$ rpki-client -vvf rpki-rsync.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a343a3a2f34382d3438203d3e20313437313337.roa File: 323430303a343661303a343a3a2f34382d3438203d3e20313437313337.roa (raw, json) Hash identifier: RZNwhsdWPwHsJ1753q7l7RVtxdL0EUNu722JNRatZoc= Subject key identifier: 90:75:EF:65:ED:24:8F:8A:9B:79:28:7E:C9:4E:34:D8:0D:A2:E0:64 Certificate issuer: /CN=C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9 Certificate serial: 756070CCFD95F20AFE86EC144F6BCFEBEAF6D93B Authority key identifier: C0:D7:02:8C:0F:A6:28:34:8A:E2:24:5D:D0:CC:02:D3:C5:DC:B3:F9 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a343a3a2f34382d3438203d3e20313437313337.roa Signing time: Sun 03 May 2026 02:26:37 +0000 ROA not before: Sun 03 May 2026 02:21:37 +0000 ROA not after: Sun 02 May 2027 02:26:37 +0000 asID: 147137 IP address blocks: 2400:46a0:4::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9.crl rsync://rpki-rsync.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 23:26:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:60:70:cc:fd:95:f2:0a:fe:86:ec:14:4f:6b:cf:eb:ea:f6:d9:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9 Validity Not Before: May 3 02:21:37 2026 GMT Not After : May 2 02:26:37 2027 GMT Subject: CN=9075EF65ED248F8A9B79287EC94E34D80DA2E064 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:6f:a9:f5:db:07:10:04:fc:d7:22:e0:12:1f: 4e:70:97:52:3c:40:23:08:6d:db:1e:a8:dc:9b:df: 13:44:cb:3e:c1:b9:c7:2d:e2:4b:ca:9a:2d:27:39: a9:d7:7c:55:e1:54:38:fb:e5:e9:9a:ab:4a:73:c0: 2b:f3:cb:47:dd:f8:98:f3:f3:d6:cd:db:e0:fc:4a: 1f:ad:55:98:41:11:77:e8:a0:59:7e:68:98:d1:26: 3a:2c:1e:14:87:c3:d2:35:f7:c0:be:41:3a:52:6f: a2:cd:8f:4c:04:f9:f4:75:e0:ad:be:56:51:fd:ef: 77:12:2e:ac:cf:b8:b8:4a:ae:89:de:7c:f0:9a:87: 76:30:3f:c7:0f:d3:49:bf:d8:72:e1:47:d8:0c:26: f2:26:91:80:07:72:dd:74:ad:7a:db:7e:54:ad:79: dc:62:cf:fc:06:d4:f8:db:2a:f6:3d:02:55:69:b2: 92:72:8e:b3:5a:9b:7d:c2:66:0c:c4:c1:9e:e0:0d: 99:12:60:9e:e3:e4:9a:31:e6:08:49:1c:67:8e:f7: 6e:df:6a:82:17:7b:7c:40:1c:31:cf:e4:2c:43:4d: f1:9a:32:83:3b:26:cc:52:a6:e7:42:43:97:83:11: b2:27:51:82:52:70:e7:e9:fd:6c:b7:3b:55:86:2f: 8b:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:75:EF:65:ED:24:8F:8A:9B:79:28:7E:C9:4E:34:D8:0D:A2:E0:64 X509v3 Authority Key Identifier: keyid:C0:D7:02:8C:0F:A6:28:34:8A:E2:24:5D:D0:CC:02:D3:C5:DC:B3:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a343a3a2f34382d3438203d3e20313437313337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:46a0:4::/48 Signature Algorithm: sha256WithRSAEncryption 1b:d3:e0:62:36:9a:96:c7:4d:7d:6d:20:f7:15:d7:61:91:54: 