$ rpki-client -vvf rpki-rsync.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/323430343a666563303a343a3a2f34382d3438203d3e20313338383636.roa File: 323430343a666563303a343a3a2f34382d3438203d3e20313338383636.roa (raw, json) Hash identifier: aykb9pBBSkXI3tTi9mpSHn2tVZ0H++we7ChH689sRxg= Subject key identifier: C4:9B:0C:EB:4B:38:46:77:CA:34:2D:F8:0C:DC:FE:7D:E0:87:33:B9 Certificate issuer: /CN=AA7E83DE7435AB78ADE6137B1EACFDC6F6BC958A Certificate serial: 4857949E56EC1B0AE66263E1987ECAC6E6473872 Authority key identifier: AA:7E:83:DE:74:35:AB:78:AD:E6:13:7B:1E:AC:FD:C6:F6:BC:95:8A Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AA7E83DE7435AB78ADE6137B1EACFDC6F6BC958A.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/323430343a666563303a343a3a2f34382d3438203d3e20313338383636.roa Signing time: Sun 03 May 2026 02:35:20 +0000 ROA not before: Sun 03 May 2026 02:30:20 +0000 ROA not after: Sun 02 May 2027 02:35:20 +0000 asID: 138866 IP address blocks: 2404:fec0:4::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/AA7E83DE7435AB78ADE6137B1EACFDC6F6BC958A.crl rsync://rpki-rsync.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/AA7E83DE7435AB78ADE6137B1EACFDC6F6BC958A.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AA7E83DE7435AB78ADE6137B1EACFDC6F6BC958A.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 02:23:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:57:94:9e:56:ec:1b:0a:e6:62:63:e1:98:7e:ca:c6:e6:47:38:72 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AA7E83DE7435AB78ADE6137B1EACFDC6F6BC958A Validity Not Before: May 3 02:30:20 2026 GMT Not After : May 2 02:35:20 2027 GMT Subject: CN=C49B0CEB4B384677CA342DF80CDCFE7DE08733B9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:29:0e:8f:18:84:d3:a0:0d:c7:8b:57:b2:83: ce:c7:52:fc:74:93:bf:73:ae:fe:bb:59:0d:ca:aa: 4f:50:ae:90:17:25:6f:6a:59:f9:97:d4:55:ca:f7: 43:72:7f:3e:f4:f0:a1:62:18:64:31:70:d8:ea:d5: a3:3e:3f:45:7b:55:f3:cb:e0:44:a9:8b:3d:1e:3b: a4:76:96:d8:ad:6a:c3:cd:b7:4e:08:c2:af:45:fc: 99:86:b5:93:10:95:32:6e:8a:a1:e8:b6:f9:81:e2: 1e:14:77:17:7f:f7:7c:55:1f:36:50:d3:bc:db:79: 22:10:43:50:53:ae:06:80:e3:f3:12:10:7b:6d:09: 41:d4:1a:7a:fc:21:a3:06:a6:27:c7:cc:47:e2:ff: b3:05:cc:de:b3:68:c5:b9:fe:d4:c1:1e:c6:04:a5: 90:87:18:af:d5:01:a5:86:8b:4d:dc:f8:c0:d3:b6: e9:3d:03:09:fd:50:a5:be:b8:32:3b:fd:ac:58:31: 4e:73:ca:f5:d3:36:37:7e:f2:17:e9:6f:e7:17:c7: 2b:db:08:6a:be:9e:82:6a:f0:6b:43:fc:f6:b2:24: 88:09:ac:a3:15:4d:99:fc:5e:7b:89:9d:8f:08:a7: 3f:2f:ae:6c:71:83:6d:22:c3:3a:63:30:86:c4:85: 78:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:9B:0C:EB:4B:38:46:77:CA:34:2D:F8:0C:DC:FE:7D:E0:87:33:B9 X509v3 Authority Key Identifier: keyid:AA:7E:83:DE:74:35:AB:78:AD:E6:13:7B:1E:AC:FD:C6:F6:BC:95:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/AA7E83DE7435AB78ADE6137B1EACFDC6F6BC958A.