$ rpki-client -vvf rpki-rsync.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a32393a3a2f34382d3438203d3e20313437313337.roa File: 323430303a343661303a32393a3a2f34382d3438203d3e20313437313337.roa (raw, json) Hash identifier: HLJY57d7qqR9FiGfUIjlFjjQrGocl/3YC5fSm+HtD9U= Subject key identifier: 4E:A0:9E:E0:47:E6:1A:42:04:2B:F8:B3:24:73:A7:EF:5D:FE:FB:64 Certificate issuer: /CN=C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9 Certificate serial: 1B6BC44C65FC71F3468875AC20C0E89B2A82A98B Authority key identifier: C0:D7:02:8C:0F:A6:28:34:8A:E2:24:5D:D0:CC:02:D3:C5:DC:B3:F9 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a32393a3a2f34382d3438203d3e20313437313337.roa Signing time: Sun 03 May 2026 02:26:39 +0000 ROA not before: Sun 03 May 2026 02:21:39 +0000 ROA not after: Sun 02 May 2027 02:26:39 +0000 asID: 147137 IP address blocks: 2400:46a0:29::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9.crl rsync://rpki-rsync.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 23:26:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:6b:c4:4c:65:fc:71:f3:46:88:75:ac:20:c0:e8:9b:2a:82:a9:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9 Validity Not Before: May 3 02:21:39 2026 GMT Not After : May 2 02:26:39 2027 GMT Subject: CN=4EA09EE047E61A42042BF8B32473A7EF5DFEFB64 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:f3:c4:c5:45:65:bf:93:14:28:6f:46:50:8b: bb:e1:51:06:21:76:62:f8:7d:f3:d7:98:03:35:d7: ce:00:e2:bb:cc:83:75:d2:92:5c:92:57:20:bd:c8: 55:e5:02:5b:f5:a1:26:ce:dd:c0:be:47:e2:84:f8: 34:55:a5:f4:d4:08:da:9a:a8:d4:5b:88:c6:ff:6e: 63:f5:02:3f:a9:9e:0d:2a:51:e3:f4:fa:f3:af:c5: 6c:26:52:8a:c4:b8:1e:38:24:08:8b:76:ef:9f:b7: b9:ee:43:55:2b:e8:c2:0a:59:76:4b:62:94:db:31: b3:64:4f:b4:ba:93:a3:4d:b1:45:89:c5:d8:26:9c: 37:03:b1:24:d7:b5:a5:c6:12:b2:8a:00:fa:2c:7c: fe:0c:bd:1b:27:8a:83:c5:33:76:5e:7d:3f:41:90: 6e:a0:76:71:4f:ea:38:5e:5c:87:d5:a5:77:9e:da: 88:cf:36:df:2e:fb:c3:a3:30:26:9d:7b:34:12:b6: 47:01:86:08:0e:5a:02:5f:9c:3c:f1:22:4a:7f:97: 97:66:78:a1:ad:76:ec:27:08:48:73:77:43:14:8e: a4:d6:50:70:14:bb:4e:89:42:0d:79:3d:7c:3e:f1: 4f:37:ba:fa:a2:e3:2c:80:e9:e9:83:ba:5c:e5:24: f0:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:A0:9E:E0:47:E6:1A:42:04:2B:F8:B3:24:73:A7:EF:5D:FE:FB:64 X509v3 Authority Key Identifier: keyid:C0:D7:02:8C:0F:A6:28:34:8A:E2:24:5D:D0:CC:02:D3:C5:DC:B3:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a32393a3a2f34382d3438203d3e20313437313337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:46a0:29::/48 Signature Algorithm: sha256WithRSAEncryption 84:c1:2e:68:c5:48:9b:e6:4d:92:d9:fc:a0:69:8b:32:5b:7b: 