$ rpki-client -vvf rpki-rsync.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a313a3a2f34382d3438203d3e20313437313337.roa File: 323430303a343661303a313a3a2f34382d3438203d3e20313437313337.roa (raw, json) Hash identifier: 9y9riMr8hw8IaD+ig1yYTfIKYToP3AFvgLBOvq0dUqA= Subject key identifier: B5:81:39:77:23:0B:38:4D:24:1F:16:2C:64:9A:10:80:17:CC:05:77 Certificate issuer: /CN=C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9 Certificate serial: 54AA84AB06A92330EDC89BA3EDE9D746E895C254 Authority key identifier: C0:D7:02:8C:0F:A6:28:34:8A:E2:24:5D:D0:CC:02:D3:C5:DC:B3:F9 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a313a3a2f34382d3438203d3e20313437313337.roa Signing time: Sun 03 May 2026 02:26:32 +0000 ROA not before: Sun 03 May 2026 02:21:32 +0000 ROA not after: Sun 02 May 2027 02:26:32 +0000 asID: 147137 IP address blocks: 2400:46a0:1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9.crl rsync://rpki-rsync.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 23:26:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:aa:84:ab:06:a9:23:30:ed:c8:9b:a3:ed:e9:d7:46:e8:95:c2:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9 Validity Not Before: May 3 02:21:32 2026 GMT Not After : May 2 02:26:32 2027 GMT Subject: CN=B5813977230B384D241F162C649A108017CC0577 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:6c:6e:1a:36:b9:7c:73:cb:36:55:47:7f:29: 90:e0:60:8d:eb:23:c7:60:d3:e7:7f:58:c8:9b:d8: be:a0:38:1e:9c:36:73:7f:bc:29:ee:7e:46:78:ec: be:74:1e:4e:fc:c4:67:1a:7f:c2:53:6c:66:a0:e0: c4:99:01:ee:b7:44:d6:56:24:9e:8f:1a:c3:aa:64: e2:28:c5:8b:c1:3b:a3:b0:af:e0:7c:79:52:5d:f8: 87:dc:c5:3e:2e:e1:bd:9d:a9:1f:fd:43:ab:fd:03: 3e:de:0f:05:eb:5c:aa:d7:fe:17:13:db:4f:cf:56: 55:1d:71:30:3b:7c:45:33:2b:0b:52:81:0c:a7:57: ce:f6:ce:5a:7f:9b:eb:7e:6b:5f:64:35:e2:08:07: 98:47:36:c7:c1:b5:64:d2:ee:3d:32:75:ef:90:e3: 49:02:12:c7:6f:e5:ab:6d:18:24:66:22:9b:1b:e2: f9:1d:6e:46:33:29:10:a6:0c:8d:43:2c:3e:8e:bc: 54:71:48:81:a0:d0:30:9a:7f:39:ac:31:a1:46:2d: 54:f4:1c:22:95:52:35:fb:02:6d:04:4f:77:a1:da: 0d:7e:98:fb:59:6b:57:ee:74:5d:eb:af:4a:e4:19: aa:d9:d1:04:1d:d7:14:21:74:af:79:37:ec:4a:71: 0d:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:81:39:77:23:0B:38:4D:24:1F:16:2C:64:9A:10:80:17:CC:05:77 X509v3 Authority Key Identifier: keyid:C0:D7:02:8C:0F:A6:28:34:8A:E2:24:5D:D0:CC:02:D3:C5:DC:B3:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a313a3a2f34382d3438203d3e20313437313337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:46a0:1::/48 Signature Algorithm: sha256WithRSAEncryption 45:f4:6c:51:1a:50:bb:5d:44:9b:3f:fe:c0:ee:82:6c:6c:03: