$ rpki-client -vvf rpki-rsync.idnic.net/repo/4f5d364a-da0b-4540-9349-5930bd725ce3/0/323430373a613630303a3a2f33322d3338203d3e203138303034.roa File: 323430373a613630303a3a2f33322d3338203d3e203138303034.roa (raw, json) Hash identifier: v44LsT6qMPli0zPJF9qTEG8AjfBqu7Oywt77FQr+HWc= Subject key identifier: 13:2E:BE:DF:CD:DE:A9:3E:C7:2E:DC:ED:08:04:CD:C1:52:38:61:5A Certificate issuer: /CN=E6EC35CFC2493A3A79DCD59D1C1DBAFB2E742793 Certificate serial: 1C31F0427A04737C40635A71C0D41B537CCD11BA Authority key identifier: E6:EC:35:CF:C2:49:3A:3A:79:DC:D5:9D:1C:1D:BA:FB:2E:74:27:93 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/E6EC35CFC2493A3A79DCD59D1C1DBAFB2E742793.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/4f5d364a-da0b-4540-9349-5930bd725ce3/0/323430373a613630303a3a2f33322d3338203d3e203138303034.roa Signing time: Sun 03 May 2026 02:32:23 +0000 ROA not before: Sun 03 May 2026 02:27:23 +0000 ROA not after: Sun 02 May 2027 02:32:23 +0000 asID: 18004 IP address blocks: 2407:a600::/32 maxlen: 38 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/4f5d364a-da0b-4540-9349-5930bd725ce3/0/E6EC35CFC2493A3A79DCD59D1C1DBAFB2E742793.crl rsync://rpki-rsync.idnic.net/repo/4f5d364a-da0b-4540-9349-5930bd725ce3/0/E6EC35CFC2493A3A79DCD59D1C1DBAFB2E742793.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/E6EC35CFC2493A3A79DCD59D1C1DBAFB2E742793.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 22:17:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:31:f0:42:7a:04:73:7c:40:63:5a:71:c0:d4:1b:53:7c:cd:11:ba Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E6EC35CFC2493A3A79DCD59D1C1DBAFB2E742793 Validity Not Before: May 3 02:27:23 2026 GMT Not After : May 2 02:32:23 2027 GMT Subject: CN=132EBEDFCDDEA93EC72EDCED0804CDC15238615A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:22:50:74:2e:bb:41:ce:fc:58:80:21:03:bb: dc:ec:69:93:65:0f:d0:9c:e2:c9:13:d1:d8:f1:68: 57:cb:d0:e4:03:96:dd:f2:97:03:7c:bb:30:88:fe: fa:89:30:ba:31:a7:b6:10:10:6e:09:18:ae:86:c9: 7f:d4:79:37:cc:72:4f:54:f8:e1:bc:66:64:89:25: a5:3a:ec:a5:b6:c1:60:21:cf:0c:48:5d:f4:1e:56: b1:50:9a:5c:b2:05:a1:de:09:ae:93:95:29:cc:65: 91:b5:24:b7:2e:8a:b8:e1:69:93:5d:01:bd:eb:28: b3:2e:d5:52:3e:eb:ca:d3:a5:91:c6:61:fe:c7:a0: df:a0:fd:35:84:4c:b0:e8:1c:4d:9b:8f:9a:05:ad: 7f:78:b2:1d:5b:71:6e:fe:b0:f8:7e:2d:17:2a:f2: a3:aa:62:04:d1:76:77:b3:be:07:d3:c2:68:9e:d4: f6:62:dd:2f:54:d1:31:5d:39:74:ad:54:4e:49:11: 7c:37:1d:67:27:eb:c9:c1:7d:95:b0:4f:83:5a:ab: cd:63:53:e6:09:7c:16:d3:57:a6:80:3e:bc:ae:07: 10:ec:f4:e9:a2:04:82:5c:8d:32:0b:a7:fd:31:a4: 96:3d:68:24:8e:3d:b6:45:27:bb:3b:0a:25:16:b8: e7:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:2E:BE:DF:CD:DE:A9:3E:C7:2E:DC:ED:08:04:CD:C1:52:38:61:5A X509v3 Authority Key Identifier: keyid:E6:EC:35:CF:C2:49:3A:3A:79:DC:D5:9D:1C:1D:BA:FB:2E:74:27:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/4f5d364a-da0b-4540-9349-5930bd725ce3/0/E6EC35CFC2493A3A79DCD59D1C1DBAFB2E742793.