$ rpki-client -vvf rpki-rsync.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a31303a3a2f34382d3438203d3e20313437313337.roa File: 323430303a343661303a31303a3a2f34382d3438203d3e20313437313337.roa (raw, json) Hash identifier: Xtekq0XfiyDF84CgG01kPnBfk5gv3roxTAHumf4Y5lY= Subject key identifier: 14:7A:A9:0B:16:9F:26:0D:CF:1E:8D:76:8F:57:1A:AB:56:D8:73:B9 Certificate issuer: /CN=C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9 Certificate serial: 238F757339F278098C7BBF86F97035E4DA31AF18 Authority key identifier: C0:D7:02:8C:0F:A6:28:34:8A:E2:24:5D:D0:CC:02:D3:C5:DC:B3:F9 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a31303a3a2f34382d3438203d3e20313437313337.roa Signing time: Sun 03 May 2026 02:26:44 +0000 ROA not before: Sun 03 May 2026 02:21:44 +0000 ROA not after: Sun 02 May 2027 02:26:44 +0000 asID: 147137 IP address blocks: 2400:46a0:10::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9.crl rsync://rpki-rsync.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 23:26:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:8f:75:73:39:f2:78:09:8c:7b:bf:86:f9:70:35:e4:da:31:af:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9 Validity Not Before: May 3 02:21:44 2026 GMT Not After : May 2 02:26:44 2027 GMT Subject: CN=147AA90B169F260DCF1E8D768F571AAB56D873B9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:fb:5c:3b:5a:cd:aa:6b:5f:ff:22:0b:f4:58: 1b:fa:c1:d0:6a:86:0d:36:1c:14:94:06:76:68:a2: cc:e5:e4:9b:83:d7:14:33:21:a0:df:1d:7c:30:f8: 29:de:ce:ae:1b:7a:f2:0a:10:ab:2e:e6:e9:a4:21: 1e:98:20:7f:be:8e:75:de:dc:a6:21:c2:56:09:37: cb:03:d0:4c:65:2c:a7:f3:2a:43:66:19:1e:ea:48: e2:74:45:99:7f:19:fd:52:45:6d:34:58:19:8b:5c: da:c3:c0:e3:be:0c:80:db:7a:f5:2d:64:a5:62:b8: 2f:15:3c:d5:0f:f1:e8:fc:4a:d3:f6:1f:48:74:c1: cf:cf:49:ba:26:df:ab:ad:01:da:98:c0:db:b8:e3: d0:b3:f7:cd:f7:42:89:ad:59:5e:b8:95:53:e8:cc: 01:95:6b:81:78:7c:d6:b4:82:46:1c:93:03:32:53: 1e:f7:f5:f5:0d:45:21:7a:14:fd:48:8f:b1:27:38: 9d:7c:fd:9d:0a:70:37:ea:ed:95:31:a7:fd:f5:26: 82:00:61:1c:73:2a:81:38:97:e8:05:af:ed:cd:a6: b9:03:b6:d6:81:f0:cf:7b:b7:4a:20:3f:fb:e4:19: 6d:3a:ec:1f:8c:e2:27:3b:a5:57:c5:9e:99:06:37: fb:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:7A:A9:0B:16:9F:26:0D:CF:1E:8D:76:8F:57:1A:AB:56:D8:73:B9 X509v3 Authority Key Identifier: keyid:C0:D7:02:8C:0F:A6:28:34:8A:E2:24:5D:D0:CC:02:D3:C5:DC:B3:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a31303a3a2f34382d3438203d3e20313437313337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:46a0:10::/48 Signature Algorithm: sha256WithRSAEncryption a1:39:85:b4:f7:be:b6:c0:94:65:f4:a5:4f:25:a1:33:60:c6: