$ rpki-client -vvf rpki-rsync.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a32333a3a2f34382d3438203d3e20313437313337.roa File: 323430303a343661303a32333a3a2f34382d3438203d3e20313437313337.roa (raw, json) Hash identifier: cACJn3CN44BJInMN2D1DUzz5f/u9M8K8ZaV5c704i0c= Subject key identifier: 30:98:2F:C2:82:A8:39:41:11:4E:0A:DC:17:A0:65:7F:BD:0B:77:8E Certificate issuer: /CN=C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9 Certificate serial: 094CADAC416207689AA90EDB2366553705D354EA Authority key identifier: C0:D7:02:8C:0F:A6:28:34:8A:E2:24:5D:D0:CC:02:D3:C5:DC:B3:F9 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a32333a3a2f34382d3438203d3e20313437313337.roa Signing time: Sun 03 May 2026 02:26:44 +0000 ROA not before: Sun 03 May 2026 02:21:44 +0000 ROA not after: Sun 02 May 2027 02:26:44 +0000 asID: 147137 IP address blocks: 2400:46a0:23::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9.crl rsync://rpki-rsync.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 23:26:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:4c:ad:ac:41:62:07:68:9a:a9:0e:db:23:66:55:37:05:d3:54:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9 Validity Not Before: May 3 02:21:44 2026 GMT Not After : May 2 02:26:44 2027 GMT Subject: CN=30982FC282A83941114E0ADC17A0657FBD0B778E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:49:62:1b:df:b5:a7:94:ff:06:91:ee:a2:8b: b3:90:52:a3:b4:e7:4e:01:21:4e:e0:66:21:17:36: 7e:4a:36:34:e1:48:0e:9c:44:79:8a:f2:25:dc:b9: 73:66:c2:60:a2:9a:b5:44:ae:40:26:61:5f:cb:9d: d1:9d:76:e6:86:2c:02:7d:b0:76:2d:a8:37:bf:9e: 18:7e:c6:65:c2:73:76:0e:f0:97:85:8c:3f:57:de: 36:de:1a:fa:55:58:d0:9b:25:cf:2b:71:6a:75:fb: a8:6f:35:bc:1c:a9:3a:33:b7:10:2e:1f:73:9c:3c: 69:a7:9f:1b:67:80:63:df:53:61:dc:81:e3:cb:39: 52:da:41:0e:51:1f:39:03:3d:e2:03:a5:84:a3:0d: d4:91:69:9b:92:3a:6a:b6:a5:99:05:2b:c4:19:1d: 6e:9b:7a:a4:4b:d2:5a:f0:d7:01:3b:2f:90:a1:3a: b5:f5:08:52:ec:9c:b2:d3:3e:54:d7:e4:c0:80:51: 49:30:70:2f:31:4f:15:85:21:63:85:8f:56:7c:d7: a8:92:fd:aa:a5:8c:15:96:2c:68:aa:f3:fe:0e:b4: 77:1d:2f:c1:f5:23:4a:8b:97:fe:6f:3e:ab:d6:79: 98:e0:10:62:22:29:36:f7:7c:38:31:e7:8d:0a:6f: 42:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:98:2F:C2:82:A8:39:41:11:4E:0A:DC:17:A0:65:7F:BD:0B:77:8E X509v3 Authority Key Identifier: keyid:C0:D7:02:8C:0F:A6:28:34:8A:E2:24:5D:D0:CC:02:D3:C5:DC:B3:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a32333a3a2f34382d3438203d3e20313437313337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:46a0:23::/48 Signature Algorithm: sha256WithRSAEncryption 0f:28:09:57:21:a6:d1:b5:0c:2a:43:30:86:cd:3e:4c:61:31: f4:48:fe:f7:fd:51:98:18:00:3f:00:93:83:d0:4f:ad:3a:90: b7:84:72:97:d1:0b:ed:a1:67:5a:a1:0c:c6:9c:4c:e4:4d:a7: a9:d4:9f:55:c0:fb:b1:45:cb:f9:d1:13:41:c5:a1:9e:4f:26: 42:3d:e4:1b:15:ef:c5:1f:d7:2a:97:c0:7b:fd:9d:8b:54:f0: 06:c6:ad:09:d9:02:fe:48:8b:30:3b:f0:71:93:0b:84:e9:1c: b1:89:e7:25:ff:76:d5:11:33:37:3f:71:20:46:ae:9c:38:e9: 17:e2:4a:d2:d7:3d:29:5b:c9:92:07:cb:d9:51:06:77:90:2a: 94:44:17:4a:c9:38:de:d3:57:23:3d:37:6e:60:1f:7e:1e:27: b1:ed:ab:a0:49:5c:b2:d4:3e:b5:56:bb:3d:dc:e9:79:77:2b: b3:66:d5:8a:c4:ac:03:ed:3d:d1:67:c7:85:ee:e4:f1:c6:9c: 72:a6:5b:bc:1d:c1:d7:3b:80:56:3b:f2:b9:ca:d1:1f:2e:ae: 66:35:c7:52:4b:da:8e:0f:86:00:d9:87:31:7b:96:8d:01:54: cf:a0:71:c2:4e:62:18:16:82:de:58:c4:cc:81:f2:59:53:fc: db:9e:d4:7e -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUCUytrEFiB2iaqQ7bI2ZVNwXTVOowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzBENzAyOEMwRkE2MjgzNDhBRTIyNDVERDBDQzAyRDND NURDQjNGOTAeFw0yNjA1MDMwMjIxNDRaFw0yNzA1MDIwMjI2NDRaMDMxMTAvBgNV BAMTKDMwOTgyRkMyODJBODM5NDExMTRFMEFEQzE3QTA2NTdGQkQwQjc3OEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDzSWIb37WnlP8Gke6ii7OQUqO0 504BIU7gZiEXNn5KNjThSA6cRHmK8iXcuXNmwmCimrVErkAmYV/LndGdduaGLAJ9 sHYtqDe/nhh+xmXCc3YO8JeFjD9X3jbeGvpVWNCbJc8rcWp1+6hvNbwcqToztxAu H3OcPGmnnxtngGPfU2HcgePLOVLaQQ5RHzkDPeIDpYSjDdSRaZuSOmq2pZkFK8QZ HW6beqRL0lrw1wE7L5ChOrX1CFLsnLLTPlTX5MCAUUkwcC8xTxWFIWOFj1Z816iS /aqljBWWLGiq8/4OtHcdL8H1I0qLl/5vPqvWeZjgEGIiKTb3fDgx540Kb0JTAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUMJgvwoKoOUERTgrcF6Blf70Ld44wHwYDVR0j BBgwFoAUwNcCjA+mKDSK4iRd0MwC08Xcs/kwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v M2E2NjVjMzItNmRhZi00NzJiLWJjZTYtMzE3ZDVkNmM3ODllLzAvQzBENzAyOEMw RkE2MjgzNDhBRTIyNDVERDBDQzAyRDNDNURDQjNGOS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9DMEQ3MDI4QzBGQTYyODM0OEFFMjI0NUREMENDMDJEM0M1RENC M0Y5LmNlcjCBqQYIKwYBBQUHAQsEgZwwgZkwgZYGCCsGAQUFBzALhoGJcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzNhNjY1YzMyLTZkYWYtNDcyYi1i Y2U2LTMxN2Q1ZDZjNzg5ZS8wLzMyMzQzMDMwM2EzNDM2NjEzMDNhMzIzMzNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzQzNzMxMzMzNy5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQARqAA IzANBgkqhkiG9w0BAQsFAAOCAQEADygJVyGm0bUMKkMwhs0+TGEx9Ej+9/1RmBgA PwCTg9BPrTqQt4Ryl9EL7aFnWqEMxpxM5E2nqdSfVcD7sUXL+dETQcWhnk8mQj3k GxXvxR/XKpfAe/2di1TwBsatCdkC/kiLMDvwcZMLhOkcsYnnJf921REzNz9xIEau nDjpF+JK0tc9KVvJkgfL2VEGd5AqlEQXSsk43tNXIz03bmAffh4nse2roElcstQ+ tVa7PdzpeXcrs2bVisSsA+090WfHhe7k8caccqZbvB3B1zuAVjvyucrRHy6uZjXH Ukvajg+GANmHMXuWjQFUz6Bxwk5iGBaC3ljEzIHyWVP8257Ufg== -----END CERTIFICATE-----Generated at Wed May 13 10:39:44 2026 by rpki-client