$ rpki-client -vvf rpki-rsync.idnic.net/repo/561cf777-8adf-4ef1-8d6f-9862c55620ea/0/323430373a633663303a3a2f33322d3438203d3e20313432333634.roa File: 323430373a633663303a3a2f33322d3438203d3e20313432333634.roa (raw, json) Hash identifier: PIAfDzknn9MyXCe2w271kJi6m07dYGdxpQ/h99WENdo= Subject key identifier: 92:AE:89:E9:36:1E:ED:3A:4C:B5:ED:87:EE:39:AD:47:44:D0:EB:36 Certificate issuer: /CN=E30A78294D1A6B6A63D27E37DD6FC6E7B80F9ED2 Certificate serial: 0CE64B93007AF7EF0AE2DA6F936AD3D2E97F52AE Authority key identifier: E3:0A:78:29:4D:1A:6B:6A:63:D2:7E:37:DD:6F:C6:E7:B8:0F:9E:D2 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/E30A78294D1A6B6A63D27E37DD6FC6E7B80F9ED2.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/561cf777-8adf-4ef1-8d6f-9862c55620ea/0/323430373a633663303a3a2f33322d3438203d3e20313432333634.roa Signing time: Sun 03 May 2026 02:34:16 +0000 ROA not before: Sun 03 May 2026 02:29:16 +0000 ROA not after: Sun 02 May 2027 02:34:16 +0000 asID: 142364 IP address blocks: 2407:c6c0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/561cf777-8adf-4ef1-8d6f-9862c55620ea/0/E30A78294D1A6B6A63D27E37DD6FC6E7B80F9ED2.crl rsync://rpki-rsync.idnic.net/repo/561cf777-8adf-4ef1-8d6f-9862c55620ea/0/E30A78294D1A6B6A63D27E37DD6FC6E7B80F9ED2.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/E30A78294D1A6B6A63D27E37DD6FC6E7B80F9ED2.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 10:27:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:e6:4b:93:00:7a:f7:ef:0a:e2:da:6f:93:6a:d3:d2:e9:7f:52:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E30A78294D1A6B6A63D27E37DD6FC6E7B80F9ED2 Validity Not Before: May 3 02:29:16 2026 GMT Not After : May 2 02:34:16 2027 GMT Subject: CN=92AE89E9361EED3A4CB5ED87EE39AD4744D0EB36 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:62:a6:70:4b:c8:25:6d:71:0f:05:5e:5f:dd: a5:53:c5:d1:1d:97:d1:dd:30:4e:88:63:bb:ba:81: d5:f3:be:e5:c7:11:13:6e:3f:8a:38:35:e9:36:c1: 33:e2:37:f7:6b:37:bd:1f:c8:0f:ae:5a:ad:7b:c3: e0:c1:e1:e5:77:b3:bc:cc:c2:4f:d3:cb:c3:82:20: fd:49:6c:4a:ff:74:bb:ca:48:5d:2f:42:91:9f:70: dd:63:5c:42:0b:4f:73:54:62:18:97:58:02:b4:f2: e6:32:04:c3:ad:64:34:d8:0f:ce:17:82:12:a8:80: 27:87:f9:63:94:02:53:b7:49:bd:43:cc:29:2a:eb: 9c:b1:61:57:32:43:1b:14:f4:43:4a:8a:78:d6:c9: b8:f3:e9:85:56:e1:92:33:23:e2:4e:38:e9:87:ac: 53:29:83:f5:63:ee:d8:90:9f:bb:dd:46:de:39:7b: 64:6d:18:a6:27:19:82:c1:c5:4d:68:51:85:8c:f0: 71:b1:8b:71:a6:f6:89:a5:d2:1a:a0:5f:b9:1f:96: 1e:07:b3:b1:f4:d3:72:76:02:51:08:f7:98:c9:04: b4:ba:c5:85:f3:32:ad:cd:7c:4f:1d:77:03:f1:e5: 63:5a:d5:9f:12:3f:b3:73:cc:35:93:4d:62:ae:b6: 4f:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:AE:89:E9:36:1E:ED:3A:4C:B5:ED:87:EE:39:AD:47:44:D0:EB:36 X509v3 Authority Key Identifier: keyid:E3:0A:78:29:4D:1A:6B:6A:63:D2:7E:37:DD:6F:C6:E7:B8:0F:9E:D2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/561cf777-8adf-4ef1-8d6f-9862c55620ea/0/E30A78294D1A6B6A63D27E37DD6FC6E7B80F9ED2.