$ rpki-client -vvf rpki-rsync.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a373a3a2f34382d3438203d3e20313437313337.roa File: 323430303a343661303a373a3a2f34382d3438203d3e20313437313337.roa (raw, json) Hash identifier: bUiGB1W7Se2nx9Nc64eycOugCZo681BWG/duCoJZWeI= Subject key identifier: D8:B0:B0:87:5D:56:CA:DF:89:E0:B9:A3:26:FF:CD:D9:93:AD:53:20 Certificate issuer: /CN=C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9 Certificate serial: 665F99F0807C8209C1F551690FC79D3333AA2ABD Authority key identifier: C0:D7:02:8C:0F:A6:28:34:8A:E2:24:5D:D0:CC:02:D3:C5:DC:B3:F9 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a373a3a2f34382d3438203d3e20313437313337.roa Signing time: Sun 03 May 2026 02:26:33 +0000 ROA not before: Sun 03 May 2026 02:21:33 +0000 ROA not after: Sun 02 May 2027 02:26:33 +0000 asID: 147137 IP address blocks: 2400:46a0:7::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9.crl rsync://rpki-rsync.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 23:26:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:5f:99:f0:80:7c:82:09:c1:f5:51:69:0f:c7:9d:33:33:aa:2a:bd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9 Validity Not Before: May 3 02:21:33 2026 GMT Not After : May 2 02:26:33 2027 GMT Subject: CN=D8B0B0875D56CADF89E0B9A326FFCDD993AD5320 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:0c:79:ec:bc:0f:45:d6:a0:03:c3:01:19:d4: ff:1c:39:27:14:b6:42:38:6e:0a:b1:e3:94:6a:6c: 37:f3:72:62:40:c8:52:7c:6b:20:7d:7f:4c:13:e6: dc:e5:f1:0e:79:06:ed:10:a2:c9:44:d2:28:d6:b4: aa:4d:52:df:6c:7f:e6:05:74:3b:a1:5e:7a:7e:6c: e2:d2:1a:2c:eb:f3:4a:6d:9e:a6:0e:4b:d2:66:3d: ba:b9:33:22:09:1e:6a:19:92:18:2d:3e:5a:a3:ba: d3:98:9b:ec:53:ca:82:46:db:d4:3d:35:d7:40:d2: cb:98:27:5a:9c:58:a7:f6:9b:fe:9a:bc:71:1a:66: 02:75:f7:4a:d0:64:f5:28:bf:06:63:ca:e1:4c:70: bb:44:26:ed:c4:48:d9:2d:86:ce:e9:a0:47:91:a0: 36:38:1a:83:fe:31:d3:30:19:f5:f9:86:44:b6:64: 3b:a9:01:65:68:2f:33:4e:70:ea:42:71:2f:e4:bd: 75:86:c8:11:5a:6d:e8:35:ba:a1:cd:8b:ba:94:b3: d1:78:7f:41:fa:af:14:45:36:ea:a9:2c:ce:91:59: 78:c4:da:ee:5f:99:16:f2:1e:10:db:9d:8f:ed:c2: b0:9b:ea:f2:d4:27:c1:ea:7f:cc:08:6e:89:7c:21: b7:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:B0:B0:87:5D:56:CA:DF:89:E0:B9:A3:26:FF:CD:D9:93:AD:53:20 X509v3 Authority Key Identifier: keyid:C0:D7:02:8C:0F:A6:28:34:8A:E2:24:5D:D0:CC:02:D3:C5:DC:B3:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a373a3a2f34382d3438203d3e20313437313337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:46a0:7::/48 Signature Algorithm: sha256WithRSAEncryption 09:bb:64:a0:f0:f5:ab:a4:1a:bf:9a:ad:62:88:6d:2a:25:33: 