$ rpki-client -vvf rpki-rsync.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/323430343a666563303a333a3a2f34382d3438203d3e20313338383636.roa File: 323430343a666563303a333a3a2f34382d3438203d3e20313338383636.roa (raw, json) Hash identifier: xtIac8VAw15L09WUieeUSir9eYOGXhXfymWhdgL7e/Y= Subject key identifier: 02:7E:57:E2:CF:ED:1A:0A:84:F8:94:2B:5B:A6:1A:AC:1C:2C:68:3F Certificate issuer: /CN=AA7E83DE7435AB78ADE6137B1EACFDC6F6BC958A Certificate serial: 25C949E345E0EEC15249D6C280076FCA04AA1B8D Authority key identifier: AA:7E:83:DE:74:35:AB:78:AD:E6:13:7B:1E:AC:FD:C6:F6:BC:95:8A Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AA7E83DE7435AB78ADE6137B1EACFDC6F6BC958A.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/323430343a666563303a333a3a2f34382d3438203d3e20313338383636.roa Signing time: Sun 03 May 2026 02:35:23 +0000 ROA not before: Sun 03 May 2026 02:30:23 +0000 ROA not after: Sun 02 May 2027 02:35:23 +0000 asID: 138866 IP address blocks: 2404:fec0:3::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/AA7E83DE7435AB78ADE6137B1EACFDC6F6BC958A.crl rsync://rpki-rsync.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/AA7E83DE7435AB78ADE6137B1EACFDC6F6BC958A.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AA7E83DE7435AB78ADE6137B1EACFDC6F6BC958A.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 02:23:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:c9:49:e3:45:e0:ee:c1:52:49:d6:c2:80:07:6f:ca:04:aa:1b:8d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AA7E83DE7435AB78ADE6137B1EACFDC6F6BC958A Validity Not Before: May 3 02:30:23 2026 GMT Not After : May 2 02:35:23 2027 GMT Subject: CN=027E57E2CFED1A0A84F8942B5BA61AAC1C2C683F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:09:bb:65:53:40:de:19:2c:8c:b9:3e:f7:a7: 34:99:42:15:1d:01:7a:81:70:9c:a3:cf:d3:79:c2: e6:99:82:63:b5:dd:ff:9d:d8:33:d4:6e:34:07:76: 51:fd:f2:49:0e:0a:ad:9d:d7:4e:f5:73:bb:9c:00: ac:ba:91:e6:0d:82:be:25:24:48:06:3a:ec:4f:71: e1:a7:f1:80:c1:72:4e:a4:54:ac:25:9c:a9:ae:19: 29:ef:6e:e5:b1:10:a0:a9:3d:3a:86:e3:d7:64:79: 8c:2b:88:7e:77:be:fa:88:8e:65:14:c8:22:93:96: cf:58:52:f5:21:9e:a5:c4:01:6c:c1:28:b4:55:25: dd:ad:5d:e0:97:d9:63:ea:ca:a5:38:6e:72:b8:8a: ee:25:a9:30:dc:7d:f6:e8:d3:ac:c5:66:9e:9b:06: 96:e4:36:ab:38:83:8f:fc:1d:3e:c8:15:97:1c:03: e6:49:b9:48:a8:f0:a1:67:00:13:65:bd:bd:03:61: bc:6b:a0:ac:7b:00:79:4c:b7:63:be:bf:e1:ce:8a: 69:78:4c:37:7e:0a:77:53:62:1c:6f:14:06:56:72: 98:86:40:10:66:72:24:3d:c3:1d:28:a1:ef:0a:f9: a8:99:88:cc:b9:ee:95:85:77:0b:22:c2:47:73:83: 97:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:7E:57:E2:CF:ED:1A:0A:84:F8:94:2B:5B:A6:1A:AC:1C:2C:68:3F X509v3 Authority Key Identifier: keyid:AA:7E:83:DE:74:35:AB:78:AD:E6:13:7B:1E:AC:FD:C6:F6:BC:95:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/AA7E83DE7435AB78ADE6137B1EACFDC6F6BC958A.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AA7E83DE7435AB78ADE6137B1EACFDC6F6BC958A.