$ rpki-client -vvf rpki-rsync.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a363a3a2f34382d3438203d3e20313437313337.roa File: 323430303a343661303a363a3a2f34382d3438203d3e20313437313337.roa (raw, json) Hash identifier: ysVciOe07++0v5Vr1hzLx8fA/0jTLiYdiUqf/6pXrkA= Subject key identifier: 31:04:F0:1C:7C:D7:34:71:E3:B3:3C:12:91:0B:CF:12:40:F3:87:BC Certificate issuer: /CN=C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9 Certificate serial: 5EAB381AB16E8D8DE3EC8DEA46FE99586DC6D30C Authority key identifier: C0:D7:02:8C:0F:A6:28:34:8A:E2:24:5D:D0:CC:02:D3:C5:DC:B3:F9 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a363a3a2f34382d3438203d3e20313437313337.roa Signing time: Sun 03 May 2026 02:26:40 +0000 ROA not before: Sun 03 May 2026 02:21:40 +0000 ROA not after: Sun 02 May 2027 02:26:40 +0000 asID: 147137 IP address blocks: 2400:46a0:6::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9.crl rsync://rpki-rsync.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 23:26:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:ab:38:1a:b1:6e:8d:8d:e3:ec:8d:ea:46:fe:99:58:6d:c6:d3:0c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9 Validity Not Before: May 3 02:21:40 2026 GMT Not After : May 2 02:26:40 2027 GMT Subject: CN=3104F01C7CD73471E3B33C12910BCF1240F387BC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:88:9b:37:57:4a:e9:12:6e:00:61:8c:06:98: 17:9b:e4:f7:e1:26:7d:61:a9:8d:91:9e:0f:42:76: 15:9d:da:24:57:8e:33:c8:4d:49:e3:d5:1b:cf:fb: a9:9d:00:96:c3:97:d3:92:e4:77:72:08:9c:51:20: 41:d9:55:60:d0:b2:2e:4c:1e:c0:14:2c:72:bc:e9: d3:21:a6:2c:a2:a4:3d:71:9c:42:a1:39:89:fd:f4: ea:4e:91:c5:46:34:0f:82:30:40:33:06:8b:56:31: 19:83:a5:cf:fc:90:00:7e:ca:46:0a:71:bf:ad:93: 06:1e:22:83:82:2d:dd:41:be:ad:18:3d:50:9c:e9: d3:4a:0d:87:07:98:ea:b5:6a:60:37:b0:f4:52:ea: e4:93:25:c8:92:bd:fb:d3:7d:d4:e4:a0:d6:80:25: 24:77:08:dd:a3:c3:e5:12:4c:3a:5c:bb:39:eb:e5: 78:61:c7:77:e5:52:c2:ab:97:7f:47:1b:23:30:1f: 64:31:2f:7e:4b:55:2b:6b:31:39:32:0a:eb:37:e1: 83:06:0a:2d:15:2e:a6:c4:81:bf:28:11:7d:43:0f: cc:d9:58:b2:8e:26:17:6a:99:f7:16:58:82:50:cd: 1b:38:46:e1:ce:3f:69:2e:b1:ab:41:da:86:a8:3d: 05:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:04:F0:1C:7C:D7:34:71:E3:B3:3C:12:91:0B:CF:12:40:F3:87:BC X509v3 Authority Key Identifier: keyid:C0:D7:02:8C:0F:A6:28:34:8A:E2:24:5D:D0:CC:02:D3:C5:DC:B3:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a363a3a2f34382d3438203d3e20313437313337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:46a0:6::/48 Signature Algorithm: sha256WithRSAEncryption 76:b6:5d:52:ba:0e:e5:63:b5:40:22:a0:9e:68:6f:21:0a:f8: 