$ rpki-client -vvf rpki-rsync.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/323430353a616163303a3232323a3a2f34382d3438203d3e20313339393730.roa File: 323430353a616163303a3232323a3a2f34382d3438203d3e20313339393730.roa (raw, json) Hash identifier: EednHd6/tC8rA1Q4FZEYjM/np8pZkcMMsYRhFqqrYbs= Subject key identifier: 67:C4:10:58:FC:71:43:BC:98:DC:08:F0:CE:64:C2:18:61:23:D3:58 Certificate issuer: /CN=0A024462FFDA7E26E5D36661AAADE2C601D064F0 Certificate serial: 3AAC24A161020F27983A0B575C3273763059A599 Authority key identifier: 0A:02:44:62:FF:DA:7E:26:E5:D3:66:61:AA:AD:E2:C6:01:D0:64:F0 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/0A024462FFDA7E26E5D36661AAADE2C601D064F0.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/323430353a616163303a3232323a3a2f34382d3438203d3e20313339393730.roa Signing time: Sun 03 May 2026 02:28:18 +0000 ROA not before: Sun 03 May 2026 02:23:18 +0000 ROA not after: Sun 02 May 2027 02:28:18 +0000 asID: 139970 IP address blocks: 2405:aac0:222::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/0A024462FFDA7E26E5D36661AAADE2C601D064F0.crl rsync://rpki-rsync.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/0A024462FFDA7E26E5D36661AAADE2C601D064F0.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/0A024462FFDA7E26E5D36661AAADE2C601D064F0.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 22:48:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:ac:24:a1:61:02:0f:27:98:3a:0b:57:5c:32:73:76:30:59:a5:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0A024462FFDA7E26E5D36661AAADE2C601D064F0 Validity Not Before: May 3 02:23:18 2026 GMT Not After : May 2 02:28:18 2027 GMT Subject: CN=67C41058FC7143BC98DC08F0CE64C2186123D358 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:90:24:49:b9:2b:ee:be:9c:63:91:02:6f:59: c3:c4:bf:65:0f:1a:c9:49:f8:63:5f:3d:d4:6a:4d: 67:f4:cc:fc:c5:25:5d:38:8e:a2:39:f9:fa:7a:d3: 60:0f:6a:b8:f2:64:9a:0d:e1:79:76:21:17:18:71: f3:ac:76:0a:f9:39:8a:ea:0b:9e:b9:d7:31:a3:70: f3:d0:c9:cc:08:58:de:e4:bd:5f:ef:07:9a:31:35: bf:df:89:f8:84:e6:76:02:a2:98:fa:3e:25:f9:92: a0:70:c0:24:82:41:da:6f:fe:74:8a:ea:c7:28:fd: bd:ba:a1:41:e6:ea:91:ad:5d:19:e9:6c:c4:0b:33: 62:be:c7:5c:46:e5:17:ee:62:f9:5e:56:4f:e9:5c: 6c:d4:52:f6:15:9c:f2:d0:5e:bd:9f:fa:f6:89:ce: 47:e0:4a:1b:a7:ef:26:ba:bc:95:7c:10:ea:06:b1: 73:97:ef:8a:7f:6c:82:d9:40:67:51:dc:e7:4b:25: 33:ff:ae:71:d9:43:1e:b1:fc:4a:1f:2a:04:40:32: dc:13:8a:1b:9b:9f:0a:9d:52:31:30:93:1d:11:fe: 78:cc:2d:d8:c7:46:65:6b:a3:11:cc:64:55:8e:1e: 1a:f3:f6:6b:ce:5a:1e:51:c0:0e:e7:63:55:98:69: 14:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:C4:10:58:FC:71:43:BC:98:DC:08:F0:CE:64:C2:18:61:23:D3:58 X509v3 Authority Key Identifier: keyid:0A:02:44:62:FF:DA:7E:26:E5:D3:66:61:AA:AD:E2:C6:01:D0:64:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/0A024462FFDA7E26E5D36661AAADE2C601D064F0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/0A024462FFDA7E26E5D36661AAADE2C601D064F0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/323430353a616163303a3232323a3a2f34382d3438203d3e20313339393730.