$ rpki-client -vvf rpki-rsync.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/323430353a616163303a3232323a3a2f34382d3438203d3e20313339393439.roa File: 323430353a616163303a3232323a3a2f34382d3438203d3e20313339393439.roa (raw, json) Hash identifier: +/9yqVJ5UdWAp+ldudcLbH+/pVyZ/a8Xrgf00Kkb260= Subject key identifier: BC:7F:85:D5:6A:CA:16:53:F1:E2:40:56:9F:00:49:89:1D:76:AB:5C Certificate issuer: /CN=0A024462FFDA7E26E5D36661AAADE2C601D064F0 Certificate serial: 0D8A64CD7DC48561B6C9159F067373A786D2F08F Authority key identifier: 0A:02:44:62:FF:DA:7E:26:E5:D3:66:61:AA:AD:E2:C6:01:D0:64:F0 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/0A024462FFDA7E26E5D36661AAADE2C601D064F0.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/323430353a616163303a3232323a3a2f34382d3438203d3e20313339393439.roa Signing time: Sun 03 May 2026 02:28:12 +0000 ROA not before: Sun 03 May 2026 02:23:12 +0000 ROA not after: Sun 02 May 2027 02:28:12 +0000 asID: 139949 IP address blocks: 2405:aac0:222::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/0A024462FFDA7E26E5D36661AAADE2C601D064F0.crl rsync://rpki-rsync.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/0A024462FFDA7E26E5D36661AAADE2C601D064F0.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/0A024462FFDA7E26E5D36661AAADE2C601D064F0.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 22:48:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:8a:64:cd:7d:c4:85:61:b6:c9:15:9f:06:73:73:a7:86:d2:f0:8f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0A024462FFDA7E26E5D36661AAADE2C601D064F0 Validity Not Before: May 3 02:23:12 2026 GMT Not After : May 2 02:28:12 2027 GMT Subject: CN=BC7F85D56ACA1653F1E240569F0049891D76AB5C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:6f:d0:37:d7:3a:e1:e6:8b:df:31:bc:2b:98: d1:44:e1:c4:c6:fa:a6:4d:02:d8:8d:5b:1c:ad:ca: aa:02:36:09:71:d0:36:f1:c1:15:e6:b3:c1:de:34: 70:ee:09:4d:7d:47:40:e3:16:44:70:23:6c:73:7c: 94:f9:1e:1f:b0:78:43:a9:c5:f3:fa:3e:1b:a4:98: e8:cf:c9:0b:0a:86:c3:52:3b:0a:d2:8c:23:f2:5a: 9e:da:ba:32:df:99:60:53:34:4f:90:a9:e7:5e:cf: 58:35:4a:c9:02:49:b6:08:d1:a2:40:be:c8:a5:f1: 5c:f0:ff:3e:89:83:dc:33:fc:80:38:85:41:a7:57: 01:09:fe:1b:06:3f:d4:e0:c4:d3:58:f1:b9:4c:fd: 45:53:3f:49:80:38:92:bb:02:60:68:46:69:a0:33: 33:69:d3:eb:25:8d:c2:28:e2:dd:7e:9a:da:c9:d0: 67:47:6d:5a:50:06:de:36:a1:36:8b:40:6b:af:af: 21:8b:f9:9c:3f:8a:48:cb:4a:33:64:a3:29:44:32: a8:44:22:1b:8e:68:70:32:d0:cf:dc:a1:b6:70:73: 2a:b3:bd:95:f8:3c:02:4c:b2:d5:bc:96:fa:75:d8: fb:06:a6:8c:99:a1:08:50:01:2c:b1:cd:9e:02:6d: 75:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:7F:85:D5:6A:CA:16:53:F1:E2:40:56:9F:00:49:89:1D:76:AB:5C X509v3 Authority Key Identifier: keyid:0A:02:44:62:FF:DA:7E:26:E5:D3:66:61:AA:AD:E2:C6:01:D0:64:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/0A024462FFDA7E26E5D36661AAADE2C601D064F0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/0A024462FFDA7E26E5D36661AAADE2C601D064F0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/323430353a616163303a3232323a3a2f34382d3438203d3e20313339393439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:aac0:222::/48 