$ rpki-client -vvf rpki-rsync.idnic.net/repo/53b858f6-de20-4121-bcea-9076edccc097/0/323430313a633432303a3a2f33322d3438203d3e20313431303538.roa File: 323430313a633432303a3a2f33322d3438203d3e20313431303538.roa (raw, json) Hash identifier: fc+4JU1Tpp/1O31vstVFMWqbX3rMZmX9kGoVnJ5dzDQ= Subject key identifier: 53:36:55:BF:A1:AA:1B:F2:DE:D3:27:BF:73:FA:8D:8D:13:D1:60:22 Certificate issuer: /CN=5AC7FDC1380E98339F28DBDC57B21E7D2F95A0C0 Certificate serial: 4F0FA2A51FBBE214551570776587DE6663F58F7D Authority key identifier: 5A:C7:FD:C1:38:0E:98:33:9F:28:DB:DC:57:B2:1E:7D:2F:95:A0:C0 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/5AC7FDC1380E98339F28DBDC57B21E7D2F95A0C0.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/53b858f6-de20-4121-bcea-9076edccc097/0/323430313a633432303a3a2f33322d3438203d3e20313431303538.roa Signing time: Sun 03 May 2026 02:33:31 +0000 ROA not before: Sun 03 May 2026 02:28:31 +0000 ROA not after: Sun 02 May 2027 02:33:31 +0000 asID: 141058 IP address blocks: 2401:c420::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/53b858f6-de20-4121-bcea-9076edccc097/0/5AC7FDC1380E98339F28DBDC57B21E7D2F95A0C0.crl rsync://rpki-rsync.idnic.net/repo/53b858f6-de20-4121-bcea-9076edccc097/0/5AC7FDC1380E98339F28DBDC57B21E7D2F95A0C0.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/5AC7FDC1380E98339F28DBDC57B21E7D2F95A0C0.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 18:12:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:0f:a2:a5:1f:bb:e2:14:55:15:70:77:65:87:de:66:63:f5:8f:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5AC7FDC1380E98339F28DBDC57B21E7D2F95A0C0 Validity Not Before: May 3 02:28:31 2026 GMT Not After : May 2 02:33:31 2027 GMT Subject: CN=533655BFA1AA1BF2DED327BF73FA8D8D13D16022 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:7d:fc:20:3a:a5:d8:14:b7:3e:10:ed:96:2b: 09:19:72:80:04:33:38:e4:74:cf:41:12:29:59:c2: 11:4f:e9:63:73:1e:aa:ba:ab:74:88:f2:d5:76:46: 35:96:ea:e1:ba:d2:ac:f6:50:25:85:f8:07:31:7b: eb:c1:cb:f1:eb:54:56:78:18:24:e0:84:2c:96:70: 51:82:15:a0:d7:08:b9:fc:af:6f:11:c5:f0:3b:8a: 96:79:bf:51:eb:a1:3c:68:db:c0:6b:59:a3:b1:2c: 87:7e:5a:a9:9a:56:ac:29:3f:06:57:6b:e6:ef:41: d3:cf:a3:d6:d8:35:31:9f:60:0d:38:1e:2e:72:c2: d5:4a:30:b0:c4:d2:4c:d0:b8:29:87:e7:38:ae:d7: 95:bc:a2:61:17:e2:52:a6:91:5a:3a:6b:a6:13:74: 6e:5d:8d:8d:86:63:52:a4:db:88:62:fa:c9:11:a4: 86:a3:0e:41:ad:d3:57:82:25:42:c2:7e:51:fa:ab: 4a:65:88:11:c8:77:f9:6a:9c:8d:d5:27:0a:e8:2b: 1c:7c:be:42:af:3d:08:7b:77:56:03:28:14:a4:8e: 1e:5a:0d:51:21:38:cd:b5:9d:99:f5:aa:f6:40:48: f1:b5:eb:df:22:c9:a3:c3:ad:d8:4d:63:9b:df:14: 3d:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:36:55:BF:A1:AA:1B:F2:DE:D3:27:BF:73:FA:8D:8D:13:D1:60:22 X509v3 Authority Key Identifier: keyid:5A:C7:FD:C1:38:0E:98:33:9F:28:DB:DC:57:B2:1E:7D:2F:95:A0:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/53b858f6-de20-4121-bcea-9076edccc097/0/5AC7FDC1380E98339F28DBDC57B21E7D2F95A0C0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/5AC7FDC1380E98339F28DBDC57B21E7D2F95A0C0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/53b858f6-de20-4121-bcea-9076edccc097/0/323430313a633432303a3a2f33322d3438203d3e20313431303538.