$ rpki-client -vvf rpki-rsync.idnic.net/repo/2bf71c91-1624-4fc0-8c63-2efafd46fbc1/0/323430353a383734303a3a2f33322d3438203d3e203436303139.roa File: 323430353a383734303a3a2f33322d3438203d3e203436303139.roa (raw, json) Hash identifier: tzOGo3sV/ZVReIoJFZdjUkPKBEoC+agfuEqkfoWV+Ls= Subject key identifier: 63:A2:72:13:B0:12:18:21:49:A6:3B:A3:67:30:33:A3:83:74:64:F9 Certificate issuer: /CN=7A8D4233922872A894E30E54D6874BEB416AD1DF Certificate serial: 0AA85794113FA3363B2BAB246B183F34EFBBB029 Authority key identifier: 7A:8D:42:33:92:28:72:A8:94:E3:0E:54:D6:87:4B:EB:41:6A:D1:DF Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/7A8D4233922872A894E30E54D6874BEB416AD1DF.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/2bf71c91-1624-4fc0-8c63-2efafd46fbc1/0/323430353a383734303a3a2f33322d3438203d3e203436303139.roa Signing time: Sun 03 May 2026 02:22:06 +0000 ROA not before: Sun 03 May 2026 02:17:06 +0000 ROA not after: Sun 02 May 2027 02:22:06 +0000 asID: 46019 IP address blocks: 2405:8740::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/2bf71c91-1624-4fc0-8c63-2efafd46fbc1/0/7A8D4233922872A894E30E54D6874BEB416AD1DF.crl rsync://rpki-rsync.idnic.net/repo/2bf71c91-1624-4fc0-8c63-2efafd46fbc1/0/7A8D4233922872A894E30E54D6874BEB416AD1DF.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/7A8D4233922872A894E30E54D6874BEB416AD1DF.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 00:44:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:a8:57:94:11:3f:a3:36:3b:2b:ab:24:6b:18:3f:34:ef:bb:b0:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7A8D4233922872A894E30E54D6874BEB416AD1DF Validity Not Before: May 3 02:17:06 2026 GMT Not After : May 2 02:22:06 2027 GMT Subject: CN=63A27213B012182149A63BA3673033A3837464F9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:cd:12:89:e3:09:48:e1:87:38:d4:0d:2b:81: 9e:cb:9e:ff:db:4e:ce:8b:0f:f0:89:4f:7e:58:33: 31:c5:ab:ce:70:a8:96:ed:9f:7e:b2:e0:99:b0:b9: 7c:49:d7:5b:e5:5e:0b:bd:b1:e8:91:5f:df:ea:c0: 5f:cc:3c:68:15:3a:0b:49:ea:ab:84:72:c6:8f:81: 31:b1:b6:69:e0:35:9b:87:87:39:b3:c5:e6:28:26: f2:f8:56:b7:80:78:02:ea:2d:ef:65:e1:9a:76:f4: 89:c5:69:f3:60:ef:96:0a:65:b5:79:2b:26:d1:91: 08:80:10:57:77:0f:41:58:af:5d:ff:e1:4a:b6:4c: 01:b7:6f:7f:40:09:41:54:64:14:79:26:eb:fe:d1: 06:cb:57:3a:ca:8f:1a:85:fb:a8:56:48:7a:80:3d: d9:00:ec:4c:4d:fe:39:5a:c1:4e:5c:de:14:d9:0a: c2:51:20:75:e8:f6:d6:85:f4:6b:58:26:9c:71:ae: 48:06:10:88:be:c0:5a:f9:16:9a:6c:af:b4:15:4d: 78:18:15:f6:28:05:d2:3b:f0:93:5a:9d:41:e9:6a: d1:49:20:cb:d8:8a:b6:e2:1b:f3:4b:f2:89:3c:10: 11:61:40:69:31:30:c4:d9:13:41:28:a3:dd:90:85: a9:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:A2:72:13:B0:12:18:21:49:A6:3B:A3:67:30:33:A3:83:74:64:F9 X509v3 Authority Key Identifier: keyid:7A:8D:42:33:92:28:72:A8:94:E3:0E:54:D6:87:4B:EB:41:6A:D1:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/2bf71c91-1624-4fc0-8c63-2efafd46fbc1/0/7A8D4233922872A894E30E54D6874BEB416AD1DF.