$ rpki-client -vvf rpki-rsync.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/323430323a393830303a343030333a3a2f34382d3438203d3e203338353038.roa File: 323430323a393830303a343030333a3a2f34382d3438203d3e203338353038.roa (raw, json) Hash identifier: laUveQFY4TFWC0QjEkPgCcjQ/7eJsrHLD2ZIyVhYRNo= Subject key identifier: E3:EA:E9:51:40:BB:A6:E9:62:7C:83:56:69:F5:C0:92:93:F2:BB:62 Certificate issuer: /CN=E6E6F523D42F21D74E4B720AEC452D61205E5B6A Certificate serial: 2187EFB1CE8DD5CF7EFB3CCA362A75D405AE6B8F Authority key identifier: E6:E6:F5:23:D4:2F:21:D7:4E:4B:72:0A:EC:45:2D:61:20:5E:5B:6A Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/E6E6F523D42F21D74E4B720AEC452D61205E5B6A.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/323430323a393830303a343030333a3a2f34382d3438203d3e203338353038.roa Signing time: Sun 03 May 2026 02:30:36 +0000 ROA not before: Sun 03 May 2026 02:25:36 +0000 ROA not after: Sun 02 May 2027 02:30:36 +0000 asID: 38508 IP address blocks: 2402:9800:4003::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/E6E6F523D42F21D74E4B720AEC452D61205E5B6A.crl rsync://rpki-rsync.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/E6E6F523D42F21D74E4B720AEC452D61205E5B6A.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/E6E6F523D42F21D74E4B720AEC452D61205E5B6A.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 00:07:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:87:ef:b1:ce:8d:d5:cf:7e:fb:3c:ca:36:2a:75:d4:05:ae:6b:8f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E6E6F523D42F21D74E4B720AEC452D61205E5B6A Validity Not Before: May 3 02:25:36 2026 GMT Not After : May 2 02:30:36 2027 GMT Subject: CN=E3EAE95140BBA6E9627C835669F5C09293F2BB62 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:29:0c:c7:56:64:4d:ce:7c:dc:8d:d7:ce:b3: cf:6a:7d:05:ed:33:e8:df:8f:b1:6d:ac:9a:d8:0b: 64:e2:4e:13:ef:3e:93:36:20:04:f2:d9:4c:e7:8e: cf:e3:c4:f7:df:37:4a:31:5a:51:67:9a:9d:8a:2c: de:ea:b8:2b:d6:36:09:0b:58:42:10:15:78:e2:57: cd:04:ce:67:77:6a:ad:e3:24:e8:ff:16:00:60:9c: 53:73:f3:ce:58:49:c3:00:f0:d3:b5:5f:9f:e9:ff: 87:98:23:cb:31:31:a2:3c:00:5f:2c:ff:59:45:06: dd:52:b6:67:7c:fb:ef:d3:0a:57:bf:a8:25:ad:5a: 29:4d:14:6a:e0:c3:ae:13:ba:d2:13:07:2f:4e:ec: 23:7a:ff:e3:ed:c7:c0:97:cd:43:bd:75:94:22:39: 3b:53:e0:ec:a9:25:17:7f:df:f6:5f:71:be:3a:42: 24:f8:c2:30:06:a1:96:d3:90:57:9e:99:54:d8:a7: a1:1e:41:53:f6:f5:93:5c:e7:81:c0:71:eb:0f:4f: 0b:95:8a:ee:f3:23:83:41:00:ed:49:94:60:68:ce: aa:01:fc:63:4f:cc:cc:f0:dd:b3:89:60:a9:ed:62: 1d:f2:54:4f:c4:0d:da:d0:a7:0d:e0:af:26:53:41: 5d:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:EA:E9:51:40:BB:A6:E9:62:7C:83:56:69:F5:C0:92:93:F2:BB:62 X509v3 Authority Key Identifier: keyid:E6:E6:F5:23:D4:2F:21:D7:4E:4B:72:0A:EC:45:2D:61:20:5E:5B:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/E6E6F523D42F21D74E4B720AEC452D61205E5B6A.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/E6E6F523D42F21D74E4B720AEC452D61205E5B6A.