$ rpki-client -vvf rpki-rsync.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/323430343a666563303a353a3a2f34382d3438203d3e20313338383636.roa File: 323430343a666563303a353a3a2f34382d3438203d3e20313338383636.roa (raw, json) Hash identifier: UF7aCyE5FESxwGGWBM/poN89N17rR7jv22FSOfKjvlk= Subject key identifier: 86:24:9A:1F:05:2F:38:67:10:93:4B:F7:35:9D:4D:27:92:13:2F:AE Certificate issuer: /CN=AA7E83DE7435AB78ADE6137B1EACFDC6F6BC958A Certificate serial: 03D91BBAB9011B4ED5704D5F491447CE98C1DC81 Authority key identifier: AA:7E:83:DE:74:35:AB:78:AD:E6:13:7B:1E:AC:FD:C6:F6:BC:95:8A Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AA7E83DE7435AB78ADE6137B1EACFDC6F6BC958A.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/323430343a666563303a353a3a2f34382d3438203d3e20313338383636.roa Signing time: Sun 03 May 2026 02:35:21 +0000 ROA not before: Sun 03 May 2026 02:30:21 +0000 ROA not after: Sun 02 May 2027 02:35:21 +0000 asID: 138866 IP address blocks: 2404:fec0:5::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/AA7E83DE7435AB78ADE6137B1EACFDC6F6BC958A.crl rsync://rpki-rsync.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/AA7E83DE7435AB78ADE6137B1EACFDC6F6BC958A.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AA7E83DE7435AB78ADE6137B1EACFDC6F6BC958A.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 02:23:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:d9:1b:ba:b9:01:1b:4e:d5:70:4d:5f:49:14:47:ce:98:c1:dc:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AA7E83DE7435AB78ADE6137B1EACFDC6F6BC958A Validity Not Before: May 3 02:30:21 2026 GMT Not After : May 2 02:35:21 2027 GMT Subject: CN=86249A1F052F386710934BF7359D4D2792132FAE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:dc:17:4f:15:5f:68:37:8b:5f:cf:8f:c6:19: 2c:e7:95:98:bd:83:1a:3e:47:e1:b7:e7:8b:62:e7: 7e:b2:40:48:9d:5c:15:4e:f7:b3:33:99:cf:69:4a: 81:fd:56:1b:e3:94:87:2e:0c:3a:ae:79:c6:65:8b: e4:03:2e:30:17:2e:ca:ed:54:1c:77:04:2c:4c:13: 43:95:bf:95:3f:3a:70:f3:23:9d:33:07:41:0e:33: 28:7b:10:2b:da:c9:7a:b3:bb:36:e9:27:8c:5b:c6: 66:64:4e:54:70:8c:4f:f5:39:cd:f2:90:5d:34:14: a9:41:41:c8:50:24:92:f0:a3:3f:62:a1:f9:11:9b: e9:83:df:f0:25:01:2c:be:93:7c:43:3b:c1:e9:ee: 47:d8:2e:56:22:74:cc:a8:fa:08:4b:c7:ae:e2:6f: 29:f3:75:ba:48:5b:fd:68:4c:e3:1c:bc:e9:70:96: 4e:83:ed:4d:04:96:4e:e5:3f:0f:49:6f:3c:07:c8: ad:00:65:7c:07:e3:45:b1:c3:f4:28:37:6b:b3:61: 01:31:97:cb:8b:20:41:ba:99:d5:99:88:82:c9:8e: 3a:c7:f9:f8:5d:d1:61:0e:89:8c:57:9f:7c:cd:14: 1b:e6:c5:ec:32:cb:4e:84:17:cc:e9:41:2c:e8:2d: b3:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:24:9A:1F:05:2F:38:67:10:93:4B:F7:35:9D:4D:27:92:13:2F:AE X509v3 Authority Key Identifier: keyid:AA:7E:83:DE:74:35:AB:78:AD:E6:13:7B:1E:AC:FD:C6:F6:BC:95:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/AA7E83DE7435AB78ADE6137B1EACFDC6F6BC958A.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AA7E83DE7435AB78ADE6137B1EACFDC6F6BC958A.