$ rpki-client -vvf rpki-rsync.idnic.net/repo/3e8950f0-3b14-4a6d-b30f-75379cb2ebce/0/323430333a343334303a3a2f33322d3332203d3e20313337333738.roa File: 323430333a343334303a3a2f33322d3332203d3e20313337333738.roa (raw, json) Hash identifier: 1dE/zpXNqMfI1ilfUn5DrrCSaXBhuo+1IUrzkuKY22o= Subject key identifier: 45:07:AD:0F:BA:CE:E8:05:AC:81:04:A3:E5:0D:C8:A4:A0:EC:CB:58 Certificate issuer: /CN=16FC1DF2D807E338985DE30932EA34E250228796 Certificate serial: 48C793319CDCC8CCD6F628B19DFAE09BB94151EC Authority key identifier: 16:FC:1D:F2:D8:07:E3:38:98:5D:E3:09:32:EA:34:E2:50:22:87:96 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/16FC1DF2D807E338985DE30932EA34E250228796.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/3e8950f0-3b14-4a6d-b30f-75379cb2ebce/0/323430333a343334303a3a2f33322d3332203d3e20313337333738.roa Signing time: Sun 03 May 2026 02:28:33 +0000 ROA not before: Sun 03 May 2026 02:23:33 +0000 ROA not after: Sun 02 May 2027 02:28:33 +0000 asID: 137378 IP address blocks: 2403:4340::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/3e8950f0-3b14-4a6d-b30f-75379cb2ebce/0/16FC1DF2D807E338985DE30932EA34E250228796.crl rsync://rpki-rsync.idnic.net/repo/3e8950f0-3b14-4a6d-b30f-75379cb2ebce/0/16FC1DF2D807E338985DE30932EA34E250228796.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/16FC1DF2D807E338985DE30932EA34E250228796.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 19:55:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:c7:93:31:9c:dc:c8:cc:d6:f6:28:b1:9d:fa:e0:9b:b9:41:51:ec Signature Algorithm: sha256WithRSAEncryption Issuer: CN=16FC1DF2D807E338985DE30932EA34E250228796 Validity Not Before: May 3 02:23:33 2026 GMT Not After : May 2 02:28:33 2027 GMT Subject: CN=4507AD0FBACEE805AC8104A3E50DC8A4A0ECCB58 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:3a:fd:5c:b7:f4:16:cc:35:35:bc:91:29:fc: 3b:f1:49:29:a7:08:79:78:73:16:92:59:dd:86:54: 5b:41:70:9f:6f:7a:16:33:47:ab:e8:69:af:1a:01: b6:d9:fe:8b:78:bc:a1:de:34:6d:94:5a:ec:f1:4d: 07:c4:73:04:f0:c7:31:28:f6:ae:fd:a0:23:24:ff: 80:92:97:79:3b:52:eb:26:3a:8c:59:dd:c1:19:5a: 05:fe:33:09:43:19:23:75:39:cc:f5:9d:a5:92:86: ba:a3:70:f8:0e:3d:ca:c4:1b:6a:ba:e8:23:22:55: ab:e8:cb:a7:cf:42:45:b2:d9:fb:f2:d5:4b:08:e2: 61:15:39:95:55:a7:9e:a5:9f:41:86:bd:22:33:9a: fa:29:56:f1:ef:fd:60:c6:f7:cb:fc:d0:9d:d3:f2: 89:8e:8b:ac:df:ce:37:ec:ad:a4:b7:88:d0:66:09: a9:5b:66:c0:5e:ba:2c:b6:6a:70:68:0d:29:a1:54: 23:68:c8:81:23:10:9c:3a:f4:d5:0c:12:51:d9:7b: 6a:f2:8f:42:65:4b:97:09:ed:83:2d:cf:7e:6a:00: c7:c6:0e:9d:35:90:4d:24:ac:20:09:5d:ca:4e:1b: 29:4b:c0:ee:29:45:41:16:37:3c:22:9b:98:8e:ca: bf:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:07:AD:0F:BA:CE:E8:05:AC:81:04:A3:E5:0D:C8:A4:A0:EC:CB:58 X509v3 Authority Key Identifier: keyid:16:FC:1D:F2:D8:07:E3:38:98:5D:E3:09:32:EA:34:E2:50:22:87:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/3e8950f0-3b14-4a6d-b30f-75379cb2ebce/0/16FC1DF2D807E338985DE30932EA34E250228796.