$ rpki-client -vvf rpki-rsync.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/323430323a653130303a61653a3a2f34382d3438203d3e203538343835.roa File: 323430323a653130303a61653a3a2f34382d3438203d3e203538343835.roa (raw, json) Hash identifier: kxIOYoC0XrMoUIa2RKDIrOUk61PTYC6D0smdwPW+OqE= Subject key identifier: 14:3C:3D:DE:14:D1:2C:DA:79:20:13:D9:68:7F:CC:9C:CC:B6:6D:F7 Certificate issuer: /CN=66F96AEBF9C8A21337CB4A7815369BEC12FF9A04 Certificate serial: 46F8D20ED713674DACE7C30EAF166F7067E4D153 Authority key identifier: 66:F9:6A:EB:F9:C8:A2:13:37:CB:4A:78:15:36:9B:EC:12:FF:9A:04 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/66F96AEBF9C8A21337CB4A7815369BEC12FF9A04.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/323430323a653130303a61653a3a2f34382d3438203d3e203538343835.roa Signing time: Sun 03 May 2026 02:23:17 +0000 ROA not before: Sun 03 May 2026 02:18:17 +0000 ROA not after: Sun 02 May 2027 02:23:17 +0000 asID: 58485 IP address blocks: 2402:e100:ae::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/66F96AEBF9C8A21337CB4A7815369BEC12FF9A04.crl rsync://rpki-rsync.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/66F96AEBF9C8A21337CB4A7815369BEC12FF9A04.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/66F96AEBF9C8A21337CB4A7815369BEC12FF9A04.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:f8:d2:0e:d7:13:67:4d:ac:e7:c3:0e:af:16:6f:70:67:e4:d1:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=66F96AEBF9C8A21337CB4A7815369BEC12FF9A04 Validity Not Before: May 3 02:18:17 2026 GMT Not After : May 2 02:23:17 2027 GMT Subject: CN=143C3DDE14D12CDA792013D9687FCC9CCCB66DF7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:69:74:55:42:0c:6d:ba:2c:56:64:26:73:c4: 04:6a:4e:72:96:1e:1d:58:03:1a:4e:85:c8:79:32: 66:d6:45:eb:ac:4e:e9:60:24:b1:1e:0a:ea:78:e0: 41:2c:f1:95:15:a7:ad:d3:cc:74:b4:c0:da:7b:c4: 82:5e:fb:4d:7e:68:11:2f:5f:90:6d:5a:13:39:f0: b1:4f:91:25:4e:11:d6:a9:6f:0f:c4:35:9e:b0:c7: c5:6e:aa:5b:cd:70:d5:72:fe:d0:68:7c:8b:fa:91: 4c:34:f4:ed:53:56:87:dc:c3:d3:1f:77:4d:ee:a2: e0:dc:04:6c:d9:f7:3b:b1:b1:17:99:60:a4:6f:0a: 18:eb:10:79:b2:9a:b6:88:54:21:2f:6e:dd:82:45: c1:2f:39:03:86:2d:4b:f1:24:fd:db:19:f5:80:29: e8:c5:6f:f0:22:8e:42:1b:75:55:2c:52:60:37:1c: 1e:28:e2:3a:da:6d:78:52:fb:40:0b:99:01:34:67: ea:9b:a1:f1:b3:2c:ff:b0:12:00:4f:62:0e:c9:d4: 99:7f:2d:61:37:cb:f8:a9:fc:65:02:10:63:a1:70: 88:c2:70:f9:9b:17:41:b1:8f:c2:c4:ee:83:ef:a0: 7f:53:68:10:7c:de:43:9e:aa:3b:e5:85:0d:51:ec: 52:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:3C:3D:DE:14:D1:2C:DA:79:20:13:D9:68:7F:CC:9C:CC:B6:6D:F7 X509v3 Authority Key Identifier: keyid:66:F9:6A:EB:F9:C8:A2:13:37:CB:4A:78:15:36:9B:EC:12:FF:9A:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/66F96AEBF9C8A21337CB4A7815369BEC12FF9A04.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/66F96AEBF9C8A21337CB4A7815369BEC12FF9A04.