$ rpki-client -vvf rpki-rsync.idnic.net/repo/355a1a44-337d-4db4-90d7-5bd4f37214b8/0/323430313a326334303a343a3a2f34382d3438203d3e203338353233.roa File: 323430313a326334303a343a3a2f34382d3438203d3e203338353233.roa (raw, json) Hash identifier: r8bhwMyuWK8pro2AJ6O3DeDhHxZkOZDkQzVfsAiQ4HM= Subject key identifier: 55:D7:C4:07:86:8E:1A:10:4B:51:7D:13:CA:A7:7F:82:9B:5D:34:52 Certificate issuer: /CN=1A4531574FEFFD9E221DE0D82CE657853E4CEE3A Certificate serial: 72BCF2C828DD6A6BCD7CC631FD1CC460BC2DDE9C Authority key identifier: 1A:45:31:57:4F:EF:FD:9E:22:1D:E0:D8:2C:E6:57:85:3E:4C:EE:3A Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/1A4531574FEFFD9E221DE0D82CE657853E4CEE3A.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/355a1a44-337d-4db4-90d7-5bd4f37214b8/0/323430313a326334303a343a3a2f34382d3438203d3e203338353233.roa Signing time: Sun 03 May 2026 02:25:14 +0000 ROA not before: Sun 03 May 2026 02:20:14 +0000 ROA not after: Sun 02 May 2027 02:25:14 +0000 asID: 38523 IP address blocks: 2401:2c40:4::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/355a1a44-337d-4db4-90d7-5bd4f37214b8/0/1A4531574FEFFD9E221DE0D82CE657853E4CEE3A.crl rsync://rpki-rsync.idnic.net/repo/355a1a44-337d-4db4-90d7-5bd4f37214b8/0/1A4531574FEFFD9E221DE0D82CE657853E4CEE3A.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/1A4531574FEFFD9E221DE0D82CE657853E4CEE3A.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 04:31:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:bc:f2:c8:28:dd:6a:6b:cd:7c:c6:31:fd:1c:c4:60:bc:2d:de:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1A4531574FEFFD9E221DE0D82CE657853E4CEE3A Validity Not Before: May 3 02:20:14 2026 GMT Not After : May 2 02:25:14 2027 GMT Subject: CN=55D7C407868E1A104B517D13CAA77F829B5D3452 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:85:ba:09:43:19:55:e1:4e:78:57:61:f3:ca:55: 7e:24:b9:e0:35:7c:38:60:95:af:cf:7f:81:69:fa: 87:4d:ab:bf:4f:c8:fe:22:06:db:9a:3c:49:cd:29: 1d:77:76:f2:13:6d:c2:5d:51:81:43:9b:58:99:bf: ba:fd:66:51:b6:fa:0e:74:ce:4a:ea:31:f9:9d:cc: ff:03:4c:18:6c:fd:e2:97:69:e7:2a:2c:5a:b2:f8: d9:cb:54:e2:f7:21:a6:fd:d6:82:1f:bd:80:72:a1: 84:24:7e:27:32:75:05:c8:a3:8a:38:27:12:61:c8: 25:db:ed:f2:23:60:b0:89:59:5d:8e:d4:ee:58:12: 5c:09:fa:2f:1b:c2:a0:0f:7b:7e:8d:24:3e:85:60: 93:73:7e:a9:82:c9:24:c8:2e:cb:42:53:be:02:44: 97:f9:b5:bb:2e:c6:9a:af:f9:a4:fb:7b:6a:e5:79: d9:a6:21:6e:1a:bc:f5:ba:9c:8c:e4:63:fe:f8:2e: 3b:1a:cd:32:1f:f9:7a:bd:8a:14:e1:d7:60:6a:41: 0c:9c:df:4f:3c:25:30:ab:64:6e:3d:20:34:b0:86: 90:af:20:e1:a6:ba:3b:00:2e:bb:2e:06:bd:67:a2: 2e:d4:11:03:f7:2b:52:a7:f9:ce:c3:7a:ad:46:06: d5:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:D7:C4:07:86:8E:1A:10:4B:51:7D:13:CA:A7:7F:82:9B:5D:34:52 X509v3 Authority Key Identifier: keyid:1A:45:31:57:4F:EF:FD:9E:22:1D:E0:D8:2C:E6:57:85:3E:4C:EE:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/355a1a44-337d-4db4-90d7-5bd4f37214b8/0/1A4531574FEFFD9E221DE0D82CE657853E4CEE3A.