$ rpki-client -vvf rpki-rsync.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/323430343a666563303a313a3a2f34382d3438203d3e20313338383636.roa File: 323430343a666563303a313a3a2f34382d3438203d3e20313338383636.roa (raw, json) Hash identifier: SsEkvpd7Ya0vJcTfzCdLVaBKw02BlHsoNedgx56rz7o= Subject key identifier: 07:BA:04:1F:3F:2B:E7:6A:3A:18:8B:94:2E:CD:1D:36:5C:A6:73:D4 Certificate issuer: /CN=AA7E83DE7435AB78ADE6137B1EACFDC6F6BC958A Certificate serial: 542C231B8535C5E7735AFB33AF82C6B086B97EBA Authority key identifier: AA:7E:83:DE:74:35:AB:78:AD:E6:13:7B:1E:AC:FD:C6:F6:BC:95:8A Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AA7E83DE7435AB78ADE6137B1EACFDC6F6BC958A.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/323430343a666563303a313a3a2f34382d3438203d3e20313338383636.roa Signing time: Sun 03 May 2026 02:35:23 +0000 ROA not before: Sun 03 May 2026 02:30:23 +0000 ROA not after: Sun 02 May 2027 02:35:23 +0000 asID: 138866 IP address blocks: 2404:fec0:1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/AA7E83DE7435AB78ADE6137B1EACFDC6F6BC958A.crl rsync://rpki-rsync.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/AA7E83DE7435AB78ADE6137B1EACFDC6F6BC958A.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AA7E83DE7435AB78ADE6137B1EACFDC6F6BC958A.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 02:23:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:2c:23:1b:85:35:c5:e7:73:5a:fb:33:af:82:c6:b0:86:b9:7e:ba Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AA7E83DE7435AB78ADE6137B1EACFDC6F6BC958A Validity Not Before: May 3 02:30:23 2026 GMT Not After : May 2 02:35:23 2027 GMT Subject: CN=07BA041F3F2BE76A3A188B942ECD1D365CA673D4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:d0:cb:2d:85:80:d6:bd:c3:cc:40:01:5a:35: 60:7e:72:7c:59:e8:d5:29:fe:9c:0d:d6:45:50:ff: 6a:d8:4d:f2:f2:e9:b5:33:bc:f0:aa:04:61:e2:65: be:65:ea:33:a1:a1:2f:fd:e6:f8:24:90:6c:f1:2f: 8c:11:1c:11:28:e7:fa:af:4a:f7:9a:70:1a:90:d8: 71:f3:dc:46:22:25:cc:f3:fe:df:9f:da:6e:19:4c: 0a:c2:e7:fd:ff:da:91:29:67:b7:ec:6c:cc:1f:16: 69:ae:bf:e7:93:fd:e8:80:e9:5b:ff:04:02:70:3b: f8:47:3e:59:ab:89:10:49:19:02:9e:93:fc:5b:90: 5f:de:f2:62:e8:d3:18:b6:86:a0:ed:3e:ec:5c:b8: ac:59:99:50:90:21:8f:58:aa:33:d7:d7:48:b4:b4: 64:5a:b0:75:14:4a:20:3e:ab:95:a7:d4:b5:cc:f1: 48:d9:c6:8b:bc:f6:d3:49:12:84:90:ff:7c:8f:a4: 27:f1:a3:6e:18:c9:1d:53:f2:19:7f:ca:eb:9c:12: 22:79:59:d6:01:a3:e8:23:fb:bc:e0:41:ad:0f:51: 10:a7:2d:25:99:98:07:93:c2:fe:89:94:67:0a:bf: b0:39:e4:4c:97:26:06:c6:97:d7:6f:18:00:20:48: a3:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:BA:04:1F:3F:2B:E7:6A:3A:18:8B:94:2E:CD:1D:36:5C:A6:73:D4 X509v3 Authority Key Identifier: keyid:AA:7E:83:DE:74:35:AB:78:AD:E6:13:7B:1E:AC:FD:C6:F6:BC:95:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/AA7E83DE7435AB78ADE6137B1EACFDC6F6BC958A.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AA7E83DE7435AB78ADE6137B1EACFDC6F6BC958A.