$ rpki-client -vvf rpki-rsync.idnic.net/repo/3fe35faa-ed2b-4271-b48c-4ea21c309352/0/323430323a636438303a3a2f33322d3438203d3e203633383835.roa File: 323430323a636438303a3a2f33322d3438203d3e203633383835.roa (raw, json) Hash identifier: 8mfpAqlBNjaIkK/YqdqwM4IvfsvZ409bkNBx3HDJzaQ= Subject key identifier: 72:76:5E:52:E5:93:8E:AF:22:D9:55:0A:ED:4B:25:56:73:53:AC:A2 Certificate issuer: /CN=6C89F6F9E6A5187BE1085453807F7ABEE83C27BF Certificate serial: 2D51173B97FECA597C70CEE8CFAE8308B13D2DB1 Authority key identifier: 6C:89:F6:F9:E6:A5:18:7B:E1:08:54:53:80:7F:7A:BE:E8:3C:27:BF Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/6C89F6F9E6A5187BE1085453807F7ABEE83C27BF.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/3fe35faa-ed2b-4271-b48c-4ea21c309352/0/323430323a636438303a3a2f33322d3438203d3e203633383835.roa Signing time: Sun 03 May 2026 02:28:42 +0000 ROA not before: Sun 03 May 2026 02:23:42 +0000 ROA not after: Sun 02 May 2027 02:28:42 +0000 asID: 63885 IP address blocks: 2402:cd80::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/3fe35faa-ed2b-4271-b48c-4ea21c309352/0/6C89F6F9E6A5187BE1085453807F7ABEE83C27BF.crl rsync://rpki-rsync.idnic.net/repo/3fe35faa-ed2b-4271-b48c-4ea21c309352/0/6C89F6F9E6A5187BE1085453807F7ABEE83C27BF.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/6C89F6F9E6A5187BE1085453807F7ABEE83C27BF.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 20:18:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:51:17:3b:97:fe:ca:59:7c:70:ce:e8:cf:ae:83:08:b1:3d:2d:b1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6C89F6F9E6A5187BE1085453807F7ABEE83C27BF Validity Not Before: May 3 02:23:42 2026 GMT Not After : May 2 02:28:42 2027 GMT Subject: CN=72765E52E5938EAF22D9550AED4B25567353ACA2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:33:2e:64:d9:01:23:3b:12:76:d5:5b:0c:1b: 0b:1c:29:63:7b:07:2c:97:60:6f:bc:31:1a:8f:61: e2:7f:76:36:ed:88:4b:29:eb:52:cb:94:0b:f0:53: 56:61:0c:dd:0d:b1:60:d3:59:a3:07:78:84:47:e4: 19:26:f5:25:23:db:a0:53:6e:cc:b9:b6:08:8e:1c: 55:55:6e:21:f4:96:c7:16:2e:ba:71:e3:7d:88:47: 38:c7:3f:b3:11:77:d3:d1:da:0d:df:68:2d:c8:7c: f0:59:1b:7b:5c:4c:46:d7:5b:96:af:da:2c:8b:4b: ba:1e:57:41:53:c5:f0:7a:19:d4:94:cd:6b:4f:a8: 08:95:c0:14:ee:3d:f9:a0:59:0b:10:75:bb:1c:55: 8c:00:34:6e:9b:5a:ed:30:33:52:f9:60:10:df:0e: 07:bf:c9:d7:a0:d4:24:5a:7c:36:d7:c3:2b:f1:a4: 0f:00:cc:d7:02:77:63:c3:8a:95:74:ba:5a:39:a5: b7:55:89:27:10:f4:92:87:b5:bd:ea:f7:90:69:62: 6f:4e:19:58:a5:ce:b9:49:f6:83:d9:f1:3e:9b:20: 3b:6b:fc:8e:f3:8d:c6:9a:0f:60:c6:a3:d0:42:49: 0a:c6:a5:36:54:0d:83:6d:dc:44:c7:40:e2:8b:62: e6:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:76:5E:52:E5:93:8E:AF:22:D9:55:0A:ED:4B:25:56:73:53:AC:A2 X509v3 Authority Key Identifier: keyid:6C:89:F6:F9:E6:A5:18:7B:E1:08:54:53:80:7F:7A:BE:E8:3C:27:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/3fe35faa-ed2b-4271-b48c-4ea21c309352/0/6C89F6F9E6A5187BE1085453807F7ABEE83C27BF.