$ rpki-client -vvf rpki-rsync.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a33313a3a2f34382d3438203d3e20313437313337.roa File: 323430303a343661303a33313a3a2f34382d3438203d3e20313437313337.roa (raw, json) Hash identifier: oQlQCcGSIyApZwe0zh02JHB8NgdLlqCqb+hc+WKLBAk= Subject key identifier: FA:2F:4F:C7:0C:BE:DE:41:56:A6:94:7B:73:B9:6B:06:7A:84:62:53 Certificate issuer: /CN=C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9 Certificate serial: 36D15BED6729B35595720102FFDDA8BC9757A931 Authority key identifier: C0:D7:02:8C:0F:A6:28:34:8A:E2:24:5D:D0:CC:02:D3:C5:DC:B3:F9 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a33313a3a2f34382d3438203d3e20313437313337.roa Signing time: Sun 03 May 2026 02:26:39 +0000 ROA not before: Sun 03 May 2026 02:21:39 +0000 ROA not after: Sun 02 May 2027 02:26:39 +0000 asID: 147137 IP address blocks: 2400:46a0:31::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9.crl rsync://rpki-rsync.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 23:26:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:d1:5b:ed:67:29:b3:55:95:72:01:02:ff:dd:a8:bc:97:57:a9:31 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9 Validity Not Before: May 3 02:21:39 2026 GMT Not After : May 2 02:26:39 2027 GMT Subject: CN=FA2F4FC70CBEDE4156A6947B73B96B067A846253 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:89:74:81:e5:0f:0e:88:31:84:2c:e6:d4:0e:6d: 74:ee:11:e3:d5:ef:c3:15:e7:6f:1a:16:9a:a9:11: 96:da:d0:b9:f8:02:42:ae:11:0a:fc:c6:9a:f8:bc: 66:33:36:4f:2f:6f:79:d2:6b:a1:72:a6:5a:75:69: 1c:84:ff:12:cc:9c:0d:1f:c6:5f:a4:3b:65:d2:a8: fb:c4:57:fe:18:ec:3d:e4:10:21:3a:1e:ec:c8:4f: 3e:e8:f6:25:0a:94:44:a8:b9:b5:07:af:53:1d:bb: 7e:ce:46:52:50:6c:45:e7:9a:ed:e7:79:6c:52:4a: bb:b0:2f:5b:07:35:2d:d2:d6:8c:05:26:04:46:3f: 99:07:b4:4e:b1:4e:0a:dd:35:f3:d6:79:67:26:fb: ca:8d:89:db:1f:0a:ce:9a:00:21:a6:1e:35:fb:a4: 42:68:92:bb:4f:9a:0a:b9:b6:a2:bc:42:22:65:4f: 06:d9:67:9a:0c:fd:32:f8:c0:59:ac:bb:af:b8:d1: 5a:ac:64:0b:0d:d1:1b:a1:d3:43:9e:5b:2d:b7:39: cf:43:fa:ac:17:f8:b0:39:0b:de:70:1c:2f:27:1f: 62:34:22:90:d0:b0:11:31:76:2f:04:c6:7c:09:01: 50:0a:bb:21:71:e0:09:87:6b:4f:b2:67:3c:82:d3: 74:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:2F:4F:C7:0C:BE:DE:41:56:A6:94:7B:73:B9:6B:06:7A:84:62:53 X509v3 Authority Key Identifier: keyid:C0:D7:02:8C:0F:A6:28:34:8A:E2:24:5D:D0:CC:02:D3:C5:DC:B3:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a33313a3a2f34382d3438203d3e20313437313337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:46a0:31::/48 Signature Algorithm: sha256WithRSAEncryption 84:82:19:4d:79:62:68:c2:3a:1b:cc:8f:78:a7:cf:49:89:45: 