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/7A8D4233922872A894E30E54D6874BEB416AD1DF.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/2bf71c91-1624-4fc0-8c63-2efafd46fbc1/0/323430353a383734303a3a2f33322d3438203d3e203436303139.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:8740::/32 Signature Algorithm: sha256WithRSAEncryption 89:83:1c:b7:6e:6d:1c:21:ff:80:2f:1b:48:93:92:b3:11:7e: e2:3f:ee:04:46:f0:99:27:a8:ea:c1:d7:47:42:b6:bc:f6:2b: 87:5d:0c:b4:9e:42:a6:cd:7d:d1:29:f1:0e:fe:b5:30:48:12: f4:0d:da:08:e5:34:f3:da:72:c2:ce:ef:d9:97:b8:a0:4c:7e: cc:de:f1:1d:62:55:b5:be:47:63:0c:aa:e4:58:e6:71:d7:95: a3:6a:8c:3a:24:cb:18:d1:e8:b9:f3:d2:a9:e3:41:7e:f7:ec: b3:69:4c:73:fb:b0:23:ee:fe:d1:0d:3f:2e:f4:b1:7d:eb:5c: eb:31:ab:3d:f4:98:82:d3:b4:4d:29:94:31:76:4e:75:65:90: e7:4f:e3:bf:be:7e:a7:97:47:11:30:b6:ad:c5:61:45:b5:4c: 87:6d:4f:55:90:d3:77:b8:cb:1f:16:cb:0d:0c:77:ea:1f:c7: 17:11:a7:1a:df:9f:4d:96:61:cf:a9:2b:69:b7:cf:d9:33:af: fe:c8:ec:3e:9f:13:9f:7d:52:48:7c:a2:43:58:21:cb:56:51: 2b:c0:df:34:31:c0:8b:69:b3:cf:f5:11:c8:c3:83:6e:53:b0: e6:e9:3c:df:56:51:3c:34:e8:1b:02:76:35:99:7f:99:c6:a6: 56:71:5e:0c -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUCqhXlBE/ozY7K6skaxg/NO+7sCkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0E4RDQyMzM5MjI4NzJBODk0RTMwRTU0RDY4NzRCRUI0 MTZBRDFERjAeFw0yNjA1MDMwMjE3MDZaFw0yNzA1MDIwMjIyMDZaMDMxMTAvBgNV BAMTKDYzQTI3MjEzQjAxMjE4MjE0OUE2M0JBMzY3MzAzM0EzODM3NDY0RjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvzRKJ4wlI4Yc41A0rgZ7Lnv/b Ts6LD/CJT35YMzHFq85wqJbtn36y4JmwuXxJ11vlXgu9seiRX9/qwF/MPGgVOgtJ 6quEcsaPgTGxtmngNZuHhzmzxeYoJvL4VreAeALqLe9l4Zp29InFafNg75YKZbV5 KybRkQiAEFd3D0FYr13/4Uq2TAG3b39ACUFUZBR5Juv+0QbLVzrKjxqF+6hWSHqA PdkA7ExN/jlawU5c3hTZCsJRIHXo9taF9GtYJpxxrkgGEIi+wFr5Fppsr7QVTXgY FfYoBdI78JNanUHpatFJIMvYirbiG/NL8ok8EBFhQGkxMMTZE0Eoo92QhalVAgMB AAGjggIxMIICLTAdBgNVHQ4EFgQUY6JyE7ASGCFJpjujZzAzo4N0ZPkwHwYDVR0j BBgwFoAUeo1CM5IocqiU4w5U1odL60Fq0d8wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MmJmNzFjOTEtMTYyNC00ZmMwLThjNjMtMmVmYWZkNDZmYmMxLzAvN0E4RDQyMzM5 MjI4NzJBODk0RTMwRTU0RDY4NzRCRUI0MTZBRDFERi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS83QThENDIzMzkyMjg3MkE4OTRFMzBFNTRENjg3NEJFQjQxNkFE MURGLmNlcjCBoQYIKwYBBQUHAQsEgZQwgZEwgY4GCCsGAQUFBzALhoGBcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzJiZjcxYzkxLTE2MjQtNGZjMC04 YzYzLTJlZmFmZDQ2ZmJjMS8wLzMyMzQzMDM1M2EzODM3MzQzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDM0MzYzMDMxMzkucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkBYdAMA0GCSqGSIb3 DQEBCwUAA4IBAQCJgxy3bm0cIf+ALxtIk5KzEX7iP+4ERvCZJ6jqwddHQra89iuH XQy0nkKmzX3RKfEO/rUwSBL0DdoI5TTz2nLCzu/Zl7igTH7M3vEdYlW1vkdjDKrk WOZx15Wjaow6JMsY0ei589Kp40F+9+yzaUxz+7Aj7v7RDT8u9LF961zrMas99JiC 07RNKZQxdk51ZZDnT+O/vn6nl0cRMLatxWFFtUyHbU9VkNN3uMsfFssNDHfqH8cX Eaca359NlmHPqStpt8/ZM6/+yOw+nxOffVJIfKJDWCHLVlErwN80McCLabPP9RHI w4NuU7Dm6TzfVlE8NOgbAnY1mX+ZxqZWcV4M -----END CERTIFICATE-----Generated at Wed May 13 05:51:05 2026 by rpki-client