24:3a:d8:15:ad:3f:87:ac:e1:9d:ca:3e:5b:82:e5:01:c3:98: b8:c3:a4:f5:e8:c8:6f:11:0e:44:24:40:0e:4e:f6:0d:91:fc: dc:ed:50:54:5d:15:12:85:3f:00:e5:2e:eb:42:95:05:10:1d: 53:18:df:30:76:2b:81:d3:ee:d1:57:a4:2b:e3:e1:89:26:ff: 5e:8b:c7:41:88:b9:d5:d7:47:e1:f4:4f:36:32:4a:f2:9a:9f: 6b:78:6c:f4:05:ea:2b:55:95:7a:6f:97:57:5a:af:02:8e:89: 01:64:a3:3c:ad:a4:27:7a:3c:be:13:58:07:80:a7:95:fb:a4: b8:7c:68:61:8c:ba:ec:8c:2f:6f:3d:f6:e0:97:e6:ae:cc:b8: d7:48:5a:41:ab:c1:25:f0:62:ce:1e:1b:be:7a:75:5c:44:8a: 39:ab:c5:3d:c8:1d:7f:2b:b9:35:7f:90:8d:c8:ab:f5:9e:54: ff:65:16:2d:23:04:3c:fc:bf:c1:3d:c6:12:02:37:84:c7:e4: 32:f8:36:4c:7b:b6:ac:9d:14:c7:99:c1:f3:4c:9f:fa:64:22: c3:30:19:37:a2:96:26:c1:f9:a2:1c:9c:41:66:7c:fc:bd:4d: 8e:d1:87:43 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUXqs4GrFujY3j7I3qRv6ZWG3G0wwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzBENzAyOEMwRkE2MjgzNDhBRTIyNDVERDBDQzAyRDND NURDQjNGOTAeFw0yNjA1MDMwMjIxNDBaFw0yNzA1MDIwMjI2NDBaMDMxMTAvBgNV BAMTKDMxMDRGMDFDN0NENzM0NzFFM0IzM0MxMjkxMEJDRjEyNDBGMzg3QkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDhiJs3V0rpEm4AYYwGmBeb5Pfh Jn1hqY2Rng9CdhWd2iRXjjPITUnj1RvP+6mdAJbDl9OS5HdyCJxRIEHZVWDQsi5M HsAULHK86dMhpiyipD1xnEKhOYn99OpOkcVGNA+CMEAzBotWMRmDpc/8kAB+ykYK cb+tkwYeIoOCLd1Bvq0YPVCc6dNKDYcHmOq1amA3sPRS6uSTJciSvfvTfdTkoNaA JSR3CN2jw+USTDpcuznr5Xhhx3flUsKrl39HGyMwH2QxL35LVStrMTkyCus34YMG Ci0VLqbEgb8oEX1DD8zZWLKOJhdqmfcWWIJQzRs4RuHOP2kusatB2oaoPQWnAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUMQTwHHzXNHHjszwSkQvPEkDzh7wwHwYDVR0j BBgwFoAUwNcCjA+mKDSK4iRd0MwC08Xcs/kwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v M2E2NjVjMzItNmRhZi00NzJiLWJjZTYtMzE3ZDVkNmM3ODllLzAvQzBENzAyOEMw RkE2MjgzNDhBRTIyNDVERDBDQzAyRDNDNURDQjNGOS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9DMEQ3MDI4QzBGQTYyODM0OEFFMjI0NUREMENDMDJEM0M1RENC M0Y5LmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzNhNjY1YzMyLTZkYWYtNDcyYi1i Y2U2LTMxN2Q1ZDZjNzg5ZS8wLzMyMzQzMDMwM2EzNDM2NjEzMDNhMzYzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTM0MzczMTMzMzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkAEagAAYw DQYJKoZIhvcNAQELBQADggEBAHa2XVK6DuVjtUAioJ5obyEK+CQ62BWtP4es4Z3K PluC5QHDmLjDpPXoyG8RDkQkQA5O9g2R/NztUFRdFRKFPwDlLutClQUQHVMY3zB2 K4HT7tFXpCvj4Ykm/16Lx0GIudXXR+H0TzYySvKan2t4bPQF6itVlXpvl1darwKO iQFkozytpCd6PL4TWAeAp5X7pLh8aGGMuuyML2899uCX5q7MuNdIWkGrwSXwYs4e G756dVxEijmrxT3IHX8ruTV/kI3Iq/WeVP9lFi0jBDz8v8E9xhICN4TH5DL4Nkx7 tqydFMeZwfNMn/pkIsMwGTeilibB+aIcnEFmfPy9TY7Rh0M= -----END CERTIFICATE-----Generated at Wed May 13 09:17:47 2026 by rpki-client