$ rpki-client -vvf rpki-rsync.idnic.net/repo/450633fc-fe23-4d82-ba64-bb7ee6dd6e06/0/323430343a653134303a3a2f33322d3438203d3e20313338383632.roa File: 323430343a653134303a3a2f33322d3438203d3e20313338383632.roa (raw, json) Hash identifier: B4j0qT4PT3YdDkrmlfhYyZnafUYLOfUdcba19kZ7mRY= Subject key identifier: 4B:12:9C:32:DB:A8:41:C4:91:F3:7E:DA:C9:D5:7C:2A:79:81:A6:7F Certificate issuer: /CN=AF10C2E9040ADB1F41C5ABC9FFFDE57E1209D77A Certificate serial: 2F0DEFF022426568AF647367ACAA1A9662ACF819 Authority key identifier: AF:10:C2:E9:04:0A:DB:1F:41:C5:AB:C9:FF:FD:E5:7E:12:09:D7:7A Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AF10C2E9040ADB1F41C5ABC9FFFDE57E1209D77A.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/450633fc-fe23-4d82-ba64-bb7ee6dd6e06/0/323430343a653134303a3a2f33322d3438203d3e20313338383632.roa Signing time: Sun 03 May 2026 02:29:59 +0000 ROA not before: Sun 03 May 2026 02:24:59 +0000 ROA not after: Sun 02 May 2027 02:29:59 +0000 asID: 138862 IP address blocks: 2404:e140::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/450633fc-fe23-4d82-ba64-bb7ee6dd6e06/0/AF10C2E9040ADB1F41C5ABC9FFFDE57E1209D77A.crl rsync://rpki-rsync.idnic.net/repo/450633fc-fe23-4d82-ba64-bb7ee6dd6e06/0/AF10C2E9040ADB1F41C5ABC9FFFDE57E1209D77A.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AF10C2E9040ADB1F41C5ABC9FFFDE57E1209D77A.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 00:41:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:0d:ef:f0:22:42:65:68:af:64:73:67:ac:aa:1a:96:62:ac:f8:19 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AF10C2E9040ADB1F41C5ABC9FFFDE57E1209D77A Validity Not Before: May 3 02:24:59 2026 GMT Not After : May 2 02:29:59 2027 GMT Subject: CN=4B129C32DBA841C491F37EDAC9D57C2A7981A67F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:1d:88:78:45:a4:bd:3b:18:0d:59:db:df:7f: b6:6e:b5:58:12:dd:ad:82:83:f5:7f:17:d9:81:e3: bc:7a:57:82:f3:08:31:cd:9d:09:1f:64:da:59:44: c8:3a:21:73:8a:3d:1d:0d:e9:ba:85:70:e0:31:c0: 52:d5:3c:fd:d0:c4:c5:c0:08:09:68:ad:14:86:4c: 6b:ac:84:f2:b2:27:77:83:49:5e:e1:54:fe:7f:ff: d4:2b:f2:e1:dd:65:c6:b4:20:40:d6:47:f7:00:88: 58:c3:f9:c2:7d:35:b9:16:b6:5a:2e:b8:c0:8a:2f: ea:f1:78:b3:1a:68:21:67:a6:61:f4:b7:21:c6:47: 17:7e:57:ca:2b:5c:2b:d6:d1:9a:7d:1d:26:fc:d8: 6c:48:3f:8b:df:52:bd:00:03:f4:dc:10:8b:fb:ad: aa:79:95:60:8f:d3:ba:3c:87:c5:54:93:ba:2a:3c: 9b:70:aa:da:4a:7d:9b:82:ca:50:b0:7d:8d:52:79: a7:a6:77:40:f6:44:89:cc:b8:ae:72:43:f0:92:e0: 36:68:56:67:87:b9:29:42:16:71:d8:4c:a2:14:dc: 08:de:db:e4:73:ba:d5:d2:85:a6:fa:73:f1:5a:a1: 59:d4:48:b4:a0:5b:d3:a4:14:e4:3f:c8:75:71:76: f0:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:12:9C:32:DB:A8:41:C4:91:F3:7E:DA:C9:D5:7C:2A:79:81:A6:7F X509v3 Authority Key Identifier: keyid:AF:10:C2:E9:04:0A:DB:1F:41:C5:AB:C9:FF:FD:E5:7E:12:09:D7:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/450633fc-fe23-4d82-ba64-bb7ee6dd6e06/0/AF10C2E9040ADB1F41C5ABC9FFFDE57E1209D77A.