$ rpki-client -vvf rpki-rsync.idnic.net/repo/45dff9b3-9041-4dd6-b7ab-02060d65d09a/0/323430333a653434303a3a2f33322d3332203d3e20313338303936.roa File: 323430333a653434303a3a2f33322d3332203d3e20313338303936.roa (raw, json) Hash identifier: VwsatNn5AXuJ/LUW+n8JXwWEwiaViEVC741lbFCSMBE= Subject key identifier: CB:E2:85:3B:8D:45:2B:34:44:96:8F:F3:95:6C:3A:DC:17:74:FC:BC Certificate issuer: /CN=853EDD7AB3EF9A13A0779F2612786F6D2D7C08BE Certificate serial: 0C5873A3034D1C22B57EBE20745EF46639776568 Authority key identifier: 85:3E:DD:7A:B3:EF:9A:13:A0:77:9F:26:12:78:6F:6D:2D:7C:08:BE Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/853EDD7AB3EF9A13A0779F2612786F6D2D7C08BE.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/45dff9b3-9041-4dd6-b7ab-02060d65d09a/0/323430333a653434303a3a2f33322d3332203d3e20313338303936.roa Signing time: Sun 03 May 2026 02:30:05 +0000 ROA not before: Sun 03 May 2026 02:25:05 +0000 ROA not after: Sun 02 May 2027 02:30:05 +0000 asID: 138096 IP address blocks: 2403:e440::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/45dff9b3-9041-4dd6-b7ab-02060d65d09a/0/853EDD7AB3EF9A13A0779F2612786F6D2D7C08BE.crl rsync://rpki-rsync.idnic.net/repo/45dff9b3-9041-4dd6-b7ab-02060d65d09a/0/853EDD7AB3EF9A13A0779F2612786F6D2D7C08BE.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/853EDD7AB3EF9A13A0779F2612786F6D2D7C08BE.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 22:37:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:58:73:a3:03:4d:1c:22:b5:7e:be:20:74:5e:f4:66:39:77:65:68 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=853EDD7AB3EF9A13A0779F2612786F6D2D7C08BE Validity Not Before: May 3 02:25:05 2026 GMT Not After : May 2 02:30:05 2027 GMT Subject: CN=CBE2853B8D452B3444968FF3956C3ADC1774FCBC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:b6:c8:ac:2c:33:84:88:24:42:88:ef:71:29: 12:99:86:32:98:5f:31:38:1e:a7:33:5d:dd:c8:be: 39:83:78:f6:0b:ce:c0:e2:a7:32:1f:05:4f:e4:18: 75:e4:f6:05:0c:23:f3:91:3e:8c:94:4a:c3:27:db: ed:d2:61:8c:c0:de:f8:df:00:42:50:a3:9f:bd:86: fd:d2:09:60:14:43:38:64:11:e4:97:8b:db:5d:cd: 31:d2:00:d3:dc:cd:e9:33:96:b7:c2:53:43:f5:4a: 3b:33:1b:56:87:9e:b6:65:34:19:c8:8d:55:7c:b4: db:1e:36:b2:97:80:23:cc:07:2f:6c:09:b7:f4:64: ef:f5:18:a4:6b:4b:cf:a6:a2:77:10:08:79:b4:89: b6:bb:b5:db:6e:21:2b:cd:64:42:39:6d:12:ed:e8: ca:fa:08:80:8e:58:17:fa:84:97:ae:11:37:9d:46: f8:66:a3:17:8b:f9:b1:cb:3c:bf:c9:a7:0e:57:78: ef:f7:2d:a3:3d:f8:1b:1a:6b:6b:41:79:f3:3c:05: d5:5b:1d:ce:dc:41:8b:ea:38:e8:dc:6e:c8:62:e4: cb:00:51:b4:02:de:32:6c:39:b8:3e:3c:dd:c6:07: ce:30:55:2f:40:fc:45:1b:f0:a9:89:bd:8c:1f:0e: 0f:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:E2:85:3B:8D:45:2B:34:44:96:8F:F3:95:6C:3A:DC:17:74:FC:BC X509v3 Authority Key Identifier: keyid:85:3E:DD:7A:B3:EF:9A:13:A0:77:9F:26:12:78:6F:6D:2D:7C:08:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/45dff9b3-9041-4dd6-b7ab-02060d65d09a/0/853EDD7AB3EF9A13A0779F2612786F6D2D7C08BE.