$ rpki-client -vvf rpki-rsync.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/323430323a653130303a3330353a3a2f34382d3438203d3e203538343835.roa File: 323430323a653130303a3330353a3a2f34382d3438203d3e203538343835.roa (raw, json) Hash identifier: UQULiH/rzGZ+Qot5L6bTSG/ZqsqiXoMUdx2Z+g8DPd4= Subject key identifier: 8F:86:1A:66:9B:4A:E1:16:EB:3D:E4:80:8C:4B:DB:B2:84:63:8E:2E Certificate issuer: /CN=66F96AEBF9C8A21337CB4A7815369BEC12FF9A04 Certificate serial: 320ABE2CA5D5802497A00F30D648A83E29610357 Authority key identifier: 66:F9:6A:EB:F9:C8:A2:13:37:CB:4A:78:15:36:9B:EC:12:FF:9A:04 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/66F96AEBF9C8A21337CB4A7815369BEC12FF9A04.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/323430323a653130303a3330353a3a2f34382d3438203d3e203538343835.roa Signing time: Sun 03 May 2026 02:23:17 +0000 ROA not before: Sun 03 May 2026 02:18:17 +0000 ROA not after: Sun 02 May 2027 02:23:17 +0000 asID: 58485 IP address blocks: 2402:e100:305::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/66F96AEBF9C8A21337CB4A7815369BEC12FF9A04.crl rsync://rpki-rsync.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/66F96AEBF9C8A21337CB4A7815369BEC12FF9A04.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/66F96AEBF9C8A21337CB4A7815369BEC12FF9A04.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 01:06:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:0a:be:2c:a5:d5:80:24:97:a0:0f:30:d6:48:a8:3e:29:61:03:57 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=66F96AEBF9C8A21337CB4A7815369BEC12FF9A04 Validity Not Before: May 3 02:18:17 2026 GMT Not After : May 2 02:23:17 2027 GMT Subject: CN=8F861A669B4AE116EB3DE4808C4BDBB284638E2E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:b0:e8:4a:c7:6f:3a:53:d5:e7:00:d9:84:7e: 72:3a:6d:91:ca:e0:7e:eb:da:30:1a:9b:01:0a:8f: 5d:46:9c:8a:25:54:d7:f5:f6:e8:9c:c2:ee:81:cd: 49:60:7d:95:18:cb:57:90:9d:84:15:77:96:50:f5: 52:e2:93:03:51:51:8b:ca:fd:c2:ee:d8:9c:ea:e8: cb:49:e1:b8:85:e1:82:f9:79:58:55:7a:82:dd:b4: ed:05:e9:35:39:8c:5c:20:07:bc:b4:76:e9:ee:be: a2:c6:2c:58:bf:4b:e2:09:3a:30:8e:fb:50:50:06: 43:56:05:3c:02:2a:c8:56:d5:e7:8b:d2:00:dd:d0: d2:ca:03:eb:9d:76:b5:9f:d0:62:89:65:92:ea:cd: c1:9d:19:80:41:1b:1d:56:36:a7:46:32:48:13:ff: 9d:b5:bb:2f:1e:72:ce:f6:ca:60:1e:de:7b:f5:b7: ad:eb:5d:4a:5f:a1:ff:01:42:75:14:3c:b2:6f:67: 9a:e2:62:3b:d6:da:f0:eb:89:e2:a2:9a:5c:4c:de: 6c:71:22:b9:ad:20:da:fc:6d:d4:ff:8d:dc:94:dc: 50:1b:d3:97:a0:07:87:af:4b:74:69:2c:d4:88:1a: b4:87:96:c9:f4:9c:e8:3f:f2:4e:d2:63:ed:04:05: 96:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:86:1A:66:9B:4A:E1:16:EB:3D:E4:80:8C:4B:DB:B2:84:63:8E:2E X509v3 Authority Key Identifier: keyid:66:F9:6A:EB:F9:C8:A2:13:37:CB:4A:78:15:36:9B:EC:12:FF:9A:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/66F96AEBF9C8A21337CB4A7815369BEC12FF9A04.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/66F96AEBF9C8A21337CB4A7815369BEC12FF9A04.