$ rpki-client -vvf rpki-rsync.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a31373a3a2f34382d3438203d3e20313437313337.roa File: 323430303a343661303a31373a3a2f34382d3438203d3e20313437313337.roa (raw, json) Hash identifier: MuOtiRCK+tp6U+hzr1x3k/1BlmKfEwjNnXDtMTn3C54= Subject key identifier: C9:1E:83:D1:6D:BE:E2:82:0F:83:81:4B:48:4D:E4:CC:E0:A2:3F:85 Certificate issuer: /CN=C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9 Certificate serial: 7CC32EC5BE5929808AB63B1B65643162F7130AD0 Authority key identifier: C0:D7:02:8C:0F:A6:28:34:8A:E2:24:5D:D0:CC:02:D3:C5:DC:B3:F9 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a31373a3a2f34382d3438203d3e20313437313337.roa Signing time: Sun 03 May 2026 02:26:43 +0000 ROA not before: Sun 03 May 2026 02:21:43 +0000 ROA not after: Sun 02 May 2027 02:26:43 +0000 asID: 147137 IP address blocks: 2400:46a0:17::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9.crl rsync://rpki-rsync.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 23:26:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:c3:2e:c5:be:59:29:80:8a:b6:3b:1b:65:64:31:62:f7:13:0a:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9 Validity Not Before: May 3 02:21:43 2026 GMT Not After : May 2 02:26:43 2027 GMT Subject: CN=C91E83D16DBEE2820F83814B484DE4CCE0A23F85 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:c9:f5:c9:74:9b:9a:d0:4b:0d:f7:c4:b8:be: 83:62:5a:e7:1b:a5:b4:5c:21:45:bf:ac:1e:9a:f8: d8:9a:00:c3:69:77:d3:9e:14:93:e5:8e:5d:60:12: b2:f3:59:df:bf:65:09:a0:fc:7e:65:e7:c8:fe:b9: b6:99:c4:25:19:af:21:61:9d:a8:42:30:0f:1c:fe: 9c:b9:54:a3:97:4f:a0:ee:01:16:0f:2c:ef:31:cc: e0:07:28:38:bb:6f:3e:99:e9:fb:fd:0b:2e:ac:ae: 25:f0:80:5b:98:03:02:63:c9:d5:ac:db:6b:d4:36: ee:3c:b2:77:17:f6:a8:79:d8:cf:d2:06:48:36:3a: 9f:36:f3:53:84:0b:42:00:83:73:77:58:3f:d2:6c: 36:74:31:6a:02:f7:96:43:63:6d:38:88:96:53:7f: e0:d2:82:25:ea:40:7a:66:c2:5a:60:a1:d4:17:3f: 60:df:38:b5:01:71:dc:1c:8a:82:82:95:40:36:ad: dd:71:5b:f2:09:75:8c:e1:33:e7:3d:31:7d:ec:3e: 31:5c:bf:33:8e:9b:b1:b4:6f:95:a7:24:54:ba:95: a3:5e:33:60:de:40:fd:2f:64:3f:68:3d:7a:c3:58: e4:ac:01:72:98:08:f1:1a:69:a0:94:41:fb:b3:84: 50:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:1E:83:D1:6D:BE:E2:82:0F:83:81:4B:48:4D:E4:CC:E0:A2:3F:85 X509v3 Authority Key Identifier: keyid:C0:D7:02:8C:0F:A6:28:34:8A:E2:24:5D:D0:CC:02:D3:C5:DC:B3:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a31373a3a2f34382d3438203d3e20313437313337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:46a0:17::/48 Signature Algorithm: sha256WithRSAEncryption 45:98:ad:80:5d:4a:5d:23:85:e2:65:35:33:25:2f:2e:4a:18: c7:0b:05:45:99:4b:49:c9:6f:f6:e4:28:bb:58:b0:a6:48:7d: 7e:41:d9:3b:c6:a7:47:b8:13:0c:c1:72:36:bf:6b:96:36:5f: 3f:12:30:1c:f5:5b:b7:ce:39:cd:72:42:93:fe:21:fc:3e:a5: a9:61:50:6b:74:41:dd:8e:cc:aa:7a:02:b2:b2:fb:d5:8f:c7: f4:64:81:d8:76:24:97:27:01:fb:b7:13:ad:7e:16:f3:f3:26: 76:98:22:69:1f:69:e1:74:86:cf:74:54:03:89:a5:5e:fe:b7: 89:91:99:66:ae:4d:6b:88:47:e5:74:92:00:5c:a2:15:1f:ea: cd:64:60:c7:26:e7:6b:9e:aa:0f:84:8b:a2:d2:98:6a:ea:00: 90:e8:c9:ff:ad:67:45:58:b4:0a:37:77:3e:f9:ca:44:b1:17: f5:64:13:04:8f:66:21:5b:19:bd:a7:f4:84:06:b0:d5:3c:32: bd:dc:74:e1:df:b3:5a:7b:1b:8c:0e:9f:ff:dd:06:ae:a5:a0: ac:93:76:7c:a5:72:18:1a:22:a1:f9:93:8d:08:4a:3f:4c:6e: 4b:70:4a:26:86:4b:16:d5:4f:60:22:42:19:f6:6d:f9:dc:42: 59:ae:9b:6b -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUfMMuxb5ZKYCKtjsbZWQxYvcTCtAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzBENzAyOEMwRkE2MjgzNDhBRTIyNDVERDBDQzAyRDND NURDQjNGOTAeFw0yNjA1MDMwMjIxNDNaFw0yNzA1MDIwMjI2NDNaMDMxMTAvBgNV BAMTKEM5MUU4M0QxNkRCRUUyODIwRjgzODE0QjQ4NERFNENDRTBBMjNGODUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXyfXJdJua0EsN98S4voNiWucb pbRcIUW/rB6a+NiaAMNpd9OeFJPljl1gErLzWd+/ZQmg/H5l58j+ubaZxCUZryFh nahCMA8c/py5VKOXT6DuARYPLO8xzOAHKDi7bz6Z6fv9Cy6sriXwgFuYAwJjydWs 22vUNu48sncX9qh52M/SBkg2Op8281OEC0IAg3N3WD/SbDZ0MWoC95ZDY204iJZT f+DSgiXqQHpmwlpgodQXP2DfOLUBcdwcioKClUA2rd1xW/IJdYzhM+c9MX3sPjFc vzOOm7G0b5WnJFS6laNeM2DeQP0vZD9oPXrDWOSsAXKYCPEaaaCUQfuzhFDvAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUyR6D0W2+4oIPg4FLSE3kzOCiP4UwHwYDVR0j BBgwFoAUwNcCjA+mKDSK4iRd0MwC08Xcs/kwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v M2E2NjVjMzItNmRhZi00NzJiLWJjZTYtMzE3ZDVkNmM3ODllLzAvQzBENzAyOEMw RkE2MjgzNDhBRTIyNDVERDBDQzAyRDNDNURDQjNGOS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9DMEQ3MDI4QzBGQTYyODM0OEFFMjI0NUREMENDMDJEM0M1RENC M0Y5LmNlcjCBqQYIKwYBBQUHAQsEgZwwgZkwgZYGCCsGAQUFBzALhoGJcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzNhNjY1YzMyLTZkYWYtNDcyYi1i Y2U2LTMxN2Q1ZDZjNzg5ZS8wLzMyMzQzMDMwM2EzNDM2NjEzMDNhMzEzNzNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzQzNzMxMzMzNy5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQARqAA FzANBgkqhkiG9w0BAQsFAAOCAQEARZitgF1KXSOF4mU1MyUvLkoYxwsFRZlLSclv 9uQou1iwpkh9fkHZO8anR7gTDMFyNr9rljZfPxIwHPVbt845zXJCk/4h/D6lqWFQ a3RB3Y7MqnoCsrL71Y/H9GSB2HYklycB+7cTrX4W8/MmdpgiaR9p4XSGz3RUA4ml Xv63iZGZZq5Na4hH5XSSAFyiFR/qzWRgxybna56qD4SLotKYauoAkOjJ/61nRVi0 Cjd3PvnKRLEX9WQTBI9mIVsZvaf0hAaw1Twyvdx04d+zWnsbjA6f/90GrqWgrJN2 fKVyGBoiofmTjQhKP0xuS3BKJoZLFtVPYCJCGfZt+dxCWa6baw== -----END CERTIFICATE-----Generated at Wed May 13 10:23:05 2026 by rpki-client