$ rpki-client -vvf rpki-rsync.idnic.net/repo/41db3730-f499-449f-b6f2-7a5deb532b0c/0/323430333a316130303a343a3a2f34372d3437203d3e203435373233.roa File: 323430333a316130303a343a3a2f34372d3437203d3e203435373233.roa (raw, json) Hash identifier: kVXs9OKO5SWhYY8QAUmq6Wo0PmjBkNXoXhlgjZszj5Q= Subject key identifier: 00:A3:F3:54:1C:A4:2E:8E:4B:E0:81:00:13:C5:54:31:D5:92:12:94 Certificate issuer: /CN=2535F6A9A65395B5881ADB0B432A16679C88CC60 Certificate serial: 26CD89B4EF19A393D70501BD4CA0DBB3468659D1 Authority key identifier: 25:35:F6:A9:A6:53:95:B5:88:1A:DB:0B:43:2A:16:67:9C:88:CC:60 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2535F6A9A65395B5881ADB0B432A16679C88CC60.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/41db3730-f499-449f-b6f2-7a5deb532b0c/0/323430333a316130303a343a3a2f34372d3437203d3e203435373233.roa Signing time: Sun 03 May 2026 02:29:05 +0000 ROA not before: Sun 03 May 2026 02:24:05 +0000 ROA not after: Sun 02 May 2027 02:29:05 +0000 asID: 45723 IP address blocks: 2403:1a00:4::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/41db3730-f499-449f-b6f2-7a5deb532b0c/0/2535F6A9A65395B5881ADB0B432A16679C88CC60.crl rsync://rpki-rsync.idnic.net/repo/41db3730-f499-449f-b6f2-7a5deb532b0c/0/2535F6A9A65395B5881ADB0B432A16679C88CC60.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2535F6A9A65395B5881ADB0B432A16679C88CC60.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 06:34:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:cd:89:b4:ef:19:a3:93:d7:05:01:bd:4c:a0:db:b3:46:86:59:d1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2535F6A9A65395B5881ADB0B432A16679C88CC60 Validity Not Before: May 3 02:24:05 2026 GMT Not After : May 2 02:29:05 2027 GMT Subject: CN=00A3F3541CA42E8E4BE0810013C55431D5921294 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:68:7e:a0:99:4d:e6:93:f8:ef:9a:b0:d3:9d: d4:a4:51:43:1a:99:03:64:48:09:a6:38:48:e8:fb: 7b:88:46:6c:32:e0:d3:c1:4f:5f:36:64:54:b2:7f: 1a:5e:e6:08:f8:1b:c9:f1:b5:6c:e5:4c:3b:6b:da: 28:1f:2c:20:8a:d6:0e:ff:15:28:e2:92:25:02:6e: 1f:50:ec:cf:ed:77:a6:62:21:ee:4d:39:d3:fe:b2: aa:fc:b0:f7:38:fa:a5:74:9f:5d:43:a8:d7:ee:08: d9:f4:95:2c:56:dd:d2:56:06:a2:17:61:f2:8c:bc: f0:9e:67:dd:d2:cd:f2:37:e6:84:f8:3c:84:18:4c: 44:04:b9:d9:bb:85:8e:aa:d0:22:bb:ca:fa:48:91: a8:a8:ab:10:0f:de:6c:94:7a:d7:07:b6:03:22:c0: 1b:bc:df:99:c4:12:e6:57:28:86:25:98:dc:66:95: f8:89:3e:90:41:0b:e7:df:c0:f2:e5:61:8b:a6:10: 78:aa:af:19:b4:b4:11:79:53:a6:d3:e2:34:c7:5d: 1b:c8:ac:c5:6e:29:f1:34:20:70:7a:1f:21:60:a5: 09:15:e3:8d:0b:99:07:15:a6:45:28:84:ef:0f:c2: 86:1e:a9:02:7e:69:83:af:67:4d:ef:f4:24:a4:12: e4:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:A3:F3:54:1C:A4:2E:8E:4B:E0:81:00:13:C5:54:31:D5:92:12:94 X509v3 Authority Key Identifier: keyid:25:35:F6:A9:A6:53:95:B5:88:1A:DB:0B:43:2A:16:67:9C:88:CC:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/41db3730-f499-449f-b6f2-7a5deb532b0c/0/2535F6A9A65395B5881ADB0B432A16679C88CC60.