$ rpki-client -vvf rpki-rsync.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/323430323a653130303a38313a3a2f34382d3438203d3e203538343835.roa File: 323430323a653130303a38313a3a2f34382d3438203d3e203538343835.roa (raw, json) Hash identifier: ayJGb85mEsw6hkCd3R4N6T60EHmEHaE0N2aTdVYDJwU= Subject key identifier: AD:AA:7A:24:26:E1:75:FB:3C:8D:CF:2B:D4:EB:47:60:6C:EB:B9:04 Certificate issuer: /CN=66F96AEBF9C8A21337CB4A7815369BEC12FF9A04 Certificate serial: 4BB454797AD348454A82746838046689D9AE0E46 Authority key identifier: 66:F9:6A:EB:F9:C8:A2:13:37:CB:4A:78:15:36:9B:EC:12:FF:9A:04 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/66F96AEBF9C8A21337CB4A7815369BEC12FF9A04.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/323430323a653130303a38313a3a2f34382d3438203d3e203538343835.roa Signing time: Sun 03 May 2026 02:23:19 +0000 ROA not before: Sun 03 May 2026 02:18:19 +0000 ROA not after: Sun 02 May 2027 02:23:19 +0000 asID: 58485 IP address blocks: 2402:e100:81::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/66F96AEBF9C8A21337CB4A7815369BEC12FF9A04.crl rsync://rpki-rsync.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/66F96AEBF9C8A21337CB4A7815369BEC12FF9A04.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/66F96AEBF9C8A21337CB4A7815369BEC12FF9A04.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 01:06:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:b4:54:79:7a:d3:48:45:4a:82:74:68:38:04:66:89:d9:ae:0e:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=66F96AEBF9C8A21337CB4A7815369BEC12FF9A04 Validity Not Before: May 3 02:18:19 2026 GMT Not After : May 2 02:23:19 2027 GMT Subject: CN=ADAA7A2426E175FB3C8DCF2BD4EB47606CEBB904 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:2f:2b:e7:8b:b8:e4:de:c1:f0:53:2d:1d:17: 31:f2:16:f7:63:6a:4d:07:b7:e4:00:23:8d:85:be: a3:be:b5:2b:4f:bd:c0:94:aa:ca:ad:9a:a2:94:b4: 7f:17:ca:0f:34:1c:08:b2:57:c6:eb:e3:a7:c4:12: 6b:cd:53:3a:a9:77:a5:fd:4f:31:47:ef:7e:87:b4: 07:f0:35:b9:7a:16:b4:e6:ff:c0:bb:a6:16:15:cd: 4c:e1:0d:29:55:f2:46:c1:81:74:28:f7:af:93:23: bf:32:4f:26:fe:f8:24:76:f1:ee:8a:2c:5b:5a:09: b1:80:cd:8d:05:ef:75:8d:c6:0d:55:af:10:7a:74: 81:ef:bd:18:6b:a3:67:31:90:91:64:af:7d:ba:01: a0:01:ac:cd:36:da:e5:24:b7:a5:08:91:16:94:12: 91:ae:e5:6f:5e:94:50:65:2c:0b:f6:e0:87:3d:0f: a1:ea:a9:a4:36:47:cc:b4:14:86:24:39:cb:b0:74: e2:66:c1:c1:35:39:b9:4f:ed:2b:a4:cb:ff:f7:dd: 45:62:66:49:ca:9c:fa:9a:8b:da:a3:37:bb:8b:bf: d4:ec:1f:ca:ae:49:2c:f8:04:22:9f:80:ef:ea:56: ee:ad:89:a5:b8:e5:ea:b4:e9:75:06:0d:d6:8c:e0: cd:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:AA:7A:24:26:E1:75:FB:3C:8D:CF:2B:D4:EB:47:60:6C:EB:B9:04 X509v3 Authority Key Identifier: keyid:66:F9:6A:EB:F9:C8:A2:13:37:CB:4A:78:15:36:9B:EC:12:FF:9A:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/66F96AEBF9C8A21337CB4A7815369BEC12FF9A04.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/66F96AEBF9C8A21337CB4A7815369BEC12FF9A04.