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:c420::/32 Signature Algorithm: sha256WithRSAEncryption 2c:0a:3c:0f:e0:a7:b6:4f:78:b5:3c:f7:06:7b:5c:e1:63:17: 02:7a:d7:46:9f:e8:76:1b:18:6e:a9:66:8b:b8:16:5f:29:66: 42:bf:9d:d6:cb:93:45:bf:1a:57:4d:ca:4a:ca:23:4a:56:3b: 3a:01:3e:aa:4b:22:e3:1f:cc:a9:50:22:b4:4f:ac:1b:e2:44: dc:ad:cb:5b:6d:ea:00:85:34:0b:ca:6a:a9:52:5f:07:14:97: 41:48:3b:5a:3c:c7:76:f7:78:49:8b:45:dc:cb:7f:35:91:7a: b7:06:5b:a4:16:d2:2d:7b:93:62:4f:a5:75:c0:f2:6e:57:7e: 6e:a8:53:11:e0:09:1e:ff:af:46:92:c7:29:77:7e:1b:6c:bf: c2:58:9a:50:bd:12:db:b2:25:ba:b9:48:d8:9f:c9:fe:c5:79: 07:48:cd:52:58:b6:07:a0:16:0c:e9:b7:61:33:fe:1c:90:bd: ac:75:ee:d5:84:bd:71:ca:62:7f:85:7f:9c:a5:a3:7e:18:13: 58:fc:cb:bd:51:89:9b:5d:11:f7:d2:61:c5:f0:f3:bb:69:c0: 98:1e:ae:39:75:e0:1b:a9:18:bc:5e:65:8b:24:da:3c:f4:99: b2:ae:d5:6a:8a:17:49:c6:08:ef:1b:a4:7a:03:6d:92:2e:12: 91:af:87:3a -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUTw+ipR+74hRVFXB3ZYfeZmP1j30wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUFDN0ZEQzEzODBFOTgzMzlGMjhEQkRDNTdCMjFFN0Qy Rjk1QTBDMDAeFw0yNjA1MDMwMjI4MzFaFw0yNzA1MDIwMjMzMzFaMDMxMTAvBgNV BAMTKDUzMzY1NUJGQTFBQTFCRjJERUQzMjdCRjczRkE4RDhEMTNEMTYwMjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCfffwgOqXYFLc+EO2WKwkZcoAE MzjkdM9BEilZwhFP6WNzHqq6q3SI8tV2RjWW6uG60qz2UCWF+Acxe+vBy/HrVFZ4 GCTghCyWcFGCFaDXCLn8r28RxfA7ipZ5v1HroTxo28BrWaOxLId+WqmaVqwpPwZX a+bvQdPPo9bYNTGfYA04Hi5ywtVKMLDE0kzQuCmH5ziu15W8omEX4lKmkVo6a6YT dG5djY2GY1Kk24hi+skRpIajDkGt01eCJULCflH6q0pliBHId/lqnI3VJwroKxx8 vkKvPQh7d1YDKBSkjh5aDVEhOM21nZn1qvZASPG1698iyaPDrdhNY5vfFD1LAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUUzZVv6GqG/Le0ye/c/qNjRPRYCIwHwYDVR0j BBgwFoAUWsf9wTgOmDOfKNvcV7IefS+VoMAwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NTNiODU4ZjYtZGUyMC00MTIxLWJjZWEtOTA3NmVkY2NjMDk3LzAvNUFDN0ZEQzEz ODBFOTgzMzlGMjhEQkRDNTdCMjFFN0QyRjk1QTBDMC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS81QUM3RkRDMTM4MEU5ODMzOUYyOERCREM1N0IyMUU3RDJGOTVB MEMwLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzUzYjg1OGY2LWRlMjAtNDEyMS1i Y2VhLTkwNzZlZGNjYzA5Ny8wLzMyMzQzMDMxM2E2MzM0MzIzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMxMzQzMTMwMzUzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQBxCAwDQYJKoZI hvcNAQELBQADggEBACwKPA/gp7ZPeLU89wZ7XOFjFwJ610af6HYbGG6pZou4Fl8p ZkK/ndbLk0W/GldNykrKI0pWOzoBPqpLIuMfzKlQIrRPrBviRNyty1tt6gCFNAvK aqlSXwcUl0FIO1o8x3b3eEmLRdzLfzWRercGW6QW0i17k2JPpXXA8m5Xfm6oUxHg CR7/r0aSxyl3fhtsv8JYmlC9EtuyJbq5SNifyf7FeQdIzVJYtgegFgzpt2Ez/hyQ vax17tWEvXHKYn+Ff5ylo34YE1j8y71RiZtdEffSYcXw87tpwJgerjl14BupGLxe ZYsk2jz0mbKu1WqKF0nGCO8bpHoDbZIuEpGvhzo= -----END CERTIFICATE-----Generated at Wed May 13 10:32:54 2026 by rpki-client