$ rpki-client -vvf rpki-rsync.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/323430343a666563303a323a3a2f34382d3438203d3e20313338383636.roa File: 323430343a666563303a323a3a2f34382d3438203d3e20313338383636.roa (raw, json) Hash identifier: Cz0RsKoVkeeB1IsUqTtQO8T5aC2XyKwMvob94kUO7oA= Subject key identifier: FC:2F:1C:DE:86:FB:E3:33:F5:4D:C9:54:6C:B5:3A:32:19:B4:E5:66 Certificate issuer: /CN=AA7E83DE7435AB78ADE6137B1EACFDC6F6BC958A Certificate serial: 379E5D14467B62631BBA3E9E4554AE3D852F1BC0 Authority key identifier: AA:7E:83:DE:74:35:AB:78:AD:E6:13:7B:1E:AC:FD:C6:F6:BC:95:8A Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AA7E83DE7435AB78ADE6137B1EACFDC6F6BC958A.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/323430343a666563303a323a3a2f34382d3438203d3e20313338383636.roa Signing time: Sun 03 May 2026 02:35:22 +0000 ROA not before: Sun 03 May 2026 02:30:22 +0000 ROA not after: Sun 02 May 2027 02:35:22 +0000 asID: 138866 IP address blocks: 2404:fec0:2::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/AA7E83DE7435AB78ADE6137B1EACFDC6F6BC958A.crl rsync://rpki-rsync.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/AA7E83DE7435AB78ADE6137B1EACFDC6F6BC958A.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AA7E83DE7435AB78ADE6137B1EACFDC6F6BC958A.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 02:23:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:9e:5d:14:46:7b:62:63:1b:ba:3e:9e:45:54:ae:3d:85:2f:1b:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AA7E83DE7435AB78ADE6137B1EACFDC6F6BC958A Validity Not Before: May 3 02:30:22 2026 GMT Not After : May 2 02:35:22 2027 GMT Subject: CN=FC2F1CDE86FBE333F54DC9546CB53A3219B4E566 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:16:f8:36:2b:41:a9:24:65:31:ff:db:99:9d: 15:9a:21:71:0c:b7:4e:69:62:01:cd:04:9d:f8:10: fb:e1:74:11:a7:87:61:20:b8:b8:a7:af:87:63:84: cf:40:e5:5d:ab:ca:6b:3f:3c:8b:f5:af:c7:49:fe: 0e:5d:ae:5b:af:1b:d3:fd:a1:54:76:25:23:1c:2f: 3e:63:3a:62:85:60:fb:cd:60:c8:92:53:1d:14:29: de:3c:3d:97:98:f7:60:a8:7d:a4:23:31:52:61:50: 41:e9:23:ef:34:e7:0f:e0:b1:b2:ba:be:29:f6:f0: 1d:9c:58:fd:8a:64:2c:d3:57:5a:86:5b:f7:18:c8: bf:c1:34:a3:b9:5a:cb:33:00:03:2c:1a:ee:09:e1: 47:3d:65:04:2f:f4:68:60:bb:a6:31:3f:fc:8c:d3: 84:fb:09:6f:22:71:b9:31:26:fc:9c:31:7a:3c:d3: ab:14:a5:02:22:98:05:b8:38:93:36:04:f2:51:66: f9:cc:0f:85:43:40:e1:9c:9f:08:21:ac:7f:02:c5: 6a:58:46:c4:94:21:55:4e:dd:44:ff:c2:04:80:b8: db:bb:97:d6:90:ed:24:4a:85:67:3d:34:22:9a:95: ff:9a:e4:10:e6:75:bb:7d:e4:32:86:9b:d7:f4:5b: c1:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:2F:1C:DE:86:FB:E3:33:F5:4D:C9:54:6C:B5:3A:32:19:B4:E5:66 X509v3 Authority Key Identifier: keyid:AA:7E:83:DE:74:35:AB:78:AD:E6:13:7B:1E:AC:FD:C6:F6:BC:95:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/AA7E83DE7435AB78ADE6137B1EACFDC6F6BC958A.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AA7E83DE7435AB78ADE6137B1EACFDC6F6BC958A.