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/323430323a653130303a3330353a3a2f34382d3438203d3e203538343835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:e100:305::/48 Signature Algorithm: sha256WithRSAEncryption a7:42:13:4e:f3:64:59:2f:9a:43:d7:2b:e2:d9:ea:5c:d6:3f: ed:32:b1:56:0a:e6:03:1e:43:cd:b6:15:74:ab:b4:4f:87:32: aa:80:76:cc:c0:bf:a4:c5:76:2a:f7:7f:88:7d:9a:68:59:37: c7:38:33:11:8f:09:ce:76:fe:3e:f3:ac:42:47:98:42:a6:87: 46:44:6a:b3:96:16:99:e0:89:a1:32:99:ab:78:8d:cf:7e:4f: b4:0a:07:64:e5:a9:41:d0:e3:59:c7:63:86:39:0c:de:13:3f: 7c:ef:49:60:93:af:59:f6:42:87:a0:f6:80:f4:5a:54:29:66: 0f:8c:d6:b8:d5:81:c0:11:aa:93:a2:a4:01:5b:3d:92:98:d9: 15:06:d4:b9:b0:34:ba:07:19:e0:8e:ff:c3:58:ab:54:b5:f4: 7d:46:9d:6a:06:ea:be:19:cc:0b:58:20:68:ed:48:6f:da:ec: 51:59:cb:47:28:b0:1f:cb:71:1d:e2:17:b0:00:44:32:f6:85: b0:e3:16:1b:19:0c:d0:58:59:4f:c8:9a:b6:e3:1a:28:7e:f7: ef:25:ea:9f:9f:70:0c:d0:e0:c6:33:5a:65:7f:3b:72:5a:46: c7:3b:8f:39:13:7d:5f:de:2e:b0:0b:d8:19:ba:98:8c:de:24: 07:aa:c3:76 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUMgq+LKXVgCSXoA8w1kioPilhA1cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjZGOTZBRUJGOUM4QTIxMzM3Q0I0QTc4MTUzNjlCRUMx MkZGOUEwNDAeFw0yNjA1MDMwMjE4MTdaFw0yNzA1MDIwMjIzMTdaMDMxMTAvBgNV BAMTKDhGODYxQTY2OUI0QUUxMTZFQjNERTQ4MDhDNEJEQkIyODQ2MzhFMkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0sOhKx286U9XnANmEfnI6bZHK 4H7r2jAamwEKj11GnIolVNf19uicwu6BzUlgfZUYy1eQnYQVd5ZQ9VLikwNRUYvK /cLu2Jzq6MtJ4biF4YL5eVhVeoLdtO0F6TU5jFwgB7y0dunuvqLGLFi/S+IJOjCO +1BQBkNWBTwCKshW1eeL0gDd0NLKA+uddrWf0GKJZZLqzcGdGYBBGx1WNqdGMkgT /521uy8ecs72ymAe3nv1t63rXUpfof8BQnUUPLJvZ5riYjvW2vDrieKimlxM3mxx IrmtINr8bdT/jdyU3FAb05egB4evS3RpLNSIGrSHlsn0nOg/8k7SY+0EBZa7AgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUj4YaZptK4RbrPeSAjEvbsoRjji4wHwYDVR0j BBgwFoAUZvlq6/nIohM3y0p4FTab7BL/mgQwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MmVlNDdiYmYtYmE4NC00NDhmLTk2MmItMmFhZjVjN2RkNjhkLzAvNjZGOTZBRUJG OUM4QTIxMzM3Q0I0QTc4MTUzNjlCRUMxMkZGOUEwNC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS82NkY5NkFFQkY5QzhBMjEzMzdDQjRBNzgxNTM2OUJFQzEyRkY5 QTA0LmNlcjCBqQYIKwYBBQUHAQsEgZwwgZkwgZYGCCsGAQUFBzALhoGJcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzJlZTQ3YmJmLWJhODQtNDQ4Zi05 NjJiLTJhYWY1YzdkZDY4ZC8wLzMyMzQzMDMyM2E2NTMxMzAzMDNhMzMzMDM1M2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzUzODM0MzgzNS5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQC4QAD BTANBgkqhkiG9w0BAQsFAAOCAQEAp0ITTvNkWS+aQ9cr4tnqXNY/7TKxVgrmAx5D zbYVdKu0T4cyqoB2zMC/pMV2Kvd/iH2aaFk3xzgzEY8Jznb+PvOsQkeYQqaHRkRq s5YWmeCJoTKZq3iNz35PtAoHZOWpQdDjWcdjhjkM3hM/fO9JYJOvWfZCh6D2gPRa VClmD4zWuNWBwBGqk6KkAVs9kpjZFQbUubA0ugcZ4I7/w1irVLX0fUadagbqvhnM C1ggaO1Ib9rsUVnLRyiwH8txHeIXsABEMvaFsOMWGxkM0FhZT8iatuMaKH737yXq n59wDNDgxjNaZX87clpGxzuPORN9X94usAvYGbqYjN4kB6rDdg== -----END CERTIFICATE-----Generated at Wed May 13 03:55:05 2026 by rpki-client