52:c4:35:fb:74:ae:7e:90:86:83:9a:3a:02:c7:27:e6:2b:c0: 9c:52:5c:2f:40:87:48:4e:fe:99:c5:64:7f:2f:e0:7a:65:cf: f3:8e:2f:5d:f4:9a:52:4c:c0:27:00:07:06:b2:ad:0f:c6:23: da:df:ee:be:56:04:96:2a:49:5e:a9:8f:ff:90:92:2e:72:46: 7e:2c:f9:ad:49:d3:97:12:b3:9f:af:5b:17:7a:83:7b:d4:e2: db:a9:80:78:77:c2:17:2c:c2:a1:b1:ce:ef:ca:d0:d2:31:99: 16:e9:31:81:60:1e:79:ea:6e:93:1b:13:c7:ca:df:41:0e:2a: 10:fd:9a:1a:3d:5f:3e:03:8a:fa:b7:fc:dd:b5:37:b0:39:01: 44:e7:77:e5:91:e6:64:ba:dd:cb:46:1d:35:f0:19:e1:a8:d3: b3:c1:ab:e1:e9:31:f3:8f:62:c7:68:86:d6:f4:3e:aa:a7:51: 3c:bf:88:aa:5d:08:ff:57:8c:9b:22:44:f4:76:e0:5d:8f:fe: e4:2f:54:3a:e9:b3:ed:70:a3:1f:26:56:3c:b1:03:43:fe:2d: 33:fd:44:3d:78:b2:58:58:d0:d1:0f:35:52:1c:0f:f9:fa:f2: 7a:e3:ff:ee -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUNtFb7Wcps1WVcgEC/92ovJdXqTEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzBENzAyOEMwRkE2MjgzNDhBRTIyNDVERDBDQzAyRDND NURDQjNGOTAeFw0yNjA1MDMwMjIxMzlaFw0yNzA1MDIwMjI2MzlaMDMxMTAvBgNV BAMTKEZBMkY0RkM3MENCRURFNDE1NkE2OTQ3QjczQjk2QjA2N0E4NDYyNTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCJdIHlDw6IMYQs5tQObXTuEePV 78MV528aFpqpEZba0Ln4AkKuEQr8xpr4vGYzNk8vb3nSa6Fyplp1aRyE/xLMnA0f xl+kO2XSqPvEV/4Y7D3kECE6HuzITz7o9iUKlESoubUHr1Mdu37ORlJQbEXnmu3n eWxSSruwL1sHNS3S1owFJgRGP5kHtE6xTgrdNfPWeWcm+8qNidsfCs6aACGmHjX7 pEJokrtPmgq5tqK8QiJlTwbZZ5oM/TL4wFmsu6+40VqsZAsN0Ruh00OeWy23Oc9D +qwX+LA5C95wHC8nH2I0IpDQsBExdi8ExnwJAVAKuyFx4AmHa0+yZzyC03SnAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQU+i9Pxwy+3kFWppR7c7lrBnqEYlMwHwYDVR0j BBgwFoAUwNcCjA+mKDSK4iRd0MwC08Xcs/kwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v M2E2NjVjMzItNmRhZi00NzJiLWJjZTYtMzE3ZDVkNmM3ODllLzAvQzBENzAyOEMw RkE2MjgzNDhBRTIyNDVERDBDQzAyRDNDNURDQjNGOS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9DMEQ3MDI4QzBGQTYyODM0OEFFMjI0NUREMENDMDJEM0M1RENC M0Y5LmNlcjCBqQYIKwYBBQUHAQsEgZwwgZkwgZYGCCsGAQUFBzALhoGJcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzNhNjY1YzMyLTZkYWYtNDcyYi1i Y2U2LTMxN2Q1ZDZjNzg5ZS8wLzMyMzQzMDMwM2EzNDM2NjEzMDNhMzMzMTNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzQzNzMxMzMzNy5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQARqAA MTANBgkqhkiG9w0BAQsFAAOCAQEAhIIZTXliaMI6G8yPeKfPSYlFUsQ1+3SufpCG g5o6Ascn5ivAnFJcL0CHSE7+mcVkfy/gemXP844vXfSaUkzAJwAHBrKtD8Yj2t/u vlYElipJXqmP/5CSLnJGfiz5rUnTlxKzn69bF3qDe9Ti26mAeHfCFyzCobHO78rQ 0jGZFukxgWAeeepukxsTx8rfQQ4qEP2aGj1fPgOK+rf83bU3sDkBROd35ZHmZLrd y0YdNfAZ4ajTs8Gr4ekx849ix2iG1vQ+qqdRPL+Iql0I/1eMmyJE9HbgXY/+5C9U Oumz7XCjHyZWPLEDQ/4tM/1EPXiyWFjQ0Q81UhwP+fryeuP/7g== -----END CERTIFICATE-----Generated at Wed May 13 12:41:23 2026 by rpki-client