$ rpki-client -vvf rpki-rsync.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/323430353a616163303a3232313a3a2f34382d3438203d3e20313339393730.roa File: 323430353a616163303a3232313a3a2f34382d3438203d3e20313339393730.roa (raw, json) Hash identifier: AImEpLaZlZCowmT3C3g+xQPkvrTnQt/TzobixD36XlE= Subject key identifier: 22:43:15:19:26:66:BA:53:08:BB:1D:8B:9C:A7:33:4D:E7:F9:AE:01 Certificate issuer: /CN=0A024462FFDA7E26E5D36661AAADE2C601D064F0 Certificate serial: 2489F9ABCC6872390E42661DED874A457FBF6B7A Authority key identifier: 0A:02:44:62:FF:DA:7E:26:E5:D3:66:61:AA:AD:E2:C6:01:D0:64:F0 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/0A024462FFDA7E26E5D36661AAADE2C601D064F0.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/323430353a616163303a3232313a3a2f34382d3438203d3e20313339393730.roa Signing time: Sun 03 May 2026 02:28:19 +0000 ROA not before: Sun 03 May 2026 02:23:19 +0000 ROA not after: Sun 02 May 2027 02:28:19 +0000 asID: 139970 IP address blocks: 2405:aac0:221::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/0A024462FFDA7E26E5D36661AAADE2C601D064F0.crl rsync://rpki-rsync.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/0A024462FFDA7E26E5D36661AAADE2C601D064F0.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/0A024462FFDA7E26E5D36661AAADE2C601D064F0.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 22:48:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:89:f9:ab:cc:68:72:39:0e:42:66:1d:ed:87:4a:45:7f:bf:6b:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0A024462FFDA7E26E5D36661AAADE2C601D064F0 Validity Not Before: May 3 02:23:19 2026 GMT Not After : May 2 02:28:19 2027 GMT Subject: CN=224315192666BA5308BB1D8B9CA7334DE7F9AE01 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:76:b6:a1:8d:18:de:15:3d:0d:2a:e1:fa:84: c6:b8:04:13:32:7a:2f:d9:f7:ce:d4:7a:ae:70:d8: d1:fd:6e:ab:42:11:dc:10:ec:0b:39:f7:68:dd:6d: 6d:33:84:ed:f5:56:7c:04:7c:a1:82:c9:6d:ca:eb: de:a4:de:26:96:14:63:7b:5a:c0:78:8d:c8:2c:c2: 5c:27:4f:7b:08:5a:14:dc:9c:f8:16:80:67:06:66: 7e:33:54:cf:0f:49:8a:3e:58:a6:73:d3:df:2b:ab: 82:aa:dc:31:52:49:3d:75:9f:9e:a5:50:f7:a5:38: eb:2a:6c:8f:1c:d1:00:7c:c2:9a:bd:d9:87:ee:72: 6b:29:18:8c:4e:5e:b7:a7:d8:2a:0c:f8:79:18:50: 9a:3a:6f:a8:ee:84:e7:e1:3a:da:41:80:12:33:18: ed:31:d6:36:c0:51:03:e2:7d:de:e4:69:a9:ed:71: b5:34:c1:5b:47:31:e2:0f:b7:62:83:8c:4e:c4:64: 54:e0:24:8f:b1:53:bf:00:9c:9e:e0:49:97:45:8a: 1d:36:81:23:81:cd:ac:9b:4c:68:b4:ee:92:27:b9: 03:db:cc:ba:7b:fb:2f:69:bd:e0:95:c0:1c:7b:69: 97:13:91:33:df:16:f8:79:d5:d5:5b:79:9a:e3:6f: d2:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:43:15:19:26:66:BA:53:08:BB:1D:8B:9C:A7:33:4D:E7:F9:AE:01 X509v3 Authority Key Identifier: keyid:0A:02:44:62:FF:DA:7E:26:E5:D3:66:61:AA:AD:E2:C6:01:D0:64:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/0A024462FFDA7E26E5D36661AAADE2C601D064F0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/0A024462FFDA7E26E5D36661AAADE2C601D064F0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/323430353a616163303a3232313a3a2f34382d3438203d3e20313339393730.