$ rpki-client -vvf rpki-rsync.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a3a2f34382d3438203d3e20313437313337.roa File: 323430303a343661303a3a2f34382d3438203d3e20313437313337.roa (raw, json) Hash identifier: 0HDp+vfD+4sT/TKrDDPYxk4/65tF4UinBvnW6pYSahU= Subject key identifier: C7:AF:E6:E2:B1:75:D2:A1:33:CB:BF:A6:39:69:17:FC:48:0F:2D:37 Certificate issuer: /CN=C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9 Certificate serial: 542D165428B7021D9927AAB9A62A98B2EA5E5E68 Authority key identifier: C0:D7:02:8C:0F:A6:28:34:8A:E2:24:5D:D0:CC:02:D3:C5:DC:B3:F9 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a3a2f34382d3438203d3e20313437313337.roa Signing time: Sun 03 May 2026 02:26:43 +0000 ROA not before: Sun 03 May 2026 02:21:43 +0000 ROA not after: Sun 02 May 2027 02:26:43 +0000 asID: 147137 IP address blocks: 2400:46a0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9.crl rsync://rpki-rsync.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 23:26:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:2d:16:54:28:b7:02:1d:99:27:aa:b9:a6:2a:98:b2:ea:5e:5e:68 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9 Validity Not Before: May 3 02:21:43 2026 GMT Not After : May 2 02:26:43 2027 GMT Subject: CN=C7AFE6E2B175D2A133CBBFA6396917FC480F2D37 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:c6:9d:a6:71:bd:f3:9c:5f:3b:45:9b:f3:7f: 2c:4c:1b:56:38:0b:32:f4:90:b1:a7:bd:ee:33:30: 63:75:18:93:37:31:2f:67:59:ba:ac:68:51:3c:af: 22:c0:bb:f5:be:e2:3a:6f:5e:bc:0d:d4:90:16:eb: fd:78:68:d3:e3:78:8b:e8:9e:cc:44:50:25:70:b4: 47:83:8c:b5:f0:a4:30:58:85:3e:e4:fa:6f:22:91: c1:e6:dc:d5:7b:5b:8f:ae:9a:a4:34:c4:a5:bc:59: 86:9b:5b:d7:d2:b2:24:ae:c4:39:b8:66:1e:cd:cc: 8d:b8:2f:21:bf:c2:f4:a1:1f:0f:22:f3:73:bf:4d: 6f:31:0b:d9:b1:af:ca:32:b3:f2:df:1c:d2:4b:9d: 10:4a:a2:67:4b:77:68:9a:1b:f9:31:ea:00:5f:e0: cb:b6:b6:a0:b2:b1:24:e9:69:09:7d:c2:81:fa:de: 1d:d6:91:ae:d3:a4:1b:f4:fc:30:25:3d:97:cc:f4: 01:70:77:61:4b:ba:d3:6a:4f:9c:5e:e5:e0:a5:01: d1:a9:dc:a5:91:d1:b9:5f:91:2f:eb:a6:26:a3:70: fa:9a:c0:94:f0:9a:ac:ca:70:9e:b4:9d:d5:02:a2: 95:7b:47:6b:98:1f:ef:45:71:30:60:31:30:20:00: 97:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:AF:E6:E2:B1:75:D2:A1:33:CB:BF:A6:39:69:17:FC:48:0F:2D:37 X509v3 Authority Key Identifier: keyid:C0:D7:02:8C:0F:A6:28:34:8A:E2:24:5D:D0:CC:02:D3:C5:DC:B3:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C0D7028C0FA628348AE2245DD0CC02D3C5DCB3F9.