$ rpki-client -vvf rpki-rsync.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/323430323a393830303a343030363a3a2f34382d3438203d3e20313338313338.roa File: 323430323a393830303a343030363a3a2f34382d3438203d3e20313338313338.roa (raw, json) Hash identifier: 8WviyViI/f7mGd/FcDBoOKzviK67Bj/ORpoyMXoPVaw= Subject key identifier: 3B:70:67:F1:8F:B3:2A:71:64:A3:34:D6:F1:17:52:B1:95:6D:1F:E4 Certificate issuer: /CN=E6E6F523D42F21D74E4B720AEC452D61205E5B6A Certificate serial: 1918A4E45FFA0932C78B29D2F44CA3256585D906 Authority key identifier: E6:E6:F5:23:D4:2F:21:D7:4E:4B:72:0A:EC:45:2D:61:20:5E:5B:6A Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/E6E6F523D42F21D74E4B720AEC452D61205E5B6A.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/323430323a393830303a343030363a3a2f34382d3438203d3e20313338313338.roa Signing time: Sun 03 May 2026 02:30:36 +0000 ROA not before: Sun 03 May 2026 02:25:36 +0000 ROA not after: Sun 02 May 2027 02:30:36 +0000 asID: 138138 IP address blocks: 2402:9800:4006::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/E6E6F523D42F21D74E4B720AEC452D61205E5B6A.crl rsync://rpki-rsync.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/E6E6F523D42F21D74E4B720AEC452D61205E5B6A.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/E6E6F523D42F21D74E4B720AEC452D61205E5B6A.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 00:07:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:18:a4:e4:5f:fa:09:32:c7:8b:29:d2:f4:4c:a3:25:65:85:d9:06 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E6E6F523D42F21D74E4B720AEC452D61205E5B6A Validity Not Before: May 3 02:25:36 2026 GMT Not After : May 2 02:30:36 2027 GMT Subject: CN=3B7067F18FB32A7164A334D6F11752B1956D1FE4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:c7:20:ce:76:d3:aa:91:17:cd:43:17:32:ae: dd:e6:a4:cd:a8:93:80:a7:8c:2f:6c:98:d9:12:fa: d3:4e:03:e0:31:14:db:8c:77:1e:f8:cb:33:b4:68: d7:0e:58:97:8a:05:b1:78:59:e0:66:89:09:f4:3c: 66:2a:5d:2a:a6:8a:2e:2b:29:5c:0e:e3:16:55:c6: e8:e9:60:c3:3b:aa:01:1b:0d:71:65:b1:29:41:7e: 25:c3:f8:4f:f2:b3:2e:1f:5e:80:03:14:f0:ef:5f: 24:35:c6:80:cc:77:bb:55:de:d6:5a:8f:d0:9c:23: 96:0d:f9:7c:0a:dc:92:7e:7e:af:b2:81:95:21:d1: da:24:c3:12:f7:1c:68:bd:42:ce:94:15:94:72:84: 80:65:2d:68:55:c4:ee:99:74:43:45:b2:14:6f:4d: f9:7e:ab:f4:f9:b4:01:ec:6a:32:49:54:5c:c9:06: 53:7d:c9:6b:8f:0a:2f:e5:a7:d6:b4:f1:e1:05:b6: c6:39:7e:73:73:b8:8f:a9:2d:10:77:90:c9:e8:25: 81:84:c6:e0:5f:b6:75:6d:d4:95:7e:ef:b4:47:cc: f1:3a:ed:98:d9:e6:77:d7:3a:f8:80:dd:10:fe:ce: 57:4e:e5:f5:43:bf:3b:fe:5d:07:d6:4c:5e:2c:18: fa:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:70:67:F1:8F:B3:2A:71:64:A3:34:D6:F1:17:52:B1:95:6D:1F:E4 X509v3 Authority Key Identifier: keyid:E6:E6:F5:23:D4:2F:21:D7:4E:4B:72:0A:EC:45:2D:61:20:5E:5B:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/E6E6F523D42F21D74E4B720AEC452D61205E5B6A.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/E6E6F523D42F21D74E4B720AEC452D61205E5B6A.