$ rpki-client -vvf rpki-rsync.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a3a2f33322d3438203d3e20313437313337.roa File: 323430303a343661303a3a2f33322d3438203d3e20313437313337.roa (raw, json) Hash identifier: O05Ps8hAd8rr0CaoB90NQsqUuO2fcg1LWgMOuLkP0To= Subject key identifier: 7C:0A:A7:86:18:1E:00:21:3B:1D:24:FF:CC:3A:B1:05:62:AD:E3:F6 Certificate issuer: /CN=C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9 Certificate serial: 228024B772790597483852410D90D4649B8F777C Authority key identifier: C0:D7:02:8C:0F:A6:28:34:8A:E2:24:5D:D0:CC:02:D3:C5:DC:B3:F9 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a3a2f33322d3438203d3e20313437313337.roa Signing time: Sun 03 May 2026 02:26:41 +0000 ROA not before: Sun 03 May 2026 02:21:41 +0000 ROA not after: Sun 02 May 2027 02:26:41 +0000 asID: 147137 IP address blocks: 2400:46a0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9.crl rsync://rpki-rsync.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 23:26:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:80:24:b7:72:79:05:97:48:38:52:41:0d:90:d4:64:9b:8f:77:7c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9 Validity Not Before: May 3 02:21:41 2026 GMT Not After : May 2 02:26:41 2027 GMT Subject: CN=7C0AA786181E00213B1D24FFCC3AB10562ADE3F6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:26:c6:23:11:1e:cf:22:cd:bd:9f:ae:1d:a3: 77:0b:36:f9:ec:f7:60:5c:f2:6e:a3:29:c5:c7:d7: 8e:44:ee:89:45:03:6b:1c:4d:0c:f5:f0:cc:a8:fa: 4e:8d:61:dc:79:09:d7:3b:65:2d:bf:01:b5:d1:c4: 76:36:10:a3:e6:1b:19:a3:84:a1:4d:77:c5:12:88: 1b:4e:9d:31:8d:9b:25:c1:8f:b9:ee:c7:ef:f7:c5: 8c:03:5d:64:a9:a3:25:39:3e:cd:5d:a1:62:38:cb: e5:bf:bb:ca:30:77:84:76:0d:fa:52:78:b8:3f:0e: 2c:d3:11:ac:f5:2c:1e:50:e3:57:8a:eb:aa:45:43: 1b:36:b9:38:8b:1b:11:7b:9e:10:37:ed:17:42:9d: 48:51:e9:13:3b:fb:83:15:48:b2:22:14:0e:8f:aa: 39:a7:c6:7a:d2:48:a7:3c:08:71:40:5e:93:27:0c: a2:3d:34:0e:e4:38:a4:e7:b9:be:30:d2:f9:78:03: 27:45:c2:60:f2:9e:fd:7f:9a:aa:fa:84:ba:9f:9a: ba:a8:28:5a:bf:b4:16:b5:2d:87:f0:63:20:50:88: cd:44:14:c1:57:ad:01:d8:07:d9:7e:01:ac:35:74: 7d:16:76:c5:93:2c:93:d4:9c:6f:87:7c:f4:e2:d4: d8:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:0A:A7:86:18:1E:00:21:3B:1D:24:FF:CC:3A:B1:05:62:AD:E3:F6 X509v3 Authority Key Identifier: keyid:C0:D7:02:8C:0F:A6:28:34:8A:E2:24:5D:D0:CC:02:D3:C5:DC:B3:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a3a2f33322d3438203d3e20313437313337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:46a0::/32 Signature Algorithm: sha256WithRSAEncryption a3:b7:ef:06:98:38:08:2e:0b:8e:be:05:9a:6a:2b:ca:20:59: 