$ rpki-client -vvf rpki-rsync.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/323430323a393830303a343030323a3a2f34382d3438203d3e20313331313139.roa File: 323430323a393830303a343030323a3a2f34382d3438203d3e20313331313139.roa (raw, json) Hash identifier: kz2QV0fy7qbXF+Wqq5OkPBiZmQWSEriWqE3uXDFaIW4= Subject key identifier: 19:63:B5:21:5A:63:58:98:2B:72:AE:3A:45:E2:01:75:1A:96:35:B2 Certificate issuer: /CN=E6E6F523D42F21D74E4B720AEC452D61205E5B6A Certificate serial: 2AB006C0DC15F9FE77AAD256D2A526E77E56471F Authority key identifier: E6:E6:F5:23:D4:2F:21:D7:4E:4B:72:0A:EC:45:2D:61:20:5E:5B:6A Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/E6E6F523D42F21D74E4B720AEC452D61205E5B6A.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/323430323a393830303a343030323a3a2f34382d3438203d3e20313331313139.roa Signing time: Sun 03 May 2026 02:30:40 +0000 ROA not before: Sun 03 May 2026 02:25:40 +0000 ROA not after: Sun 02 May 2027 02:30:40 +0000 asID: 131119 IP address blocks: 2402:9800:4002::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/E6E6F523D42F21D74E4B720AEC452D61205E5B6A.crl rsync://rpki-rsync.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/E6E6F523D42F21D74E4B720AEC452D61205E5B6A.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/E6E6F523D42F21D74E4B720AEC452D61205E5B6A.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 00:07:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:b0:06:c0:dc:15:f9:fe:77:aa:d2:56:d2:a5:26:e7:7e:56:47:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E6E6F523D42F21D74E4B720AEC452D61205E5B6A Validity Not Before: May 3 02:25:40 2026 GMT Not After : May 2 02:30:40 2027 GMT Subject: CN=1963B5215A6358982B72AE3A45E201751A9635B2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8b:1f:9b:74:57:30:8d:5e:3d:07:5c:e1:4b:b3: db:14:0f:95:f0:c2:a5:08:62:2e:1d:77:f5:60:8f: b7:b9:9e:f7:39:22:3f:8f:c4:23:b9:c9:7c:fe:c0: ef:50:d0:c2:0b:12:4e:d6:60:de:66:66:99:0c:bb: ac:9d:91:69:36:25:79:64:d5:66:ef:ab:6a:af:37: 82:16:47:44:8c:e3:e0:43:22:35:ad:cd:a3:46:03: 9b:99:6c:42:9a:af:b7:ae:2d:62:be:3b:28:02:b3: b9:7d:81:22:91:cf:70:28:8f:1b:8b:06:c1:92:0b: f3:4c:be:0e:d2:09:53:de:f1:c5:84:cc:9b:47:c4: cb:57:59:b4:79:58:7e:79:60:b6:ef:58:6a:5c:6e: 8b:98:5e:75:23:af:5c:5f:c9:7d:16:08:5a:22:a5: e5:25:fe:ba:79:67:39:af:91:54:87:61:be:83:2b: 34:d8:f9:05:07:d1:14:0f:23:c0:52:b0:d6:db:30: f7:81:99:27:e9:70:41:36:04:9e:48:38:c9:ec:e8: bd:f1:2a:64:1b:ed:89:cf:4a:85:12:b2:2f:12:7b: 39:91:04:ce:29:2e:c5:f8:6e:0a:62:de:32:0e:b7: c8:67:d7:33:f3:c3:7f:3a:5b:9d:58:3d:40:d3:59: 55:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:63:B5:21:5A:63:58:98:2B:72:AE:3A:45:E2:01:75:1A:96:35:B2 X509v3 Authority Key Identifier: keyid:E6:E6:F5:23:D4:2F:21:D7:4E:4B:72:0A:EC:45:2D:61:20:5E:5B:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/E6E6F523D42F21D74E4B720AEC452D61205E5B6A.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/E6E6F523D42F21D74E4B720AEC452D61205E5B6A.