$ rpki-client -vvf rpki-rsync.idnic.net/repo/592e07f8-1a48-4391-a6a5-8e4e39c8588a/0/323430353a633863303a3a2f33322d3332203d3e20313339393831.roa File: 323430353a633863303a3a2f33322d3332203d3e20313339393831.roa (raw, json) Hash identifier: UG7HopHAsWszm3vKCwbdEPyJLKZk5ZAofsZVkykHgJs= Subject key identifier: CD:E2:5B:C0:29:8B:0C:AF:4C:7F:FB:FA:8E:38:3F:2B:61:61:73:13 Certificate issuer: /CN=D3B0B12C00EDA48BD27B03AE4620E51B4D5B35B9 Certificate serial: 3E580EC8B60628CC9F651D173FAA01EEF3533353 Authority key identifier: D3:B0:B1:2C:00:ED:A4:8B:D2:7B:03:AE:46:20:E5:1B:4D:5B:35:B9 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D3B0B12C00EDA48BD27B03AE4620E51B4D5B35B9.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/592e07f8-1a48-4391-a6a5-8e4e39c8588a/0/323430353a633863303a3a2f33322d3332203d3e20313339393831.roa Signing time: Sun 03 May 2026 02:34:58 +0000 ROA not before: Sun 03 May 2026 02:29:58 +0000 ROA not after: Sun 02 May 2027 02:34:58 +0000 asID: 139981 IP address blocks: 2405:c8c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/592e07f8-1a48-4391-a6a5-8e4e39c8588a/0/D3B0B12C00EDA48BD27B03AE4620E51B4D5B35B9.crl rsync://rpki-rsync.idnic.net/repo/592e07f8-1a48-4391-a6a5-8e4e39c8588a/0/D3B0B12C00EDA48BD27B03AE4620E51B4D5B35B9.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D3B0B12C00EDA48BD27B03AE4620E51B4D5B35B9.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 02:33:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:58:0e:c8:b6:06:28:cc:9f:65:1d:17:3f:aa:01:ee:f3:53:33:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D3B0B12C00EDA48BD27B03AE4620E51B4D5B35B9 Validity Not Before: May 3 02:29:58 2026 GMT Not After : May 2 02:34:58 2027 GMT Subject: CN=CDE25BC0298B0CAF4C7FFBFA8E383F2B61617313 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:e8:3b:89:a9:0a:3d:2c:c5:a9:a9:d9:ff:f6: f1:7c:71:9a:0b:bd:9d:07:8f:45:20:fc:89:e2:4d: 63:9f:78:45:7b:91:13:9a:91:47:1c:fc:c8:e0:87: 18:0e:2f:25:9c:24:14:29:dd:5c:bd:43:57:91:a3: ac:61:cd:1e:58:c8:af:11:27:b8:05:8e:df:44:58: 34:c3:3d:52:97:c9:3d:e0:a9:70:bd:ec:8d:09:f5: cb:f1:35:27:fc:c7:9e:bd:b2:03:03:38:45:4d:9f: 71:0a:45:ac:62:78:ab:6c:97:41:b3:8a:be:6d:b3: 27:0f:be:a0:d5:3e:a7:a2:63:0f:34:60:79:73:ad: 05:35:63:96:a2:d0:ae:a9:9d:5d:57:21:d8:46:4f: f4:2e:e5:58:ae:a3:34:64:d8:2d:1e:c6:c0:f9:ab: bc:64:e4:7f:f3:59:9c:cb:bc:a7:31:01:fd:d6:a6: be:8a:ff:c3:41:5d:a6:a1:ee:53:3a:83:a9:7c:a0: 5f:a2:a7:cf:0c:46:48:a2:0f:d5:b3:f8:54:98:89: 62:2f:82:f4:42:2f:ce:23:9d:f2:d5:3d:83:6a:2d: c6:fe:d7:da:5c:ea:e2:09:b3:a5:3d:13:97:1c:6e: b5:01:a5:7d:13:12:e2:23:13:ac:99:64:07:25:95: da:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:E2:5B:C0:29:8B:0C:AF:4C:7F:FB:FA:8E:38:3F:2B:61:61:73:13 X509v3 Authority Key Identifier: keyid:D3:B0:B1:2C:00:ED:A4:8B:D2:7B:03:AE:46:20:E5:1B:4D:5B:35:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/592e07f8-1a48-4391-a6a5-8e4e39c8588a/0/D3B0B12C00EDA48BD27B03AE4620E51B4D5B35B9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D3B0B12C00EDA48BD27B03AE4620E51B4D5B35B9.