23:ce:e1:04:73:33:16:e0:5c:42:98:69:18:34:9d:f0:46:1a: 00:ed:7c:06:24:9e:06:f7:bc:b9:e5:db:65:3c:e6:c9:c0:b1: c1:3c:3c:56:fd:68:22:fd:5e:1a:f9:ab:7f:92:be:a5:79:e8: 1f:cd:9f:3b:83:21:af:59:df:5c:25:e7:96:3e:3a:32:01:1d: 0f:4e:c8:1f:bf:22:ee:98:6e:c3:d4:d7:1d:d4:a7:39:a0:b4: 0a:4e:b7:a6:6e:26:71:f9:4c:7a:1a:1e:19:db:fe:34:b8:fd: 37:76:67:7f:50:72:91:84:07:29:58:27:f6:6f:e0:ce:a2:06: c8:ca:c1:3b:ec:ca:1b:37:39:83:9f:ef:77:34:f2:12:fe:9c: 0f:b9:57:0a:c6:1f:7b:fc:0d:6f:17:1e:9a:06:90:72:3c:a1: 69:4b:bf:6a:ca:b4:5f:df:30:c5:e1:a0:6d:41:02:89:71:23: 28:a6:11:e6:61:af:bf:99:36:31:94:65:54:c1:49:2e:7e:c2: 5d:c3:40:40:d2:fd:fc:6c:75:f9:16:a6:c3:89:ca:34:1a:4d: 94:37:35:19:02:19:d2:c6:93:58:f5:a7:20:fe:02:f4:28:78: 3d:b4:87:b7 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUIoAkt3J5BZdIOFJBDZDUZJuPd3wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzBENzAyOEMwRkE2MjgzNDhBRTIyNDVERDBDQzAyRDND NURDQjNGOTAeFw0yNjA1MDMwMjIxNDFaFw0yNzA1MDIwMjI2NDFaMDMxMTAvBgNV BAMTKDdDMEFBNzg2MTgxRTAwMjEzQjFEMjRGRkNDM0FCMTA1NjJBREUzRjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNJsYjER7PIs29n64do3cLNvns 92Bc8m6jKcXH145E7olFA2scTQz18Myo+k6NYdx5Cdc7ZS2/AbXRxHY2EKPmGxmj hKFNd8USiBtOnTGNmyXBj7nux+/3xYwDXWSpoyU5Ps1doWI4y+W/u8owd4R2DfpS eLg/DizTEaz1LB5Q41eK66pFQxs2uTiLGxF7nhA37RdCnUhR6RM7+4MVSLIiFA6P qjmnxnrSSKc8CHFAXpMnDKI9NA7kOKTnub4w0vl4AydFwmDynv1/mqr6hLqfmrqo KFq/tBa1LYfwYyBQiM1EFMFXrQHYB9l+Aaw1dH0WdsWTLJPUnG+HfPTi1NirAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUfAqnhhgeACE7HST/zDqxBWKt4/YwHwYDVR0j BBgwFoAUwNcCjA+mKDSK4iRd0MwC08Xcs/kwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v M2E2NjVjMzItNmRhZi00NzJiLWJjZTYtMzE3ZDVkNmM3ODllLzAvQzBENzAyOEMw RkE2MjgzNDhBRTIyNDVERDBDQzAyRDNDNURDQjNGOS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9DMEQ3MDI4QzBGQTYyODM0OEFFMjI0NUREMENDMDJEM0M1RENC M0Y5LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzNhNjY1YzMyLTZkYWYtNDcyYi1i Y2U2LTMxN2Q1ZDZjNzg5ZS8wLzMyMzQzMDMwM2EzNDM2NjEzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMxMzQzNzMxMzMzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQARqAwDQYJKoZI hvcNAQELBQADggEBAKO37waYOAguC46+BZpqK8ogWSPO4QRzMxbgXEKYaRg0nfBG GgDtfAYkngb3vLnl22U85snAscE8PFb9aCL9Xhr5q3+SvqV56B/NnzuDIa9Z31wl 55Y+OjIBHQ9OyB+/Iu6YbsPU1x3UpzmgtApOt6ZuJnH5THoaHhnb/jS4/Td2Z39Q cpGEBylYJ/Zv4M6iBsjKwTvsyhs3OYOf73c08hL+nA+5VwrGH3v8DW8XHpoGkHI8 oWlLv2rKtF/fMMXhoG1BAolxIyimEeZhr7+ZNjGUZVTBSS5+wl3DQEDS/fxsdfkW psOJyjQaTZQ3NRkCGdLGk1j1pyD+AvQoeD20h7c= -----END CERTIFICATE-----Generated at Wed May 13 08:48:47 2026 by rpki-client