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/323430343a666563303a323a3a2f34382d3438203d3e20313338383636.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:fec0:2::/48 Signature Algorithm: sha256WithRSAEncryption 7b:1c:1d:2e:cf:bd:6c:b6:d5:cb:ff:1d:d8:88:8f:a4:43:b8: 2a:68:56:ed:f9:e2:08:d1:82:64:1a:fb:fb:ea:ce:3e:5b:b7: 20:b3:9d:aa:52:a8:c6:2c:3f:03:d5:48:80:4c:de:d2:3e:bc: e3:0e:b5:7e:dc:48:98:2a:06:29:4d:81:c7:e6:07:85:00:e3: e2:9a:9e:0c:f8:b8:e8:3a:a5:49:88:ab:49:ed:13:9c:8c:74: 0b:2a:4c:da:af:a0:95:a7:16:03:e8:23:04:02:67:4a:4a:bb: 72:56:6c:7d:e9:cb:28:db:69:40:3d:27:12:32:54:91:8c:dd: 4c:3d:7d:a1:ed:86:ae:28:2e:76:7a:0d:1f:d5:83:df:0b:a9: 24:7d:d0:5e:b0:2d:6d:bd:58:6b:7e:fb:cd:8e:d9:0e:13:91: 4e:61:df:a4:28:2d:c7:bd:43:bd:f7:50:97:4c:06:18:d7:bd: dc:b9:50:73:67:f5:39:8a:58:66:af:87:bd:cb:49:57:72:24: 7c:85:e6:d9:de:95:12:c6:a9:d5:7c:16:73:1d:9b:5c:c4:46: fd:28:e8:06:de:db:73:95:23:6b:ea:6d:9d:5c:85:81:7d:74: 9f:fa:48:19:a4:a1:c7:08:d4:94:9b:ee:01:24:04:29:ed:f3: 94:e2:80:21 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUN55dFEZ7YmMbuj6eRVSuPYUvG8AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUE3RTgzREU3NDM1QUI3OEFERTYxMzdCMUVBQ0ZEQzZG NkJDOTU4QTAeFw0yNjA1MDMwMjMwMjJaFw0yNzA1MDIwMjM1MjJaMDMxMTAvBgNV BAMTKEZDMkYxQ0RFODZGQkUzMzNGNTREQzk1NDZDQjUzQTMyMTlCNEU1NjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDbFvg2K0GpJGUx/9uZnRWaIXEM t05pYgHNBJ34EPvhdBGnh2EguLinr4djhM9A5V2ryms/PIv1r8dJ/g5drluvG9P9 oVR2JSMcLz5jOmKFYPvNYMiSUx0UKd48PZeY92CofaQjMVJhUEHpI+805w/gsbK6 vin28B2cWP2KZCzTV1qGW/cYyL/BNKO5WsszAAMsGu4J4Uc9ZQQv9Ghgu6YxP/yM 04T7CW8icbkxJvycMXo806sUpQIimAW4OJM2BPJRZvnMD4VDQOGcnwghrH8CxWpY RsSUIVVO3UT/wgSAuNu7l9aQ7SRKhWc9NCKalf+a5BDmdbt95DKGm9f0W8FXAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQU/C8c3ob74zP1TclUbLU6Mhm05WYwHwYDVR0j BBgwFoAUqn6D3nQ1q3it5hN7Hqz9xva8lYowDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NWE1MTlhZWItNWM1Ni00Y2IzLTk0YTAtMGY0MDBlYTZhMzc1LzAvQUE3RTgzREU3 NDM1QUI3OEFERTYxMzdCMUVBQ0ZEQzZGNkJDOTU4QS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9BQTdFODNERTc0MzVBQjc4QURFNjEzN0IxRUFDRkRDNkY2QkM5 NThBLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzVhNTE5YWViLTVjNTYtNGNiMy05 NGEwLTBmNDAwZWE2YTM3NS8wLzMyMzQzMDM0M2E2NjY1NjMzMDNhMzIzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTMzMzgzODM2MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBP7AAAIw DQYJKoZIhvcNAQELBQADggEBAHscHS7PvWy21cv/HdiIj6RDuCpoVu354gjRgmQa +/vqzj5btyCznapSqMYsPwPVSIBM3tI+vOMOtX7cSJgqBilNgcfmB4UA4+Kangz4 uOg6pUmIq0ntE5yMdAsqTNqvoJWnFgPoIwQCZ0pKu3JWbH3pyyjbaUA9JxIyVJGM 3Uw9faHthq4oLnZ6DR/Vg98LqSR90F6wLW29WGt++82O2Q4TkU5h36QoLce9Q733 UJdMBhjXvdy5UHNn9TmKWGavh73LSVdyJHyF5tnelRLGqdV8FnMdm1zERv0o6Abe 23OVI2vqbZ1chYF9dJ/6SBmkoccI1JSb7gEkBCnt85TigCE= -----END CERTIFICATE-----Generated at Wed May 13 10:32:53 2026 by rpki-client