$ rpki-client -vvf rpki-rsync.idnic.net/repo/355a1a44-337d-4db4-90d7-5bd4f37214b8/0/323430313a326334303a3a2f34382d3438203d3e203338353233.roa File: 323430313a326334303a3a2f34382d3438203d3e203338353233.roa (raw, json) Hash identifier: NsEUBjEg4RvBD7zitmsA9BrE/lRHRKsCpJUJlO5IUjE= Subject key identifier: 92:9C:BF:E6:77:32:54:B1:DA:E4:6C:F9:77:6D:9A:26:0D:91:1C:C8 Certificate issuer: /CN=1A4531574FEFFD9E221DE0D82CE657853E4CEE3A Certificate serial: 6C75B894EB8C8EAAAFFDC36AF856F61D3A51B66A Authority key identifier: 1A:45:31:57:4F:EF:FD:9E:22:1D:E0:D8:2C:E6:57:85:3E:4C:EE:3A Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/1A4531574FEFFD9E221DE0D82CE657853E4CEE3A.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/355a1a44-337d-4db4-90d7-5bd4f37214b8/0/323430313a326334303a3a2f34382d3438203d3e203338353233.roa Signing time: Sun 03 May 2026 02:25:12 +0000 ROA not before: Sun 03 May 2026 02:20:12 +0000 ROA not after: Sun 02 May 2027 02:25:12 +0000 asID: 38523 IP address blocks: 2401:2c40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/355a1a44-337d-4db4-90d7-5bd4f37214b8/0/1A4531574FEFFD9E221DE0D82CE657853E4CEE3A.crl rsync://rpki-rsync.idnic.net/repo/355a1a44-337d-4db4-90d7-5bd4f37214b8/0/1A4531574FEFFD9E221DE0D82CE657853E4CEE3A.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/1A4531574FEFFD9E221DE0D82CE657853E4CEE3A.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 04:31:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:75:b8:94:eb:8c:8e:aa:af:fd:c3:6a:f8:56:f6:1d:3a:51:b6:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1A4531574FEFFD9E221DE0D82CE657853E4CEE3A Validity Not Before: May 3 02:20:12 2026 GMT Not After : May 2 02:25:12 2027 GMT Subject: CN=929CBFE6773254B1DAE46CF9776D9A260D911CC8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:00:0d:5c:0f:e9:5d:d7:76:aa:68:a8:e1:cc: 0b:99:0a:0c:ac:a0:1c:77:31:be:89:cb:33:19:9b: ce:60:06:3a:03:af:18:be:09:e2:d1:2e:6d:eb:1f: 3b:09:7f:fd:dc:40:db:40:99:08:b4:70:53:2e:f3: 3f:0e:09:35:d5:d2:d6:f2:4d:1a:33:c1:17:28:c3: e5:ff:2e:88:23:9c:df:1b:94:54:b2:ba:8e:10:20: 32:32:f7:f5:90:e6:85:ad:3a:b2:13:e6:b1:4e:4c: 52:d5:4c:47:fd:2f:cf:0b:69:f9:76:e5:64:0f:9f: 63:98:2c:0b:cf:39:94:1d:f4:5f:fe:4c:d1:9c:f4: 8c:f3:5a:94:e4:ad:fc:cd:2a:40:cc:d9:f6:0a:7a: ee:ee:e7:9d:bd:64:b6:87:cb:35:ba:28:9e:20:d5: d5:33:62:14:3c:5b:9c:4e:41:c3:89:ae:75:3a:aa: 78:1c:a3:8d:72:55:9a:a9:47:78:e6:79:42:92:1c: 02:c9:ed:90:75:06:2c:39:73:e7:ca:95:52:c7:0d: 41:c9:3c:2a:5c:9b:c6:8d:9b:85:55:d3:c9:0c:d7: d9:2e:bc:ae:d1:0e:9a:0f:39:63:a5:6c:e5:ff:6d: c1:dc:9e:bf:a5:b9:c4:f5:a5:92:c6:69:26:96:a6: 2f:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:9C:BF:E6:77:32:54:B1:DA:E4:6C:F9:77:6D:9A:26:0D:91:1C:C8 X509v3 Authority Key Identifier: keyid:1A:45:31:57:4F:EF:FD:9E:22:1D:E0:D8:2C:E6:57:85:3E:4C:EE:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/355a1a44-337d-4db4-90d7-5bd4f37214b8/0/1A4531574FEFFD9E221DE0D82CE657853E4CEE3A.