$ rpki-client -vvf rpki-rsync.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/323430303a383030303a383030323a3a2f34382d3438203d3e2034383030.roa File: 323430303a383030303a383030323a3a2f34382d3438203d3e2034383030.roa (raw, json) Hash identifier: +FoUbdGqHste4Nh6N+vVNIkBiBBvlXu31JdL6AXnfxk= Subject key identifier: FB:94:68:45:F2:E6:F6:39:F1:9D:38:A7:30:71:EF:D9:D7:16:F1:92 Certificate issuer: /CN=C5528B1880D1A3C409F79997E426F977596B3E01 Certificate serial: 4BE241058E8BA9B9E7486317ACB4D8163937B4E5 Authority key identifier: C5:52:8B:18:80:D1:A3:C4:09:F7:99:97:E4:26:F9:77:59:6B:3E:01 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C5528B1880D1A3C409F79997E426F977596B3E01.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/323430303a383030303a383030323a3a2f34382d3438203d3e2034383030.roa Signing time: Sun 03 May 2026 02:34:06 +0000 ROA not before: Sun 03 May 2026 02:29:06 +0000 ROA not after: Sun 02 May 2027 02:34:06 +0000 asID: 4800 IP address blocks: 2400:8000:8002::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/C5528B1880D1A3C409F79997E426F977596B3E01.crl rsync://rpki-rsync.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/C5528B1880D1A3C409F79997E426F977596B3E01.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C5528B1880D1A3C409F79997E426F977596B3E01.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 23:29:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:e2:41:05:8e:8b:a9:b9:e7:48:63:17:ac:b4:d8:16:39:37:b4:e5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C5528B1880D1A3C409F79997E426F977596B3E01 Validity Not Before: May 3 02:29:06 2026 GMT Not After : May 2 02:34:06 2027 GMT Subject: CN=FB946845F2E6F639F19D38A73071EFD9D716F192 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:d2:b2:9b:43:d1:e7:47:f5:0f:76:d8:11:95: b9:f5:4b:95:8a:e1:0f:51:03:6c:2a:76:25:5c:d2: be:39:12:cf:c3:51:8a:31:a9:5b:06:a4:a8:4c:29: 6e:d8:34:20:72:5c:a6:ce:d9:04:aa:a8:0e:bf:2e: 5a:c6:86:eb:c8:3b:60:ff:a5:48:08:f0:08:3e:d2: 06:68:74:45:4c:47:e3:8f:56:1d:f5:b1:c0:6e:12: 83:6e:4c:43:6b:bd:a4:e9:bb:d2:8f:7d:2b:22:61: 41:4d:f8:ad:0c:38:03:17:8e:02:9f:22:6e:b9:51: 97:85:c2:04:44:c7:a3:e6:89:fc:68:22:e2:9d:7f: be:6e:7e:15:17:1c:f0:8c:40:80:34:31:68:bf:1a: 82:a4:9f:14:46:d0:f1:c3:a0:fe:8e:d8:43:a2:38: 94:3c:33:38:c8:88:ef:23:a7:fa:83:d0:42:b9:a2: e9:68:00:a0:e0:32:9d:38:f4:05:44:bd:6c:31:f6: 3e:73:69:66:d6:1b:a5:77:78:28:54:06:b9:8b:69: 09:d4:80:dd:96:08:ae:41:a7:ed:df:bd:3c:e3:a7: 18:73:ab:79:95:70:37:b8:d7:c3:fb:ae:a7:6b:08: b5:b5:f2:f3:bb:f9:95:b2:5c:e9:c4:9e:9f:19:16: dc:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:94:68:45:F2:E6:F6:39:F1:9D:38:A7:30:71:EF:D9:D7:16:F1:92 X509v3 Authority Key Identifier: keyid:C5:52:8B:18:80:D1:A3:C4:09:F7:99:97:E4:26:F9:77:59:6B:3E:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/C5528B1880D1A3C409F79997E426F977596B3E01.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C5528B1880D1A3C409F79997E426F977596B3E01.