$ rpki-client -vvf rpki-rsync.idnic.net/repo/40d34e77-6cf6-4187-9083-1c7a8819e965/0/323430353a663234303a3a2f33322d3332203d3e20313430333834.roa File: 323430353a663234303a3a2f33322d3332203d3e20313430333834.roa (raw, json) Hash identifier: j3CCIkkkxHu9Jvfxg5BBPTNs9de+9hMDr2iWt/LPgIg= Subject key identifier: 70:A7:FB:6D:F3:F7:52:87:B1:C7:DD:B8:AD:03:F0:92:3E:54:D2:9C Certificate issuer: /CN=AEDDC1D3A0B236A4228B8DDF480D7DB6061606D3 Certificate serial: 023051771DA54E67838DAFB0C4352DFD86DDE8C2 Authority key identifier: AE:DD:C1:D3:A0:B2:36:A4:22:8B:8D:DF:48:0D:7D:B6:06:16:06:D3 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AEDDC1D3A0B236A4228B8DDF480D7DB6061606D3.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/40d34e77-6cf6-4187-9083-1c7a8819e965/0/323430353a663234303a3a2f33322d3332203d3e20313430333834.roa Signing time: Sun 03 May 2026 02:28:56 +0000 ROA not before: Sun 03 May 2026 02:23:56 +0000 ROA not after: Sun 02 May 2027 02:28:56 +0000 asID: 140384 IP address blocks: 2405:f240::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/40d34e77-6cf6-4187-9083-1c7a8819e965/0/AEDDC1D3A0B236A4228B8DDF480D7DB6061606D3.crl rsync://rpki-rsync.idnic.net/repo/40d34e77-6cf6-4187-9083-1c7a8819e965/0/AEDDC1D3A0B236A4228B8DDF480D7DB6061606D3.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AEDDC1D3A0B236A4228B8DDF480D7DB6061606D3.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 01:06:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:30:51:77:1d:a5:4e:67:83:8d:af:b0:c4:35:2d:fd:86:dd:e8:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AEDDC1D3A0B236A4228B8DDF480D7DB6061606D3 Validity Not Before: May 3 02:23:56 2026 GMT Not After : May 2 02:28:56 2027 GMT Subject: CN=70A7FB6DF3F75287B1C7DDB8AD03F0923E54D29C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:d2:be:2a:98:2f:1c:4d:78:db:e5:03:da:54: 9a:0e:47:13:a6:f0:d3:d2:3e:f5:a3:80:ec:f5:25: 30:09:21:90:fb:24:60:b7:ea:a7:f4:21:0f:34:8f: 10:44:47:7f:a8:69:0d:38:1f:72:66:30:1f:6d:eb: 73:71:a5:53:d1:53:a5:be:1a:03:87:02:f8:d3:32: cc:de:20:e9:f0:3d:ad:4b:c0:b2:33:04:03:1f:cc: dd:43:74:6f:68:f6:88:3b:3a:02:d7:b2:f5:49:c6: 55:40:b7:7d:80:2b:07:9c:2a:7a:56:6b:7e:10:32: b3:9c:55:b4:cc:90:29:e6:53:b3:77:79:d6:69:33: 2a:38:6f:1e:b2:e8:5c:6c:07:d6:c1:3b:b7:57:6f: 02:7b:a8:47:93:f2:41:fc:e4:b8:0c:62:09:56:b7: e7:4b:c4:7b:60:46:3b:31:d7:4c:a0:b3:84:d9:e7: d8:56:5a:db:0d:8a:ae:38:87:f1:7f:2f:31:a0:52: 19:ff:e6:5c:47:ab:9a:6c:4d:99:cd:d9:49:c6:d1: 61:20:f0:0e:e4:18:d9:9a:b2:fe:93:e3:4c:af:f8: 0c:6f:88:85:95:75:f7:c7:08:39:85:81:cc:2e:4c: dd:54:1a:ae:d2:a8:1f:b8:e3:41:7c:86:9a:42:b4: 8e:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:A7:FB:6D:F3:F7:52:87:B1:C7:DD:B8:AD:03:F0:92:3E:54:D2:9C X509v3 Authority Key Identifier: keyid:AE:DD:C1:D3:A0:B2:36:A4:22:8B:8D:DF:48:0D:7D:B6:06:16:06:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/40d34e77-6cf6-4187-9083-1c7a8819e965/0/AEDDC1D3A0B236A4228B8DDF480D7DB6061606D3.