$ rpki-client -vvf rpki-rsync.idnic.net/repo/355a1a44-337d-4db4-90d7-5bd4f37214b8/0/323430313a326334303a333a3a2f34382d3438203d3e203338353233.roa File: 323430313a326334303a333a3a2f34382d3438203d3e203338353233.roa (raw, json) Hash identifier: 1Xw8ZcmhMagcycv6RIC2nnyQd9l0Ss7PGPzzLHbvNJI= Subject key identifier: F5:21:04:52:47:DF:EF:7D:EF:4E:38:9D:22:14:E5:8B:8B:7B:84:AA Certificate issuer: /CN=1A4531574FEFFD9E221DE0D82CE657853E4CEE3A Certificate serial: 171985D81C31C9A3A22706CBE5C131B1EB984646 Authority key identifier: 1A:45:31:57:4F:EF:FD:9E:22:1D:E0:D8:2C:E6:57:85:3E:4C:EE:3A Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/1A4531574FEFFD9E221DE0D82CE657853E4CEE3A.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/355a1a44-337d-4db4-90d7-5bd4f37214b8/0/323430313a326334303a333a3a2f34382d3438203d3e203338353233.roa Signing time: Sun 03 May 2026 02:25:10 +0000 ROA not before: Sun 03 May 2026 02:20:10 +0000 ROA not after: Sun 02 May 2027 02:25:10 +0000 asID: 38523 IP address blocks: 2401:2c40:3::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/355a1a44-337d-4db4-90d7-5bd4f37214b8/0/1A4531574FEFFD9E221DE0D82CE657853E4CEE3A.crl rsync://rpki-rsync.idnic.net/repo/355a1a44-337d-4db4-90d7-5bd4f37214b8/0/1A4531574FEFFD9E221DE0D82CE657853E4CEE3A.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/1A4531574FEFFD9E221DE0D82CE657853E4CEE3A.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 04:31:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:19:85:d8:1c:31:c9:a3:a2:27:06:cb:e5:c1:31:b1:eb:98:46:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1A4531574FEFFD9E221DE0D82CE657853E4CEE3A Validity Not Before: May 3 02:20:10 2026 GMT Not After : May 2 02:25:10 2027 GMT Subject: CN=F521045247DFEF7DEF4E389D2214E58B8B7B84AA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:bf:bd:c8:d2:35:8e:3f:9c:b2:e7:cc:a6:df: 5f:e2:93:06:6f:e8:02:1e:61:ba:7b:e9:b7:64:df: 92:55:e0:95:1f:6a:0d:74:7c:09:92:67:f9:d1:1f: c1:60:39:4c:4b:8a:e6:1e:3f:66:81:41:79:a9:14: eb:8f:6a:70:c5:a7:5d:f2:3f:5f:be:43:07:35:90: cc:45:2c:a7:e7:41:e5:e8:58:db:09:84:b8:0c:4a: 28:bf:fd:93:14:48:ed:1e:cb:cc:19:e1:43:e9:c3: a3:ee:ba:cc:2e:7b:b9:b5:6e:fc:fc:3a:ad:55:f5: 29:04:15:ca:9b:0e:dc:ce:4a:b4:42:02:aa:1f:b7: 14:da:1c:b6:68:5d:81:69:8a:84:65:10:05:dd:40: 5f:c9:35:9c:a0:1c:53:52:6d:7d:c2:e2:d7:4e:ee: 23:c1:03:0d:59:2a:e1:22:05:ea:2f:0b:93:dd:d7: 53:e9:62:c3:85:be:ee:a9:f3:03:71:8a:8b:64:ec: 18:0d:30:fa:fc:9c:06:2b:6c:61:6e:b2:02:41:fb: 58:61:5b:6d:f5:b5:b2:3b:aa:31:aa:d1:b9:26:79: 61:04:dc:cb:ac:a9:d4:5b:53:8b:bb:a2:d9:b9:6c: 54:65:4a:dc:ca:44:f9:31:ad:21:a1:60:52:81:74: 0f:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:21:04:52:47:DF:EF:7D:EF:4E:38:9D:22:14:E5:8B:8B:7B:84:AA X509v3 Authority Key Identifier: keyid:1A:45:31:57:4F:EF:FD:9E:22:1D:E0:D8:2C:E6:57:85:3E:4C:EE:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/355a1a44-337d-4db4-90d7-5bd4f37214b8/0/1A4531574FEFFD9E221DE0D82CE657853E4CEE3A.