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AF10C2E9040ADB1F41C5ABC9FFFDE57E1209D77A.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/450633fc-fe23-4d82-ba64-bb7ee6dd6e06/0/323430343a653134303a3a2f33322d3438203d3e20313338383632.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:e140::/32 Signature Algorithm: sha256WithRSAEncryption 5d:1f:96:85:ff:20:43:49:ca:e0:10:07:37:fa:28:d1:a9:9a: 4f:40:e3:33:2e:a2:04:b2:f9:18:76:08:0a:71:c5:c0:3f:d9: 00:ec:6f:5f:ab:7d:fb:cc:09:f7:d9:73:e5:8e:73:01:4c:c5: 0a:ea:2b:e1:da:83:e6:d3:66:42:2f:31:f5:96:27:66:5f:c0: 1e:b0:fd:10:66:05:4c:98:d6:b3:56:5d:92:99:6b:14:3e:e4: 19:c6:33:71:c2:64:a4:92:56:44:07:ca:c4:0b:b5:e6:92:26: 7f:77:1f:b5:50:a1:43:62:bf:25:5d:df:5b:7c:e9:65:6d:83: bc:c0:55:5c:77:ff:93:85:98:6e:de:f3:d0:89:82:d2:d8:c7: 0c:ed:c9:10:b1:21:99:e5:0e:3d:a9:23:ba:3e:c9:c7:7d:50: 7a:5c:14:1e:f1:3b:35:09:c7:04:b2:2a:4b:df:42:4d:fd:85: af:df:c9:f5:99:86:68:d1:8d:ce:a7:d5:4a:9d:99:71:ea:d5: 6c:0e:8c:12:ea:df:54:3d:56:21:2b:67:f5:f3:79:79:70:f3: 4a:84:a8:2c:62:81:f9:37:45:0b:11:65:84:8d:c6:14:4a:cd: f8:25:7c:b5:b1:91:a2:82:4f:e4:87:1c:a5:ff:e4:3c:06:04: 1e:e9:c5:a8 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIULw3v8CJCZWivZHNnrKoalmKs+BkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUYxMEMyRTkwNDBBREIxRjQxQzVBQkM5RkZGREU1N0Ux MjA5RDc3QTAeFw0yNjA1MDMwMjI0NTlaFw0yNzA1MDIwMjI5NTlaMDMxMTAvBgNV BAMTKDRCMTI5QzMyREJBODQxQzQ5MUYzN0VEQUM5RDU3QzJBNzk4MUE2N0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCnHYh4RaS9OxgNWdvff7ZutVgS 3a2Cg/V/F9mB47x6V4LzCDHNnQkfZNpZRMg6IXOKPR0N6bqFcOAxwFLVPP3QxMXA CAlorRSGTGushPKyJ3eDSV7hVP5//9Qr8uHdZca0IEDWR/cAiFjD+cJ9NbkWtlou uMCKL+rxeLMaaCFnpmH0tyHGRxd+V8orXCvW0Zp9HSb82GxIP4vfUr0AA/TcEIv7 rap5lWCP07o8h8VUk7oqPJtwqtpKfZuCylCwfY1Seaemd0D2RInMuK5yQ/CS4DZo VmeHuSlCFnHYTKIU3Aje2+RzutXShab6c/FaoVnUSLSgW9OkFOQ/yHVxdvDDAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUSxKcMtuoQcSR837aydV8KnmBpn8wHwYDVR0j BBgwFoAUrxDC6QQK2x9BxavJ//3lfhIJ13owDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NDUwNjMzZmMtZmUyMy00ZDgyLWJhNjQtYmI3ZWU2ZGQ2ZTA2LzAvQUYxMEMyRTkw NDBBREIxRjQxQzVBQkM5RkZGREU1N0UxMjA5RDc3QS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9BRjEwQzJFOTA0MEFEQjFGNDFDNUFCQzlGRkZERTU3RTEyMDlE NzdBLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzQ1MDYzM2ZjLWZlMjMtNGQ4Mi1i YTY0LWJiN2VlNmRkNmUwNi8wLzMyMzQzMDM0M2E2NTMxMzQzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMxMzMzODM4MzYzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQE4UAwDQYJKoZI hvcNAQELBQADggEBAF0floX/IENJyuAQBzf6KNGpmk9A4zMuogSy+Rh2CApxxcA/ 2QDsb1+rffvMCffZc+WOcwFMxQrqK+Hag+bTZkIvMfWWJ2ZfwB6w/RBmBUyY1rNW XZKZaxQ+5BnGM3HCZKSSVkQHysQLteaSJn93H7VQoUNivyVd31t86WVtg7zAVVx3 /5OFmG7e89CJgtLYxwztyRCxIZnlDj2pI7o+ycd9UHpcFB7xOzUJxwSyKkvfQk39 ha/fyfWZhmjRjc6n1UqdmXHq1WwOjBLq31Q9ViErZ/XzeXlw80qEqCxigfk3RQsR ZYSNxhRKzfglfLWxkaKCT+SHHKX/5DwGBB7pxag= -----END CERTIFICATE-----Generated at Wed May 13 06:58:41 2026 by rpki-client