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/323430323a653130303a61653a3a2f34382d3438203d3e203538343835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:e100:ae::/48 Signature Algorithm: sha256WithRSAEncryption 1a:c7:46:a5:5f:23:d0:68:23:7c:77:25:2d:26:58:c0:72:74: 69:94:0a:19:9d:b4:9a:63:21:ea:01:4d:30:ee:12:da:24:3d: db:3e:25:67:a7:ff:38:90:b6:41:65:5a:dd:18:21:60:74:24: 75:84:4d:c9:e1:34:99:c6:c7:a8:9c:47:bf:ee:32:f9:00:46: 06:11:c7:5e:fd:8a:28:53:79:81:c6:61:8a:0a:67:20:c0:7d: 68:26:1e:57:ce:a9:0b:04:8a:42:92:1f:85:7f:6a:10:10:6c: 13:16:12:44:32:71:e0:1b:e2:93:e6:65:9a:04:43:96:88:40: 80:c7:37:af:7e:07:8e:4c:3f:19:eb:ff:6a:af:9e:34:b9:22: 65:99:f9:0c:2e:49:15:6a:0e:f3:d0:aa:d6:d8:06:4f:2a:40: ed:96:e4:78:93:80:77:11:9c:90:ff:a7:8e:8d:1e:3c:66:9f: 5c:85:d8:53:c8:e2:f8:c5:cf:53:9d:22:6c:6c:67:6d:38:32: 31:44:32:7c:dc:a7:6c:05:bb:a0:3c:03:da:64:3c:97:20:b1: 87:cb:60:e4:d1:2c:5c:ec:39:ef:37:df:c7:70:1b:52:00:14: cb:fe:51:2a:05:9d:35:74:aa:fc:1f:50:a1:28:1d:1e:8a:1f: 37:d0:fb:37 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIURvjSDtcTZ02s58MOrxZvcGfk0VMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjZGOTZBRUJGOUM4QTIxMzM3Q0I0QTc4MTUzNjlCRUMx MkZGOUEwNDAeFw0yNjA1MDMwMjE4MTdaFw0yNzA1MDIwMjIzMTdaMDMxMTAvBgNV BAMTKDE0M0MzRERFMTREMTJDREE3OTIwMTNEOTY4N0ZDQzlDQ0NCNjZERjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNaXRVQgxtuixWZCZzxARqTnKW Hh1YAxpOhch5MmbWReusTulgJLEeCup44EEs8ZUVp63TzHS0wNp7xIJe+01+aBEv X5BtWhM58LFPkSVOEdapbw/ENZ6wx8VuqlvNcNVy/tBofIv6kUw09O1TVofcw9Mf d03uouDcBGzZ9zuxsReZYKRvChjrEHmymraIVCEvbt2CRcEvOQOGLUvxJP3bGfWA KejFb/AijkIbdVUsUmA3HB4o4jrabXhS+0ALmQE0Z+qbofGzLP+wEgBPYg7J1Jl/ LWE3y/ip/GUCEGOhcIjCcPmbF0Gxj8LE7oPvoH9TaBB83kOeqjvlhQ1R7FJVAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUFDw93hTRLNp5IBPZaH/MnMy2bfcwHwYDVR0j BBgwFoAUZvlq6/nIohM3y0p4FTab7BL/mgQwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MmVlNDdiYmYtYmE4NC00NDhmLTk2MmItMmFhZjVjN2RkNjhkLzAvNjZGOTZBRUJG OUM4QTIxMzM3Q0I0QTc4MTUzNjlCRUMxMkZGOUEwNC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS82NkY5NkFFQkY5QzhBMjEzMzdDQjRBNzgxNTM2OUJFQzEyRkY5 QTA0LmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzJlZTQ3YmJmLWJhODQtNDQ4Zi05 NjJiLTJhYWY1YzdkZDY4ZC8wLzMyMzQzMDMyM2E2NTMxMzAzMDNhNjE2NTNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzgzNDM4MzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkAuEAAK4w DQYJKoZIhvcNAQELBQADggEBABrHRqVfI9BoI3x3JS0mWMBydGmUChmdtJpjIeoB TTDuEtokPds+JWen/ziQtkFlWt0YIWB0JHWETcnhNJnGx6icR7/uMvkARgYRx179 iihTeYHGYYoKZyDAfWgmHlfOqQsEikKSH4V/ahAQbBMWEkQyceAb4pPmZZoEQ5aI QIDHN69+B45MPxnr/2qvnjS5ImWZ+QwuSRVqDvPQqtbYBk8qQO2W5HiTgHcRnJD/ p46NHjxmn1yF2FPI4vjFz1OdImxsZ204MjFEMnzcp2wFu6A8A9pkPJcgsYfLYOTR LFzsOe8338dwG1IAFMv+USoFnTV0qvwfUKEoHR6KHzfQ+zc= -----END CERTIFICATE-----Generated at Wed May 13 03:22:46 2026 by rpki-client