3a:3d:c4:c2:fa:dc:ad:03:72:84:69:64:5e:26:d0:61:e2:08: 28:3d:75:9c:28:8c:4e:5b:4d:77:72:2e:49:93:42:04:53:7f: 65:e4:43:33:5e:44:ce:ce:7b:14:e2:4f:f3:24:d3:8f:9c:4c: b4:eb:dc:7a:c3:cc:5e:13:ec:86:5f:1b:9a:0f:b7:c8:b2:04: 00:a3:16:b0:1e:23:45:dd:6e:2b:4f:ec:35:31:d0:1d:9a:9b: 52:07:53:27:9b:dc:9d:2a:71:c3:99:cb:b3:e6:27:79:21:b0: 96:b2:d4:36:30:07:db:e5:8e:cd:7a:08:7e:35:70:38:45:41: cd:61:b7:43:83:40:a3:3f:4d:60:3b:fd:ab:37:8b:5b:09:04: 45:34:67:1f:41:21:11:db:5e:c9:c3:88:21:71:85:4b:29:5c: 8f:c3:54:65:96:91:59:79:48:56:c6:eb:a4:c5:98:2b:30:1b: 54:68:d9:a7:dc:21:dd:98:b1:13:6c:a6:65:7e:b2:df:c8:42: 69:9d:14:bc:0b:4d:5a:7f:59:9a:03:b9:05:06:d4:5f:09:98: a1:9e:9e:0a:2d:db:7d:a8:bd:23:23:d3:49:a0:bb:6b:d2:fc: 4e:ad:27:c0 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUdWBwzP2V8gr+huwUT2vP6+r22TswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzBENzAyOEMwRkE2MjgzNDhBRTIyNDVERDBDQzAyRDND NURDQjNGOTAeFw0yNjA1MDMwMjIxMzdaFw0yNzA1MDIwMjI2MzdaMDMxMTAvBgNV BAMTKDkwNzVFRjY1RUQyNDhGOEE5Qjc5Mjg3RUM5NEUzNEQ4MERBMkUwNjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9b6n12wcQBPzXIuASH05wl1I8 QCMIbdseqNyb3xNEyz7Bucct4kvKmi0nOanXfFXhVDj75emaq0pzwCvzy0fd+Jjz 89bN2+D8Sh+tVZhBEXfooFl+aJjRJjosHhSHw9I198C+QTpSb6LNj0wE+fR14K2+ VlH973cSLqzPuLhKronefPCah3YwP8cP00m/2HLhR9gMJvImkYAHct10rXrbflSt edxiz/wG1PjbKvY9AlVpspJyjrNam33CZgzEwZ7gDZkSYJ7j5Jox5ghJHGeO927f aoIXe3xAHDHP5CxDTfGaMoM7JsxSpudCQ5eDEbInUYJScOfp/Wy3O1WGL4uVAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUkHXvZe0kj4qbeSh+yU402A2i4GQwHwYDVR0j BBgwFoAUwNcCjA+mKDSK4iRd0MwC08Xcs/kwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v M2E2NjVjMzItNmRhZi00NzJiLWJjZTYtMzE3ZDVkNmM3ODllLzAvQzBENzAyOEMw RkE2MjgzNDhBRTIyNDVERDBDQzAyRDNDNURDQjNGOS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9DMEQ3MDI4QzBGQTYyODM0OEFFMjI0NUREMENDMDJEM0M1RENC M0Y5LmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzNhNjY1YzMyLTZkYWYtNDcyYi1i Y2U2LTMxN2Q1ZDZjNzg5ZS8wLzMyMzQzMDMwM2EzNDM2NjEzMDNhMzQzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTM0MzczMTMzMzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkAEagAAQw DQYJKoZIhvcNAQELBQADggEBABvT4GI2mpbHTX1tIPcV12GRVDo9xML63K0DcoRp ZF4m0GHiCCg9dZwojE5bTXdyLkmTQgRTf2XkQzNeRM7OexTiT/Mk04+cTLTr3HrD zF4T7IZfG5oPt8iyBACjFrAeI0XdbitP7DUx0B2am1IHUyeb3J0qccOZy7PmJ3kh sJay1DYwB9vljs16CH41cDhFQc1ht0ODQKM/TWA7/as3i1sJBEU0Zx9BIRHbXsnD iCFxhUspXI/DVGWWkVl5SFbG66TFmCswG1Ro2afcId2YsRNspmV+st/IQmmdFLwL TVp/WZoDuQUG1F8JmKGengot232ovSMj00mgu2vS/E6tJ8A= -----END CERTIFICATE-----Generated at Wed May 13 09:54:21 2026 by rpki-client