$ rpki-client -vvf rpki-rsync.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a31323a3a2f34382d3438203d3e20313437313337.roa File: 323430303a343661303a31323a3a2f34382d3438203d3e20313437313337.roa (raw, json) Hash identifier: R1kE9uKrZbeLkgzHC7e5BusLmDv674DkMdgzbBvwhAw= Subject key identifier: 29:3B:C0:72:3A:2F:05:E8:3F:8A:A9:0C:FA:D3:6C:0E:26:9B:96:48 Certificate issuer: /CN=C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9 Certificate serial: 0748C2A7197AAAEEEBA7E31271B136D2A80F222F Authority key identifier: C0:D7:02:8C:0F:A6:28:34:8A:E2:24:5D:D0:CC:02:D3:C5:DC:B3:F9 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a31323a3a2f34382d3438203d3e20313437313337.roa Signing time: Sun 03 May 2026 02:26:42 +0000 ROA not before: Sun 03 May 2026 02:21:42 +0000 ROA not after: Sun 02 May 2027 02:26:42 +0000 asID: 147137 IP address blocks: 2400:46a0:12::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9.crl rsync://rpki-rsync.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 23:26:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:48:c2:a7:19:7a:aa:ee:eb:a7:e3:12:71:b1:36:d2:a8:0f:22:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9 Validity Not Before: May 3 02:21:42 2026 GMT Not After : May 2 02:26:42 2027 GMT Subject: CN=293BC0723A2F05E83F8AA90CFAD36C0E269B9648 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:bb:03:40:8d:11:e9:56:69:86:e9:82:96:d8: 20:fa:d8:7f:fc:6a:d5:4a:63:d8:00:31:92:cc:70: a3:76:cf:7b:62:a7:4f:3a:b3:ce:6b:7e:83:aa:db: 90:28:20:e0:98:2b:a6:35:24:9c:14:a1:39:d3:5f: 6a:ab:85:c2:12:a8:2e:16:c4:c8:66:59:e5:75:eb: 41:e1:d2:7c:7c:55:9a:a4:cd:2e:18:2f:ea:e6:06: 2e:57:2c:d5:3f:43:d4:a9:cf:16:02:9f:52:83:79: 08:7b:15:49:9c:20:f3:38:a5:4e:14:97:69:89:fd: d2:88:10:68:48:a7:f3:a9:5f:b6:03:99:0f:3e:d6: 92:66:f6:e1:69:d8:1e:74:84:45:b4:17:a7:d1:02: b7:7d:9d:b6:55:46:8d:b4:13:47:ae:28:d9:ba:ac: 12:4f:f3:53:3a:4b:8a:b8:86:63:4f:f9:51:33:50: c5:c3:58:08:60:e1:e8:13:68:17:5b:df:3b:18:81: 27:52:d8:74:a5:96:f1:80:23:d5:89:4c:1c:c3:20: c8:32:5c:ec:e2:28:34:44:62:85:ad:13:a9:94:af: be:4e:52:3f:b9:25:65:02:87:75:b8:27:39:ac:c3: 2e:12:37:12:b0:c3:d5:9f:1d:01:8f:de:84:a7:ca: 8b:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:3B:C0:72:3A:2F:05:E8:3F:8A:A9:0C:FA:D3:6C:0E:26:9B:96:48 X509v3 Authority Key Identifier: keyid:C0:D7:02:8C:0F:A6:28:34:8A:E2:24:5D:D0:CC:02:D3:C5:DC:B3:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a31323a3a2f34382d3438203d3e20313437313337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:46a0:12::/48 Signature Algorithm: sha256WithRSAEncryption 8d:d3:63:fb:65:63:33:3b:ce:b5:02:cf:f0:9a:2c:ff:38:f5: