$ rpki-client -vvf rpki-rsync.idnic.net/repo/38c9c252-f7ca-4dd5-88f6-22addc8934b3/0/323430373a373263303a3a2f33322d3332203d3e203538383230.roa File: 323430373a373263303a3a2f33322d3332203d3e203538383230.roa (raw, json) Hash identifier: QTf5TvW/sGJCtiqjYOWSFSyqMXy6xLfUyzA5Wf2VFMo= Subject key identifier: 7F:AA:1A:D0:DA:62:FF:BC:82:FD:7A:37:22:D4:39:4F:6E:D6:69:9E Certificate issuer: /CN=C8C1A31E42E799E9EDC0FAB813163052945845AC Certificate serial: 0E54EF2149D45E50BDA12AE90EACCCEEC64CC046 Authority key identifier: C8:C1:A3:1E:42:E7:99:E9:ED:C0:FA:B8:13:16:30:52:94:58:45:AC Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C8C1A31E42E799E9EDC0FAB813163052945845AC.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/38c9c252-f7ca-4dd5-88f6-22addc8934b3/0/323430373a373263303a3a2f33322d3332203d3e203538383230.roa Signing time: Sun 03 May 2026 02:26:06 +0000 ROA not before: Sun 03 May 2026 02:21:06 +0000 ROA not after: Sun 02 May 2027 02:26:06 +0000 asID: 58820 IP address blocks: 2407:72c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/38c9c252-f7ca-4dd5-88f6-22addc8934b3/0/C8C1A31E42E799E9EDC0FAB813163052945845AC.crl rsync://rpki-rsync.idnic.net/repo/38c9c252-f7ca-4dd5-88f6-22addc8934b3/0/C8C1A31E42E799E9EDC0FAB813163052945845AC.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C8C1A31E42E799E9EDC0FAB813163052945845AC.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 01:38:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:54:ef:21:49:d4:5e:50:bd:a1:2a:e9:0e:ac:cc:ee:c6:4c:c0:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C8C1A31E42E799E9EDC0FAB813163052945845AC Validity Not Before: May 3 02:21:06 2026 GMT Not After : May 2 02:26:06 2027 GMT Subject: CN=7FAA1AD0DA62FFBC82FD7A3722D4394F6ED6699E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:f9:b0:74:fe:e0:0b:9f:97:5c:e2:0f:60:55: ba:72:31:85:96:de:91:d8:85:93:bf:dd:26:1d:82: 22:26:f0:0a:83:27:18:15:37:23:6f:4c:25:fe:56: 46:34:f8:a6:2f:1d:71:19:c8:8b:c8:e4:e3:db:1e: 4f:af:dd:dd:84:99:90:31:38:82:b2:82:c2:33:86: 0b:75:10:ae:c0:1e:89:29:77:e5:54:9a:be:f8:71: f3:da:32:a6:cb:e8:bc:db:5e:4e:5c:39:09:88:21: 62:75:37:12:b0:b4:2f:70:42:41:d5:01:5e:10:a2: 11:3e:19:c5:b6:d6:7b:e7:24:01:5c:3a:39:3b:eb: 72:1e:15:41:34:4e:41:31:4b:63:18:8b:99:5c:4a: 59:d5:45:6c:a2:9f:ff:17:11:70:d2:47:bc:77:bf: 12:c4:ab:41:1c:c8:ef:ec:a0:d1:90:d1:df:08:60: 5b:c3:e6:e8:ca:ec:49:05:63:8f:96:10:91:0f:02: f1:e7:e6:1e:01:8a:4e:e2:8e:e9:7a:90:5d:20:80: c5:c3:a4:6f:01:a1:82:78:bc:ba:27:ee:66:37:25: 6a:ba:7d:6e:d1:32:d9:0b:15:cd:83:69:c4:f8:eb: 91:fa:f4:af:81:3c:7d:e7:bc:1c:9c:71:83:f2:15: 6c:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:AA:1A:D0:DA:62:FF:BC:82:FD:7A:37:22:D4:39:4F:6E:D6:69:9E X509v3 Authority Key Identifier: keyid:C8:C1:A3:1E:42:E7:99:E9:ED:C0:FA:B8:13:16:30:52:94:58:45:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/38c9c252-f7ca-4dd5-88f6-22addc8934b3/0/C8C1A31E42E799E9EDC0FAB813163052945845AC.