bd:20:8c:b5:69:10:8e:31:11:19:b6:8e:1c:59:f1:12:50:2f: 83:57:c3:08:6a:aa:05:44:84:87:31:ab:99:0f:40:c4:1c:12: 79:c2:80:0f:8e:41:fc:37:ec:23:07:b8:d2:7a:84:93:ae:1d: a9:16:34:7e:37:b1:71:94:56:b2:7b:75:3f:4c:72:bf:a0:1e: 9d:c4:65:40:65:80:8c:9a:ec:a7:f8:d5:da:b4:9f:2c:62:8b: aa:8f:08:b6:b4:57:2b:1b:96:81:b0:6b:14:e1:ec:db:b8:07: a7:fc:e9:0e:75:be:51:96:dc:b3:64:0f:f5:62:42:0a:79:5d: 87:b6:b9:7e:d2:26:8c:58:87:f0:de:26:39:94:86:5e:fe:f7: 17:aa:0b:e0:88:3b:20:4d:f7:45:8d:0a:89:28:ca:64:69:e8: 58:10:7f:09:28:a8:bd:8d:ec:33:8a:40:f5:ba:06:30:2a:32: c7:8b:c7:2d:75:05:79:04:6c:bc:83:a3:50:71:48:84:df:65: d6:a8:d4:bd:8b:ed:37:b0:2c:1a:45:15:18:da:97:10:4a:81: d7:50:b8:d5:20:98:5d:dd:d7:02:0d:3a:b5:90:fd:44:af:9e: 3d:6c:7b:b6 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUVKqEqwapIzDtyJuj7enXRuiVwlQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzBENzAyOEMwRkE2MjgzNDhBRTIyNDVERDBDQzAyRDND NURDQjNGOTAeFw0yNjA1MDMwMjIxMzJaFw0yNzA1MDIwMjI2MzJaMDMxMTAvBgNV BAMTKEI1ODEzOTc3MjMwQjM4NEQyNDFGMTYyQzY0OUExMDgwMTdDQzA1NzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDbG4aNrl8c8s2VUd/KZDgYI3r I8dg0+d/WMib2L6gOB6cNnN/vCnufkZ47L50Hk78xGcaf8JTbGag4MSZAe63RNZW JJ6PGsOqZOIoxYvBO6Owr+B8eVJd+IfcxT4u4b2dqR/9Q6v9Az7eDwXrXKrX/hcT 20/PVlUdcTA7fEUzKwtSgQynV872zlp/m+t+a19kNeIIB5hHNsfBtWTS7j0yde+Q 40kCEsdv5attGCRmIpsb4vkdbkYzKRCmDI1DLD6OvFRxSIGg0DCafzmsMaFGLVT0 HCKVUjX7Am0ET3eh2g1+mPtZa1fudF3rr0rkGarZ0QQd1xQhdK95N+xKcQ0NAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUtYE5dyMLOE0kHxYsZJoQgBfMBXcwHwYDVR0j BBgwFoAUwNcCjA+mKDSK4iRd0MwC08Xcs/kwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v M2E2NjVjMzItNmRhZi00NzJiLWJjZTYtMzE3ZDVkNmM3ODllLzAvQzBENzAyOEMw RkE2MjgzNDhBRTIyNDVERDBDQzAyRDNDNURDQjNGOS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9DMEQ3MDI4QzBGQTYyODM0OEFFMjI0NUREMENDMDJEM0M1RENC M0Y5LmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzNhNjY1YzMyLTZkYWYtNDcyYi1i Y2U2LTMxN2Q1ZDZjNzg5ZS8wLzMyMzQzMDMwM2EzNDM2NjEzMDNhMzEzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTM0MzczMTMzMzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkAEagAAEw DQYJKoZIhvcNAQELBQADggEBAEX0bFEaULtdRJs//sDugmxsA70gjLVpEI4xERm2 jhxZ8RJQL4NXwwhqqgVEhIcxq5kPQMQcEnnCgA+OQfw37CMHuNJ6hJOuHakWNH43 sXGUVrJ7dT9Mcr+gHp3EZUBlgIya7Kf41dq0nyxii6qPCLa0VysbloGwaxTh7Nu4 B6f86Q51vlGW3LNkD/ViQgp5XYe2uX7SJoxYh/DeJjmUhl7+9xeqC+CIOyBN90WN CokoymRp6FgQfwkoqL2N7DOKQPW6BjAqMseLxy11BXkEbLyDo1BxSITfZdao1L2L 7TewLBpFFRjalxBKgddQuNUgmF3d1wINOrWQ/USvnj1se7Y= -----END CERTIFICATE-----Generated at Wed May 13 10:20:48 2026 by rpki-client