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2535F6A9A65395B5881ADB0B432A16679C88CC60.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/41db3730-f499-449f-b6f2-7a5deb532b0c/0/323430333a316130303a343a3a2f34372d3437203d3e203435373233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:1a00:4::/47 Signature Algorithm: sha256WithRSAEncryption 57:da:cc:e3:7d:74:1b:71:97:f5:f9:cc:c8:dc:5c:2a:ff:9b: d9:30:75:80:05:52:ec:c0:22:85:27:28:71:5e:a8:9d:99:a1: dc:c8:8b:c1:c2:60:68:e1:5a:b2:8c:75:ab:84:fd:ab:a1:69: c2:8a:fc:50:85:f6:2a:83:65:44:cb:fc:33:5a:93:a0:ce:8d: b5:88:62:00:4d:40:9b:80:7a:c4:7d:08:bb:fe:c2:04:de:df: f4:f7:91:db:70:50:56:af:8e:6c:e3:26:09:74:df:0e:4d:6f: f6:d9:3a:fe:90:00:57:7e:3a:7b:ab:a6:45:7a:01:1a:fd:86: a2:4b:94:23:ac:be:e8:88:49:ff:a6:ad:be:13:dd:3d:da:90: de:f3:71:b7:6a:9b:b6:6f:1f:40:64:32:00:a1:c1:8a:ec:57: 82:1a:b6:e7:bc:ee:11:aa:22:47:62:17:31:44:da:42:d5:cf: 8c:8b:86:6d:a6:d4:74:f7:d3:26:2a:67:37:73:5d:c3:5f:a6: a3:4b:e4:d7:01:59:d5:f2:1e:84:8b:2a:4b:e8:a4:d7:8b:6d: 74:33:43:2c:9c:17:aa:8a:72:63:56:c5:0b:63:8e:b5:11:e6: 62:0f:a5:d6:78:3e:dc:ae:32:42:34:48:3e:8c:00:d5:ea:9a: 71:f1:cc:a7 -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUJs2JtO8Zo5PXBQG9TKDbs0aGWdEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjUzNUY2QTlBNjUzOTVCNTg4MUFEQjBCNDMyQTE2Njc5 Qzg4Q0M2MDAeFw0yNjA1MDMwMjI0MDVaFw0yNzA1MDIwMjI5MDVaMDMxMTAvBgNV BAMTKDAwQTNGMzU0MUNBNDJFOEU0QkUwODEwMDEzQzU1NDMxRDU5MjEyOTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCuaH6gmU3mk/jvmrDTndSkUUMa mQNkSAmmOEjo+3uIRmwy4NPBT182ZFSyfxpe5gj4G8nxtWzlTDtr2igfLCCK1g7/ FSjikiUCbh9Q7M/td6ZiIe5NOdP+sqr8sPc4+qV0n11DqNfuCNn0lSxW3dJWBqIX YfKMvPCeZ93SzfI35oT4PIQYTEQEudm7hY6q0CK7yvpIkaioqxAP3myUetcHtgMi wBu835nEEuZXKIYlmNxmlfiJPpBBC+ffwPLlYYumEHiqrxm0tBF5U6bT4jTHXRvI rMVuKfE0IHB6HyFgpQkV440LmQcVpkUohO8PwoYeqQJ+aYOvZ03v9CSkEuQpAgMB AAGjggI3MIICMzAdBgNVHQ4EFgQUAKPzVBykLo5L4IEAE8VUMdWSEpQwHwYDVR0j BBgwFoAUJTX2qaZTlbWIGtsLQyoWZ5yIzGAwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NDFkYjM3MzAtZjQ5OS00NDlmLWI2ZjItN2E1ZGViNTMyYjBjLzAvMjUzNUY2QTlB NjUzOTVCNTg4MUFEQjBCNDMyQTE2Njc5Qzg4Q0M2MC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8yNTM1RjZBOUE2NTM5NUI1ODgxQURCMEI0MzJBMTY2NzlDODhD QzYwLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzQxZGIzNzMwLWY0OTktNDQ5Zi1i NmYyLTdhNWRlYjUzMmIwYy8wLzMyMzQzMDMzM2EzMTYxMzAzMDNhMzQzYTNhMmYz NDM3MmQzNDM3MjAzZDNlMjAzNDM1MzczMjMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcBJAMaAAAEMA0G CSqGSIb3DQEBCwUAA4IBAQBX2szjfXQbcZf1+czI3Fwq/5vZMHWABVLswCKFJyhx XqidmaHcyIvBwmBo4VqyjHWrhP2roWnCivxQhfYqg2VEy/wzWpOgzo21iGIATUCb gHrEfQi7/sIE3t/095HbcFBWr45s4yYJdN8OTW/22Tr+kABXfjp7q6ZFegEa/Yai S5QjrL7oiEn/pq2+E9092pDe83G3apu2bx9AZDIAocGK7FeCGrbnvO4RqiJHYhcx RNpC1c+Mi4ZtptR099MmKmc3c13DX6ajS+TXAVnV8h6EiypL6KTXi210M0MsnBeq inJjVsULY461EeZiD6XWeD7crjJCNEg+jADV6ppx8cyn -----END CERTIFICATE-----Generated at Wed May 13 13:41:40 2026 by rpki-client