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/E30A78294D1A6B6A63D27E37DD6FC6E7B80F9ED2.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/561cf777-8adf-4ef1-8d6f-9862c55620ea/0/323430373a633663303a3a2f33322d3438203d3e20313432333634.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2407:c6c0::/32 Signature Algorithm: sha256WithRSAEncryption 2d:6d:ed:43:8b:ab:20:27:18:e7:9c:4b:cb:ef:fd:03:74:66: af:8e:ef:f1:8d:f6:ff:3d:70:80:af:ce:c1:85:ab:70:ae:c5: 9b:8a:8f:8a:e0:16:d8:cb:35:9d:0e:bf:21:e3:a0:51:c8:dc: b0:52:1e:17:d6:17:f6:7b:90:1c:78:b0:47:79:cf:f8:e1:18: fe:88:c4:0e:c0:5d:d1:96:97:8d:43:f3:e0:6e:db:8c:63:f3: 3b:fe:35:01:a9:13:76:f0:e1:2d:19:3d:a1:c2:00:3a:03:db: 90:43:04:89:37:29:c5:fb:0b:d1:2c:69:63:f9:c6:69:a5:cc: 1d:e3:62:0f:ed:52:bd:3b:73:27:43:d6:d9:4e:f3:fa:00:c5: e0:af:13:d9:c0:18:77:d9:4c:d1:d1:27:fa:c7:a7:e7:ab:8a: f7:9e:53:96:c2:96:ca:30:cf:40:d9:53:1e:81:b8:c7:93:c5: 5a:e7:e5:b9:2e:3c:ef:9b:9e:04:a8:cb:01:af:25:f7:c1:f6: 7c:b1:f2:c5:c4:d1:55:f4:61:d6:cf:89:e1:58:36:aa:ae:ae: 43:93:06:5c:bd:85:c0:c2:4f:52:2b:1f:7e:56:94:c1:28:4c: 17:5b:ab:b8:55:86:51:88:a9:90:3c:2e:db:71:e9:ea:5e:33: 2a:24:a8:d0 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUDOZLkwB69+8K4tpvk2rT0ul/Uq4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTMwQTc4Mjk0RDFBNkI2QTYzRDI3RTM3REQ2RkM2RTdC ODBGOUVEMjAeFw0yNjA1MDMwMjI5MTZaFw0yNzA1MDIwMjM0MTZaMDMxMTAvBgNV BAMTKDkyQUU4OUU5MzYxRUVEM0E0Q0I1RUQ4N0VFMzlBRDQ3NDREMEVCMzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDgYqZwS8glbXEPBV5f3aVTxdEd l9HdME6IY7u6gdXzvuXHERNuP4o4Nek2wTPiN/drN70fyA+uWq17w+DB4eV3s7zM wk/Ty8OCIP1JbEr/dLvKSF0vQpGfcN1jXEILT3NUYhiXWAK08uYyBMOtZDTYD84X ghKogCeH+WOUAlO3Sb1DzCkq65yxYVcyQxsU9ENKinjWybjz6YVW4ZIzI+JOOOmH rFMpg/Vj7tiQn7vdRt45e2RtGKYnGYLBxU1oUYWM8HGxi3Gm9oml0hqgX7kflh4H s7H003J2AlEI95jJBLS6xYXzMq3NfE8ddwPx5WNa1Z8SP7NzzDWTTWKutk89AgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUkq6J6TYe7TpMte2H7jmtR0TQ6zYwHwYDVR0j BBgwFoAU4wp4KU0aa2pj0n433W/G57gPntIwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NTYxY2Y3NzctOGFkZi00ZWYxLThkNmYtOTg2MmM1NTYyMGVhLzAvRTMwQTc4Mjk0 RDFBNkI2QTYzRDI3RTM3REQ2RkM2RTdCODBGOUVEMi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9FMzBBNzgyOTREMUE2QjZBNjNEMjdFMzdERDZGQzZFN0I4MEY5 RUQyLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzU2MWNmNzc3LThhZGYtNGVmMS04 ZDZmLTk4NjJjNTU2MjBlYS8wLzMyMzQzMDM3M2E2MzM2NjMzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMxMzQzMjMzMzYzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQHxsAwDQYJKoZI hvcNAQELBQADggEBAC1t7UOLqyAnGOecS8vv/QN0Zq+O7/GN9v89cICvzsGFq3Cu xZuKj4rgFtjLNZ0OvyHjoFHI3LBSHhfWF/Z7kBx4sEd5z/jhGP6IxA7AXdGWl41D 8+Bu24xj8zv+NQGpE3bw4S0ZPaHCADoD25BDBIk3KcX7C9EsaWP5xmmlzB3jYg/t Ur07cydD1tlO8/oAxeCvE9nAGHfZTNHRJ/rHp+eriveeU5bClsowz0DZUx6BuMeT xVrn5bkuPO+bngSoywGvJffB9nyx8sXE0VX0YdbPieFYNqqurkOTBly9hcDCT1Ir H35WlMEoTBdbq7hVhlGIqZA8Lttx6epeMyokqNA= -----END CERTIFICATE-----Generated at Wed May 13 11:50:18 2026 by rpki-client