$ rpki-client -vvf rpki-rsync.idnic.net/repo/5713fc17-57f1-4671-8a16-f858ddd7da43/0/323430353a363734303a3130303a3a2f34382d3438203d3e20313339343139.roa File: 323430353a363734303a3130303a3a2f34382d3438203d3e20313339343139.roa (raw, json) Hash identifier: xaylfD3eW82VInvmm3Tk4BclpJ/ZIAXvUl+mvGXRuok= Subject key identifier: E0:FA:6C:77:DA:98:97:61:12:69:F8:B2:54:74:43:D6:B4:02:0F:BF Certificate issuer: /CN=33A70133EE15A92F98C43BE642D1CCF7C2B07E6F Certificate serial: 79030FA3284FD87D5C99BC3AF82298A72063030F Authority key identifier: 33:A7:01:33:EE:15:A9:2F:98:C4:3B:E6:42:D1:CC:F7:C2:B0:7E:6F Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/33A70133EE15A92F98C43BE642D1CCF7C2B07E6F.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/5713fc17-57f1-4671-8a16-f858ddd7da43/0/323430353a363734303a3130303a3a2f34382d3438203d3e20313339343139.roa Signing time: Sun 03 May 2026 02:34:27 +0000 ROA not before: Sun 03 May 2026 02:29:27 +0000 ROA not after: Sun 02 May 2027 02:34:27 +0000 asID: 139419 IP address blocks: 2405:6740:100::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/5713fc17-57f1-4671-8a16-f858ddd7da43/0/33A70133EE15A92F98C43BE642D1CCF7C2B07E6F.crl rsync://rpki-rsync.idnic.net/repo/5713fc17-57f1-4671-8a16-f858ddd7da43/0/33A70133EE15A92F98C43BE642D1CCF7C2B07E6F.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/33A70133EE15A92F98C43BE642D1CCF7C2B07E6F.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 04:30:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:03:0f:a3:28:4f:d8:7d:5c:99:bc:3a:f8:22:98:a7:20:63:03:0f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=33A70133EE15A92F98C43BE642D1CCF7C2B07E6F Validity Not Before: May 3 02:29:27 2026 GMT Not After : May 2 02:34:27 2027 GMT Subject: CN=E0FA6C77DA9897611269F8B2547443D6B4020FBF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:84:27:8c:8e:85:5f:d9:94:7f:81:45:cb:7f: 8a:81:23:25:dc:5b:1e:b5:64:eb:94:c7:97:6d:be: ef:8d:8f:e2:3c:e8:7e:82:01:11:10:49:f7:3e:90: 68:df:b8:84:b3:89:d8:42:33:f1:57:48:37:b4:68: a6:73:70:fa:da:f3:50:f5:01:bf:4b:79:9e:6b:78: 10:4a:f3:b0:70:29:99:9a:0b:db:02:65:0d:3c:1d: 80:39:32:32:9c:6e:11:ca:53:ff:72:f7:2b:f4:76: 74:0a:97:c8:79:3f:98:0f:e9:be:61:f7:0f:8a:29: 05:b0:39:70:83:de:ce:b1:2c:25:0c:0c:5d:02:9b: d4:e5:88:8c:ae:a8:56:9f:30:4c:06:aa:98:18:e5: 55:5c:0c:2f:a2:5a:9c:cc:b7:42:6b:c9:80:25:f8: f9:3f:a6:9a:8a:94:dd:0c:a3:70:78:34:b8:00:d1: 9f:11:7a:2a:6f:9b:b6:aa:5d:9f:ed:c3:8f:bb:78: 32:83:71:33:f2:fe:7f:62:b0:8e:41:3b:43:b4:be: 24:12:7b:f8:1a:e0:9f:31:15:d3:52:93:32:af:1c: 32:6c:04:64:77:63:4c:d2:74:e8:61:81:c2:7c:ed: f4:0f:32:94:46:d5:09:9b:ca:1d:3f:d5:fd:58:ef: 28:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:FA:6C:77:DA:98:97:61:12:69:F8:B2:54:74:43:D6:B4:02:0F:BF X509v3 Authority Key Identifier: keyid:33:A7:01:33:EE:15:A9:2F:98:C4:3B:E6:42:D1:CC:F7:C2:B0:7E:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/5713fc17-57f1-4671-8a16-f858ddd7da43/0/33A70133EE15A92F98C43BE642D1CCF7C2B07E6F.