$ rpki-client -vvf rpki-rsync.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a33343a3a2f34382d3438203d3e20313437313337.roa File: 323430303a343661303a33343a3a2f34382d3438203d3e20313437313337.roa (raw, json) Hash identifier: FpuosyUSWMTfhk1yjPzRRle4FSUaLD0RRnI3/i081xk= Subject key identifier: 1D:B5:53:49:91:4C:A5:53:4B:31:B1:0E:9C:32:7A:BA:88:42:68:AA Certificate issuer: /CN=C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9 Certificate serial: 0C05D013CE29DB104BE83BB2A933D3C439EB5A5D Authority key identifier: C0:D7:02:8C:0F:A6:28:34:8A:E2:24:5D:D0:CC:02:D3:C5:DC:B3:F9 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a33343a3a2f34382d3438203d3e20313437313337.roa Signing time: Sun 03 May 2026 02:26:31 +0000 ROA not before: Sun 03 May 2026 02:21:31 +0000 ROA not after: Sun 02 May 2027 02:26:31 +0000 asID: 147137 IP address blocks: 2400:46a0:34::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9.crl rsync://rpki-rsync.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 23:26:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:05:d0:13:ce:29:db:10:4b:e8:3b:b2:a9:33:d3:c4:39:eb:5a:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9 Validity Not Before: May 3 02:21:31 2026 GMT Not After : May 2 02:26:31 2027 GMT Subject: CN=1DB55349914CA5534B31B10E9C327ABA884268AA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:d2:02:b5:f9:c0:8b:48:b2:51:e0:d8:32:91: 0e:72:f9:83:50:8b:fd:ca:a9:cb:d1:d2:f2:fa:9f: 02:42:f1:9c:58:24:84:0f:dc:41:bb:4f:83:5f:29: 17:2c:a5:1e:0f:86:aa:53:ab:b0:14:81:2a:7d:e7: f4:5f:c5:76:cf:2c:25:63:cc:05:b9:ed:7c:eb:11: c3:a6:d5:b1:ca:d3:f3:38:81:d1:5f:36:d2:c5:cd: 8c:0f:98:31:ce:b5:89:c1:28:ce:eb:e3:78:64:f1: 8b:a0:71:66:73:7a:6c:fc:5b:9c:fe:64:26:68:b4: b9:ad:f6:bd:39:33:f6:62:99:d5:19:23:a2:86:07: 8f:31:cd:7a:33:30:16:60:8d:09:3a:3f:57:17:0e: 83:a8:b5:5b:a9:df:fb:d3:d4:b6:3c:bb:b8:08:39: 2d:b7:8d:70:0b:ad:08:1d:8d:df:0a:ea:52:fa:68: 0b:8c:e2:b6:5e:82:bc:25:24:d9:b0:cd:e6:8e:0e: 8e:02:2f:0c:84:03:34:b4:45:20:66:a1:8b:c0:04: 04:68:c9:6e:3b:06:13:63:e4:f1:40:02:81:12:27: d2:b0:46:41:dc:83:e1:c1:bf:7a:e5:9d:29:17:a7: b0:a1:38:08:52:15:94:f0:0a:5c:04:2f:fb:89:52: cb:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:B5:53:49:91:4C:A5:53:4B:31:B1:0E:9C:32:7A:BA:88:42:68:AA X509v3 Authority Key Identifier: keyid:C0:D7:02:8C:0F:A6:28:34:8A:E2:24:5D:D0:CC:02:D3:C5:DC:B3:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a33343a3a2f34382d3438203d3e20313437313337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:46a0:34::/48 Signature Algorithm: sha256WithRSAEncryption 4f:df:ab:f4:4f:59:af:cc:5f:dd:89:e7:27:f8:df:4e:61:3e: 