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:aac0:222::/48 Signature Algorithm: sha256WithRSAEncryption 62:28:29:a5:d0:76:54:a5:f4:ee:93:ca:bb:f9:c3:04:43:2b: 95:f3:04:cd:52:df:eb:09:11:b2:6c:85:70:59:3e:85:dd:f8: 8f:44:f4:47:2f:e0:ba:86:41:38:da:46:ba:eb:4d:07:78:26: 47:b6:be:2c:47:7c:fd:69:8c:ea:d0:29:7e:92:ae:9c:b0:ad: 74:56:26:f1:29:d1:86:c5:b8:68:65:14:bc:f9:b5:b2:27:3d: da:61:b9:3a:21:e7:75:16:17:e8:ff:20:5c:73:5a:14:0e:63: 80:ec:27:14:c7:52:72:d2:2e:d0:44:0d:2b:27:8d:3f:d4:9c: 7d:82:aa:8b:41:b7:7d:65:45:c0:92:d5:fc:65:62:67:7e:62: 12:6f:e6:c4:73:b2:83:cd:ed:53:f7:15:46:bd:f2:6f:9c:70: 94:62:86:97:45:01:ad:63:cc:15:d6:22:e7:28:8d:d0:65:ac: e0:bf:3f:a6:fb:33:fc:6f:e3:e2:d3:50:01:aa:3f:49:2f:a9: 9d:99:bb:e6:21:81:07:d8:99:01:a3:ad:ad:97:6b:c5:06:69: d9:10:ea:9f:84:4c:81:21:15:1f:8d:97:02:58:54:f1:22:70: 05:3d:e7:43:2d:bd:87:00:b2:b2:2d:91:2b:9b:da:3c:77:35: f2:a4:46:50 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUOqwkoWECDyeYOgtXXDJzdjBZpZkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEEwMjQ0NjJGRkRBN0UyNkU1RDM2NjYxQUFBREUyQzYw MUQwNjRGMDAeFw0yNjA1MDMwMjIzMThaFw0yNzA1MDIwMjI4MThaMDMxMTAvBgNV BAMTKDY3QzQxMDU4RkM3MTQzQkM5OERDMDhGMENFNjRDMjE4NjEyM0QzNTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAkCRJuSvuvpxjkQJvWcPEv2UP GslJ+GNfPdRqTWf0zPzFJV04jqI5+fp602AParjyZJoN4Xl2IRcYcfOsdgr5OYrq C5651zGjcPPQycwIWN7kvV/vB5oxNb/fifiE5nYCopj6PiX5kqBwwCSCQdpv/nSK 6sco/b26oUHm6pGtXRnpbMQLM2K+x1xG5RfuYvleVk/pXGzUUvYVnPLQXr2f+vaJ zkfgShun7ya6vJV8EOoGsXOX74p/bILZQGdR3OdLJTP/rnHZQx6x/EofKgRAMtwT ihubnwqdUjEwkx0R/njMLdjHRmVroxHMZFWOHhrz9mvOWh5RwA7nY1WYaRRpAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUZ8QQWPxxQ7yY3AjwzmTCGGEj01gwHwYDVR0j BBgwFoAUCgJEYv/afibl02Zhqq3ixgHQZPAwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v M2RlZGMwMzMtY2Q0ZC00NjIwLTkzNzItZTZlMDM5ZmMwNmI5LzAvMEEwMjQ0NjJG RkRBN0UyNkU1RDM2NjYxQUFBREUyQzYwMUQwNjRGMC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8wQTAyNDQ2MkZGREE3RTI2RTVEMzY2NjFBQUFERTJDNjAxRDA2 NEYwLmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUFBzALhoGLcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzNkZWRjMDMzLWNkNGQtNDYyMC05 MzcyLWU2ZTAzOWZjMDZiOS8wLzMyMzQzMDM1M2E2MTYxNjMzMDNhMzIzMjMyM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM5MzkzNzMwLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAWq wAIiMA0GCSqGSIb3DQEBCwUAA4IBAQBiKCml0HZUpfTuk8q7+cMEQyuV8wTNUt/r CRGybIVwWT6F3fiPRPRHL+C6hkE42ka6600HeCZHtr4sR3z9aYzq0Cl+kq6csK10 VibxKdGGxbhoZRS8+bWyJz3aYbk6Ied1Fhfo/yBcc1oUDmOA7CcUx1Jy0i7QRA0r J40/1Jx9gqqLQbd9ZUXAktX8ZWJnfmISb+bEc7KDze1T9xVGvfJvnHCUYoaXRQGt Y8wV1iLnKI3QZazgvz+m+zP8b+Pi01ABqj9JL6mdmbvmIYEH2JkBo62tl2vFBmnZ EOqfhEyBIRUfjZcCWFTxInAFPedDLb2HALKyLZErm9o8dzXypEZQ -----END CERTIFICATE-----Generated at Wed May 13 10:20:15 2026 by rpki-client