$ rpki-client -vvf rpki-rsync.idnic.net/repo/44791b1f-6da9-400d-8b14-992aae63746c/0/323430373a646630303a3a2f34382d3438203d3e203338353136.roa File: 323430373a646630303a3a2f34382d3438203d3e203338353136.roa (raw, json) Hash identifier: CzpR2y4E7Zo1QOZpSNmtByz2jwVCHD2bth2Q1Yf3tqo= Subject key identifier: 78:4B:5D:69:D4:F0:B7:F8:3A:AB:65:5E:0E:E0:ED:99:69:E7:68:9B Certificate issuer: /CN=DECA93C2172E503BC5CAAA1974410D3FA59D2454 Certificate serial: 62388C39B4D4EBF9B89CD1752461BDD268ED0CDE Authority key identifier: DE:CA:93:C2:17:2E:50:3B:C5:CA:AA:19:74:41:0D:3F:A5:9D:24:54 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/DECA93C2172E503BC5CAAA1974410D3FA59D2454.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/44791b1f-6da9-400d-8b14-992aae63746c/0/323430373a646630303a3a2f34382d3438203d3e203338353136.roa Signing time: Sun 03 May 2026 02:29:43 +0000 ROA not before: Sun 03 May 2026 02:24:43 +0000 ROA not after: Sun 02 May 2027 02:29:43 +0000 asID: 38516 IP address blocks: 2407:df00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/44791b1f-6da9-400d-8b14-992aae63746c/0/DECA93C2172E503BC5CAAA1974410D3FA59D2454.crl rsync://rpki-rsync.idnic.net/repo/44791b1f-6da9-400d-8b14-992aae63746c/0/DECA93C2172E503BC5CAAA1974410D3FA59D2454.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/DECA93C2172E503BC5CAAA1974410D3FA59D2454.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 04:31:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:38:8c:39:b4:d4:eb:f9:b8:9c:d1:75:24:61:bd:d2:68:ed:0c:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DECA93C2172E503BC5CAAA1974410D3FA59D2454 Validity Not Before: May 3 02:24:43 2026 GMT Not After : May 2 02:29:43 2027 GMT Subject: CN=784B5D69D4F0B7F83AAB655E0EE0ED9969E7689B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:05:3c:5a:8d:eb:6e:1f:32:03:87:fc:d6:76: 81:ee:d3:3d:52:35:1c:b0:06:4e:f2:16:95:46:be: d2:bc:74:a1:eb:c1:18:ba:c8:79:48:07:b6:4f:df: 16:4d:80:55:62:54:af:d9:2c:05:72:e6:55:8f:74: 76:9b:bf:b6:49:5a:bb:7b:02:74:21:ce:c4:e0:dc: 42:35:1e:c7:29:8f:95:31:ce:65:45:45:7e:58:bd: b9:91:dc:1a:c4:36:c8:f9:d8:62:be:91:fa:e3:ef: e7:33:fa:8b:08:22:c1:f9:be:9c:ab:a4:65:e0:63: 04:65:56:ca:ff:4a:67:1f:98:f2:4e:21:26:10:13: c8:7b:b2:33:fa:0d:14:e7:f3:e3:87:c8:fc:7c:78: e0:ba:c8:2b:ad:eb:6d:f0:6e:f4:11:ba:ab:4f:28: 38:c5:03:9a:fa:a9:53:04:1e:14:ca:27:39:eb:84: a3:f2:92:79:7c:d4:4e:40:66:d5:27:c4:0b:03:37: b7:36:8c:16:bb:81:c6:07:44:57:50:b3:b0:5b:84: 11:be:4b:2d:3f:b7:4e:29:aa:18:48:e4:33:60:54: 87:b1:fd:e9:4e:fd:e7:f7:c2:e0:b1:7e:06:ae:1e: a2:b0:9c:b3:7d:e6:66:14:7f:eb:02:d6:d4:19:8a: e7:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:4B:5D:69:D4:F0:B7:F8:3A:AB:65:5E:0E:E0:ED:99:69:E7:68:9B X509v3 Authority Key Identifier: keyid:DE:CA:93:C2:17:2E:50:3B:C5:CA:AA:19:74:41:0D:3F:A5:9D:24:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/44791b1f-6da9-400d-8b14-992aae63746c/0/DECA93C2172E503BC5CAAA1974410D3FA59D2454.