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/323430323a393830303a343030323a3a2f34382d3438203d3e20313331313139.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:9800:4002::/48 Signature Algorithm: sha256WithRSAEncryption 23:9d:05:c9:7c:4e:31:a5:ed:0c:0f:f2:da:ad:3b:56:4e:59: 31:ed:58:1d:5c:f0:5a:00:16:7b:c1:b0:55:07:90:4d:7f:e1: 50:94:7b:e3:05:0e:12:06:19:da:21:d4:83:91:9d:e6:60:13: 42:28:cb:92:81:55:91:87:e4:48:fb:9f:c7:c8:71:19:cd:1f: a7:d4:19:1b:5e:47:d6:a1:1f:de:50:0f:d2:a6:fa:3b:48:89: 9c:35:72:89:71:0b:26:7b:3f:5b:df:b2:a4:98:b0:d6:99:61: f0:21:f4:96:eb:25:d2:b3:e4:bc:b2:bc:92:0d:b7:bd:ea:34: 0e:9b:9a:e7:32:92:e4:b6:22:1a:d6:d3:7d:64:0d:ed:0f:58: 59:d7:3d:bc:2f:49:56:bf:85:78:76:f0:db:d5:83:8c:61:cf: 88:2e:0e:df:6f:ec:aa:9d:55:57:74:23:54:f3:b5:26:41:dd: a7:45:cd:f1:3b:f9:a5:8a:6f:ba:0b:57:4a:bd:a8:21:e4:f5: 74:a2:c5:29:1c:cd:0d:c1:96:dc:c6:ae:6b:4d:c3:3e:cd:6f: 7c:0e:25:11:73:13:1e:c4:6b:8c:0e:3f:bf:b4:20:0b:1e:c7: d6:5d:19:4c:f8:60:21:9c:97:08:7c:73:6a:78:89:23:89:ae: 9e:e3:97:6c -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUKrAGwNwV+f53qtJW0qUm535WRx8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTZFNkY1MjNENDJGMjFENzRFNEI3MjBBRUM0NTJENjEy MDVFNUI2QTAeFw0yNjA1MDMwMjI1NDBaFw0yNzA1MDIwMjMwNDBaMDMxMTAvBgNV BAMTKDE5NjNCNTIxNUE2MzU4OTgyQjcyQUUzQTQ1RTIwMTc1MUE5NjM1QjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCLH5t0VzCNXj0HXOFLs9sUD5Xw wqUIYi4dd/Vgj7e5nvc5Ij+PxCO5yXz+wO9Q0MILEk7WYN5mZpkMu6ydkWk2JXlk 1Wbvq2qvN4IWR0SM4+BDIjWtzaNGA5uZbEKar7euLWK+OygCs7l9gSKRz3AojxuL BsGSC/NMvg7SCVPe8cWEzJtHxMtXWbR5WH55YLbvWGpcbouYXnUjr1xfyX0WCFoi peUl/rp5ZzmvkVSHYb6DKzTY+QUH0RQPI8BSsNbbMPeBmSfpcEE2BJ5IOMns6L3x KmQb7YnPSoUSsi8SezmRBM4pLsX4bgpi3jIOt8hn1zPzw386W51YPUDTWVWFAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUGWO1IVpjWJgrcq46ReIBdRqWNbIwHwYDVR0j BBgwFoAU5ub1I9QvIddOS3IK7EUtYSBeW2owDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NDc4ZmQ0YWYtZmU2Ny00NWM4LTgwYjctMDZmYzExOGRmOGUyLzAvRTZFNkY1MjNE NDJGMjFENzRFNEI3MjBBRUM0NTJENjEyMDVFNUI2QS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9FNkU2RjUyM0Q0MkYyMUQ3NEU0QjcyMEFFQzQ1MkQ2MTIwNUU1 QjZBLmNlcjCBrQYIKwYBBQUHAQsEgaAwgZ0wgZoGCCsGAQUFBzALhoGNcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzQ3OGZkNGFmLWZlNjctNDVjOC04 MGI3LTA2ZmMxMThkZjhlMi8wLzMyMzQzMDMyM2EzOTM4MzAzMDNhMzQzMDMwMzIz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTMzMzEzMTMxMzkucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk ApgAQAIwDQYJKoZIhvcNAQELBQADggEBACOdBcl8TjGl7QwP8tqtO1ZOWTHtWB1c 8FoAFnvBsFUHkE1/4VCUe+MFDhIGGdoh1IORneZgE0Ioy5KBVZGH5Ej7n8fIcRnN H6fUGRteR9ahH95QD9Km+jtIiZw1colxCyZ7P1vfsqSYsNaZYfAh9JbrJdKz5Lyy vJINt73qNA6bmucykuS2IhrW031kDe0PWFnXPbwvSVa/hXh28NvVg4xhz4guDt9v 7KqdVVd0I1TztSZB3adFzfE7+aWKb7oLV0q9qCHk9XSixSkczQ3BltzGrmtNwz7N b3wOJRFzEx7Ea4wOP7+0IAsex9ZdGUz4YCGclwh8c2p4iSOJrp7jl2w= -----END CERTIFICATE-----Generated at Wed May 13 12:51:19 2026 by rpki-client