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/1A4531574FEFFD9E221DE0D82CE657853E4CEE3A.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/355a1a44-337d-4db4-90d7-5bd4f37214b8/0/323430313a326334303a3a2f34382d3438203d3e203338353233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:2c40::/48 Signature Algorithm: sha256WithRSAEncryption 93:e0:26:18:ae:ab:bc:04:dc:91:60:b9:ab:f8:0d:53:97:f5: 26:bd:c1:a0:b8:c0:d9:fa:09:d4:7a:7b:8d:04:5b:85:8f:86: b0:56:c7:8a:83:fe:56:0d:bc:a9:c0:bd:b1:3d:8c:7f:e0:2b: 39:fc:e9:e4:1f:a6:0a:da:66:cf:d0:ee:50:1c:36:3f:ab:c8: 06:b6:5b:b2:88:f8:2f:f3:75:68:d2:e8:3d:9f:39:05:54:e4: 48:be:1f:3c:fe:7b:b0:db:c6:d2:5b:54:77:b2:65:06:aa:6a: bb:fc:4c:a0:cf:2c:fe:78:6b:b5:65:fd:9b:d2:89:78:9c:e2: 37:94:31:10:cd:ab:b1:01:86:5e:8b:e2:89:9f:8f:88:36:4e: b4:45:5d:16:f6:b1:81:6a:f9:22:27:6c:3e:0c:01:f8:7f:1e: 3b:be:a8:39:c5:10:a8:a4:ba:23:a9:50:d9:3f:c2:91:c0:bf: 94:13:2d:17:b0:2d:b1:12:fd:47:29:ee:d9:bb:46:9c:d8:2f: a9:e0:8b:de:b4:4a:dc:bf:b3:30:3d:de:9c:43:00:c3:12:e5: bd:65:07:ad:15:8e:2a:9f:c5:c2:9c:8f:51:68:b8:7c:99:31: ca:ec:8f:a4:ab:d9:e8:ac:77:3f:eb:ca:bb:e9:3b:f5:9a:82: 4b:67:bd:52 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUbHW4lOuMjqqv/cNq+Fb2HTpRtmowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUE0NTMxNTc0RkVGRkQ5RTIyMURFMEQ4MkNFNjU3ODUz RTRDRUUzQTAeFw0yNjA1MDMwMjIwMTJaFw0yNzA1MDIwMjI1MTJaMDMxMTAvBgNV BAMTKDkyOUNCRkU2NzczMjU0QjFEQUU0NkNGOTc3NkQ5QTI2MEQ5MTFDQzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCkAA1cD+ld13aqaKjhzAuZCgys oBx3Mb6JyzMZm85gBjoDrxi+CeLRLm3rHzsJf/3cQNtAmQi0cFMu8z8OCTXV0tby TRozwRcow+X/LogjnN8blFSyuo4QIDIy9/WQ5oWtOrIT5rFOTFLVTEf9L88Lafl2 5WQPn2OYLAvPOZQd9F/+TNGc9IzzWpTkrfzNKkDM2fYKeu7u5529ZLaHyzW6KJ4g 1dUzYhQ8W5xOQcOJrnU6qngco41yVZqpR3jmeUKSHALJ7ZB1Biw5c+fKlVLHDUHJ PCpcm8aNm4VV08kM19kuvK7RDpoPOWOlbOX/bcHcnr+lucT1pZLGaSaWpi+XAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUkpy/5ncyVLHa5Gz5d22aJg2RHMgwHwYDVR0j BBgwFoAUGkUxV0/v/Z4iHeDYLOZXhT5M7jowDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MzU1YTFhNDQtMzM3ZC00ZGI0LTkwZDctNWJkNGYzNzIxNGI4LzAvMUE0NTMxNTc0 RkVGRkQ5RTIyMURFMEQ4MkNFNjU3ODUzRTRDRUUzQS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8xQTQ1MzE1NzRGRUZGRDlFMjIxREUwRDgyQ0U2NTc4NTNFNENF RTNBLmNlcjCBoQYIKwYBBQUHAQsEgZQwgZEwgY4GCCsGAQUFBzALhoGBcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzM1NWExYTQ0LTMzN2QtNGRiNC05 MGQ3LTViZDRmMzcyMTRiOC8wLzMyMzQzMDMxM2EzMjYzMzQzMDNhM2EyZjM0Mzgy ZDM0MzgyMDNkM2UyMDMzMzgzNTMyMzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkASxAAAAwDQYJKoZI hvcNAQELBQADggEBAJPgJhiuq7wE3JFguav4DVOX9Sa9waC4wNn6CdR6e40EW4WP hrBWx4qD/lYNvKnAvbE9jH/gKzn86eQfpgraZs/Q7lAcNj+ryAa2W7KI+C/zdWjS 6D2fOQVU5Ei+Hzz+e7DbxtJbVHeyZQaqarv8TKDPLP54a7Vl/ZvSiXic4jeUMRDN q7EBhl6L4omfj4g2TrRFXRb2sYFq+SInbD4MAfh/Hju+qDnFEKikuiOpUNk/wpHA v5QTLRewLbES/Ucp7tm7RpzYL6ngi960Sty/szA93pxDAMMS5b1lB60VjiqfxcKc j1FouHyZMcrsj6Sr2eisdz/ryrvpO/WagktnvVI= -----END CERTIFICATE-----Generated at Wed May 13 06:48:21 2026 by rpki-client