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/16FC1DF2D807E338985DE30932EA34E250228796.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/3e8950f0-3b14-4a6d-b30f-75379cb2ebce/0/323430333a343334303a3a2f33322d3332203d3e20313337333738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:4340::/32 Signature Algorithm: sha256WithRSAEncryption 8a:50:68:17:15:30:06:f6:80:75:d6:48:f0:68:30:0c:3a:e8: 69:1f:35:fc:1e:dd:88:8a:79:dd:6f:3f:0a:17:6c:9a:54:2d: c8:fd:b8:03:67:32:3e:0d:51:ce:fa:6c:cb:49:af:5e:57:bd: 9e:d0:1b:76:95:7e:f6:99:46:4e:f0:c4:26:03:e3:56:7d:62: 60:70:c4:0d:ce:79:6a:f7:75:6a:6a:06:d9:e8:1b:30:15:93: 07:d3:1f:27:56:f6:90:7e:87:0b:96:57:1c:d2:c2:e4:74:f9: 7d:8b:68:3f:42:85:d2:b1:54:68:44:ea:74:a6:3d:37:ca:cc: d2:52:ec:34:b6:77:95:b9:d5:40:46:d4:25:fb:6a:45:10:1a: ed:48:99:09:fc:ae:84:da:82:d4:59:9c:a3:c7:a5:55:c3:3c: 78:08:ed:19:cc:33:30:bd:bd:a6:37:f9:82:8c:c6:f5:45:fb: 33:57:a4:dc:57:63:2a:d5:23:3a:d1:fd:6b:df:d2:99:fd:dd: ff:06:e0:de:e8:c2:1f:7f:bb:b7:9c:d5:b6:47:81:65:e8:2f: 14:42:9c:97:d4:71:79:78:b5:54:61:b4:48:25:fc:10:1e:26: 49:85:b6:19:95:32:1e:00:41:57:3a:a6:e6:53:35:10:d9:5e: 7c:e0:16:b4 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUSMeTMZzcyMzW9iixnfrgm7lBUewwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTZGQzFERjJEODA3RTMzODk4NURFMzA5MzJFQTM0RTI1 MDIyODc5NjAeFw0yNjA1MDMwMjIzMzNaFw0yNzA1MDIwMjI4MzNaMDMxMTAvBgNV BAMTKDQ1MDdBRDBGQkFDRUU4MDVBQzgxMDRBM0U1MERDOEE0QTBFQ0NCNTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDdOv1ct/QWzDU1vJEp/DvxSSmn CHl4cxaSWd2GVFtBcJ9vehYzR6voaa8aAbbZ/ot4vKHeNG2UWuzxTQfEcwTwxzEo 9q79oCMk/4CSl3k7UusmOoxZ3cEZWgX+MwlDGSN1Ocz1naWShrqjcPgOPcrEG2q6 6CMiVavoy6fPQkWy2fvy1UsI4mEVOZVVp56ln0GGvSIzmvopVvHv/WDG98v80J3T 8omOi6zfzjfsraS3iNBmCalbZsBeuiy2anBoDSmhVCNoyIEjEJw69NUMElHZe2ry j0JlS5cJ7YMtz35qAMfGDp01kE0krCAJXcpOGylLwO4pRUEWNzwim5iOyr8RAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQURQetD7rO6AWsgQSj5Q3IpKDsy1gwHwYDVR0j BBgwFoAUFvwd8tgH4ziYXeMJMuo04lAih5YwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v M2U4OTUwZjAtM2IxNC00YTZkLWIzMGYtNzUzNzljYjJlYmNlLzAvMTZGQzFERjJE ODA3RTMzODk4NURFMzA5MzJFQTM0RTI1MDIyODc5Ni5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8xNkZDMURGMkQ4MDdFMzM4OTg1REUzMDkzMkVBMzRFMjUwMjI4 Nzk2LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzNlODk1MGYwLTNiMTQtNGE2ZC1i MzBmLTc1Mzc5Y2IyZWJjZS8wLzMyMzQzMDMzM2EzNDMzMzQzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzMzNzMzMzczOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQDQ0AwDQYJKoZI hvcNAQELBQADggEBAIpQaBcVMAb2gHXWSPBoMAw66GkfNfwe3YiKed1vPwoXbJpU Lcj9uANnMj4NUc76bMtJr15XvZ7QG3aVfvaZRk7wxCYD41Z9YmBwxA3OeWr3dWpq BtnoGzAVkwfTHydW9pB+hwuWVxzSwuR0+X2LaD9ChdKxVGhE6nSmPTfKzNJS7DS2 d5W51UBG1CX7akUQGu1ImQn8roTagtRZnKPHpVXDPHgI7RnMMzC9vaY3+YKMxvVF +zNXpNxXYyrVIzrR/Wvf0pn93f8G4N7owh9/u7ec1bZHgWXoLxRCnJfUcXl4tVRh tEgl/BAeJkmFthmVMh4AQVc6puZTNRDZXnzgFrQ= -----END CERTIFICATE-----Generated at Wed May 13 09:57:41 2026 by rpki-client