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/592e07f8-1a48-4391-a6a5-8e4e39c8588a/0/323430353a633863303a3a2f33322d3332203d3e20313339393831.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:c8c0::/32 Signature Algorithm: sha256WithRSAEncryption 3f:6c:fb:ad:b3:49:9e:c4:76:b8:d2:7c:cb:dd:6a:0a:45:ec: a0:c4:be:e3:f5:62:80:bc:dc:45:dc:1b:0e:5b:e3:ce:09:c8: ec:dc:44:6f:02:b1:80:dd:a4:07:f6:3a:9d:07:52:25:8d:fc: b5:dd:39:c2:d4:e7:aa:6a:6e:40:54:54:ea:ce:8a:b7:ec:5a: 9b:65:09:c7:8b:8b:b6:ed:bd:10:20:95:8a:4d:5a:d0:ea:4c: 16:07:86:29:cb:73:bb:a6:ba:22:98:87:47:7e:ba:a0:62:25: 1f:c4:55:70:bc:bd:38:8b:41:4b:67:fe:4f:84:6f:53:65:75: a8:e2:d2:81:69:60:f4:6a:a4:4d:91:d0:df:18:28:3d:f5:7b: d7:20:36:e1:72:33:24:5a:94:92:3b:f5:89:45:e8:74:96:97: 92:46:35:65:fa:12:3d:34:e5:eb:fd:33:29:9c:63:cb:d0:9f: ed:58:e6:71:20:e1:a4:26:e9:2f:72:f3:e4:8e:0f:a5:85:37: b9:3a:f3:82:3f:ba:40:28:d3:04:c2:96:55:a1:a4:d4:15:46: 8e:3d:a0:79:97:e4:bc:8f:38:0e:41:c1:6f:f2:f1:59:ff:d5: 51:df:99:bc:ef:c8:3a:59:b7:f4:88:68:12:3b:39:b4:71:f2: 38:d8:36:d6 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUPlgOyLYGKMyfZR0XP6oB7vNTM1MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDNCMEIxMkMwMEVEQTQ4QkQyN0IwM0FFNDYyMEU1MUI0 RDVCMzVCOTAeFw0yNjA1MDMwMjI5NThaFw0yNzA1MDIwMjM0NThaMDMxMTAvBgNV BAMTKENERTI1QkMwMjk4QjBDQUY0QzdGRkJGQThFMzgzRjJCNjE2MTczMTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCQ6DuJqQo9LMWpqdn/9vF8cZoL vZ0Hj0Ug/IniTWOfeEV7kROakUcc/MjghxgOLyWcJBQp3Vy9Q1eRo6xhzR5YyK8R J7gFjt9EWDTDPVKXyT3gqXC97I0J9cvxNSf8x569sgMDOEVNn3EKRaxieKtsl0Gz ir5tsycPvqDVPqeiYw80YHlzrQU1Y5ai0K6pnV1XIdhGT/Qu5ViuozRk2C0exsD5 q7xk5H/zWZzLvKcxAf3Wpr6K/8NBXaah7lM6g6l8oF+ip88MRkiiD9Wz+FSYiWIv gvRCL84jnfLVPYNqLcb+19pc6uIJs6U9E5ccbrUBpX0TEuIjE6yZZAclldrdAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUzeJbwCmLDK9Mf/v6jjg/K2FhcxMwHwYDVR0j BBgwFoAU07CxLADtpIvSewOuRiDlG01bNbkwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NTkyZTA3ZjgtMWE0OC00MzkxLWE2YTUtOGU0ZTM5Yzg1ODhhLzAvRDNCMEIxMkMw MEVEQTQ4QkQyN0IwM0FFNDYyMEU1MUI0RDVCMzVCOS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9EM0IwQjEyQzAwRURBNDhCRDI3QjAzQUU0NjIwRTUxQjRENUIz NUI5LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzU5MmUwN2Y4LTFhNDgtNDM5MS1h NmE1LThlNGUzOWM4NTg4YS8wLzMyMzQzMDM1M2E2MzM4NjMzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzMzOTM5MzgzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQFyMAwDQYJKoZI hvcNAQELBQADggEBAD9s+62zSZ7EdrjSfMvdagpF7KDEvuP1YoC83EXcGw5b484J yOzcRG8CsYDdpAf2Op0HUiWN/LXdOcLU56pqbkBUVOrOirfsWptlCceLi7btvRAg lYpNWtDqTBYHhinLc7umuiKYh0d+uqBiJR/EVXC8vTiLQUtn/k+Eb1Nldaji0oFp YPRqpE2R0N8YKD31e9cgNuFyMyRalJI79YlF6HSWl5JGNWX6Ej005ev9MymcY8vQ n+1Y5nEg4aQm6S9y8+SOD6WFN7k684I/ukAo0wTCllWhpNQVRo49oHmX5LyPOA5B wW/y8Vn/1VHfmbzvyDpZt/SIaBI7ObRx8jjYNtY= -----END CERTIFICATE-----Generated at Wed May 13 09:54:31 2026 by rpki-client