE5N2JjZjQtZTFhYS00N2Q2LWJkZTYtMmU2NjdiOWQ2MTM0LzAvNjI5RTc0QTYw QjUyQUM5RkMyRjdBMTExQTY4Mzc2QkI1N0MxQ0FCRC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS82MjlFNzRBNjBCNTJBQzlGQzJGN0ExMTFBNjgzNzZCQjU3QzFD QUJELmNlcjCBoQYIKwYBBQUHAQsEgZQwgZEwgY4GCCsGAQUFBzALhoGBcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzJhOTdiY2Y0LWUxYWEtNDdkNi1i ZGU2LTJlNjY3YjlkNjEzNC8wLzMyMzQzMDM1M2E2MjYzMzAzYTNhMmYzMzMzMmQz NDM4MjAzZDNlMjAzMTMzMzYzODM0MzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgckBQvAADANBgkqhkiG 9w0BAQsFAAOCAQEAf6Qcf5XcTv5dgKW3QhrvBhlzqxMnXe20DlJGJDJtPAqpDACV IWpYU7RY4+LDvcpWb3hEyxMn2wFg/Yd6FZZUyM4RYxDm8t+EhLRBiMfp+dBKdKx0 gC+k/6S77ah8X4O4Ue/rI+VZKKfvWdGeOdWFDI3DIxMYkBZrROrGWic4u0loEBD2 uDG4CQrn4hQRCpBeOspTg9MEzWnkvU6h0iwyeF6gmvxGF+ZNHQ+L/7sxwDbVZwUp D/JJe7DPugnLfFh5aQM7KyAtmEAuUNeJXbFdAHmW8im2aHK1/VrjBbdMr6famelP kJzjLit35OlKTLZ48V84r/cq5nQfvlU0ICMB7A== -----END CERTIFICATE-----Generated at Tue May 12 22:49:54 2026 by rpki-client