4d:f9:fa:2e:d2:9a:79:89:1b:92:79:62:93:d2:03:b8:07:40: c7:0f:39:79:98:5b:00:e1:8b:10:a0:9f:70:38:be:22:39:a7: a0:e2:a6:43:c1:8f:07:ae:b4:22:af:5f:21:74:b8:60:ff:dd: db:90:22:63:70:3c:39:61:65:1e:75:94:50:1d:fc:30:f2:dd: fa:b8:a6:bd:f3:f3:ec:f0:47:21:b0:69:83:7a:10:72:5c:49: 40:ee:d2:b9:e8:99:6c:6c:0b:2e:fb:77:5a:87:88:3a:9b:9e: 8e:89:03:36:4b:81:97:b7:65:6a:b3:36:73:35:09:2f:3c:a3: 1a:23:31:15:4b:3c:5a:fc:61:30:39:4d:ea:ee:22:b5:13:20: 41:9d:5d:1d:8b:8a:fd:21:87:66:ea:03:34:90:fd:a8:82:b6: 8f:b2:fa:0e:d8:80:2e:8c:e9:e6:36:3b:d5:99:d9:74:0d:c5: 0d:1f:43:50:6a:01:aa:10:87:94:d5:f9:8e:30:70:dc:f4:d5: 56:80:5a:7c:d7:1c:f1:1d:3d:83:ad:2b:1c:e9:c8:d3:f6:c3: b7:3d:77:f5:86:51:dd:fe:ce:a3:9e:51:4f:7f:cb:22:a6:44: 0a:e9:cd:ad -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUDAXQE84p2xBL6DuyqTPTxDnrWl0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzBENzAyOEMwRkE2MjgzNDhBRTIyNDVERDBDQzAyRDND NURDQjNGOTAeFw0yNjA1MDMwMjIxMzFaFw0yNzA1MDIwMjI2MzFaMDMxMTAvBgNV BAMTKDFEQjU1MzQ5OTE0Q0E1NTM0QjMxQjEwRTlDMzI3QUJBODg0MjY4QUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCu0gK1+cCLSLJR4NgykQ5y+YNQ i/3KqcvR0vL6nwJC8ZxYJIQP3EG7T4NfKRcspR4PhqpTq7AUgSp95/RfxXbPLCVj zAW57XzrEcOm1bHK0/M4gdFfNtLFzYwPmDHOtYnBKM7r43hk8YugcWZzemz8W5z+ ZCZotLmt9r05M/ZimdUZI6KGB48xzXozMBZgjQk6P1cXDoOotVup3/vT1LY8u7gI OS23jXALrQgdjd8K6lL6aAuM4rZegrwlJNmwzeaODo4CLwyEAzS0RSBmoYvABARo yW47BhNj5PFAAoESJ9KwRkHcg+HBv3rlnSkXp7ChOAhSFZTwClwEL/uJUss1AgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUHbVTSZFMpVNLMbEOnDJ6uohCaKowHwYDVR0j BBgwFoAUwNcCjA+mKDSK4iRd0MwC08Xcs/kwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v M2E2NjVjMzItNmRhZi00NzJiLWJjZTYtMzE3ZDVkNmM3ODllLzAvQzBENzAyOEMw RkE2MjgzNDhBRTIyNDVERDBDQzAyRDNDNURDQjNGOS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9DMEQ3MDI4QzBGQTYyODM0OEFFMjI0NUREMENDMDJEM0M1RENC M0Y5LmNlcjCBqQYIKwYBBQUHAQsEgZwwgZkwgZYGCCsGAQUFBzALhoGJcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzNhNjY1YzMyLTZkYWYtNDcyYi1i Y2U2LTMxN2Q1ZDZjNzg5ZS8wLzMyMzQzMDMwM2EzNDM2NjEzMDNhMzMzNDNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzQzNzMxMzMzNy5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQARqAA NDANBgkqhkiG9w0BAQsFAAOCAQEAT9+r9E9Zr8xf3YnnJ/jfTmE+Tfn6LtKaeYkb knlik9IDuAdAxw85eZhbAOGLEKCfcDi+IjmnoOKmQ8GPB660Iq9fIXS4YP/d25Ai Y3A8OWFlHnWUUB38MPLd+rimvfPz7PBHIbBpg3oQclxJQO7SueiZbGwLLvt3WoeI OpuejokDNkuBl7dlarM2czUJLzyjGiMxFUs8WvxhMDlN6u4itRMgQZ1dHYuK/SGH ZuoDNJD9qIK2j7L6DtiALozp5jY71ZnZdA3FDR9DUGoBqhCHlNX5jjBw3PTVVoBa fNcc8R09g60rHOnI0/bDtz139YZR3f7Oo55RT3/LIqZECunNrQ== -----END CERTIFICATE-----Generated at Wed May 13 10:39:26 2026 by rpki-client