$ rpki-client -vvf rpki-rsync.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a31363a3a2f34382d3438203d3e20313437313337.roa File: 323430303a343661303a31363a3a2f34382d3438203d3e20313437313337.roa (raw, json) Hash identifier: AMjnyAEfiOVxNwyzM8O6HXzZGTxkgyap27aKj3W6Skk= Subject key identifier: 3E:94:AD:20:5A:86:90:3B:58:B8:96:D8:6D:38:D6:96:E6:11:24:C1 Certificate issuer: /CN=C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9 Certificate serial: 10BCE583EA8267F24293241201B37A5E478FB23A Authority key identifier: C0:D7:02:8C:0F:A6:28:34:8A:E2:24:5D:D0:CC:02:D3:C5:DC:B3:F9 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a31363a3a2f34382d3438203d3e20313437313337.roa Signing time: Sun 03 May 2026 02:26:37 +0000 ROA not before: Sun 03 May 2026 02:21:37 +0000 ROA not after: Sun 02 May 2027 02:26:37 +0000 asID: 147137 IP address blocks: 2400:46a0:16::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9.crl rsync://rpki-rsync.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 23:26:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:bc:e5:83:ea:82:67:f2:42:93:24:12:01:b3:7a:5e:47:8f:b2:3a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9 Validity Not Before: May 3 02:21:37 2026 GMT Not After : May 2 02:26:37 2027 GMT Subject: CN=3E94AD205A86903B58B896D86D38D696E61124C1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:40:e9:10:2d:1d:51:bb:32:ef:28:21:6f:fe: d2:e4:61:9b:df:ea:13:16:87:dc:c6:cb:df:47:e5: fb:fc:fa:9a:06:d4:ac:35:8c:f3:68:d2:30:c4:ec: 43:1e:1a:c8:de:f8:d3:e5:9d:2c:67:37:74:14:5c: 5e:7f:fd:ce:f8:c3:fc:72:9e:ea:83:1d:f8:fa:29: ff:e0:32:a1:aa:08:5b:07:40:c2:99:ac:da:eb:c7: 01:fc:94:66:a5:30:ce:c0:5e:bd:dd:52:17:20:d9: 0a:71:75:14:3e:ae:87:7d:31:4a:d0:19:7f:7b:ca: 14:f2:9b:f4:b4:02:ea:9f:84:d8:a1:b6:ed:3f:92: 38:5e:3e:dc:4b:bf:d5:2d:fd:5a:d0:c8:95:2c:64: 37:fb:cb:db:85:41:a5:e6:e3:1d:28:a5:82:53:3a: 91:ea:75:4d:19:0f:a7:15:88:48:04:16:1a:f4:6d: 19:26:8d:e1:1f:8f:97:0b:95:27:45:92:72:6f:d1: ab:29:a5:9e:c0:f3:8b:39:13:f5:0a:d9:70:d9:c4: 6a:56:5b:a9:8e:75:8a:87:8d:b9:0c:4f:85:15:a4: 36:f7:a5:d9:6c:ce:90:ac:3d:b2:a2:2d:71:88:98: a4:58:d0:ce:04:1b:ee:81:c6:e3:52:dc:8f:37:a3: 00:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:94:AD:20:5A:86:90:3B:58:B8:96:D8:6D:38:D6:96:E6:11:24:C1 X509v3 Authority Key Identifier: keyid:C0:D7:02:8C:0F:A6:28:34:8A:E2:24:5D:D0:CC:02:D3:C5:DC:B3:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a31363a3a2f34382d3438203d3e20313437313337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:46a0:16::/48 Signature Algorithm: sha256WithRSAEncryption 2a:ee:8a:16:bd:e2:e9:35:a2:1e:c7:4b:ad:1e:e2:3f:b9:4e: 