$ rpki-client -vvf rpki-rsync.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/323430303a383030303a383030313a3a2f34382d3438203d3e2034383030.roa File: 323430303a383030303a383030313a3a2f34382d3438203d3e2034383030.roa (raw, json) Hash identifier: 3PhEkUV3N12R8pRIHSoFuztVIR9bfgzvVF7hUhxIxyU= Subject key identifier: C4:8C:EA:A8:F0:1C:B4:60:25:FF:A7:26:E4:83:94:D7:9D:00:BD:84 Certificate issuer: /CN=C5528B1880D1A3C409F79997E426F977596B3E01 Certificate serial: 025D8AC6F367EFF4D5B948DE4A195DAFB73A3DD7 Authority key identifier: C5:52:8B:18:80:D1:A3:C4:09:F7:99:97:E4:26:F9:77:59:6B:3E:01 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C5528B1880D1A3C409F79997E426F977596B3E01.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/323430303a383030303a383030313a3a2f34382d3438203d3e2034383030.roa Signing time: Sun 03 May 2026 02:34:04 +0000 ROA not before: Sun 03 May 2026 02:29:04 +0000 ROA not after: Sun 02 May 2027 02:34:04 +0000 asID: 4800 IP address blocks: 2400:8000:8001::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/C5528B1880D1A3C409F79997E426F977596B3E01.crl rsync://rpki-rsync.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/C5528B1880D1A3C409F79997E426F977596B3E01.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C5528B1880D1A3C409F79997E426F977596B3E01.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 23:29:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:5d:8a:c6:f3:67:ef:f4:d5:b9:48:de:4a:19:5d:af:b7:3a:3d:d7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C5528B1880D1A3C409F79997E426F977596B3E01 Validity Not Before: May 3 02:29:04 2026 GMT Not After : May 2 02:34:04 2027 GMT Subject: CN=C48CEAA8F01CB46025FFA726E48394D79D00BD84 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:8a:86:25:24:c3:41:b9:e9:95:c5:b2:f0:03: 5b:83:dc:3c:7c:31:55:39:03:f0:c0:2e:a2:d0:a3: 7c:f8:c7:ec:21:24:d4:17:77:1a:5a:c5:ff:a4:17: 72:59:0a:e1:ea:35:52:bc:bf:11:05:1e:8b:58:4f: 10:95:57:92:5c:29:6a:d9:10:fc:bb:28:21:2f:1f: a2:d8:54:20:83:31:07:5f:cc:b8:4a:86:a8:aa:44: b9:ec:fd:c2:91:2a:e7:bf:07:e7:50:82:c2:f9:b5: c9:72:56:b8:d4:b2:a6:81:60:ea:01:21:38:f0:4a: 68:1d:8f:7d:a9:cb:ce:1f:73:03:da:87:a5:5d:1d: ea:5f:0e:9e:8f:54:c6:da:92:44:20:78:71:b0:53: 83:c0:2c:5a:d1:d1:1a:47:0e:18:de:9a:4f:cc:03: 1a:a4:1c:c3:c8:41:0d:c5:4b:09:07:01:53:dc:f5: 01:1c:18:93:1b:41:ee:06:be:8b:ea:0a:31:f8:a1: c0:db:bc:7c:29:1c:46:88:fb:f0:be:e0:75:d0:8d: e2:cc:9d:81:30:e5:d3:25:1c:c8:0f:b9:d3:5c:d0: 3c:76:30:f8:bc:fd:7a:0d:fa:2e:15:b9:b5:53:de: 97:20:d0:01:9a:da:cc:09:86:88:0d:49:24:db:74: 07:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:8C:EA:A8:F0:1C:B4:60:25:FF:A7:26:E4:83:94:D7:9D:00:BD:84 X509v3 Authority Key Identifier: keyid:C5:52:8B:18:80:D1:A3:C4:09:F7:99:97:E4:26:F9:77:59:6B:3E:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/C5528B1880D1A3C409F79997E426F977596B3E01.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C5528B1880D1A3C409F79997E426F977596B3E01.