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/33A70133EE15A92F98C43BE642D1CCF7C2B07E6F.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/5713fc17-57f1-4671-8a16-f858ddd7da43/0/323430353a363734303a3130303a3a2f34382d3438203d3e20313339343139.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:6740:100::/48 Signature Algorithm: sha256WithRSAEncryption b6:33:b9:f0:51:7a:3e:36:a9:c3:95:13:e7:a6:d8:dc:02:1a: af:17:82:da:d3:82:b3:3d:a5:3d:da:1d:28:9f:ba:03:bf:cf: 1d:ee:e1:7b:37:ec:12:59:9f:7b:0e:0d:80:85:e1:12:55:11: 59:e3:e9:8c:29:8d:81:f6:a8:27:f1:52:0a:86:20:5d:c8:6a: 58:b2:f9:37:5b:ca:96:61:5e:7b:3d:39:da:e8:85:db:f8:f3: f5:2c:14:16:61:4f:5c:c8:80:ff:e8:9a:4f:9b:53:85:63:26: ed:a7:a4:6a:2f:2a:c5:cc:2a:fd:3b:63:70:b5:cd:c2:76:5c: 26:e9:2d:0e:d1:a3:1b:58:7e:2f:60:a6:da:2a:86:45:41:19: d6:5a:45:cc:44:e2:7b:fa:a4:93:e1:13:ca:ab:02:3a:22:75: 09:c2:e0:30:8a:2e:8b:39:d0:81:e0:38:55:19:b4:7d:ef:38: ae:52:80:de:46:87:9c:65:27:b0:c7:36:74:66:71:7e:4d:3c: 0f:a9:a7:ef:9a:0e:1d:fc:52:08:66:30:34:db:39:da:57:3a: 75:85:82:9b:a6:80:94:01:e5:0d:82:0e:5f:ad:22:46:62:77: 04:e8:3f:2d:85:48:c6:f8:a7:a1:f4:fc:02:1d:8b:6c:d6:8d: de:54:6b:c0 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUeQMPoyhP2H1cmbw6+CKYpyBjAw8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzNBNzAxMzNFRTE1QTkyRjk4QzQzQkU2NDJEMUNDRjdD MkIwN0U2RjAeFw0yNjA1MDMwMjI5MjdaFw0yNzA1MDIwMjM0MjdaMDMxMTAvBgNV BAMTKEUwRkE2Qzc3REE5ODk3NjExMjY5RjhCMjU0NzQ0M0Q2QjQwMjBGQkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCkhCeMjoVf2ZR/gUXLf4qBIyXc Wx61ZOuUx5dtvu+Nj+I86H6CAREQSfc+kGjfuISzidhCM/FXSDe0aKZzcPra81D1 Ab9LeZ5reBBK87BwKZmaC9sCZQ08HYA5MjKcbhHKU/9y9yv0dnQKl8h5P5gP6b5h 9w+KKQWwOXCD3s6xLCUMDF0Cm9TliIyuqFafMEwGqpgY5VVcDC+iWpzMt0JryYAl +Pk/ppqKlN0Mo3B4NLgA0Z8Reipvm7aqXZ/tw4+7eDKDcTPy/n9isI5BO0O0viQS e/ga4J8xFdNSkzKvHDJsBGR3Y0zSdOhhgcJ87fQPMpRG1Qmbyh0/1f1Y7yijAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQU4Ppsd9qYl2ESafiyVHRD1rQCD78wHwYDVR0j BBgwFoAUM6cBM+4VqS+YxDvmQtHM98Kwfm8wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NTcxM2ZjMTctNTdmMS00NjcxLThhMTYtZjg1OGRkZDdkYTQzLzAvMzNBNzAxMzNF RTE1QTkyRjk4QzQzQkU2NDJEMUNDRjdDMkIwN0U2Ri5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8zM0E3MDEzM0VFMTVBOTJGOThDNDNCRTY0MkQxQ0NGN0MyQjA3 RTZGLmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUFBzALhoGLcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzU3MTNmYzE3LTU3ZjEtNDY3MS04 YTE2LWY4NThkZGQ3ZGE0My8wLzMyMzQzMDM1M2EzNjM3MzQzMDNhMzEzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM5MzQzMTM5LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAVn QAEAMA0GCSqGSIb3DQEBCwUAA4IBAQC2M7nwUXo+NqnDlRPnptjcAhqvF4La04Kz PaU92h0on7oDv88d7uF7N+wSWZ97Dg2AheESVRFZ4+mMKY2B9qgn8VIKhiBdyGpY svk3W8qWYV57PTna6IXb+PP1LBQWYU9cyID/6JpPm1OFYybtp6RqLyrFzCr9O2Nw tc3Cdlwm6S0O0aMbWH4vYKbaKoZFQRnWWkXMROJ7+qST4RPKqwI6InUJwuAwii6L OdCB4DhVGbR97ziuUoDeRoecZSewxzZ0ZnF+TTwPqafvmg4d/FIIZjA02znaVzp1 hYKbpoCUAeUNgg5frSJGYncE6D8thUjG+Keh9PwCHYts1o3eVGvA -----END CERTIFICATE-----Generated at Wed May 13 16:19:16 2026 by rpki-client