59:a2:7e:76:46:73:62:1c:28:8d:25:17:19:7a:96:7f:42:ad: 6d:6c:8d:7f:6f:c5:48:95:cf:59:11:c5:c5:e3:16:d5:c0:0d: 36:15:98:c9:69:d1:52:6f:75:a9:a7:da:8d:94:fd:41:41:74: d6:83:9a:b6:31:17:16:ee:7c:19:92:f3:64:d3:21:03:32:5b: fc:59:8e:cb:7c:45:87:41:32:b4:6d:be:54:79:8a:0b:47:cb: 0a:6b:9d:be:9e:7e:06:36:a2:61:c5:44:85:93:0e:b9:6f:2b: e9:46:cc:a6:d8:4c:31:e8:6a:01:16:23:97:c3:aa:50:f0:6f: d2:88:52:48:06:62:f6:d5:09:5e:60:76:c3:d3:3d:a0:25:d3: 31:97:22:ed:ab:f0:98:76:9a:43:25:01:7a:46:1a:46:3b:c8: 18:d4:eb:cf:9d:52:32:dd:35:1c:1c:06:26:0a:c9:bf:c3:ba: 3e:c7:c0:2f:63:87:23:0a:5b:b1:cb:12:a4:11:01:7c:e3:62: 74:9a:55:f1:83:fb:5a:52:52:33:1d:22:bb:55:49:e0:74:38: 80:4c:01:c3:98:c0:af:0e:51:4e:cd:d9:8d:5b:32:50:58:8c: a2:f3:1d:5b -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUELzlg+qCZ/JCkyQSAbN6XkePsjowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzBENzAyOEMwRkE2MjgzNDhBRTIyNDVERDBDQzAyRDND NURDQjNGOTAeFw0yNjA1MDMwMjIxMzdaFw0yNzA1MDIwMjI2MzdaMDMxMTAvBgNV BAMTKDNFOTRBRDIwNUE4NjkwM0I1OEI4OTZEODZEMzhENjk2RTYxMTI0QzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQChQOkQLR1RuzLvKCFv/tLkYZvf 6hMWh9zGy99H5fv8+poG1Kw1jPNo0jDE7EMeGsje+NPlnSxnN3QUXF5//c74w/xy nuqDHfj6Kf/gMqGqCFsHQMKZrNrrxwH8lGalMM7AXr3dUhcg2QpxdRQ+rod9MUrQ GX97yhTym/S0AuqfhNihtu0/kjhePtxLv9Ut/VrQyJUsZDf7y9uFQaXm4x0opYJT OpHqdU0ZD6cViEgEFhr0bRkmjeEfj5cLlSdFknJv0asppZ7A84s5E/UK2XDZxGpW W6mOdYqHjbkMT4UVpDb3pdlszpCsPbKiLXGImKRY0M4EG+6BxuNS3I83owDBAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUPpStIFqGkDtYuJbYbTjWluYRJMEwHwYDVR0j BBgwFoAUwNcCjA+mKDSK4iRd0MwC08Xcs/kwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v M2E2NjVjMzItNmRhZi00NzJiLWJjZTYtMzE3ZDVkNmM3ODllLzAvQzBENzAyOEMw RkE2MjgzNDhBRTIyNDVERDBDQzAyRDNDNURDQjNGOS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9DMEQ3MDI4QzBGQTYyODM0OEFFMjI0NUREMENDMDJEM0M1RENC M0Y5LmNlcjCBqQYIKwYBBQUHAQsEgZwwgZkwgZYGCCsGAQUFBzALhoGJcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzNhNjY1YzMyLTZkYWYtNDcyYi1i Y2U2LTMxN2Q1ZDZjNzg5ZS8wLzMyMzQzMDMwM2EzNDM2NjEzMDNhMzEzNjNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzQzNzMxMzMzNy5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQARqAA FjANBgkqhkiG9w0BAQsFAAOCAQEAKu6KFr3i6TWiHsdLrR7iP7lOWaJ+dkZzYhwo jSUXGXqWf0KtbWyNf2/FSJXPWRHFxeMW1cANNhWYyWnRUm91qafajZT9QUF01oOa tjEXFu58GZLzZNMhAzJb/FmOy3xFh0EytG2+VHmKC0fLCmudvp5+BjaiYcVEhZMO uW8r6UbMpthMMehqARYjl8OqUPBv0ohSSAZi9tUJXmB2w9M9oCXTMZci7avwmHaa QyUBekYaRjvIGNTrz51SMt01HBwGJgrJv8O6PsfAL2OHIwpbscsSpBEBfONidJpV 8YP7WlJSMx0iu1VJ4HQ4gEwBw5jArw5RTs3ZjVsyUFiMovMdWw== -----END CERTIFICATE-----Generated at Wed May 13 12:39:34 2026 by rpki-client