01:fd:7e:6b:72:43:57:71:e1:b1:a0:3e:b7:b2:c1:a6:c6:fa: 2b:12:c9:53:dc:f0:bf:46:b3:d1:81:ba:b6:53:87:fc:5e:4f: 2a:7e:56:ef:12:6c:98:6b:3a:05:71:2a:f0:0c:61:dd:1a:35: 75:ff:5e:bd:81:e0:ba:b3:e5:61:5c:34:74:72:5f:13:32:e5: 8d:db:45:e6:95:4d:03:0a:09:39:9b:25:9c:32:c9:f3:f8:88: 4d:25:07:09:a2:fc:6e:63:87:2a:f4:5b:4f:d5:35:54:34:aa: 70:e0:90:e5:fa:0c:b8:49:ac:1b:4b:ba:49:4b:7a:8c:6b:cf: 6e:c0:88:17:9b:7a:51:dd:2e:0d:58:d7:1b:8c:d7:43:fa:0a: 72:61:f7:87:cc:75:3e:82:7d:6f:df:e7:4a:f5:ed:85:28:d8: 62:be:90:37:10:ef:c2:ba:8c:0f:44:a4:f5:86:5b:1e:b9:bf: 31:d3:7e:9f:7d:36:05:cd:7b:5e:2e:94:0d:06:5f:69:91:5e: 0a:de:2e:d7:fc:4d:55:9a:ca:5a:35:50:51:7a:18:cf:b8:c0: a7:97:11:53:24:8e:42:58:23:42:f2:3a:58:c2:bc:d3:67:33: 3d:b5:d0:cd -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUG2vETGX8cfNGiHWsIMDomyqCqYswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzBENzAyOEMwRkE2MjgzNDhBRTIyNDVERDBDQzAyRDND NURDQjNGOTAeFw0yNjA1MDMwMjIxMzlaFw0yNzA1MDIwMjI2MzlaMDMxMTAvBgNV BAMTKDRFQTA5RUUwNDdFNjFBNDIwNDJCRjhCMzI0NzNBN0VGNURGRUZCNjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDU88TFRWW/kxQob0ZQi7vhUQYh dmL4ffPXmAM1184A4rvMg3XSklySVyC9yFXlAlv1oSbO3cC+R+KE+DRVpfTUCNqa qNRbiMb/bmP1Aj+png0qUeP0+vOvxWwmUorEuB44JAiLdu+ft7nuQ1Ur6MIKWXZL YpTbMbNkT7S6k6NNsUWJxdgmnDcDsSTXtaXGErKKAPosfP4MvRsnioPFM3ZefT9B kG6gdnFP6jheXIfVpXee2ojPNt8u+8OjMCadezQStkcBhggOWgJfnDzxIkp/l5dm eKGtduwnCEhzd0MUjqTWUHAUu06JQg15PXw+8U83uvqi4yyA6emDulzlJPBBAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUTqCe4EfmGkIEK/izJHOn713++2QwHwYDVR0j BBgwFoAUwNcCjA+mKDSK4iRd0MwC08Xcs/kwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v M2E2NjVjMzItNmRhZi00NzJiLWJjZTYtMzE3ZDVkNmM3ODllLzAvQzBENzAyOEMw RkE2MjgzNDhBRTIyNDVERDBDQzAyRDNDNURDQjNGOS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9DMEQ3MDI4QzBGQTYyODM0OEFFMjI0NUREMENDMDJEM0M1RENC M0Y5LmNlcjCBqQYIKwYBBQUHAQsEgZwwgZkwgZYGCCsGAQUFBzALhoGJcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzNhNjY1YzMyLTZkYWYtNDcyYi1i Y2U2LTMxN2Q1ZDZjNzg5ZS8wLzMyMzQzMDMwM2EzNDM2NjEzMDNhMzIzOTNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzQzNzMxMzMzNy5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQARqAA KTANBgkqhkiG9w0BAQsFAAOCAQEAhMEuaMVIm+ZNktn8oGmLMlt7Af1+a3JDV3Hh saA+t7LBpsb6KxLJU9zwv0az0YG6tlOH/F5PKn5W7xJsmGs6BXEq8Axh3Ro1df9e vYHgurPlYVw0dHJfEzLljdtF5pVNAwoJOZslnDLJ8/iITSUHCaL8bmOHKvRbT9U1 VDSqcOCQ5foMuEmsG0u6SUt6jGvPbsCIF5t6Ud0uDVjXG4zXQ/oKcmH3h8x1PoJ9 b9/nSvXthSjYYr6QNxDvwrqMD0Sk9YZbHrm/MdN+n302Bc17Xi6UDQZfaZFeCt4u 1/xNVZrKWjVQUXoYz7jAp5cRUySOQlgjQvI6WMK802czPbXQzQ== -----END CERTIFICATE-----Generated at Wed May 13 10:54:24 2026 by rpki-client