ce:aa:8e:81:78:7b:63:3c:16:10:75:29:2b:1f:08:05:ec:12: bd:c6:63:f9:35:c2:1f:37:95:bb:21:70:9a:63:17:46:17:93: 70:2e:a3:e5:49:78:99:cf:c1:fa:9a:26:cd:dd:38:a0:46:f3: 76:f8:f7:c2:e0:04:d6:36:7d:b7:5a:e9:4f:5d:0a:8a:41:1b: 32:67:be:c5:53:ef:93:da:75:0d:45:68:a9:20:44:b2:f0:a3: f4:37:b7:55:18:93:1d:0a:99:cb:61:bf:22:6d:5e:16:99:c8: ae:72:d6:b4:07:27:6d:bd:3e:f0:72:32:90:ce:23:a1:c3:a6: 03:7e:18:53:5b:ab:86:17:d1:fa:a3:82:fe:da:1d:3c:d0:26: 91:28:fe:f8:93:1a:e8:5b:c1:eb:d0:b6:e6:13:24:6b:35:6b: cf:8b:f7:f1:8e:5d:fe:69:36:24:42:89:c6:14:26:5b:8c:fd: 10:18:2a:d7:57:02:ad:7c:39:72:6f:04:2e:48:28:33:87:e3: 9a:15:37:98:df:f2:e4:3a:c9:6a:58:d2:9d:3f:f0:99:86:40: a3:7d:be:a2:db:34:22:07:78:72:ae:4a:bb:00:bc:fc:db:fc: 7e:05:28:8c -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUI491cznyeAmMe7+G+XA15NoxrxgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzBENzAyOEMwRkE2MjgzNDhBRTIyNDVERDBDQzAyRDND NURDQjNGOTAeFw0yNjA1MDMwMjIxNDRaFw0yNzA1MDIwMjI2NDRaMDMxMTAvBgNV BAMTKDE0N0FBOTBCMTY5RjI2MERDRjFFOEQ3NjhGNTcxQUFCNTZEODczQjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDf+1w7Ws2qa1//Igv0WBv6wdBq hg02HBSUBnZooszl5JuD1xQzIaDfHXww+Cnezq4bevIKEKsu5umkIR6YIH++jnXe 3KYhwlYJN8sD0ExlLKfzKkNmGR7qSOJ0RZl/Gf1SRW00WBmLXNrDwOO+DIDbevUt ZKViuC8VPNUP8ej8StP2H0h0wc/PSbom36utAdqYwNu449Cz9833QomtWV64lVPo zAGVa4F4fNa0gkYckwMyUx739fUNRSF6FP1Ij7EnOJ18/Z0KcDfq7ZUxp/31JoIA YRxzKoE4l+gFr+3NprkDttaB8M97t0ogP/vkGW067B+M4ic7pVfFnpkGN/snAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUFHqpCxafJg3PHo12j1caq1bYc7kwHwYDVR0j BBgwFoAUwNcCjA+mKDSK4iRd0MwC08Xcs/kwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v M2E2NjVjMzItNmRhZi00NzJiLWJjZTYtMzE3ZDVkNmM3ODllLzAvQzBENzAyOEMw RkE2MjgzNDhBRTIyNDVERDBDQzAyRDNDNURDQjNGOS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9DMEQ3MDI4QzBGQTYyODM0OEFFMjI0NUREMENDMDJEM0M1RENC M0Y5LmNlcjCBqQYIKwYBBQUHAQsEgZwwgZkwgZYGCCsGAQUFBzALhoGJcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzNhNjY1YzMyLTZkYWYtNDcyYi1i Y2U2LTMxN2Q1ZDZjNzg5ZS8wLzMyMzQzMDMwM2EzNDM2NjEzMDNhMzEzMDNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzQzNzMxMzMzNy5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQARqAA EDANBgkqhkiG9w0BAQsFAAOCAQEAoTmFtPe+tsCUZfSlTyWhM2DGzqqOgXh7YzwW EHUpKx8IBewSvcZj+TXCHzeVuyFwmmMXRheTcC6j5Ul4mc/B+pomzd04oEbzdvj3 wuAE1jZ9t1rpT10KikEbMme+xVPvk9p1DUVoqSBEsvCj9De3VRiTHQqZy2G/Im1e FpnIrnLWtAcnbb0+8HIykM4jocOmA34YU1urhhfR+qOC/todPNAmkSj++JMa6FvB 69C25hMkazVrz4v38Y5d/mk2JEKJxhQmW4z9EBgq11cCrXw5cm8ELkgoM4fjmhU3 mN/y5DrJaljSnT/wmYZAo32+ots0Igd4cq5KuwC8/Nv8fgUojA== -----END CERTIFICATE-----Generated at Wed May 13 12:41:10 2026 by rpki-client