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/E6EC35CFC2493A3A79DCD59D1C1DBAFB2E742793.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/4f5d364a-da0b-4540-9349-5930bd725ce3/0/323430373a613630303a3a2f33322d3338203d3e203138303034.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2407:a600::/32 Signature Algorithm: sha256WithRSAEncryption 79:31:0c:4d:3c:af:19:64:d2:72:9c:22:e1:a1:03:99:81:1b: 4e:05:14:4c:72:04:96:a3:d0:4a:09:fd:46:b0:a0:7f:15:69: 6b:6d:db:07:0f:3d:a0:40:f0:7a:c4:91:28:62:f1:ea:a8:20: 68:6b:3e:fe:e3:d6:f5:54:d6:f5:1f:c1:75:9b:af:4c:ec:f3: 96:4f:a3:79:e2:85:6b:34:8c:02:15:54:b0:b5:f1:80:09:e8: b1:6e:de:35:90:a4:e8:0f:7d:d8:ac:5a:a8:34:9e:67:38:cb: 62:d4:f9:b1:80:33:08:74:84:ac:3f:29:36:ce:46:6a:d4:fc: 7b:88:b3:04:fc:98:78:02:e5:69:d6:fa:04:92:fb:e4:1c:b0: 9b:ca:9f:fa:7a:8a:d7:9e:ae:09:9d:3a:8d:f3:1b:7b:05:df: 2e:dd:f1:89:c8:da:65:ce:45:d0:8e:d6:5d:dd:8d:44:ef:c6: 4b:55:03:e4:6a:bb:aa:a1:a6:80:22:5d:35:a8:7a:44:aa:5b: 8c:ef:50:f8:a9:01:0e:dd:29:4a:d8:63:7f:05:75:3d:65:22: 8a:8c:e2:81:9f:da:bf:09:47:f0:31:47:46:48:79:6e:bf:1c: 9e:22:db:bb:54:ef:ca:9c:dc:4f:ca:6e:35:48:c5:e9:61:8d: 54:9d:b3:74 -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUHDHwQnoEc3xAY1pxwNQbU3zNEbowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTZFQzM1Q0ZDMjQ5M0EzQTc5RENENTlEMUMxREJBRkIy RTc0Mjc5MzAeFw0yNjA1MDMwMjI3MjNaFw0yNzA1MDIwMjMyMjNaMDMxMTAvBgNV BAMTKDEzMkVCRURGQ0RERUE5M0VDNzJFRENFRDA4MDRDREMxNTIzODYxNUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCMIlB0LrtBzvxYgCEDu9zsaZNl D9Cc4skT0djxaFfL0OQDlt3ylwN8uzCI/vqJMLoxp7YQEG4JGK6GyX/UeTfMck9U +OG8ZmSJJaU67KW2wWAhzwxIXfQeVrFQmlyyBaHeCa6TlSnMZZG1JLcuirjhaZNd Ab3rKLMu1VI+68rTpZHGYf7HoN+g/TWETLDoHE2bj5oFrX94sh1bcW7+sPh+LRcq 8qOqYgTRdnezvgfTwmie1PZi3S9U0TFdOXStVE5JEXw3HWcn68nBfZWwT4Naq81j U+YJfBbTV6aAPryuBxDs9OmiBIJcjTILp/0xpJY9aCSOPbZFJ7s7CiUWuOcLAgMB AAGjggIxMIICLTAdBgNVHQ4EFgQUEy6+383eqT7HLtztCATNwVI4YVowHwYDVR0j BBgwFoAU5uw1z8JJOjp53NWdHB26+y50J5MwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NGY1ZDM2NGEtZGEwYi00NTQwLTkzNDktNTkzMGJkNzI1Y2UzLzAvRTZFQzM1Q0ZD MjQ5M0EzQTc5RENENTlEMUMxREJBRkIyRTc0Mjc5My5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9FNkVDMzVDRkMyNDkzQTNBNzlEQ0Q1OUQxQzFEQkFGQjJFNzQy NzkzLmNlcjCBoQYIKwYBBQUHAQsEgZQwgZEwgY4GCCsGAQUFBzALhoGBcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzRmNWQzNjRhLWRhMGItNDU0MC05 MzQ5LTU5MzBiZDcyNWNlMy8wLzMyMzQzMDM3M2E2MTM2MzAzMDNhM2EyZjMzMzIy ZDMzMzgyMDNkM2UyMDMxMzgzMDMwMzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkB6YAMA0GCSqGSIb3 DQEBCwUAA4IBAQB5MQxNPK8ZZNJynCLhoQOZgRtOBRRMcgSWo9BKCf1GsKB/FWlr bdsHDz2gQPB6xJEoYvHqqCBoaz7+49b1VNb1H8F1m69M7POWT6N54oVrNIwCFVSw tfGACeixbt41kKToD33YrFqoNJ5nOMti1PmxgDMIdISsPyk2zkZq1Px7iLME/Jh4 AuVp1voEkvvkHLCbyp/6eorXnq4JnTqN8xt7Bd8u3fGJyNplzkXQjtZd3Y1E78ZL VQPkaruqoaaAIl01qHpEqluM71D4qQEO3SlK2GN/BXU9ZSKKjOKBn9q/CUfwMUdG SHluvxyeItu7VO/KnNxPym41SMXpYY1UnbN0 -----END CERTIFICATE-----Generated at Wed May 13 12:02:55 2026 by rpki-client