$ rpki-client -vvf rpki-rsync.idnic.net/repo/50c773c8-fb56-449f-8649-112d6e1686b3/0/323430353a336463303a3a2f33322d3438203d3e20313332363432.roa File: 323430353a336463303a3a2f33322d3438203d3e20313332363432.roa (raw, json) Hash identifier: BbljfPMaDaoCXmfqlX766e2gOwStRy9KRMwBeVYrNRA= Subject key identifier: CE:6A:BF:8D:75:40:AE:C6:D3:33:D4:FA:34:DD:E3:C3:32:EE:5F:0F Certificate issuer: /CN=DCA3C8F8E82CD4F9E2F8F9AEC890BC1DB098A887 Certificate serial: 05160321DC7963E4F52B1B50E169846AFBB1D30D Authority key identifier: DC:A3:C8:F8:E8:2C:D4:F9:E2:F8:F9:AE:C8:90:BC:1D:B0:98:A8:87 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/DCA3C8F8E82CD4F9E2F8F9AEC890BC1DB098A887.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/50c773c8-fb56-449f-8649-112d6e1686b3/0/323430353a336463303a3a2f33322d3438203d3e20313332363432.roa Signing time: Sun 03 May 2026 02:32:41 +0000 ROA not before: Sun 03 May 2026 02:27:41 +0000 ROA not after: Sun 02 May 2027 02:32:41 +0000 asID: 132642 IP address blocks: 2405:3dc0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/50c773c8-fb56-449f-8649-112d6e1686b3/0/DCA3C8F8E82CD4F9E2F8F9AEC890BC1DB098A887.crl rsync://rpki-rsync.idnic.net/repo/50c773c8-fb56-449f-8649-112d6e1686b3/0/DCA3C8F8E82CD4F9E2F8F9AEC890BC1DB098A887.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/DCA3C8F8E82CD4F9E2F8F9AEC890BC1DB098A887.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 21:46:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:16:03:21:dc:79:63:e4:f5:2b:1b:50:e1:69:84:6a:fb:b1:d3:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DCA3C8F8E82CD4F9E2F8F9AEC890BC1DB098A887 Validity Not Before: May 3 02:27:41 2026 GMT Not After : May 2 02:32:41 2027 GMT Subject: CN=CE6ABF8D7540AEC6D333D4FA34DDE3C332EE5F0F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:2d:7c:41:69:f0:23:ba:9e:a7:0b:79:54:06: 60:4f:0e:f0:5f:80:0d:c6:86:9a:e5:c3:7b:5c:2e: af:ab:c0:06:c7:f6:e2:31:61:da:fa:ba:e6:3b:32: 9d:2a:a9:ee:e1:9b:26:5d:95:24:b5:d8:f5:38:19: 8a:14:77:7c:17:3d:b9:49:73:f2:a2:02:69:45:13: 1f:f7:d5:fb:6a:1a:c0:54:9d:5d:cf:6b:84:75:a3: 60:c5:82:c3:c2:cb:8a:1c:98:54:c5:c8:3d:38:e7: 8e:89:2b:82:df:f2:16:e4:34:3a:6f:9b:e1:64:b7: 22:4b:30:fc:27:0c:59:38:98:7a:24:bc:73:d2:6b: ef:13:54:bc:23:81:a9:71:45:dc:74:08:9d:c8:30: 88:eb:c8:ef:87:15:71:29:29:04:52:a9:30:15:34: cd:86:4c:0e:52:d6:5a:4d:23:f5:b3:ac:2d:b7:f3: 05:bf:9e:aa:75:06:62:db:81:19:0d:eb:ed:a5:b3: c9:b0:fc:ec:61:5a:eb:ae:55:23:4e:66:72:67:78: c1:b0:e9:90:13:6f:60:6f:ff:52:93:24:91:a4:b8: 95:73:ad:95:0b:a8:7f:c8:10:31:87:39:20:31:cf: c6:6b:7c:56:1d:dc:f8:91:96:84:7b:41:dd:30:42: 5d:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:6A:BF:8D:75:40:AE:C6:D3:33:D4:FA:34:DD:E3:C3:32:EE:5F:0F X509v3 Authority Key Identifier: keyid:DC:A3:C8:F8:E8:2C:D4:F9:E2:F8:F9:AE:C8:90:BC:1D:B0:98:A8:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/50c773c8-fb56-449f-8649-112d6e1686b3/0/DCA3C8F8E82CD4F9E2F8F9AEC890BC1DB098A887.