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/323430323a393830303a343030363a3a2f34382d3438203d3e20313338313338.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:9800:4006::/48 Signature Algorithm: sha256WithRSAEncryption 81:2d:b8:87:e4:d5:40:1a:cf:80:74:14:ed:7d:b8:d3:74:67: 1c:f7:3b:05:57:a2:98:75:93:ee:65:e8:1a:40:1e:b2:4d:9a: a2:9e:98:91:b6:7d:f6:6a:3d:f2:7b:02:0e:7f:43:41:2a:44: c2:0e:70:47:9e:35:ba:52:9d:04:3d:5c:36:e3:e7:5d:e2:3e: 5e:a2:1f:8f:83:42:53:ad:94:f8:58:03:fc:09:4e:4b:63:a5: 3f:a4:bb:00:0a:f3:4e:12:da:3f:e5:9a:7c:7b:50:83:2c:ef: 39:d7:7c:d6:ab:05:57:07:f7:6a:a4:22:f7:e2:b7:6b:90:ee: 25:c4:f3:21:b5:ff:fd:9e:48:70:77:6c:3b:7d:39:a0:64:61: 4b:f7:f2:c4:e4:d2:78:5a:e8:0a:13:84:ed:a5:4d:49:9e:7f: 48:3b:a9:f8:b1:00:3b:82:37:ba:68:13:a6:51:57:c9:44:69: d9:75:d1:a6:d2:cd:bb:24:66:d4:e2:88:a0:8d:76:d4:a2:b9: 00:eb:9a:0a:07:0f:30:d3:16:34:0d:54:ab:15:7f:1d:c5:06: ef:1e:c0:b9:5a:03:18:d7:9a:df:0f:7d:fa:7d:f3:17:de:fa: 8b:b2:f0:91:73:3b:63:2f:4d:41:dc:ef:92:b9:66:e1:ad:78: 4b:50:8f:87 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUGRik5F/6CTLHiynS9EyjJWWF2QYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTZFNkY1MjNENDJGMjFENzRFNEI3MjBBRUM0NTJENjEy MDVFNUI2QTAeFw0yNjA1MDMwMjI1MzZaFw0yNzA1MDIwMjMwMzZaMDMxMTAvBgNV BAMTKDNCNzA2N0YxOEZCMzJBNzE2NEEzMzRENkYxMTc1MkIxOTU2RDFGRTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIxyDOdtOqkRfNQxcyrt3mpM2o k4CnjC9smNkS+tNOA+AxFNuMdx74yzO0aNcOWJeKBbF4WeBmiQn0PGYqXSqmii4r KVwO4xZVxujpYMM7qgEbDXFlsSlBfiXD+E/ysy4fXoADFPDvXyQ1xoDMd7tV3tZa j9CcI5YN+XwK3JJ+fq+ygZUh0dokwxL3HGi9Qs6UFZRyhIBlLWhVxO6ZdENFshRv Tfl+q/T5tAHsajJJVFzJBlN9yWuPCi/lp9a08eEFtsY5fnNzuI+pLRB3kMnoJYGE xuBftnVt1JV+77RHzPE67ZjZ5nfXOviA3RD+zldO5fVDvzv+XQfWTF4sGPp7AgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUO3Bn8Y+zKnFkozTW8RdSsZVtH+QwHwYDVR0j BBgwFoAU5ub1I9QvIddOS3IK7EUtYSBeW2owDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NDc4ZmQ0YWYtZmU2Ny00NWM4LTgwYjctMDZmYzExOGRmOGUyLzAvRTZFNkY1MjNE NDJGMjFENzRFNEI3MjBBRUM0NTJENjEyMDVFNUI2QS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9FNkU2RjUyM0Q0MkYyMUQ3NEU0QjcyMEFFQzQ1MkQ2MTIwNUU1 QjZBLmNlcjCBrQYIKwYBBQUHAQsEgaAwgZ0wgZoGCCsGAQUFBzALhoGNcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzQ3OGZkNGFmLWZlNjctNDVjOC04 MGI3LTA2ZmMxMThkZjhlMi8wLzMyMzQzMDMyM2EzOTM4MzAzMDNhMzQzMDMwMzYz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTMzMzgzMTMzMzgucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk ApgAQAYwDQYJKoZIhvcNAQELBQADggEBAIEtuIfk1UAaz4B0FO19uNN0Zxz3OwVX oph1k+5l6BpAHrJNmqKemJG2ffZqPfJ7Ag5/Q0EqRMIOcEeeNbpSnQQ9XDbj513i Pl6iH4+DQlOtlPhYA/wJTktjpT+kuwAK804S2j/lmnx7UIMs7znXfNarBVcH92qk Ivfit2uQ7iXE8yG1//2eSHB3bDt9OaBkYUv38sTk0nha6AoThO2lTUmef0g7qfix ADuCN7poE6ZRV8lEadl10abSzbskZtTiiKCNdtSiuQDrmgoHDzDTFjQNVKsVfx3F Bu8ewLlaAxjXmt8Pffp98xfe+ouy8JFzO2MvTUHc75K5ZuGteEtQj4c= -----END CERTIFICATE-----Generated at Wed May 13 10:23:00 2026 by rpki-client