$ rpki-client -vvf rpki-rsync.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a32323a3a2f34382d3438203d3e20313437313337.roa File: 323430303a343661303a32323a3a2f34382d3438203d3e20313437313337.roa (raw, json) Hash identifier: Z17KOPUimeqYA1aZq3SNkRhgncaUQxfgpGD5Ws+TmaM= Subject key identifier: 42:37:CD:CE:F1:8A:89:30:FE:D6:2A:91:7E:87:3B:96:B3:DA:D6:7C Certificate issuer: /CN=C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9 Certificate serial: 0F47C077A99DE29F4006CCCC72753D05992B44B0 Authority key identifier: C0:D7:02:8C:0F:A6:28:34:8A:E2:24:5D:D0:CC:02:D3:C5:DC:B3:F9 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a32323a3a2f34382d3438203d3e20313437313337.roa Signing time: Sun 03 May 2026 02:26:34 +0000 ROA not before: Sun 03 May 2026 02:21:34 +0000 ROA not after: Sun 02 May 2027 02:26:34 +0000 asID: 147137 IP address blocks: 2400:46a0:22::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9.crl rsync://rpki-rsync.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 23:26:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:47:c0:77:a9:9d:e2:9f:40:06:cc:cc:72:75:3d:05:99:2b:44:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9 Validity Not Before: May 3 02:21:34 2026 GMT Not After : May 2 02:26:34 2027 GMT Subject: CN=4237CDCEF18A8930FED62A917E873B96B3DAD67C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:a5:70:ea:67:e4:97:37:fc:7b:3e:b8:fe:d2: 65:7d:e0:55:2b:5d:0e:b1:b1:92:5e:b1:8d:30:06: 65:3b:bf:d3:2e:1e:84:bb:a8:a4:cd:5f:93:42:82: 73:09:54:5e:a0:e3:74:ab:e3:7e:ec:5d:7a:76:52: 34:be:16:0c:79:3d:d6:60:f3:63:d0:ef:33:16:14: 78:93:4c:aa:0f:ad:c6:1e:39:ea:46:80:7b:a8:c9: d4:58:c5:18:2f:57:21:5f:d3:24:6d:20:8e:94:29: 3c:54:80:b3:46:b7:4a:c2:e2:c2:80:0d:bb:36:48: e9:c2:11:4c:e4:9c:4c:0f:59:81:81:dd:d2:5e:95: f0:02:17:ad:dd:d8:d7:99:36:63:a4:e1:c1:7a:6e: 38:ec:78:a8:07:8a:fd:ab:a6:73:6f:73:0e:50:06: 18:b3:56:48:98:ce:dc:6e:c1:be:c6:55:fd:43:1e: 27:d3:f9:33:64:6b:ce:c5:01:9e:c1:48:c7:71:66: 2b:b0:2c:3b:79:eb:88:10:03:39:70:c1:49:73:d3: 4b:2b:82:ac:0e:6c:c3:7a:fe:d1:80:ab:8f:5f:ce: 52:0b:fd:15:e8:99:d3:9d:53:b9:e5:fe:b0:6e:54: 8f:ea:82:81:7e:d7:a0:51:db:67:b9:04:aa:50:59: c7:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:37:CD:CE:F1:8A:89:30:FE:D6:2A:91:7E:87:3B:96:B3:DA:D6:7C X509v3 Authority Key Identifier: keyid:C0:D7:02:8C:0F:A6:28:34:8A:E2:24:5D:D0:CC:02:D3:C5:DC:B3:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a32323a3a2f34382d3438203d3e20313437313337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:46a0:22::/48 Signature Algorithm: sha256WithRSAEncryption 61:80:0e:22:9e:c9:fd:af:60:06:80:f1:8f:04:e4:a4:ec:1a: 