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a3a2f34382d3438203d3e20313437313337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:46a0::/48 Signature Algorithm: sha256WithRSAEncryption 58:a2:3a:7d:17:12:95:01:54:e0:65:4c:04:dd:6f:65:97:52: 94:fb:84:5a:f5:4c:93:59:fa:a8:1a:5e:6e:a5:12:47:7e:c9: af:20:cb:e9:2e:93:61:25:31:ff:f3:fa:70:8b:c3:ec:d2:80: 07:76:d4:9f:37:95:1d:a7:ea:18:c8:ec:d7:84:c8:66:c3:31: b1:83:bf:1c:f1:f6:6b:81:86:95:5a:d7:ba:cb:9f:c3:e8:81: bb:5b:83:b4:58:39:18:64:05:8f:38:44:0b:90:ab:f9:f9:b6: 5b:04:bb:50:11:97:d7:f4:d2:56:fa:b7:f8:66:28:bb:22:f9: 7e:92:40:eb:a7:a3:9b:77:0c:6f:35:d9:7f:9b:3b:42:96:13: af:dc:a8:63:1b:9d:e5:bd:bf:df:ea:12:2f:a4:0f:1f:94:b8: 54:70:e2:23:13:e7:a0:52:3a:76:18:47:e0:13:07:81:85:61: cf:b5:09:3d:3a:8b:c1:fb:04:c1:38:cf:91:3f:7c:08:45:7c: 76:45:dc:82:32:fe:b3:1d:c7:6a:5c:99:b3:d6:50:17:f5:aa: 9d:af:bc:05:8e:06:9a:d6:ef:1c:f9:c4:92:62:0a:95:4d:72: 16:2a:5b:ac:c9:21:2c:aa:b0:02:62:dd:1d:89:25:45:77:22: 35:77:cd:d1 -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgIUVC0WVCi3Ah2ZJ6q5piqYsupeXmgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzBENzAyOEMwRkE2MjgzNDhBRTIyNDVERDBDQzAyRDND NURDQjNGOTAeFw0yNjA1MDMwMjIxNDNaFw0yNzA1MDIwMjI2NDNaMDMxMTAvBgNV BAMTKEM3QUZFNkUyQjE3NUQyQTEzM0NCQkZBNjM5NjkxN0ZDNDgwRjJEMzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCjxp2mcb3znF87RZvzfyxMG1Y4 CzL0kLGnve4zMGN1GJM3MS9nWbqsaFE8ryLAu/W+4jpvXrwN1JAW6/14aNPjeIvo nsxEUCVwtEeDjLXwpDBYhT7k+m8ikcHm3NV7W4+umqQ0xKW8WYabW9fSsiSuxDm4 Zh7NzI24LyG/wvShHw8i83O/TW8xC9mxr8oys/LfHNJLnRBKomdLd2iaG/kx6gBf 4Mu2tqCysSTpaQl9woH63h3Wka7TpBv0/DAlPZfM9AFwd2FLutNqT5xe5eClAdGp 3KWR0blfkS/rpiajcPqawJTwmqzKcJ60ndUCopV7R2uYH+9FcTBgMTAgAJc5AgMB AAGjggI1MIICMTAdBgNVHQ4EFgQUx6/m4rF10qEzy7+mOWkX/EgPLTcwHwYDVR0j BBgwFoAUwNcCjA+mKDSK4iRd0MwC08Xcs/kwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v M2E2NjVjMzItNmRhZi00NzJiLWJjZTYtMzE3ZDVkNmM3ODllLzAvQzBENzAyOEMw RkE2MjgzNDhBRTIyNDVERDBDQzAyRDNDNURDQjNGOS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9DMEQ3MDI4QzBGQTYyODM0OEFFMjI0NUREMENDMDJEM0M1RENC M0Y5LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzNhNjY1YzMyLTZkYWYtNDcyYi1i Y2U2LTMxN2Q1ZDZjNzg5ZS8wLzMyMzQzMDMwM2EzNDM2NjEzMDNhM2EyZjM0Mzgy ZDM0MzgyMDNkM2UyMDMxMzQzNzMxMzMzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQARqAAADANBgkq hkiG9w0BAQsFAAOCAQEAWKI6fRcSlQFU4GVMBN1vZZdSlPuEWvVMk1n6qBpebqUS R37JryDL6S6TYSUx//P6cIvD7NKAB3bUnzeVHafqGMjs14TIZsMxsYO/HPH2a4GG lVrXusufw+iBu1uDtFg5GGQFjzhEC5Cr+fm2WwS7UBGX1/TSVvq3+GYouyL5fpJA 66ejm3cMbzXZf5s7QpYTr9yoYxud5b2/3+oSL6QPH5S4VHDiIxPnoFI6dhhH4BMH gYVhz7UJPTqLwfsEwTjPkT98CEV8dkXcgjL+sx3HalyZs9ZQF/Wqna+8BY4Gmtbv HPnEkmIKlU1yFipbrMkhLKqwAmLdHYklRXciNXfN0Q== -----END CERTIFICATE-----Generated at Wed May 13 08:10:25 2026 by rpki-client