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/1A4531574FEFFD9E221DE0D82CE657853E4CEE3A.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/355a1a44-337d-4db4-90d7-5bd4f37214b8/0/323430313a326334303a333a3a2f34382d3438203d3e203338353233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:2c40:3::/48 Signature Algorithm: sha256WithRSAEncryption af:42:55:c8:09:a5:90:2f:6b:1a:c5:8a:2e:a2:bf:b8:6b:39: 17:40:07:8b:55:95:43:02:bf:58:7b:e2:f9:35:51:82:9e:67: 31:3b:12:5c:9d:a0:5b:d4:58:75:22:17:f6:34:c0:f7:98:14: 5c:72:69:a1:87:bf:2b:80:ae:5a:e7:78:b6:b5:c7:2c:19:66: 43:85:3b:a5:33:a1:43:55:96:9b:44:11:b1:1c:76:6a:29:8b: 0f:a6:62:0a:4c:87:2e:7a:81:5f:5a:df:33:57:10:c3:a3:47: c3:97:ef:67:66:4d:f6:2b:6b:86:48:57:a4:f7:3a:aa:2f:6e: 5b:a7:bc:e3:17:46:c3:a4:4e:f0:14:a4:14:1d:3a:ad:03:d0: 0c:78:be:ba:01:72:29:4f:ec:cd:6d:04:68:db:6c:34:17:26: 74:3d:0a:31:a0:99:ec:29:bf:1c:c3:ba:9d:c9:fc:2f:d9:9e: 66:fb:be:aa:19:95:a9:67:b4:84:db:3b:c3:81:18:e1:08:d6: 71:f0:d4:c1:6d:39:93:d6:be:52:a8:7f:05:e7:33:ae:0a:31: 09:b6:9c:d9:41:57:3d:db:ca:d6:06:b3:9d:7e:e5:5c:db:bb: 3e:fa:b7:ff:c0:7c:ac:62:a1:1c:e0:92:72:aa:49:4c:e9:f9: dc:b0:d5:40 -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUFxmF2BwxyaOiJwbL5cExseuYRkYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUE0NTMxNTc0RkVGRkQ5RTIyMURFMEQ4MkNFNjU3ODUz RTRDRUUzQTAeFw0yNjA1MDMwMjIwMTBaFw0yNzA1MDIwMjI1MTBaMDMxMTAvBgNV BAMTKEY1MjEwNDUyNDdERkVGN0RFRjRFMzg5RDIyMTRFNThCOEI3Qjg0QUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJv73I0jWOP5yy58ym31/ikwZv 6AIeYbp76bdk35JV4JUfag10fAmSZ/nRH8FgOUxLiuYeP2aBQXmpFOuPanDFp13y P1++Qwc1kMxFLKfnQeXoWNsJhLgMSii//ZMUSO0ey8wZ4UPpw6Puuswue7m1bvz8 Oq1V9SkEFcqbDtzOSrRCAqoftxTaHLZoXYFpioRlEAXdQF/JNZygHFNSbX3C4tdO 7iPBAw1ZKuEiBeovC5Pd11PpYsOFvu6p8wNxiotk7BgNMPr8nAYrbGFusgJB+1hh W231tbI7qjGq0bkmeWEE3MusqdRbU4u7otm5bFRlStzKRPkxrSGhYFKBdA+VAgMB AAGjggI3MIICMzAdBgNVHQ4EFgQU9SEEUkff733vTjidIhTli4t7hKowHwYDVR0j BBgwFoAUGkUxV0/v/Z4iHeDYLOZXhT5M7jowDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MzU1YTFhNDQtMzM3ZC00ZGI0LTkwZDctNWJkNGYzNzIxNGI4LzAvMUE0NTMxNTc0 RkVGRkQ5RTIyMURFMEQ4MkNFNjU3ODUzRTRDRUUzQS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8xQTQ1MzE1NzRGRUZGRDlFMjIxREUwRDgyQ0U2NTc4NTNFNENF RTNBLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzM1NWExYTQ0LTMzN2QtNGRiNC05 MGQ3LTViZDRmMzcyMTRiOC8wLzMyMzQzMDMxM2EzMjYzMzQzMDNhMzMzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMzM4MzUzMjMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAEsQAADMA0G CSqGSIb3DQEBCwUAA4IBAQCvQlXICaWQL2saxYouor+4azkXQAeLVZVDAr9Ye+L5 NVGCnmcxOxJcnaBb1Fh1Ihf2NMD3mBRccmmhh78rgK5a53i2tccsGWZDhTulM6FD VZabRBGxHHZqKYsPpmIKTIcueoFfWt8zVxDDo0fDl+9nZk32K2uGSFek9zqqL25b p7zjF0bDpE7wFKQUHTqtA9AMeL66AXIpT+zNbQRo22w0FyZ0PQoxoJnsKb8cw7qd yfwv2Z5m+76qGZWpZ7SE2zvDgRjhCNZx8NTBbTmT1r5SqH8F5zOuCjEJtpzZQVc9 28rWBrOdfuVc27s++rf/wHysYqEc4JJyqklM6fncsNVA -----END CERTIFICATE-----Generated at Wed May 13 10:30:24 2026 by rpki-client