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/323430303a383030303a383030313a3a2f34382d3438203d3e2034383030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:8000:8001::/48 Signature Algorithm: sha256WithRSAEncryption aa:04:d9:fd:3e:ec:ab:59:d8:3a:c3:5a:8f:4c:c6:07:fe:cd: c9:b4:b1:eb:d8:09:0d:fd:b4:03:c8:58:b4:96:a3:36:b7:30: 3c:df:f9:3e:24:3b:4d:40:50:fb:15:9f:d6:c3:45:09:63:da: a6:f0:36:fb:30:d3:af:40:3d:ca:e7:79:0d:47:e6:1a:bd:df: f2:9d:dc:83:59:ab:d9:24:8f:44:d2:1a:95:f0:df:a8:f9:10: 6a:1e:46:2d:f5:36:6d:7f:ed:d1:7d:f1:5e:e3:fa:15:d0:7a: e0:5e:5d:6d:53:df:48:71:11:4d:0f:f7:f6:3a:e6:4a:e0:26: d2:7d:d6:18:6d:a3:f2:19:9d:87:2f:26:44:a1:e1:cf:0d:64: aa:6f:65:cf:58:4f:1b:ba:5f:8b:71:cb:d9:b1:bd:5e:41:5b: 1d:56:9e:5f:28:89:79:e2:45:5b:71:f3:79:a6:bc:8d:3f:a2: 0f:9b:38:9d:3c:95:d8:ff:53:eb:a2:e9:01:c2:63:8b:e6:60: f5:70:fa:e4:88:7c:2d:95:6f:cf:76:ef:fa:20:d1:ba:23:49: d2:ff:5c:9d:ca:4d:e7:19:6f:fa:1b:2d:45:5e:dd:99:64:b8: 99:c2:35:dc:47:f2:78:23:a1:90:a9:f1:83:1f:a6:f7:56:56: f5:a6:64:cb -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUAl2KxvNn7/TVuUjeShldr7c6PdcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzU1MjhCMTg4MEQxQTNDNDA5Rjc5OTk3RTQyNkY5Nzc1 OTZCM0UwMTAeFw0yNjA1MDMwMjI5MDRaFw0yNzA1MDIwMjM0MDRaMDMxMTAvBgNV BAMTKEM0OENFQUE4RjAxQ0I0NjAyNUZGQTcyNkU0ODM5NEQ3OUQwMEJEODQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDtioYlJMNBuemVxbLwA1uD3Dx8 MVU5A/DALqLQo3z4x+whJNQXdxpaxf+kF3JZCuHqNVK8vxEFHotYTxCVV5JcKWrZ EPy7KCEvH6LYVCCDMQdfzLhKhqiqRLns/cKRKue/B+dQgsL5tclyVrjUsqaBYOoB ITjwSmgdj32py84fcwPah6VdHepfDp6PVMbakkQgeHGwU4PALFrR0RpHDhjemk/M AxqkHMPIQQ3FSwkHAVPc9QEcGJMbQe4GvovqCjH4ocDbvHwpHEaI+/C+4HXQjeLM nYEw5dMlHMgPudNc0Dx2MPi8/XoN+i4VubVT3pcg0AGa2swJhogNSSTbdAcxAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUxIzqqPActGAl/6cm5IOU150AvYQwHwYDVR0j BBgwFoAUxVKLGIDRo8QJ95mX5Cb5d1lrPgEwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NTVjZTM2ZGUtZjkyMS00Mjc0LTg0OTctMjk4N2Q5MDk1NDNlLzAvQzU1MjhCMTg4 MEQxQTNDNDA5Rjc5OTk3RTQyNkY5Nzc1OTZCM0UwMS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9DNTUyOEIxODgwRDFBM0M0MDlGNzk5OTdFNDI2Rjk3NzU5NkIz RTAxLmNlcjCBqQYIKwYBBQUHAQsEgZwwgZkwgZYGCCsGAQUFBzALhoGJcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzU1Y2UzNmRlLWY5MjEtNDI3NC04 NDk3LTI5ODdkOTA5NTQzZS8wLzMyMzQzMDMwM2EzODMwMzAzMDNhMzgzMDMwMzEz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzNDM4MzAzMC5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQAgACA ATANBgkqhkiG9w0BAQsFAAOCAQEAqgTZ/T7sq1nYOsNaj0zGB/7NybSx69gJDf20 A8hYtJajNrcwPN/5PiQ7TUBQ+xWf1sNFCWPapvA2+zDTr0A9yud5DUfmGr3f8p3c g1mr2SSPRNIalfDfqPkQah5GLfU2bX/t0X3xXuP6FdB64F5dbVPfSHERTQ/39jrm SuAm0n3WGG2j8hmdhy8mRKHhzw1kqm9lz1hPG7pfi3HL2bG9XkFbHVaeXyiJeeJF W3Hzeaa8jT+iD5s4nTyV2P9T66LpAcJji+Zg9XD65Ih8LZVvz3bv+iDRuiNJ0v9c ncpN5xlv+hstRV7dmWS4mcI13EfyeCOhkKnxgx+m91ZW9aZkyw== -----END CERTIFICATE-----Generated at Wed May 13 18:21:45 2026 by rpki-client