$ rpki-client -vvf rpki-rsync.idnic.net/repo/5713fc17-57f1-4671-8a16-f858ddd7da43/0/323430353a363734303a3139303a3a2f34382d3438203d3e20313339343139.roa File: 323430353a363734303a3139303a3a2f34382d3438203d3e20313339343139.roa (raw, json) Hash identifier: Idr9E51DnsxslvEhsupC2DXrugteUn6rOQC6bHIGQEc= Subject key identifier: 25:25:6C:B6:4D:7A:A7:C6:61:96:CB:F2:01:C3:E7:20:3A:CB:63:BE Certificate issuer: /CN=33A70133EE15A92F98C43BE642D1CCF7C2B07E6F Certificate serial: 4FBE9215C3C05429E88BE5AE21F82A31F6E3E028 Authority key identifier: 33:A7:01:33:EE:15:A9:2F:98:C4:3B:E6:42:D1:CC:F7:C2:B0:7E:6F Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/33A70133EE15A92F98C43BE642D1CCF7C2B07E6F.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/5713fc17-57f1-4671-8a16-f858ddd7da43/0/323430353a363734303a3139303a3a2f34382d3438203d3e20313339343139.roa Signing time: Sun 03 May 2026 02:34:28 +0000 ROA not before: Sun 03 May 2026 02:29:28 +0000 ROA not after: Sun 02 May 2027 02:34:28 +0000 asID: 139419 IP address blocks: 2405:6740:190::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/5713fc17-57f1-4671-8a16-f858ddd7da43/0/33A70133EE15A92F98C43BE642D1CCF7C2B07E6F.crl rsync://rpki-rsync.idnic.net/repo/5713fc17-57f1-4671-8a16-f858ddd7da43/0/33A70133EE15A92F98C43BE642D1CCF7C2B07E6F.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/33A70133EE15A92F98C43BE642D1CCF7C2B07E6F.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 04:30:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:be:92:15:c3:c0:54:29:e8:8b:e5:ae:21:f8:2a:31:f6:e3:e0:28 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=33A70133EE15A92F98C43BE642D1CCF7C2B07E6F Validity Not Before: May 3 02:29:28 2026 GMT Not After : May 2 02:34:28 2027 GMT Subject: CN=25256CB64D7AA7C66196CBF201C3E7203ACB63BE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:2e:4f:cd:2c:d6:03:3b:5e:13:66:e5:31:b6: 0a:66:25:b5:96:ae:0c:00:79:e6:64:36:a3:f5:80: 1a:7e:17:1b:57:ec:7f:c5:4a:83:7a:25:0a:5e:32: 2d:67:be:3a:ec:9c:9f:26:5e:e8:ac:b0:90:cb:d1: 72:c7:cb:51:c1:65:6f:01:cc:af:c5:09:f9:12:26: 5e:d6:4d:20:74:8f:60:ad:8f:dd:e7:50:75:fd:0c: 08:a9:18:6a:28:7f:1f:39:ae:07:8c:d1:cf:c5:e4: cb:76:29:fa:b8:73:71:6a:8f:f0:6f:1c:8c:c8:dc: ac:ea:a5:bd:e8:b3:0b:38:71:b9:1a:fc:15:89:2e: 51:00:7b:90:45:32:cf:ff:46:81:66:b1:33:51:d6: 13:41:44:34:78:4a:45:22:54:8f:05:f8:31:21:a7: c9:44:83:eb:0f:83:a8:9f:fc:2b:d1:80:25:90:58: 6e:88:21:05:37:4e:9b:24:6b:48:0b:f5:0a:c9:c1: 36:bc:3f:58:10:8e:7b:35:02:ae:db:db:c3:bf:c3: ab:1c:cf:94:c8:e1:98:51:b1:b5:8a:2e:5c:e9:8a: 43:4a:64:39:5e:32:4d:55:4a:85:88:99:84:96:c2: 7d:15:94:49:5c:5d:71:df:f0:cf:bf:52:42:ce:7c: 08:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:25:6C:B6:4D:7A:A7:C6:61:96:CB:F2:01:C3:E7:20:3A:CB:63:BE X509v3 Authority Key Identifier: keyid:33:A7:01:33:EE:15:A9:2F:98:C4:3B:E6:42:D1:CC:F7:C2:B0:7E:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/5713fc17-57f1-4671-8a16-f858ddd7da43/0/33A70133EE15A92F98C43BE642D1CCF7C2B07E6F.