$ rpki-client -vvf rpki-rsync.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a323a3a2f34382d3438203d3e20313437313337.roa File: 323430303a343661303a323a3a2f34382d3438203d3e20313437313337.roa (raw, json) Hash identifier: +c41dutgFT2ZE2lEvbuAaTazQUEb6UW8ui2Kg7nMrVo= Subject key identifier: DA:4F:D7:6D:AE:C7:6B:B2:CB:EF:E1:96:63:D5:BE:F2:4B:DF:A6:F6 Certificate issuer: /CN=C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9 Certificate serial: 1CAD5291A1E67CFBA3974922EB231BE9180DCE98 Authority key identifier: C0:D7:02:8C:0F:A6:28:34:8A:E2:24:5D:D0:CC:02:D3:C5:DC:B3:F9 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a323a3a2f34382d3438203d3e20313437313337.roa Signing time: Sun 03 May 2026 02:26:43 +0000 ROA not before: Sun 03 May 2026 02:21:43 +0000 ROA not after: Sun 02 May 2027 02:26:43 +0000 asID: 147137 IP address blocks: 2400:46a0:2::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9.crl rsync://rpki-rsync.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 23:26:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:ad:52:91:a1:e6:7c:fb:a3:97:49:22:eb:23:1b:e9:18:0d:ce:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9 Validity Not Before: May 3 02:21:43 2026 GMT Not After : May 2 02:26:43 2027 GMT Subject: CN=DA4FD76DAEC76BB2CBEFE19663D5BEF24BDFA6F6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:a8:10:21:45:6c:07:26:df:11:89:e4:e8:32: e9:77:c7:1d:54:ac:55:38:54:f7:87:16:c8:cb:75: e8:f9:ce:b0:45:5e:f1:57:e5:75:2e:9f:0b:b0:a1: ed:cc:a3:0e:6e:8e:82:e5:9e:d9:5b:3b:91:dd:c6: 5a:9b:e9:0b:9b:80:72:28:5d:73:64:18:60:2d:f7: b9:74:15:99:df:27:dc:b3:a1:5c:11:16:a6:c2:2b: 89:98:16:66:8d:d4:2c:3e:87:6d:1c:0b:ca:1b:b2: ac:d6:82:7c:be:a1:58:03:47:1f:79:ff:52:0b:3b: ec:f4:87:ed:a6:7c:0e:a0:7e:ab:e6:3a:19:1d:ef: df:fc:a4:8e:c4:dd:5b:d6:6b:d4:e0:9c:ff:14:d2: 05:b9:6a:85:a9:d7:e4:c1:85:94:14:85:6b:3e:4c: 7c:33:0e:8d:b4:89:2c:8d:34:df:c3:fb:40:41:bd: a6:83:83:de:ad:d6:58:50:81:73:13:fd:c4:0b:07: 03:6e:91:88:73:9a:65:ac:7d:af:3e:39:47:3e:0f: 79:86:22:16:61:7e:61:68:ab:6b:b3:05:45:ec:7b: 93:f6:09:86:91:90:cd:3a:c4:4c:14:4f:c4:e9:8c: db:d5:b5:80:11:fb:3c:2a:0a:e5:ce:5d:8e:87:26: c1:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:4F:D7:6D:AE:C7:6B:B2:CB:EF:E1:96:63:D5:BE:F2:4B:DF:A6:F6 X509v3 Authority Key Identifier: keyid:C0:D7:02:8C:0F:A6:28:34:8A:E2:24:5D:D0:CC:02:D3:C5:DC:B3:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a323a3a2f34382d3438203d3e20313437313337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:46a0:2::/48 Signature Algorithm: sha256WithRSAEncryption 18:e0:00:e3:36:9d:2d:e0:07:c5:a1:c6:e9:43:16:a6:61:26: a0:a9:fa:ee:85:ca:64:6b:e2:3e:cf:5f:02:c4:c4:29:10:c7: 09:6d:95:94:f1:79:2e:1e:bf:3f:18:b3:ad:d5:d0:65:3e:46: c9:71:cb:98:1b:1c:fe:00:5e:a0:34:d7:e0:b4:8e:f6:8a:0a: 07:ab:40:45:b4:17:62:16:b4:e2:94:12:20:fa:38:51:c3:c4: 9d:bc:54:bf:9f:b4:8f:08:b9:a7:04:7a:c9:56:84:cf:3b:40: 74:e6:1f:0d:91:41:60:ad:9e:55:5f:d0:02:3d:90:4b:72:60: 69:e4:73:60:44:fa:f1:69:2c:e1:0f:a5:81:c8:29:17:d2:22: d1:47:96:60:83:94:a4:d0:78:d5:8c:44:e1:8d:e3:93:a3:59: 76:90:80:25:f8:4c:99:f2:30:8b:d0:b7:18:aa:2f:5f:1d:63: f3:44:f9:34:5b:b7:51:7f:c1:e4:b3:fc:3a:99:fa:cf:9d:3d: ad:02:6a:12:e2:77:cb:57:e4:cd:e5:5c:68:e6:59:8a:a1:05: 46:c9:9f:19:5d:88:e6:c2:75:91:a8:5b:75:b4:70:8c:18:d3: 8c:bc:4a:ad:6d:6d:4b:af:2a:62:3e:45:6b:69:57:a1:dc:1a: 20:26:e0:1e -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUHK1SkaHmfPujl0ki6yMb6RgNzpgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzBENzAyOEMwRkE2MjgzNDhBRTIyNDVERDBDQzAyRDND NURDQjNGOTAeFw0yNjA1MDMwMjIxNDNaFw0yNzA1MDIwMjI2NDNaMDMxMTAvBgNV BAMTKERBNEZENzZEQUVDNzZCQjJDQkVGRTE5NjYzRDVCRUYyNEJERkE2RjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3qBAhRWwHJt8RieToMul3xx1U rFU4VPeHFsjLdej5zrBFXvFX5XUunwuwoe3Mow5ujoLlntlbO5Hdxlqb6QubgHIo XXNkGGAt97l0FZnfJ9yzoVwRFqbCK4mYFmaN1Cw+h20cC8obsqzWgny+oVgDRx95 /1ILO+z0h+2mfA6gfqvmOhkd79/8pI7E3VvWa9TgnP8U0gW5aoWp1+TBhZQUhWs+ THwzDo20iSyNNN/D+0BBvaaDg96t1lhQgXMT/cQLBwNukYhzmmWsfa8+OUc+D3mG IhZhfmFoq2uzBUXse5P2CYaRkM06xEwUT8TpjNvVtYAR+zwqCuXOXY6HJsERAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQU2k/Xba7Ha7LL7+GWY9W+8kvfpvYwHwYDVR0j BBgwFoAUwNcCjA+mKDSK4iRd0MwC08Xcs/kwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v M2E2NjVjMzItNmRhZi00NzJiLWJjZTYtMzE3ZDVkNmM3ODllLzAvQzBENzAyOEMw RkE2MjgzNDhBRTIyNDVERDBDQzAyRDNDNURDQjNGOS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9DMEQ3MDI4QzBGQTYyODM0OEFFMjI0NUREMENDMDJEM0M1RENC M0Y5LmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzNhNjY1YzMyLTZkYWYtNDcyYi1i Y2U2LTMxN2Q1ZDZjNzg5ZS8wLzMyMzQzMDMwM2EzNDM2NjEzMDNhMzIzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTM0MzczMTMzMzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkAEagAAIw DQYJKoZIhvcNAQELBQADggEBABjgAOM2nS3gB8WhxulDFqZhJqCp+u6FymRr4j7P XwLExCkQxwltlZTxeS4evz8Ys63V0GU+Rslxy5gbHP4AXqA01+C0jvaKCgerQEW0 F2IWtOKUEiD6OFHDxJ28VL+ftI8IuacEeslWhM87QHTmHw2RQWCtnlVf0AI9kEty YGnkc2BE+vFpLOEPpYHIKRfSItFHlmCDlKTQeNWMROGN45OjWXaQgCX4TJnyMIvQ txiqL18dY/NE+TRbt1F/weSz/DqZ+s+dPa0CahLid8tX5M3lXGjmWYqhBUbJnxld iObCdZGoW3W0cIwY04y8Sq1tbUuvKmI+RWtpV6HcGiAm4B4= -----END CERTIFICATE-----Generated at Wed May 13 09:44:25 2026 by rpki-client