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/6C89F6F9E6A5187BE1085453807F7ABEE83C27BF.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/3fe35faa-ed2b-4271-b48c-4ea21c309352/0/323430323a636438303a3a2f33322d3438203d3e203633383835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:cd80::/32 Signature Algorithm: sha256WithRSAEncryption 99:ef:c4:f3:52:0c:54:2b:bd:20:f6:1e:46:91:57:ad:42:81: 51:68:99:95:b6:39:08:c7:9b:d3:ee:0d:a8:eb:5e:26:92:d7: 2b:ce:d1:8e:2f:c3:fc:bb:46:a7:46:bc:04:95:3b:81:d3:1b: 8e:e6:8e:21:96:34:3b:b0:dc:07:7e:38:96:83:61:7a:da:8d: 02:4f:a1:54:ae:f9:34:dc:be:df:88:f7:07:00:66:64:28:e7: 3c:03:5e:85:55:13:b9:a5:70:d2:1d:f2:32:86:e8:0e:db:f4: 88:21:bd:ac:c9:58:5a:7c:01:98:ff:e9:22:00:f1:5d:c7:31: 86:70:eb:07:82:d9:65:ee:f4:fa:44:35:82:76:2a:f4:3b:07: 0c:db:a5:dc:f1:87:7e:b2:6a:13:11:dc:bf:3e:8b:a4:33:9d: 8a:21:95:db:70:98:11:67:f3:ed:0e:f5:47:4c:80:3d:49:22: a7:f8:aa:21:7f:f9:9f:f2:42:39:65:a6:4b:f5:07:c1:bc:52: bb:be:29:a6:0b:b0:89:80:44:8f:97:12:ce:44:e1:1f:a8:8a: 94:de:aa:8a:2e:54:77:ae:e1:c4:2a:00:a3:fd:aa:e0:7a:9a: 18:11:d4:59:e7:a6:58:44:ce:42:be:44:81:62:aa:8f:c6:09: 3a:a3:76:f6 -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIULVEXO5f+yll8cM7oz66DCLE9LbEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkM4OUY2RjlFNkE1MTg3QkUxMDg1NDUzODA3RjdBQkVF ODNDMjdCRjAeFw0yNjA1MDMwMjIzNDJaFw0yNzA1MDIwMjI4NDJaMDMxMTAvBgNV BAMTKDcyNzY1RTUyRTU5MzhFQUYyMkQ5NTUwQUVENEIyNTU2NzM1M0FDQTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDeMy5k2QEjOxJ21VsMGwscKWN7 ByyXYG+8MRqPYeJ/djbtiEsp61LLlAvwU1ZhDN0NsWDTWaMHeIRH5Bkm9SUj26BT bsy5tgiOHFVVbiH0lscWLrpx432IRzjHP7MRd9PR2g3faC3IfPBZG3tcTEbXW5av 2iyLS7oeV0FTxfB6GdSUzWtPqAiVwBTuPfmgWQsQdbscVYwANG6bWu0wM1L5YBDf Dge/ydeg1CRafDbXwyvxpA8AzNcCd2PDipV0ulo5pbdViScQ9JKHtb3q95BpYm9O GVilzrlJ9oPZ8T6bIDtr/I7zjcaaD2DGo9BCSQrGpTZUDYNt3ETHQOKLYub9AgMB AAGjggIxMIICLTAdBgNVHQ4EFgQUcnZeUuWTjq8i2VUK7UslVnNTrKIwHwYDVR0j BBgwFoAUbIn2+ealGHvhCFRTgH96vug8J78wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v M2ZlMzVmYWEtZWQyYi00MjcxLWI0OGMtNGVhMjFjMzA5MzUyLzAvNkM4OUY2RjlF NkE1MTg3QkUxMDg1NDUzODA3RjdBQkVFODNDMjdCRi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS82Qzg5RjZGOUU2QTUxODdCRTEwODU0NTM4MDdGN0FCRUU4M0My N0JGLmNlcjCBoQYIKwYBBQUHAQsEgZQwgZEwgY4GCCsGAQUFBzALhoGBcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzNmZTM1ZmFhLWVkMmItNDI3MS1i NDhjLTRlYTIxYzMwOTM1Mi8wLzMyMzQzMDMyM2E2MzY0MzgzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDM2MzMzODM4MzUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkAs2AMA0GCSqGSIb3 DQEBCwUAA4IBAQCZ78TzUgxUK70g9h5GkVetQoFRaJmVtjkIx5vT7g2o614mktcr ztGOL8P8u0anRrwElTuB0xuO5o4hljQ7sNwHfjiWg2F62o0CT6FUrvk03L7fiPcH AGZkKOc8A16FVRO5pXDSHfIyhugO2/SIIb2syVhafAGY/+kiAPFdxzGGcOsHgtll 7vT6RDWCdir0OwcM26Xc8Yd+smoTEdy/PoukM52KIZXbcJgRZ/PtDvVHTIA9SSKn +Kohf/mf8kI5ZaZL9QfBvFK7vimmC7CJgESPlxLOROEfqIqU3qqKLlR3ruHEKgCj /argepoYEdRZ56ZYRM5CvkSBYqqPxgk6o3b2 -----END CERTIFICATE-----Generated at Wed May 13 04:19:03 2026 by rpki-client