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/1A4531574FEFFD9E221DE0D82CE657853E4CEE3A.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/355a1a44-337d-4db4-90d7-5bd4f37214b8/0/323430313a326334303a343a3a2f34382d3438203d3e203338353233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:2c40:4::/48 Signature Algorithm: sha256WithRSAEncryption 88:df:20:3f:66:95:b6:c0:7e:42:e9:19:17:51:2e:8d:40:f3: 82:28:8e:33:ec:6e:31:ff:8d:fe:24:3b:7f:2f:87:20:11:bc: 09:c0:a6:9a:bd:ea:31:ba:57:00:4f:8e:95:69:58:64:f8:73: f8:77:cf:42:74:6e:25:7d:29:83:45:be:a9:eb:90:b4:92:7b: 92:5d:bc:3b:c1:41:db:a7:27:73:da:7c:1c:ce:b0:41:3f:21: 48:89:9f:c3:d2:96:01:0b:03:4a:22:4d:14:5c:4f:86:22:58: 91:42:68:75:fe:c4:2a:78:36:ae:23:a0:c6:eb:cd:57:7a:34: b6:06:f8:e3:a1:c3:93:cd:13:2e:cc:99:81:99:7e:0f:f6:fa: cc:8c:8f:d9:68:20:24:0c:14:05:59:7e:1f:b8:62:fa:68:5a: 49:a5:e3:f2:eb:71:5c:c4:43:d6:76:bc:95:9f:ff:ad:2f:96: 45:1c:da:e4:97:be:f2:2a:55:f3:a3:0b:ac:b7:40:fb:eb:f2: d1:8d:c4:2b:e3:f4:92:c0:44:11:fb:a6:81:be:21:f7:fc:ee: b8:c9:b7:88:56:86:62:80:12:1d:89:dd:b6:fd:41:3d:4c:37: 2f:1d:55:c6:c7:b9:01:0d:df:c1:71:72:46:b4:0c:d8:ec:62: ae:22:71:68 -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUcrzyyCjdamvNfMYx/RzEYLwt3pwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUE0NTMxNTc0RkVGRkQ5RTIyMURFMEQ4MkNFNjU3ODUz RTRDRUUzQTAeFw0yNjA1MDMwMjIwMTRaFw0yNzA1MDIwMjI1MTRaMDMxMTAvBgNV BAMTKDU1RDdDNDA3ODY4RTFBMTA0QjUxN0QxM0NBQTc3RjgyOUI1RDM0NTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCFuglDGVXhTnhXYfPKVX4kueA1 fDhgla/Pf4Fp+odNq79PyP4iBtuaPEnNKR13dvITbcJdUYFDm1iZv7r9ZlG2+g50 zkrqMfmdzP8DTBhs/eKXaecqLFqy+NnLVOL3Iab91oIfvYByoYQkficydQXIo4o4 JxJhyCXb7fIjYLCJWV2O1O5YElwJ+i8bwqAPe36NJD6FYJNzfqmCySTILstCU74C RJf5tbsuxpqv+aT7e2rledmmIW4avPW6nIzkY/74LjsazTIf+Xq9ihTh12BqQQyc 3088JTCrZG49IDSwhpCvIOGmujsALrsuBr1noi7UEQP3K1Kn+c7Deq1GBtUnAgMB AAGjggI3MIICMzAdBgNVHQ4EFgQUVdfEB4aOGhBLUX0Tyqd/gptdNFIwHwYDVR0j BBgwFoAUGkUxV0/v/Z4iHeDYLOZXhT5M7jowDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MzU1YTFhNDQtMzM3ZC00ZGI0LTkwZDctNWJkNGYzNzIxNGI4LzAvMUE0NTMxNTc0 RkVGRkQ5RTIyMURFMEQ4MkNFNjU3ODUzRTRDRUUzQS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8xQTQ1MzE1NzRGRUZGRDlFMjIxREUwRDgyQ0U2NTc4NTNFNENF RTNBLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzM1NWExYTQ0LTMzN2QtNGRiNC05 MGQ3LTViZDRmMzcyMTRiOC8wLzMyMzQzMDMxM2EzMjYzMzQzMDNhMzQzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMzM4MzUzMjMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAEsQAAEMA0G CSqGSIb3DQEBCwUAA4IBAQCI3yA/ZpW2wH5C6RkXUS6NQPOCKI4z7G4x/43+JDt/ L4cgEbwJwKaaveoxulcAT46VaVhk+HP4d89CdG4lfSmDRb6p65C0knuSXbw7wUHb pydz2nwczrBBPyFIiZ/D0pYBCwNKIk0UXE+GIliRQmh1/sQqeDauI6DG681XejS2 BvjjocOTzRMuzJmBmX4P9vrMjI/ZaCAkDBQFWX4fuGL6aFpJpePy63FcxEPWdryV n/+tL5ZFHNrkl77yKlXzowust0D76/LRjcQr4/SSwEQR+6aBviH3/O64ybeIVoZi gBIdid22/UE9TDcvHVXGx7kBDd/BcXJGtAzY7GKuInFo -----END CERTIFICATE-----Generated at Wed May 13 07:56:27 2026 by rpki-client