cb:2d:60:82:09:ca:d8:83:73:9a:ef:76:ec:6a:04:23:46:26: db:44:46:8f:76:b8:82:5d:7b:02:0d:bf:54:c4:43:a5:c5:bd: 14:98:34:a2:62:fd:f3:36:82:a6:d9:51:20:33:e9:ce:c9:ec: 71:28:e1:92:43:b0:ab:d4:57:39:9e:02:93:cf:67:83:8e:cb: 26:90:9f:06:df:f3:87:0c:94:36:c9:ff:3c:08:b6:5d:13:97: e6:a5:2b:ba:b9:d1:b0:a4:5a:33:77:03:aa:7e:7d:ed:78:f7: 1a:af:1f:de:67:30:83:49:8a:81:be:42:44:5a:64:d5:1f:2f: d4:2d:f8:23:3d:32:4b:5f:e1:7e:eb:8d:7d:52:26:0f:28:d3: a0:1c:a7:6b:65:98:bd:f3:d2:9a:92:1d:7b:2a:d1:2f:fb:44: 5f:8f:56:17:ef:47:26:c2:fe:a6:5c:0e:a0:74:ac:6f:6d:41: 46:49:45:be:96:0f:94:7d:99:e0:c0:0a:98:46:e1:65:be:77: 0b:28:b0:9f:7a:0a:e0:1a:55:45:15:78:63:2e:13:09:b5:a3: 1f:6a:8f:33:7f:79:15:d5:eb:3b:6a:2a:0f:dc:d3:27:ee:de: 5a:a1:a4:2f -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUB0jCpxl6qu7rp+MScbE20qgPIi8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzBENzAyOEMwRkE2MjgzNDhBRTIyNDVERDBDQzAyRDND NURDQjNGOTAeFw0yNjA1MDMwMjIxNDJaFw0yNzA1MDIwMjI2NDJaMDMxMTAvBgNV BAMTKDI5M0JDMDcyM0EyRjA1RTgzRjhBQTkwQ0ZBRDM2QzBFMjY5Qjk2NDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOuwNAjRHpVmmG6YKW2CD62H/8 atVKY9gAMZLMcKN2z3tip086s85rfoOq25AoIOCYK6Y1JJwUoTnTX2qrhcISqC4W xMhmWeV160Hh0nx8VZqkzS4YL+rmBi5XLNU/Q9SpzxYCn1KDeQh7FUmcIPM4pU4U l2mJ/dKIEGhIp/OpX7YDmQ8+1pJm9uFp2B50hEW0F6fRArd9nbZVRo20E0euKNm6 rBJP81M6S4q4hmNP+VEzUMXDWAhg4egTaBdb3zsYgSdS2HSllvGAI9WJTBzDIMgy XOziKDREYoWtE6mUr75OUj+5JWUCh3W4Jzmswy4SNxKww9WfHQGP3oSnyounAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUKTvAcjovBeg/iqkM+tNsDiablkgwHwYDVR0j BBgwFoAUwNcCjA+mKDSK4iRd0MwC08Xcs/kwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v M2E2NjVjMzItNmRhZi00NzJiLWJjZTYtMzE3ZDVkNmM3ODllLzAvQzBENzAyOEMw RkE2MjgzNDhBRTIyNDVERDBDQzAyRDNDNURDQjNGOS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9DMEQ3MDI4QzBGQTYyODM0OEFFMjI0NUREMENDMDJEM0M1RENC M0Y5LmNlcjCBqQYIKwYBBQUHAQsEgZwwgZkwgZYGCCsGAQUFBzALhoGJcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzNhNjY1YzMyLTZkYWYtNDcyYi1i Y2U2LTMxN2Q1ZDZjNzg5ZS8wLzMyMzQzMDMwM2EzNDM2NjEzMDNhMzEzMjNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzQzNzMxMzMzNy5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQARqAA EjANBgkqhkiG9w0BAQsFAAOCAQEAjdNj+2VjMzvOtQLP8Jos/zj1yy1gggnK2INz mu927GoEI0Ym20RGj3a4gl17Ag2/VMRDpcW9FJg0omL98zaCptlRIDPpzsnscSjh kkOwq9RXOZ4Ck89ng47LJpCfBt/zhwyUNsn/PAi2XROX5qUrurnRsKRaM3cDqn59 7Xj3Gq8f3mcwg0mKgb5CRFpk1R8v1C34Iz0yS1/hfuuNfVImDyjToByna2WYvfPS mpIdeyrRL/tEX49WF+9HJsL+plwOoHSsb21BRklFvpYPlH2Z4MAKmEbhZb53Cyiw n3oK4BpVRRV4Yy4TCbWjH2qPM395FdXrO2oqD9zTJ+7eWqGkLw== -----END CERTIFICATE-----Generated at Wed May 13 11:22:02 2026 by rpki-client