$ rpki-client -vvf rpki-rsync.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a333a3a2f34382d3438203d3e20313437313337.roa File: 323430303a343661303a333a3a2f34382d3438203d3e20313437313337.roa (raw, json) Hash identifier: gfbcpg+SVHwH5IjoNRXSMVdGISaiGt5LV1khyRPoF44= Subject key identifier: 70:8E:A1:77:4C:BC:31:2E:4A:44:41:E5:2E:63:90:0C:52:0E:5E:4D Certificate issuer: /CN=C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9 Certificate serial: 1FCA9C0D4FBE9107F693E8E859E957F7DC134333 Authority key identifier: C0:D7:02:8C:0F:A6:28:34:8A:E2:24:5D:D0:CC:02:D3:C5:DC:B3:F9 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a333a3a2f34382d3438203d3e20313437313337.roa Signing time: Sun 03 May 2026 02:26:32 +0000 ROA not before: Sun 03 May 2026 02:21:32 +0000 ROA not after: Sun 02 May 2027 02:26:32 +0000 asID: 147137 IP address blocks: 2400:46a0:3::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9.crl rsync://rpki-rsync.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 23:26:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:ca:9c:0d:4f:be:91:07:f6:93:e8:e8:59:e9:57:f7:dc:13:43:33 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9 Validity Not Before: May 3 02:21:32 2026 GMT Not After : May 2 02:26:32 2027 GMT Subject: CN=708EA1774CBC312E4A4441E52E63900C520E5E4D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:3f:b8:2c:cb:c2:d9:09:32:1d:ce:72:86:bd: 11:d3:e0:48:08:60:d3:88:95:fe:f6:d2:98:54:d2: 54:33:29:71:d6:7e:a7:ce:6b:05:47:66:70:39:0d: 81:e1:36:a4:ee:cb:49:3e:64:ee:e9:8d:e6:49:eb: d5:aa:f4:73:1d:c2:5d:ab:b4:35:ec:9e:a9:c0:6e: d0:11:2e:cf:56:58:4e:77:d1:db:5c:f7:2d:d7:b4: 1a:9a:49:73:cb:f2:ea:2c:95:f6:4f:ab:6e:c0:ef: 5f:b4:f4:a7:83:8b:10:3d:47:36:95:43:e7:41:05: 1b:50:ec:1c:5a:4e:30:25:69:8e:0f:25:c7:94:36: 53:ba:e5:e6:c0:08:51:d9:d5:f8:89:e3:17:4a:1e: d7:af:2b:c0:86:17:4c:0a:af:a0:bc:fa:3f:73:bc: 13:13:00:d1:ff:42:83:06:93:3b:50:65:b0:5b:53: d5:5b:22:2a:b0:41:e8:52:e1:d9:02:9d:3f:93:d2: 02:d0:bc:0b:38:4f:eb:19:a7:ae:c0:62:5a:9c:c4: ef:a6:d3:2a:21:f2:90:16:d6:ac:ee:4d:04:18:33: a1:5c:25:90:8e:79:79:c1:f9:b9:6f:ed:64:b7:14: fd:84:10:ed:47:7e:d9:c1:50:1a:69:d8:9a:2e:0d: 3f:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:8E:A1:77:4C:BC:31:2E:4A:44:41:E5:2E:63:90:0C:52:0E:5E:4D X509v3 Authority Key Identifier: keyid:C0:D7:02:8C:0F:A6:28:34:8A:E2:24:5D:D0:CC:02:D3:C5:DC:B3:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a333a3a2f34382d3438203d3e20313437313337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:46a0:3::/48 Signature Algorithm: sha256WithRSAEncryption 4c:9c:ce:f5:83:98:84:18:39:32:64:ff:05:b2:18:a4:ac:af: 