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/DECA93C2172E503BC5CAAA1974410D3FA59D2454.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/44791b1f-6da9-400d-8b14-992aae63746c/0/323430373a646630303a3a2f34382d3438203d3e203338353136.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2407:df00::/48 Signature Algorithm: sha256WithRSAEncryption 6a:31:ec:75:b6:7d:ae:1c:d7:8a:b9:2c:24:0b:07:b4:ea:a9: 4f:97:f5:02:e9:8e:b5:6f:7c:f6:33:0a:63:4b:3c:20:73:4a: 0c:61:d3:f2:6d:ee:2c:cd:63:c1:0c:9f:ba:3f:f8:bc:5c:fb: 43:5b:32:1c:21:4e:b7:1d:a7:ce:e5:6d:29:86:2c:a0:48:a8: de:b2:ee:eb:77:c3:40:b8:b5:1d:1f:74:d2:4f:12:44:c8:c8: 43:e8:25:10:94:b9:af:71:75:f9:95:9b:10:1e:7c:52:e4:68: 3b:d1:5b:6d:4a:c5:12:22:24:ad:46:98:c3:9f:79:ce:d6:51: a6:87:00:15:88:2c:c4:7f:f5:78:5f:33:9d:9b:52:f9:16:74: b4:55:32:15:1a:41:bf:af:c5:bd:63:97:d6:56:ba:af:d8:c7: 4a:bf:f0:d6:33:9e:34:c2:5e:e2:3e:cd:34:58:df:83:bd:69: 47:c0:c2:0d:ef:d4:7e:6a:fd:49:cb:31:d5:5d:38:90:eb:85: ca:02:a0:a3:51:8c:f6:cc:0a:e8:5a:0e:f3:04:26:b3:bb:58: 65:d3:c8:2d:63:88:5a:c1:7d:1a:84:ba:d0:f4:37:e7:0d:cb: 01:09:f9:d9:59:a9:4a:4a:82:70:35:93:af:a4:d3:a1:32:f7: 9e:e9:75:b4 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUYjiMObTU6/m4nNF1JGG90mjtDN4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREVDQTkzQzIxNzJFNTAzQkM1Q0FBQTE5NzQ0MTBEM0ZB NTlEMjQ1NDAeFw0yNjA1MDMwMjI0NDNaFw0yNzA1MDIwMjI5NDNaMDMxMTAvBgNV BAMTKDc4NEI1RDY5RDRGMEI3RjgzQUFCNjU1RTBFRTBFRDk5NjlFNzY4OUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8BTxajetuHzIDh/zWdoHu0z1S NRywBk7yFpVGvtK8dKHrwRi6yHlIB7ZP3xZNgFViVK/ZLAVy5lWPdHabv7ZJWrt7 AnQhzsTg3EI1Hscpj5UxzmVFRX5YvbmR3BrENsj52GK+kfrj7+cz+osIIsH5vpyr pGXgYwRlVsr/SmcfmPJOISYQE8h7sjP6DRTn8+OHyPx8eOC6yCut623wbvQRuqtP KDjFA5r6qVMEHhTKJznrhKPyknl81E5AZtUnxAsDN7c2jBa7gcYHRFdQs7BbhBG+ Sy0/t04pqhhI5DNgVIex/elO/ef3wuCxfgauHqKwnLN95mYUf+sC1tQZiue/AgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUeEtdadTwt/g6q2VeDuDtmWnnaJswHwYDVR0j BBgwFoAU3sqTwhcuUDvFyqoZdEENP6WdJFQwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NDQ3OTFiMWYtNmRhOS00MDBkLThiMTQtOTkyYWFlNjM3NDZjLzAvREVDQTkzQzIx NzJFNTAzQkM1Q0FBQTE5NzQ0MTBEM0ZBNTlEMjQ1NC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9ERUNBOTNDMjE3MkU1MDNCQzVDQUFBMTk3NDQxMEQzRkE1OUQy NDU0LmNlcjCBoQYIKwYBBQUHAQsEgZQwgZEwgY4GCCsGAQUFBzALhoGBcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzQ0NzkxYjFmLTZkYTktNDAwZC04 YjE0LTk5MmFhZTYzNzQ2Yy8wLzMyMzQzMDM3M2E2NDY2MzAzMDNhM2EyZjM0Mzgy ZDM0MzgyMDNkM2UyMDMzMzgzNTMxMzYucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkB98AAAAwDQYJKoZI hvcNAQELBQADggEBAGox7HW2fa4c14q5LCQLB7TqqU+X9QLpjrVvfPYzCmNLPCBz Sgxh0/Jt7izNY8EMn7o/+Lxc+0NbMhwhTrcdp87lbSmGLKBIqN6y7ut3w0C4tR0f dNJPEkTIyEPoJRCUua9xdfmVmxAefFLkaDvRW21KxRIiJK1GmMOfec7WUaaHABWI LMR/9XhfM52bUvkWdLRVMhUaQb+vxb1jl9ZWuq/Yx0q/8NYznjTCXuI+zTRY34O9 aUfAwg3v1H5q/UnLMdVdOJDrhcoCoKNRjPbMCuhaDvMEJrO7WGXTyC1jiFrBfRqE utD0N+cNywEJ+dlZqUpKgnA1k6+k06Ey957pdbQ= -----END CERTIFICATE-----Generated at Wed May 13 07:35:27 2026 by rpki-client