$ rpki-client -vvf rpki-rsync.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/323430303a383030303a333030323a3a2f34382d3438203d3e2034383030.roa File: 323430303a383030303a333030323a3a2f34382d3438203d3e2034383030.roa (raw, json) Hash identifier: g+lx3ys8NW6kqZwkq/LNHL6bYo4Lrqb3vwI4EtUf0O0= Subject key identifier: C1:2E:B3:4C:A3:7E:B0:EA:4A:F5:EC:97:6E:47:3D:E2:0F:67:A5:E8 Certificate issuer: /CN=C5528B1880D1A3C409F79997E426F977596B3E01 Certificate serial: 066CB5749968F37B6677A6908B847690FF4AFBD7 Authority key identifier: C5:52:8B:18:80:D1:A3:C4:09:F7:99:97:E4:26:F9:77:59:6B:3E:01 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C5528B1880D1A3C409F79997E426F977596B3E01.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/323430303a383030303a333030323a3a2f34382d3438203d3e2034383030.roa Signing time: Sun 03 May 2026 02:34:09 +0000 ROA not before: Sun 03 May 2026 02:29:09 +0000 ROA not after: Sun 02 May 2027 02:34:09 +0000 asID: 4800 IP address blocks: 2400:8000:3002::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/C5528B1880D1A3C409F79997E426F977596B3E01.crl rsync://rpki-rsync.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/C5528B1880D1A3C409F79997E426F977596B3E01.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C5528B1880D1A3C409F79997E426F977596B3E01.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 23:29:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:6c:b5:74:99:68:f3:7b:66:77:a6:90:8b:84:76:90:ff:4a:fb:d7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C5528B1880D1A3C409F79997E426F977596B3E01 Validity Not Before: May 3 02:29:09 2026 GMT Not After : May 2 02:34:09 2027 GMT Subject: CN=C12EB34CA37EB0EA4AF5EC976E473DE20F67A5E8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:c2:2e:1d:07:f5:19:03:4a:64:05:f6:d3:21: 92:db:e9:1d:c8:c5:82:d1:3b:f3:c1:75:0c:f1:49: ff:4c:d1:4e:ca:30:01:4a:68:7e:a7:e8:be:e5:8d: 00:bf:85:88:83:91:e9:02:fb:f0:e8:5c:de:c1:d6: 31:a6:95:65:84:29:ce:da:43:3c:86:bf:3a:0e:69: 77:ee:74:ee:c6:ee:c9:33:dc:4f:2f:e7:6a:1c:b4: 90:ba:64:51:5e:a1:47:e1:73:66:a1:d8:da:d3:7d: 5b:26:cb:ea:b4:07:a9:84:71:b1:db:c5:2a:8c:3d: a2:61:b8:ee:2c:01:8a:6f:cd:ea:38:a4:cc:2a:cf: cc:34:0b:d6:d8:d2:9b:63:4c:6f:c8:0c:f9:3b:07: 33:86:59:e8:12:91:d2:0f:9d:ec:e0:04:75:03:59: 04:1f:49:3d:4a:cf:0b:5d:c5:0e:54:35:96:27:cf: f5:12:4f:de:e1:b4:36:e3:9f:a8:43:c8:ab:95:6d: 06:e2:c6:55:15:a8:60:2f:ba:e2:f4:29:f5:fc:ab: 8f:66:2f:8f:35:ec:69:6e:2d:55:ea:47:71:d7:61: 3e:7a:38:06:2f:d0:b4:fd:98:0e:0d:32:de:aa:eb: a7:a0:70:c1:50:61:ec:e3:2f:8c:ea:f7:2e:a2:d3: 70:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:2E:B3:4C:A3:7E:B0:EA:4A:F5:EC:97:6E:47:3D:E2:0F:67:A5:E8 X509v3 Authority Key Identifier: keyid:C5:52:8B:18:80:D1:A3:C4:09:F7:99:97:E4:26:F9:77:59:6B:3E:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/C5528B1880D1A3C409F79997E426F977596B3E01.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C5528B1880D1A3C409F79997E426F977596B3E01.