$ rpki-client -vvf rpki-rsync.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a31343a3a2f34382d3438203d3e20313437313337.roa File: 323430303a343661303a31343a3a2f34382d3438203d3e20313437313337.roa (raw, json) Hash identifier: CqP8eUG+XNHe2ZRDBQbbiW1JHTmz7eUiEFlYMZh4rHY= Subject key identifier: 6F:8E:51:81:FE:28:39:25:59:F4:02:4B:70:D6:84:B4:AE:E8:BC:23 Certificate issuer: /CN=C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9 Certificate serial: 5A879D25696E7EB3B1DCC4849657E8A707904D7E Authority key identifier: C0:D7:02:8C:0F:A6:28:34:8A:E2:24:5D:D0:CC:02:D3:C5:DC:B3:F9 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a31343a3a2f34382d3438203d3e20313437313337.roa Signing time: Sun 03 May 2026 02:26:36 +0000 ROA not before: Sun 03 May 2026 02:21:36 +0000 ROA not after: Sun 02 May 2027 02:26:36 +0000 asID: 147137 IP address blocks: 2400:46a0:14::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9.crl rsync://rpki-rsync.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 23:26:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:87:9d:25:69:6e:7e:b3:b1:dc:c4:84:96:57:e8:a7:07:90:4d:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9 Validity Not Before: May 3 02:21:36 2026 GMT Not After : May 2 02:26:36 2027 GMT Subject: CN=6F8E5181FE28392559F4024B70D684B4AEE8BC23 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:61:3c:30:cc:5e:ee:b5:36:20:35:c5:c7:bf: 2c:93:da:2f:9d:51:00:15:f4:65:4d:f3:ac:40:14: d2:52:f6:42:56:9e:14:bf:46:98:ae:78:6a:1f:4d: ed:b5:a8:93:3d:a1:38:6f:39:22:3c:fb:b4:c3:2b: 38:8f:4a:e0:a9:d9:54:d7:d3:10:89:c1:a6:d0:77: c0:a9:c2:98:66:d6:b7:d0:1a:0a:fe:3b:9a:6a:02: 68:da:7c:d3:b0:37:2d:9e:9d:b9:80:1b:ad:48:46: b3:b5:c2:4e:9a:5e:8e:3f:91:55:cd:cf:62:d8:da: 1c:16:18:c2:91:d1:1b:48:b3:ba:f7:b5:b1:89:07: 2f:27:10:bc:0a:c5:01:5a:51:d2:54:50:27:85:3d: cc:40:54:da:ba:9f:68:3b:4f:c8:ad:3e:b4:8f:18: 84:82:a7:d3:f6:6e:ef:6d:1c:bf:29:75:e4:40:fc: a7:7d:78:c0:eb:e8:2a:6f:0d:a6:64:9e:ce:40:a9: 8a:7d:b0:0e:a3:16:88:1c:e3:66:18:d3:0a:0e:1e: 3b:f8:e2:e0:9e:76:1c:67:ac:57:2b:22:d1:43:df: ba:8d:38:a0:16:fb:7c:dd:90:30:f6:1c:54:82:0f: 62:de:5e:a3:f6:f8:84:61:43:a9:d4:49:c3:74:fd: ae:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:8E:51:81:FE:28:39:25:59:F4:02:4B:70:D6:84:B4:AE:E8:BC:23 X509v3 Authority Key Identifier: keyid:C0:D7:02:8C:0F:A6:28:34:8A:E2:24:5D:D0:CC:02:D3:C5:DC:B3:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a31343a3a2f34382d3438203d3e20313437313337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:46a0:14::/48 Signature Algorithm: sha256WithRSAEncryption 36:7f:38:d3:b1:31:31:92:2a:b0:e7:40:80:61:14:92:86:dd: 