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:aac0:221::/48 Signature Algorithm: sha256WithRSAEncryption 51:c7:09:67:ca:23:87:27:42:67:1e:5d:23:b0:6f:03:df:60: 4b:f9:80:81:18:fd:f9:cf:99:3b:11:b7:2b:32:14:2d:d2:a1: e2:66:10:b9:56:f1:88:72:be:a4:f7:bb:c3:be:b8:e5:47:98: a2:21:4e:60:e5:c0:b8:20:52:24:b7:90:15:3f:28:da:a3:a3: b7:ce:af:83:f3:a6:71:36:2c:b2:1e:57:9b:c3:2f:51:d7:ea: 46:9f:c3:ad:24:93:9d:bd:25:cc:72:b2:fb:58:ca:74:1e:cf: 82:82:6e:0f:f6:c9:23:76:62:ad:9e:44:ad:28:a9:71:78:7d: df:f7:cf:bb:0d:1f:49:27:ee:cf:3c:29:9d:1e:47:e3:12:b9: 06:02:bf:c5:99:7d:7a:fb:ff:de:f4:df:49:a5:30:b3:d4:76: 13:f4:6d:c6:26:5b:b1:f6:8d:7e:6f:27:47:73:a5:8f:09:20: bc:ad:16:17:66:78:d5:05:24:14:01:e0:fb:91:58:df:cd:08: 85:92:76:af:8d:a8:98:88:a9:14:eb:0b:bf:06:ef:ba:4f:ea: 48:11:54:24:b4:f2:59:e9:23:d0:b9:8b:49:49:f7:57:b7:43: 67:19:04:44:67:52:ea:62:4b:2b:63:89:2f:80:ac:d4:25:13: d5:56:30:8b -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUJIn5q8xocjkOQmYd7YdKRX+/a3owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEEwMjQ0NjJGRkRBN0UyNkU1RDM2NjYxQUFBREUyQzYw MUQwNjRGMDAeFw0yNjA1MDMwMjIzMTlaFw0yNzA1MDIwMjI4MTlaMDMxMTAvBgNV BAMTKDIyNDMxNTE5MjY2NkJBNTMwOEJCMUQ4QjlDQTczMzRERTdGOUFFMDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDWdrahjRjeFT0NKuH6hMa4BBMy ei/Z987Ueq5w2NH9bqtCEdwQ7As592jdbW0zhO31VnwEfKGCyW3K696k3iaWFGN7 WsB4jcgswlwnT3sIWhTcnPgWgGcGZn4zVM8PSYo+WKZz098rq4Kq3DFSST11n56l UPelOOsqbI8c0QB8wpq92YfucmspGIxOXren2CoM+HkYUJo6b6juhOfhOtpBgBIz GO0x1jbAUQPifd7kaantcbU0wVtHMeIPt2KDjE7EZFTgJI+xU78AnJ7gSZdFih02 gSOBzaybTGi07pInuQPbzLp7+y9pveCVwBx7aZcTkTPfFvh51dVbeZrjb9KPAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUIkMVGSZmulMIux2LnKczTef5rgEwHwYDVR0j BBgwFoAUCgJEYv/afibl02Zhqq3ixgHQZPAwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v M2RlZGMwMzMtY2Q0ZC00NjIwLTkzNzItZTZlMDM5ZmMwNmI5LzAvMEEwMjQ0NjJG RkRBN0UyNkU1RDM2NjYxQUFBREUyQzYwMUQwNjRGMC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8wQTAyNDQ2MkZGREE3RTI2RTVEMzY2NjFBQUFERTJDNjAxRDA2 NEYwLmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUFBzALhoGLcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzNkZWRjMDMzLWNkNGQtNDYyMC05 MzcyLWU2ZTAzOWZjMDZiOS8wLzMyMzQzMDM1M2E2MTYxNjMzMDNhMzIzMjMxM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM5MzkzNzMwLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAWq wAIhMA0GCSqGSIb3DQEBCwUAA4IBAQBRxwlnyiOHJ0JnHl0jsG8D32BL+YCBGP35 z5k7EbcrMhQt0qHiZhC5VvGIcr6k97vDvrjlR5iiIU5g5cC4IFIkt5AVPyjao6O3 zq+D86ZxNiyyHlebwy9R1+pGn8OtJJOdvSXMcrL7WMp0Hs+Cgm4P9skjdmKtnkSt KKlxeH3f98+7DR9JJ+7PPCmdHkfjErkGAr/FmX16+//e9N9JpTCz1HYT9G3GJlux 9o1+bydHc6WPCSC8rRYXZnjVBSQUAeD7kVjfzQiFknavjaiYiKkU6wu/Bu+6T+pI EVQktPJZ6SPQuYtJSfdXt0NnGQREZ1LqYksrY4kvgKzUJRPVVjCL -----END CERTIFICATE-----Generated at Wed May 13 10:20:12 2026 by rpki-client