Signature Algorithm: sha256WithRSAEncryption ac:4d:5b:28:98:10:be:66:c2:ae:d6:7d:58:55:37:ff:3a:f2: 80:a1:44:e7:6e:44:25:32:bc:c4:4d:62:68:15:c8:28:b7:e3: 35:46:97:37:4d:15:97:e9:9e:82:e4:8f:37:17:3e:15:96:09: 11:f1:52:25:84:fe:35:36:4f:49:50:5a:dc:fc:e6:34:07:6c: f1:4b:21:67:6c:01:67:09:d6:f2:f4:3b:6e:3b:77:28:b3:51: 76:aa:00:9e:10:fa:c1:bb:c8:56:39:a0:74:28:45:d5:1d:17: f7:4f:cb:61:0e:0b:cd:79:c0:62:e4:e7:34:26:a5:6c:b2:80: ef:8e:5d:da:69:13:7d:0a:bb:88:3b:94:b0:1a:aa:c0:c3:b9: f4:c0:2b:e2:01:fe:6c:e1:a5:9f:83:d0:78:bb:55:2e:68:4c: b9:43:ab:3e:cb:51:9b:48:af:46:01:d6:d9:1e:44:f8:ce:af: b2:fd:a1:9b:c1:32:69:fb:94:49:ba:62:c5:8a:17:e7:1c:2b: 64:d3:37:60:d5:e8:39:05:e8:f7:18:ab:4d:d6:9e:c0:40:90: 0f:f9:11:5f:e7:36:f4:14:d2:dd:44:7e:47:e0:b4:25:f6:90: 19:a4:8b:2c:a4:77:26:16:72:b8:87:40:f6:93:7a:03:db:d7: f5:c3:3b:ae -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUDYpkzX3EhWG2yRWfBnNzp4bS8I8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEEwMjQ0NjJGRkRBN0UyNkU1RDM2NjYxQUFBREUyQzYw MUQwNjRGMDAeFw0yNjA1MDMwMjIzMTJaFw0yNzA1MDIwMjI4MTJaMDMxMTAvBgNV BAMTKEJDN0Y4NUQ1NkFDQTE2NTNGMUUyNDA1NjlGMDA0OTg5MUQ3NkFCNUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCSb9A31zrh5ovfMbwrmNFE4cTG +qZNAtiNWxytyqoCNglx0DbxwRXms8HeNHDuCU19R0DjFkRwI2xzfJT5Hh+weEOp xfP6PhukmOjPyQsKhsNSOwrSjCPyWp7aujLfmWBTNE+Qqedez1g1SskCSbYI0aJA vsil8Vzw/z6Jg9wz/IA4hUGnVwEJ/hsGP9TgxNNY8blM/UVTP0mAOJK7AmBoRmmg MzNp0+sljcIo4t1+mtrJ0GdHbVpQBt42oTaLQGuvryGL+Zw/ikjLSjNkoylEMqhE IhuOaHAy0M/cobZwcyqzvZX4PAJMstW8lvp12PsGpoyZoQhQASyxzZ4CbXVfAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUvH+F1WrKFlPx4kBWnwBJiR12q1wwHwYDVR0j BBgwFoAUCgJEYv/afibl02Zhqq3ixgHQZPAwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v M2RlZGMwMzMtY2Q0ZC00NjIwLTkzNzItZTZlMDM5ZmMwNmI5LzAvMEEwMjQ0NjJG RkRBN0UyNkU1RDM2NjYxQUFBREUyQzYwMUQwNjRGMC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8wQTAyNDQ2MkZGREE3RTI2RTVEMzY2NjFBQUFERTJDNjAxRDA2 NEYwLmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUFBzALhoGLcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzNkZWRjMDMzLWNkNGQtNDYyMC05 MzcyLWU2ZTAzOWZjMDZiOS8wLzMyMzQzMDM1M2E2MTYxNjMzMDNhMzIzMjMyM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM5MzkzNDM5LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAWq wAIiMA0GCSqGSIb3DQEBCwUAA4IBAQCsTVsomBC+ZsKu1n1YVTf/OvKAoUTnbkQl MrzETWJoFcgot+M1Rpc3TRWX6Z6C5I83Fz4VlgkR8VIlhP41Nk9JUFrc/OY0B2zx SyFnbAFnCdby9DtuO3cos1F2qgCeEPrBu8hWOaB0KEXVHRf3T8thDgvNecBi5Oc0 JqVssoDvjl3aaRN9CruIO5SwGqrAw7n0wCviAf5s4aWfg9B4u1UuaEy5Q6s+y1Gb SK9GAdbZHkT4zq+y/aGbwTJp+5RJumLFihfnHCtk0zdg1eg5Bej3GKtN1p7AQJAP +RFf5zb0FNLdRH5H4LQl9pAZpIsspHcmFnK4h0D2k3oD29f1wzuu -----END CERTIFICATE-----Generated at Wed May 13 08:27:33 2026 by rpki-client