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AEDDC1D3A0B236A4228B8DDF480D7DB6061606D3.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/40d34e77-6cf6-4187-9083-1c7a8819e965/0/323430353a663234303a3a2f33322d3332203d3e20313430333834.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:f240::/32 Signature Algorithm: sha256WithRSAEncryption 44:1b:c3:3d:e7:d6:45:5b:48:be:f5:d7:96:6c:15:5f:c9:21: 39:aa:46:fa:fe:45:d3:1c:e1:7f:97:f8:ae:98:58:a3:02:5b: ff:57:91:cf:0e:b2:ba:de:94:dc:4c:56:1d:5c:f3:94:59:9c: 16:bc:31:78:4e:b1:de:5d:c5:95:66:06:8f:3b:80:e5:d3:9b: 0e:f6:34:c6:1f:5d:8c:58:b3:46:4a:6d:c9:77:1b:fd:bb:9d: 6e:f6:7f:f6:1f:ac:5a:14:24:73:be:ca:f0:59:19:d4:dd:d4: 9e:ed:35:16:ba:26:a6:8c:16:54:1d:2a:63:bc:6b:35:c4:81: 89:71:ff:15:d6:13:4b:ed:64:eb:7b:d9:c5:66:59:21:bd:dd: c7:23:29:60:e8:7c:f3:90:36:31:cc:56:53:25:94:d8:77:68: bd:72:53:5f:77:41:1b:d8:17:8c:2d:69:a7:ab:2f:a1:21:3c: fd:da:3f:55:ab:7e:a1:59:e2:ee:96:4b:77:19:05:e2:e7:34: 5c:7e:02:bd:93:16:56:b9:a4:9b:99:ef:c4:23:07:bf:34:b9: 83:a2:3b:1c:1a:65:99:8d:12:e3:c4:25:ad:e5:7d:79:a7:9b: 22:1e:97:04:5e:fc:f0:f2:cd:e3:f0:5c:e4:0a:19:aa:f3:ac: 2c:55:db:a2 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUAjBRdx2lTmeDja+wxDUt/Ybd6MIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUVEREMxRDNBMEIyMzZBNDIyOEI4RERGNDgwRDdEQjYw NjE2MDZEMzAeFw0yNjA1MDMwMjIzNTZaFw0yNzA1MDIwMjI4NTZaMDMxMTAvBgNV BAMTKDcwQTdGQjZERjNGNzUyODdCMUM3RERCOEFEMDNGMDkyM0U1NEQyOUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDF0r4qmC8cTXjb5QPaVJoORxOm 8NPSPvWjgOz1JTAJIZD7JGC36qf0IQ80jxBER3+oaQ04H3JmMB9t63NxpVPRU6W+ GgOHAvjTMszeIOnwPa1LwLIzBAMfzN1DdG9o9og7OgLXsvVJxlVAt32AKwecKnpW a34QMrOcVbTMkCnmU7N3edZpMyo4bx6y6FxsB9bBO7dXbwJ7qEeT8kH85LgMYglW t+dLxHtgRjsx10ygs4TZ59hWWtsNiq44h/F/LzGgUhn/5lxHq5psTZnN2UnG0WEg 8A7kGNmasv6T40yv+AxviIWVdffHCDmFgcwuTN1UGq7SqB+440F8hppCtI6JAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUcKf7bfP3Uoexx924rQPwkj5U0pwwHwYDVR0j BBgwFoAUrt3B06CyNqQii43fSA19tgYWBtMwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NDBkMzRlNzctNmNmNi00MTg3LTkwODMtMWM3YTg4MTllOTY1LzAvQUVEREMxRDNB MEIyMzZBNDIyOEI4RERGNDgwRDdEQjYwNjE2MDZEMy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9BRUREQzFEM0EwQjIzNkE0MjI4QjhEREY0ODBEN0RCNjA2MTYw NkQzLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzQwZDM0ZTc3LTZjZjYtNDE4Ny05 MDgzLTFjN2E4ODE5ZTk2NS8wLzMyMzQzMDM1M2E2NjMyMzQzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzQzMDMzMzgzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQF8kAwDQYJKoZI hvcNAQELBQADggEBAEQbwz3n1kVbSL7115ZsFV/JITmqRvr+RdMc4X+X+K6YWKMC W/9Xkc8OsrrelNxMVh1c85RZnBa8MXhOsd5dxZVmBo87gOXTmw72NMYfXYxYs0ZK bcl3G/27nW72f/YfrFoUJHO+yvBZGdTd1J7tNRa6JqaMFlQdKmO8azXEgYlx/xXW E0vtZOt72cVmWSG93ccjKWDofPOQNjHMVlMllNh3aL1yU193QRvYF4wtaaerL6Eh PP3aP1WrfqFZ4u6WS3cZBeLnNFx+Ar2TFla5pJuZ78QjB780uYOiOxwaZZmNEuPE Ja3lfXmnmyIelwRe/PDyzePwXOQKGarzrCxV26I= -----END CERTIFICATE-----Generated at Wed May 13 14:13:55 2026 by rpki-client