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/323430343a666563303a333a3a2f34382d3438203d3e20313338383636.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:fec0:3::/48 Signature Algorithm: sha256WithRSAEncryption a1:23:f9:db:ba:53:f1:24:dc:1e:dc:f4:53:74:b7:3e:22:9f: 5c:30:70:d8:4d:10:43:d4:8b:f7:bb:28:c5:8e:9e:3f:42:39: 3d:32:cf:0b:37:1b:3a:f7:f7:9a:ec:ff:61:60:08:5d:87:b5: 07:25:d4:8c:3d:17:47:6e:0f:1e:01:2f:92:6f:d8:41:6e:93: 76:38:51:37:94:54:a4:7a:7d:60:54:e4:d2:3a:b2:30:66:1c: d7:09:c6:1b:97:ad:24:a5:5a:97:2e:0d:72:d1:5e:ab:1c:58: 71:fc:6c:86:3e:72:cd:7d:53:fc:82:b9:2d:7d:67:9c:a5:ed: 92:d2:d6:a8:73:4c:f4:65:15:c3:e0:63:e8:61:ba:a7:40:1e: 62:88:64:9b:2a:99:12:6e:b1:bb:c8:51:b2:ce:1b:38:4d:f7: 39:41:44:45:f9:15:16:b2:0a:db:78:7f:83:e6:93:50:8d:44: a3:cb:be:72:d0:c5:43:a6:08:4a:b6:dc:72:fa:fe:41:af:57: f9:de:9d:0d:d0:ee:68:59:b2:60:31:5e:73:07:f0:47:f1:e5: 63:07:54:8a:f2:92:a5:c0:ea:c5:ad:4d:77:b9:1e:28:38:16: d8:49:b8:ca:c1:3c:6d:c3:07:c2:f4:01:b9:07:6a:c0:ce:00: 09:e6:06:7a -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUJclJ40Xg7sFSSdbCgAdvygSqG40wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUE3RTgzREU3NDM1QUI3OEFERTYxMzdCMUVBQ0ZEQzZG NkJDOTU4QTAeFw0yNjA1MDMwMjMwMjNaFw0yNzA1MDIwMjM1MjNaMDMxMTAvBgNV BAMTKDAyN0U1N0UyQ0ZFRDFBMEE4NEY4OTQyQjVCQTYxQUFDMUMyQzY4M0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4CbtlU0DeGSyMuT73pzSZQhUd AXqBcJyjz9N5wuaZgmO13f+d2DPUbjQHdlH98kkOCq2d1071c7ucAKy6keYNgr4l JEgGOuxPceGn8YDBck6kVKwlnKmuGSnvbuWxEKCpPTqG49dkeYwriH53vvqIjmUU yCKTls9YUvUhnqXEAWzBKLRVJd2tXeCX2WPqyqU4bnK4iu4lqTDcffbo06zFZp6b BpbkNqs4g4/8HT7IFZccA+ZJuUio8KFnABNlvb0DYbxroKx7AHlMt2O+v+HOiml4 TDd+CndTYhxvFAZWcpiGQBBmciQ9wx0ooe8K+aiZiMy57pWFdwsiwkdzg5f9AgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUAn5X4s/tGgqE+JQrW6YarBwsaD8wHwYDVR0j BBgwFoAUqn6D3nQ1q3it5hN7Hqz9xva8lYowDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NWE1MTlhZWItNWM1Ni00Y2IzLTk0YTAtMGY0MDBlYTZhMzc1LzAvQUE3RTgzREU3 NDM1QUI3OEFERTYxMzdCMUVBQ0ZEQzZGNkJDOTU4QS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9BQTdFODNERTc0MzVBQjc4QURFNjEzN0IxRUFDRkRDNkY2QkM5 NThBLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzVhNTE5YWViLTVjNTYtNGNiMy05 NGEwLTBmNDAwZWE2YTM3NS8wLzMyMzQzMDM0M2E2NjY1NjMzMDNhMzMzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTMzMzgzODM2MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBP7AAAMw DQYJKoZIhvcNAQELBQADggEBAKEj+du6U/Ek3B7c9FN0tz4in1wwcNhNEEPUi/e7 KMWOnj9COT0yzws3Gzr395rs/2FgCF2HtQcl1Iw9F0duDx4BL5Jv2EFuk3Y4UTeU VKR6fWBU5NI6sjBmHNcJxhuXrSSlWpcuDXLRXqscWHH8bIY+cs19U/yCuS19Z5yl 7ZLS1qhzTPRlFcPgY+hhuqdAHmKIZJsqmRJusbvIUbLOGzhN9zlBREX5FRayCtt4 f4Pmk1CNRKPLvnLQxUOmCEq23HL6/kGvV/nenQ3Q7mhZsmAxXnMH8Efx5WMHVIry kqXA6sWtTXe5Hig4FthJuMrBPG3DB8L0AbkHasDOAAnmBno= -----END CERTIFICATE-----Generated at Wed May 13 12:39:23 2026 by rpki-client