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/323430323a393830303a343030333a3a2f34382d3438203d3e203338353038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:9800:4003::/48 Signature Algorithm: sha256WithRSAEncryption 48:72:da:45:19:e5:9a:c3:9c:9f:98:85:ec:4e:61:3c:51:cc: 41:ee:67:56:60:6f:60:bc:fb:45:74:18:27:20:92:49:ea:10: af:21:b3:87:c3:1f:05:e4:70:aa:2b:9a:b1:7a:27:da:1d:e3: 18:29:64:3c:8a:f4:b7:12:54:5f:ca:1c:b6:30:66:64:da:53: 64:d9:84:fe:47:ab:be:d2:8b:b5:52:7c:f4:ee:3f:08:2b:6f: 9c:6a:96:2c:46:2e:58:4c:fc:61:38:a4:a5:0d:b3:7b:2f:08: b8:b5:8c:5c:da:d5:63:5e:15:9e:3c:17:73:9d:06:e8:87:82: 0d:ef:a9:90:ff:83:b6:63:50:72:8b:56:92:64:d1:dc:3e:cd: 96:65:f9:f0:e8:9c:3b:7a:31:c8:e2:5e:1a:a7:1c:8e:94:94: 73:d7:50:47:ac:b9:a6:61:71:8a:a9:aa:15:ef:0f:45:1f:ee: ca:85:36:62:b4:bb:60:73:5b:77:8b:7a:22:c9:06:19:9a:53: b8:0a:88:a5:33:a2:90:e9:db:4f:fe:b0:44:92:6a:9d:c2:d5: c4:7c:bd:fb:77:aa:b0:b5:27:76:0e:09:6b:7e:cb:f5:c2:c5: 80:bc:98:f5:fa:bf:ee:00:8d:96:bc:7d:96:8c:d7:e3:13:35: a1:22:c6:a1 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUIYfvsc6N1c9++zzKNip11AWua48wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTZFNkY1MjNENDJGMjFENzRFNEI3MjBBRUM0NTJENjEy MDVFNUI2QTAeFw0yNjA1MDMwMjI1MzZaFw0yNzA1MDIwMjMwMzZaMDMxMTAvBgNV BAMTKEUzRUFFOTUxNDBCQkE2RTk2MjdDODM1NjY5RjVDMDkyOTNGMkJCNjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6KQzHVmRNznzcjdfOs89qfQXt M+jfj7FtrJrYC2TiThPvPpM2IATy2Uznjs/jxPffN0oxWlFnmp2KLN7quCvWNgkL WEIQFXjiV80Ezmd3aq3jJOj/FgBgnFNz885YScMA8NO1X5/p/4eYI8sxMaI8AF8s /1lFBt1Stmd8++/TCle/qCWtWilNFGrgw64TutITBy9O7CN6/+Ptx8CXzUO9dZQi OTtT4OypJRd/3/Zfcb46QiT4wjAGoZbTkFeemVTYp6EeQVP29ZNc54HAcesPTwuV iu7zI4NBAO1JlGBozqoB/GNPzMzw3bOJYKntYh3yVE/EDdrQpw3gryZTQV29AgMB AAGjggI9MIICOTAdBgNVHQ4EFgQU4+rpUUC7pulifINWafXAkpPyu2IwHwYDVR0j BBgwFoAU5ub1I9QvIddOS3IK7EUtYSBeW2owDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NDc4ZmQ0YWYtZmU2Ny00NWM4LTgwYjctMDZmYzExOGRmOGUyLzAvRTZFNkY1MjNE NDJGMjFENzRFNEI3MjBBRUM0NTJENjEyMDVFNUI2QS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9FNkU2RjUyM0Q0MkYyMUQ3NEU0QjcyMEFFQzQ1MkQ2MTIwNUU1 QjZBLmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUFBzALhoGLcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzQ3OGZkNGFmLWZlNjctNDVjOC04 MGI3LTA2ZmMxMThkZjhlMi8wLzMyMzQzMDMyM2EzOTM4MzAzMDNhMzQzMDMwMzMz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMzM4MzUzMDM4LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAKY AEADMA0GCSqGSIb3DQEBCwUAA4IBAQBIctpFGeWaw5yfmIXsTmE8UcxB7mdWYG9g vPtFdBgnIJJJ6hCvIbOHwx8F5HCqK5qxeifaHeMYKWQ8ivS3ElRfyhy2MGZk2lNk 2YT+R6u+0ou1Unz07j8IK2+capYsRi5YTPxhOKSlDbN7Lwi4tYxc2tVjXhWePBdz nQboh4IN76mQ/4O2Y1Byi1aSZNHcPs2WZfnw6Jw7ejHI4l4apxyOlJRz11BHrLmm YXGKqaoV7w9FH+7KhTZitLtgc1t3i3oiyQYZmlO4CoilM6KQ6dtP/rBEkmqdwtXE fL37d6qwtSd2Dglrfsv1wsWAvJj1+r/uAI2WvH2WjNfjEzWhIsah -----END CERTIFICATE-----Generated at Wed May 13 07:35:55 2026 by rpki-client