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C8C1A31E42E799E9EDC0FAB813163052945845AC.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/38c9c252-f7ca-4dd5-88f6-22addc8934b3/0/323430373a373263303a3a2f33322d3332203d3e203538383230.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2407:72c0::/32 Signature Algorithm: sha256WithRSAEncryption 2e:d1:c0:5c:b0:20:97:01:d3:f8:43:9d:e6:c2:83:38:4e:1c: 0b:dc:fd:f8:ad:d0:cf:fc:5a:bf:bf:6e:d7:83:2b:34:39:89: 75:17:fa:a2:06:e5:e9:ca:59:89:e3:5d:98:79:90:2d:4c:83: 3b:0e:4d:52:13:5e:73:10:35:bb:be:d1:5c:72:ab:f4:44:69: 29:c6:f1:cf:23:be:6c:91:4b:11:5c:fc:66:9b:73:d6:49:51: 98:88:6a:e8:a6:08:36:3b:c0:bb:8e:cc:49:71:75:1f:0f:2b: af:fc:ec:b6:36:1e:68:6d:40:72:c4:0c:76:1a:ac:0d:62:02: a7:5c:60:bc:3c:8a:6c:18:f8:32:ff:d1:11:53:a4:1d:8e:cb: b5:8b:50:08:80:97:68:19:ef:30:43:aa:aa:e7:75:8a:1e:cd: 3d:52:a8:c3:b3:4d:bd:6d:50:5b:2c:88:a1:f3:a8:a9:b0:92: 99:69:b0:7c:36:5f:0f:32:66:cc:25:f9:2c:27:70:1c:fb:df: ee:1b:46:d8:1a:06:df:49:57:1c:6f:b4:3c:ef:31:bc:1e:51: f9:b2:c8:26:d9:2e:93:ef:09:0d:ca:4e:27:c5:94:99:5b:2f: 3e:23:07:6b:1a:7a:34:11:a6:f7:af:3f:da:69:7b:c8:47:93: f8:fb:2a:65 -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUDlTvIUnUXlC9oSrpDqzM7sZMwEYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzhDMUEzMUU0MkU3OTlFOUVEQzBGQUI4MTMxNjMwNTI5 NDU4NDVBQzAeFw0yNjA1MDMwMjIxMDZaFw0yNzA1MDIwMjI2MDZaMDMxMTAvBgNV BAMTKDdGQUExQUQwREE2MkZGQkM4MkZEN0EzNzIyRDQzOTRGNkVENjY5OUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDH+bB0/uALn5dc4g9gVbpyMYWW 3pHYhZO/3SYdgiIm8AqDJxgVNyNvTCX+VkY0+KYvHXEZyIvI5OPbHk+v3d2EmZAx OIKygsIzhgt1EK7AHokpd+VUmr74cfPaMqbL6LzbXk5cOQmIIWJ1NxKwtC9wQkHV AV4QohE+GcW21nvnJAFcOjk763IeFUE0TkExS2MYi5lcSlnVRWyin/8XEXDSR7x3 vxLEq0EcyO/soNGQ0d8IYFvD5ujK7EkFY4+WEJEPAvHn5h4Bik7ijul6kF0ggMXD pG8BoYJ4vLon7mY3JWq6fW7RMtkLFc2DacT465H69K+BPH3nvByccYPyFWwzAgMB AAGjggIxMIICLTAdBgNVHQ4EFgQUf6oa0Npi/7yC/Xo3ItQ5T27WaZ4wHwYDVR0j BBgwFoAUyMGjHkLnmentwPq4ExYwUpRYRawwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MzhjOWMyNTItZjdjYS00ZGQ1LTg4ZjYtMjJhZGRjODkzNGIzLzAvQzhDMUEzMUU0 MkU3OTlFOUVEQzBGQUI4MTMxNjMwNTI5NDU4NDVBQy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9DOEMxQTMxRTQyRTc5OUU5RURDMEZBQjgxMzE2MzA1Mjk0NTg0 NUFDLmNlcjCBoQYIKwYBBQUHAQsEgZQwgZEwgY4GCCsGAQUFBzALhoGBcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzM4YzljMjUyLWY3Y2EtNGRkNS04 OGY2LTIyYWRkYzg5MzRiMy8wLzMyMzQzMDM3M2EzNzMyNjMzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDM1MzgzODMyMzAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkB3LAMA0GCSqGSIb3 DQEBCwUAA4IBAQAu0cBcsCCXAdP4Q53mwoM4ThwL3P34rdDP/Fq/v27Xgys0OYl1 F/qiBuXpylmJ412YeZAtTIM7Dk1SE15zEDW7vtFccqv0RGkpxvHPI75skUsRXPxm m3PWSVGYiGropgg2O8C7jsxJcXUfDyuv/Oy2Nh5obUByxAx2GqwNYgKnXGC8PIps GPgy/9ERU6Qdjsu1i1AIgJdoGe8wQ6qq53WKHs09UqjDs029bVBbLIih86ipsJKZ abB8Nl8PMmbMJfksJ3Ac+9/uG0bYGgbfSVccb7Q87zG8HlH5ssgm2S6T7wkNyk4n xZSZWy8+IwdrGno0Eab3rz/aaXvIR5P4+ypl -----END CERTIFICATE-----Generated at Wed May 13 15:40:17 2026 by rpki-client