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/DCA3C8F8E82CD4F9E2F8F9AEC890BC1DB098A887.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/50c773c8-fb56-449f-8649-112d6e1686b3/0/323430353a336463303a3a2f33322d3438203d3e20313332363432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:3dc0::/32 Signature Algorithm: sha256WithRSAEncryption 18:2e:a1:e0:8b:28:ad:ba:bf:58:39:6f:c5:44:8d:6a:00:cb: 69:27:c8:fe:10:76:d6:4f:be:a1:5d:74:cd:95:fc:e5:91:11: b7:d6:7d:07:63:37:09:fd:8c:ad:a9:fc:c7:84:59:4c:ac:8d: f6:28:ed:8d:73:b5:62:c1:50:fa:f6:d5:c9:5f:5b:f3:a5:25: 83:0d:4c:af:be:2a:c3:e3:9e:13:05:d0:2a:88:49:9c:29:41: 72:ab:63:87:74:9c:c9:fe:41:d5:b0:0d:23:5e:5b:f3:c2:c0: 08:5b:f1:a7:79:f2:ea:2c:68:27:ed:fd:20:4b:8a:9f:49:e7: be:ba:8f:c8:34:d4:02:8d:9e:e1:69:38:65:1a:1d:cd:42:bc: 92:9c:17:36:df:42:9a:d7:6d:81:91:c2:14:2d:36:49:db:c8: f8:db:cc:20:bd:0c:36:15:33:97:c2:38:18:05:1c:7d:86:2b: c2:88:82:eb:65:1a:ed:ce:87:2c:fb:f5:0e:d6:69:c4:a8:3c: e7:a0:7c:17:69:b7:89:13:04:c1:92:51:29:6f:5a:1b:b3:ab: 0e:fa:30:7b:52:81:fa:a6:dc:c1:01:22:5f:eb:96:a1:24:e1: 60:ca:98:14:04:a1:db:30:e2:6a:fe:74:17:f3:21:e2:65:a9: 5c:24:8f:e6 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUBRYDIdx5Y+T1KxtQ4WmEavux0w0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRENBM0M4RjhFODJDRDRGOUUyRjhGOUFFQzg5MEJDMURC MDk4QTg4NzAeFw0yNjA1MDMwMjI3NDFaFw0yNzA1MDIwMjMyNDFaMDMxMTAvBgNV BAMTKENFNkFCRjhENzU0MEFFQzZEMzMzRDRGQTM0RERFM0MzMzJFRTVGMEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwLXxBafAjup6nC3lUBmBPDvBf gA3Ghprlw3tcLq+rwAbH9uIxYdr6uuY7Mp0qqe7hmyZdlSS12PU4GYoUd3wXPblJ c/KiAmlFEx/31ftqGsBUnV3Pa4R1o2DFgsPCy4ocmFTFyD04546JK4Lf8hbkNDpv m+FktyJLMPwnDFk4mHokvHPSa+8TVLwjgalxRdx0CJ3IMIjryO+HFXEpKQRSqTAV NM2GTA5S1lpNI/WzrC238wW/nqp1BmLbgRkN6+2ls8mw/OxhWuuuVSNOZnJneMGw 6ZATb2Bv/1KTJJGkuJVzrZULqH/IEDGHOSAxz8ZrfFYd3PiRloR7Qd0wQl0lAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUzmq/jXVArsbTM9T6NN3jwzLuXw8wHwYDVR0j BBgwFoAU3KPI+Ogs1Pni+PmuyJC8HbCYqIcwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NTBjNzczYzgtZmI1Ni00NDlmLTg2NDktMTEyZDZlMTY4NmIzLzAvRENBM0M4RjhF ODJDRDRGOUUyRjhGOUFFQzg5MEJDMURCMDk4QTg4Ny5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9EQ0EzQzhGOEU4MkNENEY5RTJGOEY5QUVDODkwQkMxREIwOThB ODg3LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzUwYzc3M2M4LWZiNTYtNDQ5Zi04 NjQ5LTExMmQ2ZTE2ODZiMy8wLzMyMzQzMDM1M2EzMzY0NjMzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMxMzMzMjM2MzQzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQFPcAwDQYJKoZI hvcNAQELBQADggEBABguoeCLKK26v1g5b8VEjWoAy2knyP4QdtZPvqFddM2V/OWR EbfWfQdjNwn9jK2p/MeEWUysjfYo7Y1ztWLBUPr21clfW/OlJYMNTK++KsPjnhMF 0CqISZwpQXKrY4d0nMn+QdWwDSNeW/PCwAhb8ad58uosaCft/SBLip9J5766j8g0 1AKNnuFpOGUaHc1CvJKcFzbfQprXbYGRwhQtNknbyPjbzCC9DDYVM5fCOBgFHH2G K8KIgutlGu3Ohyz79Q7WacSoPOegfBdpt4kTBMGSUSlvWhuzqw76MHtSgfqm3MEB Il/rlqEk4WDKmBQEodsw4mr+dBfzIeJlqVwkj+Y= -----END CERTIFICATE-----Generated at Wed May 13 10:32:45 2026 by rpki-client