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/323430303a383030303a383030323a3a2f34382d3438203d3e2034383030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:8000:8002::/48 Signature Algorithm: sha256WithRSAEncryption b4:c4:f7:a1:ae:d6:13:94:3f:a6:45:ff:f1:b6:76:71:d7:d2: 79:d9:a3:b2:f4:2a:1a:3b:7f:76:2d:c0:49:84:19:90:0a:db: 29:6b:09:cd:9d:de:d4:22:4b:e3:51:19:c8:cd:da:bb:c1:d2: 72:c9:b7:82:3c:9f:79:72:fe:65:10:3d:c9:ed:55:10:01:3a: ab:a6:62:62:38:5f:b0:47:25:bf:de:f3:35:72:52:9f:6d:52: f7:aa:7a:84:df:4e:64:7d:a2:0d:06:2d:d0:f9:b4:36:fb:1d: 6d:00:76:bc:0b:0a:18:81:3a:f0:a2:1b:b3:3c:39:3a:08:be: e9:c8:f2:5b:4e:be:e5:4c:14:ea:41:66:86:99:a3:c4:1a:e8: ea:a2:ff:71:83:dd:b9:a2:b0:00:79:69:19:0d:ed:f8:77:72: d1:fa:65:ef:95:ad:9c:54:7b:e7:29:80:77:74:22:bf:8e:27: d9:2d:c5:c6:b9:cd:ec:be:24:32:35:fb:1d:e4:68:c2:05:77: eb:f0:08:f7:13:69:27:b5:df:62:36:81:4b:c8:28:70:d9:01: cd:ce:55:ad:68:d8:11:89:b0:99:4a:cf:d6:f5:62:87:3c:4e: dd:1b:7b:db:75:96:e5:50:85:7b:fa:d7:c8:6e:4d:28:30:15: 35:ea:fb:be -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUS+JBBY6LqbnnSGMXrLTYFjk3tOUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzU1MjhCMTg4MEQxQTNDNDA5Rjc5OTk3RTQyNkY5Nzc1 OTZCM0UwMTAeFw0yNjA1MDMwMjI5MDZaFw0yNzA1MDIwMjM0MDZaMDMxMTAvBgNV BAMTKEZCOTQ2ODQ1RjJFNkY2MzlGMTlEMzhBNzMwNzFFRkQ5RDcxNkYxOTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD10rKbQ9HnR/UPdtgRlbn1S5WK 4Q9RA2wqdiVc0r45Es/DUYoxqVsGpKhMKW7YNCByXKbO2QSqqA6/LlrGhuvIO2D/ pUgI8Ag+0gZodEVMR+OPVh31scBuEoNuTENrvaTpu9KPfSsiYUFN+K0MOAMXjgKf Im65UZeFwgREx6PmifxoIuKdf75ufhUXHPCMQIA0MWi/GoKknxRG0PHDoP6O2EOi OJQ8MzjIiO8jp/qD0EK5ouloAKDgMp049AVEvWwx9j5zaWbWG6V3eChUBrmLaQnU gN2WCK5Bp+3fvTzjpxhzq3mVcDe418P7rqdrCLW18vO7+ZWyXOnEnp8ZFtylAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQU+5RoRfLm9jnxnTinMHHv2dcW8ZIwHwYDVR0j BBgwFoAUxVKLGIDRo8QJ95mX5Cb5d1lrPgEwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NTVjZTM2ZGUtZjkyMS00Mjc0LTg0OTctMjk4N2Q5MDk1NDNlLzAvQzU1MjhCMTg4 MEQxQTNDNDA5Rjc5OTk3RTQyNkY5Nzc1OTZCM0UwMS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9DNTUyOEIxODgwRDFBM0M0MDlGNzk5OTdFNDI2Rjk3NzU5NkIz RTAxLmNlcjCBqQYIKwYBBQUHAQsEgZwwgZkwgZYGCCsGAQUFBzALhoGJcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzU1Y2UzNmRlLWY5MjEtNDI3NC04 NDk3LTI5ODdkOTA5NTQzZS8wLzMyMzQzMDMwM2EzODMwMzAzMDNhMzgzMDMwMzIz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzNDM4MzAzMC5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQAgACA AjANBgkqhkiG9w0BAQsFAAOCAQEAtMT3oa7WE5Q/pkX/8bZ2cdfSedmjsvQqGjt/ di3ASYQZkArbKWsJzZ3e1CJL41EZyM3au8HScsm3gjyfeXL+ZRA9ye1VEAE6q6Zi YjhfsEclv97zNXJSn21S96p6hN9OZH2iDQYt0Pm0NvsdbQB2vAsKGIE68KIbszw5 Ogi+6cjyW06+5UwU6kFmhpmjxBro6qL/cYPduaKwAHlpGQ3t+Hdy0fpl75WtnFR7 5ymAd3Qiv44n2S3FxrnN7L4kMjX7HeRowgV36/AI9xNpJ7XfYjaBS8gocNkBzc5V rWjYEYmwmUrP1vVihzxO3Rt723WW5VCFe/rXyG5NKDAVNer7vg== -----END CERTIFICATE-----Generated at Wed May 13 17:10:44 2026 by rpki-client