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/33A70133EE15A92F98C43BE642D1CCF7C2B07E6F.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/5713fc17-57f1-4671-8a16-f858ddd7da43/0/323430353a363734303a3139303a3a2f34382d3438203d3e20313339343139.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:6740:190::/48 Signature Algorithm: sha256WithRSAEncryption 97:74:4b:93:e1:16:dd:58:06:db:2a:fe:91:a8:b9:be:28:84: 74:d8:6a:e5:e9:57:66:63:c1:d1:3d:f7:59:48:7c:06:58:fc: e9:ed:5f:4d:b9:3b:35:5b:1b:3c:f4:10:a0:78:76:5f:f2:2f: d4:25:0f:ab:1c:30:14:9a:96:da:4f:94:4c:9d:be:49:97:9f: 78:77:c8:3c:ed:7f:8b:ec:af:7c:d2:99:87:d1:ef:c5:25:26: 54:cd:36:78:32:69:e0:4a:fe:5d:e5:25:7a:a6:c5:4e:08:7c: 32:38:13:b6:7f:d1:ca:c0:23:6e:2a:93:c2:07:9a:fd:df:fe: 01:8b:c6:cc:32:a2:f3:c7:ca:2a:61:f2:e5:83:64:25:2e:e1: 0e:8e:4e:b3:7a:f5:fe:11:b0:97:99:09:c9:69:8e:02:54:ce: 66:43:67:3e:1d:d9:95:b4:53:45:38:09:26:fe:8d:51:d8:f6: f4:d7:cc:eb:c5:e8:f2:d3:d3:e0:69:fa:99:1e:f6:01:0c:7a: 29:37:92:b0:ab:58:4b:00:8a:bc:81:5a:10:90:0a:81:20:28: 42:75:4a:4c:b4:9d:6f:49:9a:a7:2a:64:f0:f6:2b:46:e1:e4: aa:14:f7:83:0a:0a:8b:e4:41:dd:4c:4b:7e:4d:a1:d1:5e:b1: 0b:89:35:47 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUT76SFcPAVCnoi+WuIfgqMfbj4CgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzNBNzAxMzNFRTE1QTkyRjk4QzQzQkU2NDJEMUNDRjdD MkIwN0U2RjAeFw0yNjA1MDMwMjI5MjhaFw0yNzA1MDIwMjM0MjhaMDMxMTAvBgNV BAMTKDI1MjU2Q0I2NEQ3QUE3QzY2MTk2Q0JGMjAxQzNFNzIwM0FDQjYzQkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGLk/NLNYDO14TZuUxtgpmJbWW rgwAeeZkNqP1gBp+FxtX7H/FSoN6JQpeMi1nvjrsnJ8mXuissJDL0XLHy1HBZW8B zK/FCfkSJl7WTSB0j2Ctj93nUHX9DAipGGoofx85rgeM0c/F5Mt2Kfq4c3Fqj/Bv HIzI3Kzqpb3osws4cbka/BWJLlEAe5BFMs//RoFmsTNR1hNBRDR4SkUiVI8F+DEh p8lEg+sPg6if/CvRgCWQWG6IIQU3Tpska0gL9QrJwTa8P1gQjns1Aq7b28O/w6sc z5TI4ZhRsbWKLlzpikNKZDleMk1VSoWImYSWwn0VlElcXXHf8M+/UkLOfAjbAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUJSVstk16p8ZhlsvyAcPnIDrLY74wHwYDVR0j BBgwFoAUM6cBM+4VqS+YxDvmQtHM98Kwfm8wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NTcxM2ZjMTctNTdmMS00NjcxLThhMTYtZjg1OGRkZDdkYTQzLzAvMzNBNzAxMzNF RTE1QTkyRjk4QzQzQkU2NDJEMUNDRjdDMkIwN0U2Ri5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8zM0E3MDEzM0VFMTVBOTJGOThDNDNCRTY0MkQxQ0NGN0MyQjA3 RTZGLmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUFBzALhoGLcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzU3MTNmYzE3LTU3ZjEtNDY3MS04 YTE2LWY4NThkZGQ3ZGE0My8wLzMyMzQzMDM1M2EzNjM3MzQzMDNhMzEzOTMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM5MzQzMTM5LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAVn QAGQMA0GCSqGSIb3DQEBCwUAA4IBAQCXdEuT4RbdWAbbKv6RqLm+KIR02Grl6Vdm Y8HRPfdZSHwGWPzp7V9NuTs1Wxs89BCgeHZf8i/UJQ+rHDAUmpbaT5RMnb5Jl594 d8g87X+L7K980pmH0e/FJSZUzTZ4MmngSv5d5SV6psVOCHwyOBO2f9HKwCNuKpPC B5r93/4Bi8bMMqLzx8oqYfLlg2QlLuEOjk6zevX+EbCXmQnJaY4CVM5mQ2c+HdmV tFNFOAkm/o1R2Pb018zrxejy09PgafqZHvYBDHopN5Kwq1hLAIq8gVoQkAqBIChC dUpMtJ1vSZqnKmTw9itG4eSqFPeDCgqL5EHdTEt+TaHRXrELiTVH -----END CERTIFICATE-----Generated at Wed May 13 18:40:05 2026 by rpki-client