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/323430343a666563303a353a3a2f34382d3438203d3e20313338383636.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:fec0:5::/48 Signature Algorithm: sha256WithRSAEncryption 5b:a6:f4:77:0e:15:74:bb:b6:9f:75:4b:1a:2a:12:16:70:c2: a2:cb:fb:55:c5:40:d6:0e:dc:03:90:d0:62:f2:24:8f:21:9e: d2:b1:d2:fc:13:d0:47:50:da:a4:c5:7c:af:14:96:a1:d7:75: c5:ca:6a:5f:72:d0:e1:19:02:e0:da:1b:b9:08:96:0a:91:78: d1:25:e7:a2:0d:54:6a:d5:88:72:31:e5:37:f3:a1:bb:e0:b2: 2b:4c:7e:dd:cb:15:fc:6e:d1:98:b9:cb:98:73:fb:4a:6d:cc: 40:87:90:07:cb:a0:ae:6c:6d:b1:96:56:7f:97:b0:da:f7:53: 01:b7:30:c7:10:f6:e7:2e:07:de:8f:89:de:43:7e:1a:44:ea: be:b6:ed:28:c8:7b:1a:d5:68:b2:91:dc:65:0d:d2:93:b4:00: b4:d4:6d:55:5c:77:67:03:f1:40:8c:1e:8e:fc:e0:1f:4d:dd: 19:01:c9:54:66:2f:0a:9a:89:71:17:4d:5e:d1:22:3e:a8:27: 9b:67:59:3c:cd:96:07:c5:8d:0a:4f:73:ae:f6:ef:d6:8f:84: 96:38:bf:12:09:c1:64:53:99:e7:f9:58:98:b2:98:60:79:17: 2b:d3:98:07:93:4d:96:1a:b3:ea:b0:1b:38:a5:f1:8c:c0:ac: d1:a1:a1:9c -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUA9kburkBG07VcE1fSRRHzpjB3IEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUE3RTgzREU3NDM1QUI3OEFERTYxMzdCMUVBQ0ZEQzZG NkJDOTU4QTAeFw0yNjA1MDMwMjMwMjFaFw0yNzA1MDIwMjM1MjFaMDMxMTAvBgNV BAMTKDg2MjQ5QTFGMDUyRjM4NjcxMDkzNEJGNzM1OUQ0RDI3OTIxMzJGQUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC53BdPFV9oN4tfz4/GGSznlZi9 gxo+R+G354ti536yQEidXBVO97Mzmc9pSoH9VhvjlIcuDDquecZli+QDLjAXLsrt VBx3BCxME0OVv5U/OnDzI50zB0EOMyh7ECvayXqzuzbpJ4xbxmZkTlRwjE/1Oc3y kF00FKlBQchQJJLwoz9iofkRm+mD3/AlASy+k3xDO8Hp7kfYLlYidMyo+ghLx67i bynzdbpIW/1oTOMcvOlwlk6D7U0Elk7lPw9JbzwHyK0AZXwH40Wxw/QoN2uzYQEx l8uLIEG6mdWZiILJjjrH+fhd0WEOiYxXn3zNFBvmxewyy06EF8zpQSzoLbOtAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUhiSaHwUvOGcQk0v3NZ1NJ5ITL64wHwYDVR0j BBgwFoAUqn6D3nQ1q3it5hN7Hqz9xva8lYowDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NWE1MTlhZWItNWM1Ni00Y2IzLTk0YTAtMGY0MDBlYTZhMzc1LzAvQUE3RTgzREU3 NDM1QUI3OEFERTYxMzdCMUVBQ0ZEQzZGNkJDOTU4QS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9BQTdFODNERTc0MzVBQjc4QURFNjEzN0IxRUFDRkRDNkY2QkM5 NThBLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzVhNTE5YWViLTVjNTYtNGNiMy05 NGEwLTBmNDAwZWE2YTM3NS8wLzMyMzQzMDM0M2E2NjY1NjMzMDNhMzUzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTMzMzgzODM2MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBP7AAAUw DQYJKoZIhvcNAQELBQADggEBAFum9HcOFXS7tp91SxoqEhZwwqLL+1XFQNYO3AOQ 0GLyJI8hntKx0vwT0EdQ2qTFfK8UlqHXdcXKal9y0OEZAuDaG7kIlgqReNEl56IN VGrViHIx5TfzobvgsitMft3LFfxu0Zi5y5hz+0ptzECHkAfLoK5sbbGWVn+XsNr3 UwG3MMcQ9ucuB96Pid5DfhpE6r627SjIexrVaLKR3GUN0pO0ALTUbVVcd2cD8UCM Ho784B9N3RkByVRmLwqaiXEXTV7RIj6oJ5tnWTzNlgfFjQpPc67279aPhJY4vxIJ wWRTmef5WJiymGB5FyvTmAeTTZYas+qwGzil8YzArNGhoZw= -----END CERTIFICATE-----Generated at Wed May 13 10:20:22 2026 by rpki-client