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/323430343a666563303a313a3a2f34382d3438203d3e20313338383636.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:fec0:1::/48 Signature Algorithm: sha256WithRSAEncryption 5e:00:0c:14:79:25:9b:58:a1:07:6a:ac:08:a7:9b:a5:41:e6: 09:fc:fe:00:fb:09:eb:06:65:f7:34:7d:92:ed:e3:56:be:4b: f4:98:e8:56:d6:dc:60:05:ff:92:4c:2a:cb:b2:d9:45:55:82: a9:19:6b:29:28:98:8a:d2:e5:28:da:4e:a3:a1:7a:3f:cb:d7: 55:6a:8f:bc:34:d0:1b:70:8b:7d:7d:40:0a:51:9e:df:ef:20: 8a:96:f2:46:f9:ff:40:54:73:d8:d1:8c:2c:27:b7:d1:c3:6b: 7f:72:32:a3:bb:07:46:db:56:33:0f:28:f5:9c:c9:98:96:f0: 57:5f:e5:91:a9:fa:71:21:ce:b8:cb:06:52:7d:4e:56:bd:18: 57:ea:d1:bc:29:ce:49:8b:8c:9a:05:8f:33:db:ee:89:b5:be: 46:c6:c1:8b:13:93:3d:04:30:07:1e:4e:02:53:c9:99:76:f4: c3:7e:eb:25:9b:8d:c4:d3:4c:38:00:94:ce:ba:41:cf:3b:8b: 03:22:21:e8:eb:56:89:bc:3a:bf:11:3a:3c:53:80:f5:16:be: 7b:17:c8:c9:90:27:ca:bf:25:29:1b:ae:29:a7:b1:cd:b7:8e: c3:bf:58:8d:fa:c1:86:f5:66:ac:3d:47:6e:a7:ff:73:0a:ea: 3a:12:dd:ec -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUVCwjG4U1xedzWvszr4LGsIa5frowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUE3RTgzREU3NDM1QUI3OEFERTYxMzdCMUVBQ0ZEQzZG NkJDOTU4QTAeFw0yNjA1MDMwMjMwMjNaFw0yNzA1MDIwMjM1MjNaMDMxMTAvBgNV BAMTKDA3QkEwNDFGM0YyQkU3NkEzQTE4OEI5NDJFQ0QxRDM2NUNBNjczRDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCp0MsthYDWvcPMQAFaNWB+cnxZ 6NUp/pwN1kVQ/2rYTfLy6bUzvPCqBGHiZb5l6jOhoS/95vgkkGzxL4wRHBEo5/qv SveacBqQ2HHz3EYiJczz/t+f2m4ZTArC5/3/2pEpZ7fsbMwfFmmuv+eT/eiA6Vv/ BAJwO/hHPlmriRBJGQKek/xbkF/e8mLo0xi2hqDtPuxcuKxZmVCQIY9YqjPX10i0 tGRasHUUSiA+q5Wn1LXM8UjZxou89tNJEoSQ/3yPpCfxo24YyR1T8hl/yuucEiJ5 WdYBo+gj+7zgQa0PURCnLSWZmAeTwv6JlGcKv7A55EyXJgbGl9dvGAAgSKMfAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUB7oEHz8r52o6GIuULs0dNlymc9QwHwYDVR0j BBgwFoAUqn6D3nQ1q3it5hN7Hqz9xva8lYowDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NWE1MTlhZWItNWM1Ni00Y2IzLTk0YTAtMGY0MDBlYTZhMzc1LzAvQUE3RTgzREU3 NDM1QUI3OEFERTYxMzdCMUVBQ0ZEQzZGNkJDOTU4QS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9BQTdFODNERTc0MzVBQjc4QURFNjEzN0IxRUFDRkRDNkY2QkM5 NThBLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzVhNTE5YWViLTVjNTYtNGNiMy05 NGEwLTBmNDAwZWE2YTM3NS8wLzMyMzQzMDM0M2E2NjY1NjMzMDNhMzEzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTMzMzgzODM2MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBP7AAAEw DQYJKoZIhvcNAQELBQADggEBAF4ADBR5JZtYoQdqrAinm6VB5gn8/gD7CesGZfc0 fZLt41a+S/SY6FbW3GAF/5JMKsuy2UVVgqkZaykomIrS5SjaTqOhej/L11Vqj7w0 0Btwi319QApRnt/vIIqW8kb5/0BUc9jRjCwnt9HDa39yMqO7B0bbVjMPKPWcyZiW 8Fdf5ZGp+nEhzrjLBlJ9Tla9GFfq0bwpzkmLjJoFjzPb7om1vkbGwYsTkz0EMAce TgJTyZl29MN+6yWbjcTTTDgAlM66Qc87iwMiIejrVom8Or8ROjxTgPUWvnsXyMmQ J8q/JSkbrimnsc23jsO/WI36wYb1Zqw9R26n/3MK6joS3ew= -----END CERTIFICATE-----Generated at Wed May 13 10:32:53 2026 by rpki-client