0a:4f:9e:00:8f:e6:b4:ba:13:7a:6f:d0:17:cb:d1:9e:91:03: 71:2d:11:06:e4:bd:4f:1b:5b:8b:e9:07:e8:bd:ae:97:20:d0: 3b:9b:61:a3:1f:4a:fd:9b:5d:ba:13:83:a6:a7:cc:10:8d:44: 1d:35:d5:aa:06:77:96:8a:28:de:f4:be:d7:9b:75:3e:da:7c: 40:2b:44:3f:a1:46:e9:65:3e:c2:33:a1:31:8f:f5:fe:f6:71: c3:c2:53:c3:6a:ff:6b:14:da:8e:49:a6:96:5b:25:cd:31:1b: 8c:1d:0b:f3:33:d2:c3:b4:3c:39:7e:30:14:3c:b6:93:ee:d0: a2:44:31:27:50:dd:36:96:d8:b3:31:e5:47:99:26:c0:db:de: 03:26:ac:4a:ce:ee:e6:64:ad:2e:9b:89:d1:a2:02:f8:bd:c9: 14:e4:f4:c5:61:d1:d1:0e:29:d0:a6:c3:dd:bb:46:2a:5e:0e: d5:9d:f8:90:c3:39:b5:34:11:c5:cb:29:e1:58:d4:34:27:fe: ee:f5:da:c4:f9:3f:cb:11:e2:e3:9b:f7:4b:c0:2f:59:44:38: a6:9a:70:0d:9d:62:20:8b:f3:5b:ee:c6:6d:06:73:e0:87:df: 64:88:dc:32 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUZl+Z8IB8ggnB9VFpD8edMzOqKr0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzBENzAyOEMwRkE2MjgzNDhBRTIyNDVERDBDQzAyRDND NURDQjNGOTAeFw0yNjA1MDMwMjIxMzNaFw0yNzA1MDIwMjI2MzNaMDMxMTAvBgNV BAMTKEQ4QjBCMDg3NUQ1NkNBREY4OUUwQjlBMzI2RkZDREQ5OTNBRDUzMjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+DHnsvA9F1qADwwEZ1P8cOScU tkI4bgqx45RqbDfzcmJAyFJ8ayB9f0wT5tzl8Q55Bu0QoslE0ijWtKpNUt9sf+YF dDuhXnp+bOLSGizr80ptnqYOS9JmPbq5MyIJHmoZkhgtPlqjutOYm+xTyoJG29Q9 NddA0suYJ1qcWKf2m/6avHEaZgJ190rQZPUovwZjyuFMcLtEJu3ESNkths7poEeR oDY4GoP+MdMwGfX5hkS2ZDupAWVoLzNOcOpCcS/kvXWGyBFabeg1uqHNi7qUs9F4 f0H6rxRFNuqpLM6RWXjE2u5fmRbyHhDbnY/twrCb6vLUJ8Hqf8wIbol8IbdfAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQU2LCwh11Wyt+J4LmjJv/N2ZOtUyAwHwYDVR0j BBgwFoAUwNcCjA+mKDSK4iRd0MwC08Xcs/kwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v M2E2NjVjMzItNmRhZi00NzJiLWJjZTYtMzE3ZDVkNmM3ODllLzAvQzBENzAyOEMw RkE2MjgzNDhBRTIyNDVERDBDQzAyRDNDNURDQjNGOS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9DMEQ3MDI4QzBGQTYyODM0OEFFMjI0NUREMENDMDJEM0M1RENC M0Y5LmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzNhNjY1YzMyLTZkYWYtNDcyYi1i Y2U2LTMxN2Q1ZDZjNzg5ZS8wLzMyMzQzMDMwM2EzNDM2NjEzMDNhMzczYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTM0MzczMTMzMzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkAEagAAcw DQYJKoZIhvcNAQELBQADggEBAAm7ZKDw9aukGr+arWKIbSolMwpPngCP5rS6E3pv 0BfL0Z6RA3EtEQbkvU8bW4vpB+i9rpcg0DubYaMfSv2bXboTg6anzBCNRB011aoG d5aKKN70vtebdT7afEArRD+hRullPsIzoTGP9f72ccPCU8Nq/2sU2o5JppZbJc0x G4wdC/Mz0sO0PDl+MBQ8tpPu0KJEMSdQ3TaW2LMx5UeZJsDb3gMmrErO7uZkrS6b idGiAvi9yRTk9MVh0dEOKdCmw927RipeDtWd+JDDObU0EcXLKeFY1DQn/u712sT5 P8sR4uOb90vAL1lEOKaacA2dYiCL81vuxm0Gc+CH32SI3DI= -----END CERTIFICATE-----Generated at Wed May 13 10:22:53 2026 by rpki-client