$ rpki-client -vvf rpki-rsync.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a32363a3a2f34382d3438203d3e20313437313337.roa File: 323430303a343661303a32363a3a2f34382d3438203d3e20313437313337.roa (raw, json) Hash identifier: UT1h2LMTjTQJ7ZJ7JztoMi17EHjsbtJIUvBVi8DlKSo= Subject key identifier: 07:93:5A:24:2A:5B:3B:C3:F7:1F:80:44:3B:24:3C:F6:34:F5:58:48 Certificate issuer: /CN=C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9 Certificate serial: 0D4849AD28D2ADD13ECF08DEFCDC63A5104455BC Authority key identifier: C0:D7:02:8C:0F:A6:28:34:8A:E2:24:5D:D0:CC:02:D3:C5:DC:B3:F9 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a32363a3a2f34382d3438203d3e20313437313337.roa Signing time: Sun 03 May 2026 02:26:29 +0000 ROA not before: Sun 03 May 2026 02:21:29 +0000 ROA not after: Sun 02 May 2027 02:26:29 +0000 asID: 147137 IP address blocks: 2400:46a0:26::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9.crl rsync://rpki-rsync.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 23:26:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:48:49:ad:28:d2:ad:d1:3e:cf:08:de:fc:dc:63:a5:10:44:55:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9 Validity Not Before: May 3 02:21:29 2026 GMT Not After : May 2 02:26:29 2027 GMT Subject: CN=07935A242A5B3BC3F71F80443B243CF634F55848 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:5e:c1:5e:0f:4c:7e:94:23:76:fe:52:8d:df: 61:32:83:eb:68:9c:11:9d:17:17:61:92:a1:15:4d: cc:98:f4:d3:51:7b:0f:b1:d7:39:d3:96:2c:97:7e: 48:46:58:77:2e:a7:8a:ae:b3:1e:61:15:09:87:27: 7f:2e:63:31:85:64:55:df:1a:5f:ab:ec:94:c4:7c: 5b:5d:c2:a8:3d:82:22:0f:3e:17:7c:b7:85:9d:0f: e6:b7:b3:d2:55:a6:1d:30:d6:08:ed:a2:8b:c1:0a: 17:55:d1:8a:3f:8a:23:65:5d:bc:de:87:e9:84:07: 65:d2:c5:d1:f2:70:c3:c0:34:34:bf:e4:fb:6a:72: 31:c8:29:9a:8e:a2:8e:a8:be:7a:01:e9:ee:16:8d: 9e:46:d5:52:9a:39:fd:d9:40:af:23:6a:06:2b:0b: f1:c8:dc:8c:ff:79:1c:1d:0c:95:3e:6a:37:eb:c4: 5b:c1:42:d9:bc:9d:34:3e:28:e3:cf:26:33:a3:cf: 98:5c:be:f6:d8:0f:f1:c6:3d:a1:4a:65:85:49:82: 70:1b:f4:1e:c7:08:a6:d4:f8:bb:d0:dc:9d:26:c8: 26:26:b6:11:1b:4f:0f:0e:44:c8:c4:c2:93:75:17: 26:1f:92:58:db:cd:07:fb:af:a1:82:d6:63:ef:85: 6c:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:93:5A:24:2A:5B:3B:C3:F7:1F:80:44:3B:24:3C:F6:34:F5:58:48 X509v3 Authority Key Identifier: keyid:C0:D7:02:8C:0F:A6:28:34:8A:E2:24:5D:D0:CC:02:D3:C5:DC:B3:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a32363a3a2f34382d3438203d3e20313437313337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:46a0:26::/48 Signature Algorithm: sha256WithRSAEncryption 09:c5:72:ff:7e:03:b9:4f:74:fa:e7:f2:56:a2:fc:46:bc:52: e9:1e:80:f7:0d:36:a3:2f:cd:2d:50:69:e2:54:c0:b8:8e:ed: 7e:4a:3f:c8:15:b1:8b:6a:27:a3:fc:f4:af:83:5a:50:9d:88: ef:13:78:59:e5:c0:48:a1:2f:30:6b:7c:83:c0:1a:bd:c6:42: 89:7a:ff:73:41:28:6f:ff:9e:05:1a:b0:d5:0b:be:87:c3:0d: 25:76:e3:7b:7b:10:82:7b:64:ff:ba:de:15:be:d9:10:ec:8e: a3:90:7f:19:39:c8:26:cc:ce:6e:a7:5c:72:9d:e8:b1:ae:d8: 84:71:93:ee:90:fc:36:10:33:e2:9a:66:03:4c:9a:0f:8d:b8: 0e:d4:37:e1:90:0a:14:ef:ee:07:64:44:bc:2f:23:bd:8a:17: b4:80:79:12:93:a7:27:e7:23:6f:e6:b9:a1:1c:0a:4b:60:3c: 0b:2c:9d:7d:79:67:f0:26:12:71:3d:73:6b:02:69:ba:3d:9d: b2:7d:c6:b1:62:9c:57:0d:f0:4f:86:43:1d:c9:4d:86:13:48: 87:43:4a:68:a8:c7:5c:53:6c:84:3a:53:64:0e:1e:e8:16:50: 5f:6a:2d:fc:d3:5f:1e:4f:75:61:9e:2a:6a:90:02:85:be:55: 32:7b:01:46 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUDUhJrSjSrdE+zwje/NxjpRBEVbwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzBENzAyOEMwRkE2MjgzNDhBRTIyNDVERDBDQzAyRDND NURDQjNGOTAeFw0yNjA1MDMwMjIxMjlaFw0yNzA1MDIwMjI2MjlaMDMxMTAvBgNV BAMTKDA3OTM1QTI0MkE1QjNCQzNGNzFGODA0NDNCMjQzQ0Y2MzRGNTU4NDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD1XsFeD0x+lCN2/lKN32Eyg+to nBGdFxdhkqEVTcyY9NNRew+x1znTliyXfkhGWHcup4qusx5hFQmHJ38uYzGFZFXf Gl+r7JTEfFtdwqg9giIPPhd8t4WdD+a3s9JVph0w1gjtoovBChdV0Yo/iiNlXbze h+mEB2XSxdHycMPANDS/5PtqcjHIKZqOoo6ovnoB6e4WjZ5G1VKaOf3ZQK8jagYr C/HI3Iz/eRwdDJU+ajfrxFvBQtm8nTQ+KOPPJjOjz5hcvvbYD/HGPaFKZYVJgnAb 9B7HCKbU+LvQ3J0myCYmthEbTw8ORMjEwpN1FyYfkljbzQf7r6GC1mPvhWw3AgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUB5NaJCpbO8P3H4BEOyQ89jT1WEgwHwYDVR0j BBgwFoAUwNcCjA+mKDSK4iRd0MwC08Xcs/kwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v M2E2NjVjMzItNmRhZi00NzJiLWJjZTYtMzE3ZDVkNmM3ODllLzAvQzBENzAyOEMw RkE2MjgzNDhBRTIyNDVERDBDQzAyRDNDNURDQjNGOS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9DMEQ3MDI4QzBGQTYyODM0OEFFMjI0NUREMENDMDJEM0M1RENC M0Y5LmNlcjCBqQYIKwYBBQUHAQsEgZwwgZkwgZYGCCsGAQUFBzALhoGJcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzNhNjY1YzMyLTZkYWYtNDcyYi1i Y2U2LTMxN2Q1ZDZjNzg5ZS8wLzMyMzQzMDMwM2EzNDM2NjEzMDNhMzIzNjNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzQzNzMxMzMzNy5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQARqAA JjANBgkqhkiG9w0BAQsFAAOCAQEACcVy/34DuU90+ufyVqL8RrxS6R6A9w02oy/N LVBp4lTAuI7tfko/yBWxi2ono/z0r4NaUJ2I7xN4WeXASKEvMGt8g8AavcZCiXr/ c0Eob/+eBRqw1Qu+h8MNJXbje3sQgntk/7reFb7ZEOyOo5B/GTnIJszObqdccp3o sa7YhHGT7pD8NhAz4ppmA0yaD424DtQ34ZAKFO/uB2REvC8jvYoXtIB5EpOnJ+cj b+a5oRwKS2A8CyydfXln8CYScT1zawJpuj2dsn3GsWKcVw3wT4ZDHclNhhNIh0NK aKjHXFNshDpTZA4e6BZQX2ot/NNfHk91YZ4qapAChb5VMnsBRg== -----END CERTIFICATE-----Generated at Wed May 13 11:22:23 2026 by rpki-client