1b:b9:ec:d7:f5:4d:10:87:e2:ac:7e:70:63:60:05:da:e1:c6: 6d:50:e7:a6:00:a1:de:a5:1d:5d:2d:db:9b:ff:c4:aa:46:d4: 3b:fd:8e:43:38:3f:a5:cc:f0:08:d6:4a:37:58:ad:5e:78:04: e6:51:76:c0:7f:23:65:04:cd:49:95:9f:81:70:53:c4:11:1f: bc:11:97:93:fb:d9:f5:ac:86:80:dd:2b:0d:92:70:1f:ac:e1: fe:1f:ae:ce:96:22:55:09:4b:9a:f8:e7:a6:e1:70:7e:40:3f: dd:c7:73:1c:1b:6e:bc:97:02:5e:88:fc:a8:26:70:cd:e0:6b: 89:45:c2:11:88:12:1d:d0:65:73:fb:8c:a8:9c:42:72:32:a3: 2a:a5:8d:70:a2:9c:8c:9c:bf:4c:72:33:0c:72:a7:7d:37:ad: 1a:69:aa:0a:71:b6:af:f1:f7:f8:ef:68:e9:d1:a0:d8:21:dc: 24:69:bb:08:55:d4:6e:f4:5e:90:ad:6f:2c:40:b7:a1:6c:af: c5:44:01:6d:4b:e8:fe:6b:2b:6c:68:93:d2:64:4f:94:5b:71: ba:b0:5e:d1:8a:a9:74:0e:55:ac:af:d3:7b:cf:bd:9a:26:8d: 56:83:17:52 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUD0fAd6md4p9ABszMcnU9BZkrRLAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzBENzAyOEMwRkE2MjgzNDhBRTIyNDVERDBDQzAyRDND NURDQjNGOTAeFw0yNjA1MDMwMjIxMzRaFw0yNzA1MDIwMjI2MzRaMDMxMTAvBgNV BAMTKDQyMzdDRENFRjE4QTg5MzBGRUQ2MkE5MTdFODczQjk2QjNEQUQ2N0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD0pXDqZ+SXN/x7Prj+0mV94FUr XQ6xsZJesY0wBmU7v9MuHoS7qKTNX5NCgnMJVF6g43Sr437sXXp2UjS+Fgx5PdZg 82PQ7zMWFHiTTKoPrcYeOepGgHuoydRYxRgvVyFf0yRtII6UKTxUgLNGt0rC4sKA Dbs2SOnCEUzknEwPWYGB3dJelfACF63d2NeZNmOk4cF6bjjseKgHiv2rpnNvcw5Q BhizVkiYztxuwb7GVf1DHifT+TNka87FAZ7BSMdxZiuwLDt564gQAzlwwUlz00sr gqwObMN6/tGAq49fzlIL/RXomdOdU7nl/rBuVI/qgoF+16BR22e5BKpQWcePAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUQjfNzvGKiTD+1iqRfoc7lrPa1nwwHwYDVR0j BBgwFoAUwNcCjA+mKDSK4iRd0MwC08Xcs/kwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v M2E2NjVjMzItNmRhZi00NzJiLWJjZTYtMzE3ZDVkNmM3ODllLzAvQzBENzAyOEMw RkE2MjgzNDhBRTIyNDVERDBDQzAyRDNDNURDQjNGOS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9DMEQ3MDI4QzBGQTYyODM0OEFFMjI0NUREMENDMDJEM0M1RENC M0Y5LmNlcjCBqQYIKwYBBQUHAQsEgZwwgZkwgZYGCCsGAQUFBzALhoGJcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzNhNjY1YzMyLTZkYWYtNDcyYi1i Y2U2LTMxN2Q1ZDZjNzg5ZS8wLzMyMzQzMDMwM2EzNDM2NjEzMDNhMzIzMjNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzQzNzMxMzMzNy5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQARqAA IjANBgkqhkiG9w0BAQsFAAOCAQEAYYAOIp7J/a9gBoDxjwTkpOwaG7ns1/VNEIfi rH5wY2AF2uHGbVDnpgCh3qUdXS3bm//EqkbUO/2OQzg/pczwCNZKN1itXngE5lF2 wH8jZQTNSZWfgXBTxBEfvBGXk/vZ9ayGgN0rDZJwH6zh/h+uzpYiVQlLmvjnpuFw fkA/3cdzHBtuvJcCXoj8qCZwzeBriUXCEYgSHdBlc/uMqJxCcjKjKqWNcKKcjJy/ THIzDHKnfTetGmmqCnG2r/H3+O9o6dGg2CHcJGm7CFXUbvRekK1vLEC3oWyvxUQB bUvo/msrbGiT0mRPlFtxurBe0YqpdA5VrK/Te8+9miaNVoMXUg== -----END CERTIFICATE-----Generated at Wed May 13 11:46:18 2026 by rpki-client