$ rpki-client -vvf rpki-rsync.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/323430303a383030303a323a3a2f34382d3438203d3e2034383030.roa File: 323430303a383030303a323a3a2f34382d3438203d3e2034383030.roa (raw, json) Hash identifier: GBdfFumQ5DV/1xYnnlyi47x4qk5lERcVl7kr2idNp9c= Subject key identifier: DD:6B:EC:E6:08:F8:09:30:A7:E3:9E:2F:1C:4B:3F:92:6B:EA:2C:06 Certificate issuer: /CN=C5528B1880D1A3C409F79997E426F977596B3E01 Certificate serial: 64D82FB771CDDF3EBEE4C4D831AFD15A03BA80D8 Authority key identifier: C5:52:8B:18:80:D1:A3:C4:09:F7:99:97:E4:26:F9:77:59:6B:3E:01 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C5528B1880D1A3C409F79997E426F977596B3E01.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/323430303a383030303a323a3a2f34382d3438203d3e2034383030.roa Signing time: Sun 03 May 2026 02:34:02 +0000 ROA not before: Sun 03 May 2026 02:29:02 +0000 ROA not after: Sun 02 May 2027 02:34:02 +0000 asID: 4800 IP address blocks: 2400:8000:2::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/C5528B1880D1A3C409F79997E426F977596B3E01.crl rsync://rpki-rsync.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/C5528B1880D1A3C409F79997E426F977596B3E01.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C5528B1880D1A3C409F79997E426F977596B3E01.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 23:29:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:d8:2f:b7:71:cd:df:3e:be:e4:c4:d8:31:af:d1:5a:03:ba:80:d8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C5528B1880D1A3C409F79997E426F977596B3E01 Validity Not Before: May 3 02:29:02 2026 GMT Not After : May 2 02:34:02 2027 GMT Subject: CN=DD6BECE608F80930A7E39E2F1C4B3F926BEA2C06 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:c1:0d:02:82:2c:0c:6b:8a:23:3e:10:c3:fe: 89:f1:b3:7c:cb:36:f2:06:64:bb:82:5b:99:cb:2a: 85:32:33:e1:65:1d:5b:0b:80:9b:16:86:44:38:0a: 45:53:45:53:6b:11:99:00:f4:2a:23:e8:d0:43:f8: 8b:7b:7a:ee:06:0d:fc:e1:19:12:9e:cc:cd:ee:fc: 6a:a0:69:fd:0b:13:09:28:3d:94:ed:ef:be:80:30: f7:9e:ac:1b:ce:0c:d3:06:15:cf:88:32:aa:ef:d4: 33:bd:07:1f:7f:e9:c2:89:48:60:03:95:cd:3c:40: b3:b5:0d:4e:d0:6c:07:36:8f:92:63:7a:3e:f4:96: 02:c5:2f:56:69:a3:6c:4c:ca:b9:1f:af:38:4b:53: c9:37:24:5a:70:49:74:4d:a0:9b:6c:fd:eb:a1:39: 2d:7c:a9:f4:5c:c5:40:ea:36:6e:b9:1d:18:5c:5f: 65:97:ea:10:91:1b:f1:2c:32:da:a0:5e:c3:b4:3a: ee:e0:51:9b:77:e8:23:97:e2:f8:9e:d1:8d:08:49: 21:15:e2:fe:7a:1c:ec:40:4b:b6:92:f3:72:82:22: 76:2c:92:23:9e:88:5e:05:ea:d5:fa:a1:60:ea:71: b4:41:f1:29:df:b3:fb:0d:67:84:ac:cd:60:8e:89: 6a:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:6B:EC:E6:08:F8:09:30:A7:E3:9E:2F:1C:4B:3F:92:6B:EA:2C:06 X509v3 Authority Key Identifier: keyid:C5:52:8B:18:80:D1:A3:C4:09:F7:99:97:E4:26:F9:77:59:6B:3E:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/C5528B1880D1A3C409F79997E426F977596B3E01.