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/853EDD7AB3EF9A13A0779F2612786F6D2D7C08BE.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/45dff9b3-9041-4dd6-b7ab-02060d65d09a/0/323430333a653434303a3a2f33322d3332203d3e20313338303936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:e440::/32 Signature Algorithm: sha256WithRSAEncryption 9f:57:25:55:7d:7a:18:bc:f5:c7:6f:c7:f6:9d:44:73:ed:ce: b5:c2:39:47:19:c8:22:91:f0:70:59:e5:42:da:95:84:de:2e: 9f:8f:98:48:27:bb:b3:a0:ec:9e:31:73:01:c0:3c:1d:13:c3: a6:1f:f7:a6:3d:a8:72:08:c9:7b:ba:24:01:5a:0f:09:2a:e2: 69:11:17:c6:a7:c6:13:b7:25:98:aa:7c:11:35:52:ec:b3:80: e7:e6:5f:ee:c3:9a:bb:1c:8f:81:f0:de:03:fb:41:63:0c:79: 52:91:42:4d:72:d5:84:45:a3:a4:2c:a7:4c:d7:de:65:62:21: 19:96:40:b4:81:98:74:d4:d8:ca:8c:79:a7:a1:f2:01:7a:d3: 6b:6d:c6:24:45:69:b4:96:e1:73:7e:18:f3:c2:e4:d3:d5:20: cd:46:49:33:9e:46:b3:9d:58:d1:16:93:e5:2f:f3:7d:d2:ef: ee:ec:47:eb:51:af:99:38:23:5c:8e:7e:ee:e5:a6:58:58:32: c0:85:7e:3f:16:de:99:40:93:d6:07:2d:f0:58:ec:fa:66:96: ed:6f:f6:99:cc:20:83:df:fc:46:ec:a4:a5:db:93:10:45:5b: 81:aa:b9:f8:59:f8:d4:49:15:35:54:db:7b:b5:40:3a:52:a2: 88:d7:4a:97 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUDFhzowNNHCK1fr4gdF70Zjl3ZWgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODUzRUREN0FCM0VGOUExM0EwNzc5RjI2MTI3ODZGNkQy RDdDMDhCRTAeFw0yNjA1MDMwMjI1MDVaFw0yNzA1MDIwMjMwMDVaMDMxMTAvBgNV BAMTKENCRTI4NTNCOEQ0NTJCMzQ0NDk2OEZGMzk1NkMzQURDMTc3NEZDQkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDItsisLDOEiCRCiO9xKRKZhjKY XzE4HqczXd3IvjmDePYLzsDipzIfBU/kGHXk9gUMI/ORPoyUSsMn2+3SYYzA3vjf AEJQo5+9hv3SCWAUQzhkEeSXi9tdzTHSANPczekzlrfCU0P1SjszG1aHnrZlNBnI jVV8tNseNrKXgCPMBy9sCbf0ZO/1GKRrS8+moncQCHm0iba7tdtuISvNZEI5bRLt 6Mr6CICOWBf6hJeuETedRvhmoxeL+bHLPL/Jpw5XeO/3LaM9+Bsaa2tBefM8BdVb Hc7cQYvqOOjcbshi5MsAUbQC3jJsObg+PN3GB84wVS9A/EUb8KmJvYwfDg8xAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUy+KFO41FKzRElo/zlWw63Bd0/LwwHwYDVR0j BBgwFoAUhT7derPvmhOgd58mEnhvbS18CL4wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NDVkZmY5YjMtOTA0MS00ZGQ2LWI3YWItMDIwNjBkNjVkMDlhLzAvODUzRUREN0FC M0VGOUExM0EwNzc5RjI2MTI3ODZGNkQyRDdDMDhCRS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS84NTNFREQ3QUIzRUY5QTEzQTA3NzlGMjYxMjc4NkY2RDJEN0Mw OEJFLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzQ1ZGZmOWIzLTkwNDEtNGRkNi1i N2FiLTAyMDYwZDY1ZDA5YS8wLzMyMzQzMDMzM2E2NTM0MzQzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzMzODMwMzkzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQD5EAwDQYJKoZI hvcNAQELBQADggEBAJ9XJVV9ehi89cdvx/adRHPtzrXCOUcZyCKR8HBZ5ULalYTe Lp+PmEgnu7Og7J4xcwHAPB0Tw6Yf96Y9qHIIyXu6JAFaDwkq4mkRF8anxhO3JZiq fBE1UuyzgOfmX+7Dmrscj4Hw3gP7QWMMeVKRQk1y1YRFo6Qsp0zX3mViIRmWQLSB mHTU2MqMeaeh8gF602ttxiRFabSW4XN+GPPC5NPVIM1GSTOeRrOdWNEWk+Uv833S 7+7sR+tRr5k4I1yOfu7lplhYMsCFfj8W3plAk9YHLfBY7Ppmlu1v9pnMIIPf/Ebs pKXbkxBFW4GqufhZ+NRJFTVU23u1QDpSoojXSpc= -----END CERTIFICATE-----Generated at Wed May 13 12:01:34 2026 by rpki-client