62:f4:35:41:97:f0:37:a0:16:f1:37:68:ef:09:97:19:65:63: e4:61:cf:7a:31:a1:1f:5e:ea:ca:9e:10:60:ba:af:06:7c:45: b8:a3:f3:46:25:44:5d:c3:74:ec:93:fa:0b:aa:cd:00:a3:7a: 1d:b1:e5:a8:df:e0:28:96:ce:3b:4c:22:1b:24:b2:51:99:ee: e4:dc:bf:fa:9a:b1:97:59:9b:c0:ed:0e:79:49:8e:cd:43:8c: 65:75:f9:ff:42:fd:8a:0c:57:81:97:37:f0:d4:75:a3:81:09: 31:d5:1e:d1:23:cb:53:71:7a:43:49:d8:4e:a8:e5:a1:74:40: a3:db:f8:93:8d:87:2e:89:8f:cc:db:b8:eb:8f:45:d4:40:55: c6:57:14:34:c3:41:1d:d6:b9:41:d0:23:f2:21:54:81:17:d5: e7:e8:ef:d6:b7:eb:33:8d:31:44:b5:74:68:53:1c:85:47:c1: df:91:90:d6:94:b8:90:4e:9e:bf:40:2b:13:c7:59:c9:d3:01: 7c:59:ad:63:fe:09:82:cd:0d:ba:78:e8:5a:0a:8d:6d:3b:c5: b4:40:90:02:e8:7a:3d:8c:b2:ce:19:dd:26:c2:97:84:ab:65: 89:ac:e3:95 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUH8qcDU++kQf2k+joWelX99wTQzMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzBENzAyOEMwRkE2MjgzNDhBRTIyNDVERDBDQzAyRDND NURDQjNGOTAeFw0yNjA1MDMwMjIxMzJaFw0yNzA1MDIwMjI2MzJaMDMxMTAvBgNV BAMTKDcwOEVBMTc3NENCQzMxMkU0QTQ0NDFFNTJFNjM5MDBDNTIwRTVFNEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQP7gsy8LZCTIdznKGvRHT4EgI YNOIlf720phU0lQzKXHWfqfOawVHZnA5DYHhNqTuy0k+ZO7pjeZJ69Wq9HMdwl2r tDXsnqnAbtARLs9WWE530dtc9y3XtBqaSXPL8uoslfZPq27A71+09KeDixA9RzaV Q+dBBRtQ7BxaTjAlaY4PJceUNlO65ebACFHZ1fiJ4xdKHtevK8CGF0wKr6C8+j9z vBMTANH/QoMGkztQZbBbU9VbIiqwQehS4dkCnT+T0gLQvAs4T+sZp67AYlqcxO+m 0yoh8pAW1qzuTQQYM6FcJZCOeXnB+blv7WS3FP2EEO1HftnBUBpp2JouDT+FAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUcI6hd0y8MS5KREHlLmOQDFIOXk0wHwYDVR0j BBgwFoAUwNcCjA+mKDSK4iRd0MwC08Xcs/kwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v M2E2NjVjMzItNmRhZi00NzJiLWJjZTYtMzE3ZDVkNmM3ODllLzAvQzBENzAyOEMw RkE2MjgzNDhBRTIyNDVERDBDQzAyRDNDNURDQjNGOS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9DMEQ3MDI4QzBGQTYyODM0OEFFMjI0NUREMENDMDJEM0M1RENC M0Y5LmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzNhNjY1YzMyLTZkYWYtNDcyYi1i Y2U2LTMxN2Q1ZDZjNzg5ZS8wLzMyMzQzMDMwM2EzNDM2NjEzMDNhMzMzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTM0MzczMTMzMzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkAEagAAMw DQYJKoZIhvcNAQELBQADggEBAEyczvWDmIQYOTJk/wWyGKSsr2L0NUGX8DegFvE3 aO8JlxllY+Rhz3oxoR9e6sqeEGC6rwZ8Rbij80YlRF3DdOyT+guqzQCjeh2x5ajf 4CiWzjtMIhskslGZ7uTcv/qasZdZm8DtDnlJjs1DjGV1+f9C/YoMV4GXN/DUdaOB CTHVHtEjy1NxekNJ2E6o5aF0QKPb+JONhy6Jj8zbuOuPRdRAVcZXFDTDQR3WuUHQ I/IhVIEX1efo79a36zONMUS1dGhTHIVHwd+RkNaUuJBOnr9AKxPHWcnTAXxZrWP+ CYLNDbp46FoKjW07xbRAkALoej2Mss4Z3SbCl4SrZYms45U= -----END CERTIFICATE-----Generated at Wed May 13 12:39:37 2026 by rpki-client