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C5528B1880D1A3C409F79997E426F977596B3E01.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/323430303a383030303a323a3a2f34382d3438203d3e2034383030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:8000:2::/48 Signature Algorithm: sha256WithRSAEncryption 28:82:9f:45:b3:1c:00:9d:7f:62:e9:8d:09:23:15:ea:41:31: a3:8f:e3:03:cb:4d:4a:f0:d4:df:f2:8e:86:ba:76:5f:7f:2b: d3:84:72:02:b1:6b:77:10:50:ba:6f:90:cd:af:12:7b:ed:48: 82:42:9c:e6:db:34:da:b6:36:47:c4:92:e3:fa:f8:0c:c4:3c: 9d:7f:1e:b6:ae:b7:13:2e:a8:67:6b:fa:70:b2:d8:94:84:43: 8d:61:f2:55:3a:0e:98:b9:28:15:df:b4:c7:42:85:5f:03:9d: 13:19:74:e2:e8:42:fc:84:53:27:a9:da:ce:97:7b:46:a1:d1: b0:16:84:99:af:18:93:95:b8:29:6e:f0:2d:63:2d:1c:c8:f7: 97:b3:67:13:fe:1c:cd:af:a4:f8:00:b7:93:ba:22:a9:14:4e: 0d:31:8b:c5:8f:aa:f4:da:a2:af:f1:90:e1:e9:1e:36:62:07: 2a:b9:38:5f:08:3b:0f:b6:4b:6b:aa:35:81:9c:a1:cf:a1:f3: 88:ce:dc:5d:b7:32:84:6d:d8:6a:43:14:4d:43:32:cb:44:fa: 58:cd:11:fb:83:9c:8c:a2:49:c8:f0:34:6c:44:1d:68:33:46: 83:3b:29:25:01:28:73:f5:74:d6:73:71:e8:0b:b2:4e:e2:9a: 76:60:aa:d2 -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgIUZNgvt3HN3z6+5MTYMa/RWgO6gNgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzU1MjhCMTg4MEQxQTNDNDA5Rjc5OTk3RTQyNkY5Nzc1 OTZCM0UwMTAeFw0yNjA1MDMwMjI5MDJaFw0yNzA1MDIwMjM0MDJaMDMxMTAvBgNV BAMTKERENkJFQ0U2MDhGODA5MzBBN0UzOUUyRjFDNEIzRjkyNkJFQTJDMDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtwQ0CgiwMa4ojPhDD/onxs3zL NvIGZLuCW5nLKoUyM+FlHVsLgJsWhkQ4CkVTRVNrEZkA9Coj6NBD+It7eu4GDfzh GRKezM3u/Gqgaf0LEwkoPZTt776AMPeerBvODNMGFc+IMqrv1DO9Bx9/6cKJSGAD lc08QLO1DU7QbAc2j5Jjej70lgLFL1Zpo2xMyrkfrzhLU8k3JFpwSXRNoJts/euh OS18qfRcxUDqNm65HRhcX2WX6hCRG/EsMtqgXsO0Ou7gUZt36COX4vie0Y0ISSEV 4v56HOxAS7aS83KCInYskiOeiF4F6tX6oWDqcbRB8Snfs/sNZ4SszWCOiWq/AgMB AAGjggI1MIICMTAdBgNVHQ4EFgQU3Wvs5gj4CTCn454vHEs/kmvqLAYwHwYDVR0j BBgwFoAUxVKLGIDRo8QJ95mX5Cb5d1lrPgEwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NTVjZTM2ZGUtZjkyMS00Mjc0LTg0OTctMjk4N2Q5MDk1NDNlLzAvQzU1MjhCMTg4 MEQxQTNDNDA5Rjc5OTk3RTQyNkY5Nzc1OTZCM0UwMS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9DNTUyOEIxODgwRDFBM0M0MDlGNzk5OTdFNDI2Rjk3NzU5NkIz RTAxLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzU1Y2UzNmRlLWY5MjEtNDI3NC04 NDk3LTI5ODdkOTA5NTQzZS8wLzMyMzQzMDMwM2EzODMwMzAzMDNhMzIzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzNDM4MzAzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQAgAAAAjANBgkq hkiG9w0BAQsFAAOCAQEAKIKfRbMcAJ1/YumNCSMV6kExo4/jA8tNSvDU3/KOhrp2 X38r04RyArFrdxBQum+Qza8Se+1IgkKc5ts02rY2R8SS4/r4DMQ8nX8etq63Ey6o Z2v6cLLYlIRDjWHyVToOmLkoFd+0x0KFXwOdExl04uhC/IRTJ6nazpd7RqHRsBaE ma8Yk5W4KW7wLWMtHMj3l7NnE/4cza+k+AC3k7oiqRRODTGLxY+q9Nqir/GQ4eke NmIHKrk4Xwg7D7ZLa6o1gZyhz6HziM7cXbcyhG3YakMUTUMyy0T6WM0R+4OcjKJJ yPA0bEQdaDNGgzspJQEoc/V01nNx6AuyTuKadmCq0g== -----END CERTIFICATE-----Generated at Wed May 13 15:03:59 2026 by rpki-client