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AA7E83DE7435AB78ADE6137B1EACFDC6F6BC958A.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/323430343a666563303a343a3a2f34382d3438203d3e20313338383636.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:fec0:4::/48 Signature Algorithm: sha256WithRSAEncryption 2f:b6:8a:88:33:2b:b8:3f:99:ee:1e:4a:6f:58:3a:52:f8:cc: 39:c4:65:bb:d3:e2:bf:31:45:af:22:48:04:b0:98:8a:97:6c: ae:17:c6:bd:93:b2:c1:f6:9d:76:a0:b9:f8:85:bb:68:b0:e6: 38:5f:46:57:00:e6:eb:33:0e:e2:46:50:a3:96:59:d7:24:7b: 1f:d3:fd:57:b8:9d:f3:94:72:fc:45:89:ed:d7:90:0a:da:90: 3d:13:ee:bf:87:30:e8:be:a3:b0:db:95:29:5c:19:60:58:83: b6:33:1f:b9:75:88:4b:ad:de:d2:1b:82:82:7b:13:7b:9c:10: 9b:b0:23:fa:e0:dd:c5:a5:59:9c:78:45:09:a5:0b:22:06:25: 49:07:e1:75:3c:70:3e:9a:1f:e5:b3:ac:9f:db:9b:69:05:d6: 6d:24:af:38:8e:cd:30:e6:c9:cb:26:14:d5:e5:31:3c:6c:87: 3c:5a:96:27:d1:95:7a:3a:dc:ec:4f:6c:72:60:fd:4b:f5:a2: 8e:2f:ca:5d:91:de:a3:81:bc:27:17:e8:4f:36:13:9a:e2:32: 1b:70:ea:16:aa:69:78:e4:fc:1a:8c:12:8e:ea:9b:6e:86:91: e9:11:c0:b3:7a:33:4e:6e:9f:75:e0:49:fa:75:e5:6e:89:a7: 62:11:83:c8 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUSFeUnlbsGwrmYmPhmH7KxuZHOHIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUE3RTgzREU3NDM1QUI3OEFERTYxMzdCMUVBQ0ZEQzZG NkJDOTU4QTAeFw0yNjA1MDMwMjMwMjBaFw0yNzA1MDIwMjM1MjBaMDMxMTAvBgNV BAMTKEM0OUIwQ0VCNEIzODQ2NzdDQTM0MkRGODBDRENGRTdERTA4NzMzQjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLKQ6PGITToA3Hi1eyg87HUvx0 k79zrv67WQ3Kqk9QrpAXJW9qWfmX1FXK90Nyfz708KFiGGQxcNjq1aM+P0V7VfPL 4ESpiz0eO6R2ltitasPNt04Iwq9F/JmGtZMQlTJuiqHotvmB4h4Udxd/93xVHzZQ 07zbeSIQQ1BTrgaA4/MSEHttCUHUGnr8IaMGpifHzEfi/7MFzN6zaMW5/tTBHsYE pZCHGK/VAaWGi03c+MDTtuk9Awn9UKW+uDI7/axYMU5zyvXTNjd+8hfpb+cXxyvb CGq+noJq8GtD/PayJIgJrKMVTZn8XnuJnY8Ipz8vrmxxg20iwzpjMIbEhXhZAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUxJsM60s4RnfKNC34DNz+feCHM7kwHwYDVR0j BBgwFoAUqn6D3nQ1q3it5hN7Hqz9xva8lYowDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NWE1MTlhZWItNWM1Ni00Y2IzLTk0YTAtMGY0MDBlYTZhMzc1LzAvQUE3RTgzREU3 NDM1QUI3OEFERTYxMzdCMUVBQ0ZEQzZGNkJDOTU4QS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9BQTdFODNERTc0MzVBQjc4QURFNjEzN0IxRUFDRkRDNkY2QkM5 NThBLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzVhNTE5YWViLTVjNTYtNGNiMy05 NGEwLTBmNDAwZWE2YTM3NS8wLzMyMzQzMDM0M2E2NjY1NjMzMDNhMzQzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTMzMzgzODM2MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBP7AAAQw DQYJKoZIhvcNAQELBQADggEBAC+2iogzK7g/me4eSm9YOlL4zDnEZbvT4r8xRa8i SASwmIqXbK4Xxr2TssH2nXagufiFu2iw5jhfRlcA5uszDuJGUKOWWdckex/T/Ve4 nfOUcvxFie3XkArakD0T7r+HMOi+o7DblSlcGWBYg7YzH7l1iEut3tIbgoJ7E3uc EJuwI/rg3cWlWZx4RQmlCyIGJUkH4XU8cD6aH+WzrJ/bm2kF1m0krziOzTDmycsm FNXlMTxshzxalifRlXo63OxPbHJg/Uv1oo4vyl2R3qOBvCcX6E82E5riMhtw6haq aXjk/BqMEo7qm26GkekRwLN6M05un3XgSfp15W6Jp2IRg8g= -----END CERTIFICATE-----Generated at Wed May 13 10:30:05 2026 by rpki-client