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/323430323a653130303a38313a3a2f34382d3438203d3e203538343835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:e100:81::/48 Signature Algorithm: sha256WithRSAEncryption 80:8f:b3:d3:b0:a7:b4:f9:dc:c6:1a:64:ae:66:f2:81:f1:c7: df:7e:cc:c0:2a:ae:9d:a4:61:ba:3a:a6:67:1a:8d:27:7c:f7: 57:99:46:78:10:f6:cb:5e:b5:52:7e:3d:4c:f4:91:19:03:90: ae:67:95:f4:bb:ab:64:97:a6:b2:92:7c:1e:fb:42:13:9b:19: a8:f2:45:60:70:6d:9b:b2:3d:e9:d9:0e:75:83:24:79:e6:ba: 0b:b8:4e:f3:9b:7d:51:23:5b:79:d5:b9:92:29:c5:0a:11:52: cd:22:72:47:d3:0e:ef:23:10:18:37:48:5e:82:2c:74:73:7f: ca:30:56:66:f9:22:02:6f:e7:ea:df:68:d6:0e:ca:e9:c1:e6: 01:94:65:30:33:53:1e:ed:0c:78:ec:12:6f:94:88:fe:88:8a: d2:07:fb:1f:58:dd:16:6c:45:a8:57:f8:06:f6:2a:e2:a3:7e: 72:1e:bc:35:33:58:5e:b2:52:59:d9:9f:89:1a:61:c5:ba:23: b8:56:51:c1:31:3b:df:03:5c:2c:65:5c:26:cd:65:95:27:a7: 2a:6b:81:9f:1c:2f:e2:39:51:fe:fc:0f:ec:89:26:b7:26:80: b2:a5:45:8e:22:28:9f:44:2a:df:76:8d:5c:4a:31:d2:77:57: ff:e4:c2:42 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUS7RUeXrTSEVKgnRoOARmidmuDkYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjZGOTZBRUJGOUM4QTIxMzM3Q0I0QTc4MTUzNjlCRUMx MkZGOUEwNDAeFw0yNjA1MDMwMjE4MTlaFw0yNzA1MDIwMjIzMTlaMDMxMTAvBgNV BAMTKEFEQUE3QTI0MjZFMTc1RkIzQzhEQ0YyQkQ0RUI0NzYwNkNFQkI5MDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCZLyvni7jk3sHwUy0dFzHyFvdj ak0Ht+QAI42FvqO+tStPvcCUqsqtmqKUtH8Xyg80HAiyV8br46fEEmvNUzqpd6X9 TzFH736HtAfwNbl6FrTm/8C7phYVzUzhDSlV8kbBgXQo96+TI78yTyb++CR28e6K LFtaCbGAzY0F73WNxg1VrxB6dIHvvRhro2cxkJFkr326AaABrM022uUkt6UIkRaU EpGu5W9elFBlLAv24Ic9D6HqqaQ2R8y0FIYkOcuwdOJmwcE1OblP7Suky//33UVi ZknKnPqai9qjN7uLv9TsH8quSSz4BCKfgO/qVu6tiaW45eq06XUGDdaM4M05AgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUrap6JCbhdfs8jc8r1OtHYGzruQQwHwYDVR0j BBgwFoAUZvlq6/nIohM3y0p4FTab7BL/mgQwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MmVlNDdiYmYtYmE4NC00NDhmLTk2MmItMmFhZjVjN2RkNjhkLzAvNjZGOTZBRUJG OUM4QTIxMzM3Q0I0QTc4MTUzNjlCRUMxMkZGOUEwNC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS82NkY5NkFFQkY5QzhBMjEzMzdDQjRBNzgxNTM2OUJFQzEyRkY5 QTA0LmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzJlZTQ3YmJmLWJhODQtNDQ4Zi05 NjJiLTJhYWY1YzdkZDY4ZC8wLzMyMzQzMDMyM2E2NTMxMzAzMDNhMzgzMTNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzgzNDM4MzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkAuEAAIEw DQYJKoZIhvcNAQELBQADggEBAICPs9Owp7T53MYaZK5m8oHxx99+zMAqrp2kYbo6 pmcajSd891eZRngQ9stetVJ+PUz0kRkDkK5nlfS7q2SXprKSfB77QhObGajyRWBw bZuyPenZDnWDJHnmugu4TvObfVEjW3nVuZIpxQoRUs0ickfTDu8jEBg3SF6CLHRz f8owVmb5IgJv5+rfaNYOyunB5gGUZTAzUx7tDHjsEm+UiP6IitIH+x9Y3RZsRahX +Ab2KuKjfnIevDUzWF6yUlnZn4kaYcW6I7hWUcExO98DXCxlXCbNZZUnpyprgZ8c L+I5Uf78D+yJJrcmgLKlRY4iKJ9EKt92jVxKMdJ3V//kwkI= -----END CERTIFICATE-----Generated at Wed May 13 03:51:30 2026 by rpki-client