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/323430303a383030303a333030323a3a2f34382d3438203d3e2034383030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:8000:3002::/48 Signature Algorithm: sha256WithRSAEncryption a7:c7:2d:c4:13:9e:10:e3:82:32:95:0f:a0:8a:4a:3f:a9:9e: 60:71:1d:6d:34:25:e3:aa:58:b7:e8:18:36:21:f4:d5:ad:87: 58:82:6e:d3:50:9a:f4:e6:cf:c3:0a:70:fc:21:3e:b0:fa:05: c3:b4:98:76:4b:e4:26:d5:ef:cc:73:a9:0c:8a:56:2d:b0:bb: f3:40:70:97:dc:69:37:5b:68:8f:13:73:a3:ad:df:dd:33:78: b2:17:57:ae:40:bb:dd:db:09:bf:c7:d3:a0:6f:8a:74:ba:a9: 07:9c:7e:64:4a:09:3c:a0:7f:18:e0:6f:0b:4f:86:1d:b6:51: 9e:5b:b8:bb:91:e7:6d:87:5b:ae:bb:9b:a6:16:e7:3a:a5:f1: 70:52:2b:9b:ed:7a:e0:43:06:cd:ce:cf:34:ce:ee:97:1c:ab: ef:c1:f1:17:48:d5:dd:80:dd:bb:1f:6f:07:f9:3f:6d:2a:ce: 96:b3:33:64:3e:72:77:bf:33:26:43:14:f2:2c:c0:21:75:33: fa:23:7a:81:eb:a3:92:51:cb:d3:cf:36:24:4f:64:f2:08:d2: 8c:fe:db:c2:61:60:4e:db:52:27:75:8c:10:1e:de:55:6c:b4: a9:2f:14:89:17:86:85:1f:fb:8e:e9:06:3c:8b:e6:40:e3:23: e9:57:ac:3e -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUBmy1dJlo83tmd6aQi4R2kP9K+9cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzU1MjhCMTg4MEQxQTNDNDA5Rjc5OTk3RTQyNkY5Nzc1 OTZCM0UwMTAeFw0yNjA1MDMwMjI5MDlaFw0yNzA1MDIwMjM0MDlaMDMxMTAvBgNV BAMTKEMxMkVCMzRDQTM3RUIwRUE0QUY1RUM5NzZFNDczREUyMEY2N0E1RTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqwi4dB/UZA0pkBfbTIZLb6R3I xYLRO/PBdQzxSf9M0U7KMAFKaH6n6L7ljQC/hYiDkekC+/DoXN7B1jGmlWWEKc7a QzyGvzoOaXfudO7G7skz3E8v52octJC6ZFFeoUfhc2ah2NrTfVsmy+q0B6mEcbHb xSqMPaJhuO4sAYpvzeo4pMwqz8w0C9bY0ptjTG/IDPk7BzOGWegSkdIPnezgBHUD WQQfST1KzwtdxQ5UNZYnz/UST97htDbjn6hDyKuVbQbixlUVqGAvuuL0KfX8q49m L4817GluLVXqR3HXYT56OAYv0LT9mA4NMt6q66egcMFQYezjL4zq9y6i03CJAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUwS6zTKN+sOpK9eyXbkc94g9npegwHwYDVR0j BBgwFoAUxVKLGIDRo8QJ95mX5Cb5d1lrPgEwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NTVjZTM2ZGUtZjkyMS00Mjc0LTg0OTctMjk4N2Q5MDk1NDNlLzAvQzU1MjhCMTg4 MEQxQTNDNDA5Rjc5OTk3RTQyNkY5Nzc1OTZCM0UwMS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9DNTUyOEIxODgwRDFBM0M0MDlGNzk5OTdFNDI2Rjk3NzU5NkIz RTAxLmNlcjCBqQYIKwYBBQUHAQsEgZwwgZkwgZYGCCsGAQUFBzALhoGJcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzU1Y2UzNmRlLWY5MjEtNDI3NC04 NDk3LTI5ODdkOTA5NTQzZS8wLzMyMzQzMDMwM2EzODMwMzAzMDNhMzMzMDMwMzIz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzNDM4MzAzMC5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQAgAAw AjANBgkqhkiG9w0BAQsFAAOCAQEAp8ctxBOeEOOCMpUPoIpKP6meYHEdbTQl46pY t+gYNiH01a2HWIJu01Ca9ObPwwpw/CE+sPoFw7SYdkvkJtXvzHOpDIpWLbC780Bw l9xpN1tojxNzo63f3TN4shdXrkC73dsJv8fToG+KdLqpB5x+ZEoJPKB/GOBvC0+G HbZRnlu4u5HnbYdbrrubphbnOqXxcFIrm+164EMGzc7PNM7ulxyr78HxF0jV3YDd ux9vB/k/bSrOlrMzZD5yd78zJkMU8izAIXUz+iN6geujklHL0882JE9k8gjSjP7b wmFgTttSJ3WMEB7eVWy0qS8UiReGhR/7jukGPIvmQOMj6VesPg== -----END CERTIFICATE-----Generated at Wed May 13 16:36:12 2026 by rpki-client