3f:2c:18:07:a7:4d:43:5e:55:27:ea:b1:16:48:43:d1:6e:2d: 8c:8f:d0:9e:11:9c:bd:e1:e0:80:b9:db:e6:83:f6:c4:9d:60: 42:9a:9e:65:8e:13:6a:67:20:31:2d:a7:4d:8a:cf:06:2d:c4: a4:af:ac:e0:15:4c:7c:fb:5e:0c:f9:a9:83:57:c6:9a:62:9f: 22:cb:a7:bb:48:c2:20:6e:35:3a:a6:2d:a8:4e:9b:6d:4b:c5: 19:f5:30:13:51:3c:ea:61:57:56:d9:9c:60:cd:b4:69:b1:81: fe:78:7c:09:ba:73:af:e9:cb:71:57:73:65:58:bd:b5:fb:12: 47:8b:90:e5:0d:e4:29:a9:ad:6e:de:01:9c:59:58:be:48:80: 7f:62:7f:d6:f5:b2:c3:29:16:e6:75:8f:db:d5:74:34:1d:b2: 13:f9:f2:66:12:e8:d7:58:f0:01:0f:2f:7d:a2:f7:51:fd:bd: 0c:77:75:0f:74:8a:a7:58:36:be:ba:71:c7:eb:1b:6c:ef:b4: a5:c1:e1:23:34:94:ee:cb:8d:93:39:6d:73:32:4e:33:b1:5b: cc:94:4b:7e:73:dd:37:42:c3:7a:8b:1e:3d:ac:21:4a:47:a9: 97:4f:a8:a7 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUWoedJWlufrOx3MSEllfopweQTX4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzBENzAyOEMwRkE2MjgzNDhBRTIyNDVERDBDQzAyRDND NURDQjNGOTAeFw0yNjA1MDMwMjIxMzZaFw0yNzA1MDIwMjI2MzZaMDMxMTAvBgNV BAMTKDZGOEU1MTgxRkUyODM5MjU1OUY0MDI0QjcwRDY4NEI0QUVFOEJDMjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJYTwwzF7utTYgNcXHvyyT2i+d UQAV9GVN86xAFNJS9kJWnhS/RpiueGofTe21qJM9oThvOSI8+7TDKziPSuCp2VTX 0xCJwabQd8Cpwphm1rfQGgr+O5pqAmjafNOwNy2enbmAG61IRrO1wk6aXo4/kVXN z2LY2hwWGMKR0RtIs7r3tbGJBy8nELwKxQFaUdJUUCeFPcxAVNq6n2g7T8itPrSP GISCp9P2bu9tHL8pdeRA/Kd9eMDr6CpvDaZkns5AqYp9sA6jFogc42YY0woOHjv4 4uCedhxnrFcrItFD37qNOKAW+3zdkDD2HFSCD2LeXqP2+IRhQ6nUScN0/a5JAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUb45Rgf4oOSVZ9AJLcNaEtK7ovCMwHwYDVR0j BBgwFoAUwNcCjA+mKDSK4iRd0MwC08Xcs/kwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v M2E2NjVjMzItNmRhZi00NzJiLWJjZTYtMzE3ZDVkNmM3ODllLzAvQzBENzAyOEMw RkE2MjgzNDhBRTIyNDVERDBDQzAyRDNDNURDQjNGOS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9DMEQ3MDI4QzBGQTYyODM0OEFFMjI0NUREMENDMDJEM0M1RENC M0Y5LmNlcjCBqQYIKwYBBQUHAQsEgZwwgZkwgZYGCCsGAQUFBzALhoGJcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzNhNjY1YzMyLTZkYWYtNDcyYi1i Y2U2LTMxN2Q1ZDZjNzg5ZS8wLzMyMzQzMDMwM2EzNDM2NjEzMDNhMzEzNDNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzQzNzMxMzMzNy5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQARqAA FDANBgkqhkiG9w0BAQsFAAOCAQEANn8407ExMZIqsOdAgGEUkobdPywYB6dNQ15V J+qxFkhD0W4tjI/QnhGcveHggLnb5oP2xJ1gQpqeZY4TamcgMS2nTYrPBi3EpK+s 4BVMfPteDPmpg1fGmmKfIsunu0jCIG41OqYtqE6bbUvFGfUwE1E86mFXVtmcYM20 abGB/nh8Cbpzr+nLcVdzZVi9tfsSR4uQ5Q3kKamtbt4BnFlYvkiAf2J/1vWywykW 5nWP29V0NB2yE/nyZhLo11jwAQ8vfaL3Uf29DHd1D3SKp1g2vrpxx+sbbO+0pcHh IzSU7suNkzltczJOM7FbzJRLfnPdN0LDeosePawhSkepl0+opw== -----END CERTIFICATE-----Generated at Wed May 13 12:42:22 2026 by rpki-client