$ rpki-client -vvf rpki-rsync.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/323430343a666563303a3a2f33322d3438203d3e20313338383636.roa File: 323430343a666563303a3a2f33322d3438203d3e20313338383636.roa (raw, json) Hash identifier: PK17dkljk3cirdVkAhnzBVlvFjbQaBFW384JrVTU5eI= Subject key identifier: 4E:9F:D9:56:98:38:0D:FC:6C:59:A1:B8:59:2C:B7:C7:D5:BA:3D:F1 Certificate issuer: /CN=AA7E83DE7435AB78ADE6137B1EACFDC6F6BC958A Certificate serial: 5F7DD2885BD7C91353A3F8F77618E7A581BD3426 Authority key identifier: AA:7E:83:DE:74:35:AB:78:AD:E6:13:7B:1E:AC:FD:C6:F6:BC:95:8A Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AA7E83DE7435AB78ADE6137B1EACFDC6F6BC958A.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/323430343a666563303a3a2f33322d3438203d3e20313338383636.roa Signing time: Sun 03 May 2026 02:35:22 +0000 ROA not before: Sun 03 May 2026 02:30:22 +0000 ROA not after: Sun 02 May 2027 02:35:22 +0000 asID: 138866 IP address blocks: 2404:fec0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/AA7E83DE7435AB78ADE6137B1EACFDC6F6BC958A.crl rsync://rpki-rsync.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/AA7E83DE7435AB78ADE6137B1EACFDC6F6BC958A.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AA7E83DE7435AB78ADE6137B1EACFDC6F6BC958A.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 02:23:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:7d:d2:88:5b:d7:c9:13:53:a3:f8:f7:76:18:e7:a5:81:bd:34:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AA7E83DE7435AB78ADE6137B1EACFDC6F6BC958A Validity Not Before: May 3 02:30:22 2026 GMT Not After : May 2 02:35:22 2027 GMT Subject: CN=4E9FD95698380DFC6C59A1B8592CB7C7D5BA3DF1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:0d:51:2a:09:26:9b:b5:cf:57:ae:f2:6a:5a: 0c:c2:e7:ae:20:2d:c4:a8:22:01:f4:f0:18:f6:b1: 50:3b:09:8c:64:56:0d:ff:44:74:38:9e:57:71:64: 31:64:f5:7e:36:48:7f:bd:ec:6a:52:90:d3:a9:ca: 13:9d:94:e8:46:73:62:b6:ed:cd:8d:7a:2c:27:60: 3d:ec:a8:7e:fa:90:50:62:94:a7:6e:b5:7e:4f:a2: f6:f8:04:ff:ef:ec:6f:1b:7b:ca:3f:2a:56:0e:69: c5:e8:9c:db:6c:e4:6e:2a:9c:2e:33:74:8c:89:a2: 16:d4:10:5a:04:dd:81:30:3f:a1:44:a8:e8:30:dd: 59:d3:e1:04:23:39:18:7a:56:a1:a1:62:f7:a6:34: d9:a5:f1:27:75:7f:84:f3:ec:51:09:0b:03:73:3f: 60:e2:92:ec:3d:63:4e:86:ce:a9:ab:d4:eb:e9:09: 7c:e8:22:5c:5b:2b:3b:5e:c3:f6:46:5a:95:aa:2a: 67:94:bb:92:e3:de:e0:d7:8d:50:e8:79:e7:55:19: c3:41:b3:07:f4:34:3a:68:af:13:34:87:42:d7:93: d4:f0:05:65:eb:05:e0:c0:1c:41:d9:5f:86:52:cd: 5e:e0:6e:4d:e5:32:66:fc:f5:a8:f8:81:70:64:22: 09:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:9F:D9:56:98:38:0D:FC:6C:59:A1:B8:59:2C:B7:C7:D5:BA:3D:F1 X509v3 Authority Key Identifier: keyid:AA:7E:83:DE:74:35:AB:78:AD:E6:13:7B:1E:AC:FD:C6:F6:BC:95:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/AA7E83DE7435AB78ADE6137B1EACFDC6F6BC958A.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AA7E83DE7435AB78ADE6137B1EACFDC6F6BC958A.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/323430343a666563303a3a2f33322d3438203d3e20313338383636.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:fec0::/32 Signature Algorithm: sha256WithRSAEncryption 9f:24:bd:1d:af:fb:78:31:cd:4b:53:a4:6b:bc:82:21:bf:2c: a0:bd:e1:d6:e6:e5:e9:a1:bb:de:c8:40:ce:31:ab:fb:8a:4d: ee:e5:e0:c4:71:3b:1b:f0:99:cf:f3:1a:c3:24:64:28:60:87: 94:66:f6:d0:45:99:a3:b7:a8:15:b5:72:2a:63:07:c2:7b:23: 9b:9e:5f:20:c5:c2:ac:b2:ca:29:b3:88:f4:15:3d:28:bb:ab: 29:3d:4b:2a:2c:85:cc:1f:96:a3:67:0f:a3:93:19:79:92:07: e8:82:a3:bf:f7:de:ba:3a:b1:b6:c8:db:0d:0a:a8:ce:30:6f: 71:74:f9:1d:4e:da:a9:b9:1f:65:75:ec:64:ef:92:0e:c3:17: c6:1e:14:10:60:45:8e:6e:28:7c:f9:ce:3a:fd:5f:d8:af:61: 62:db:61:29:79:59:b9:44:99:b7:25:56:67:59:ae:3f:5d:f4: 01:a3:4f:5f:1e:dd:cf:c5:97:ae:17:c9:7d:ce:0b:2c:49:4d: 71:a3:5b:6d:f9:0b:5b:99:25:00:0e:99:e9:05:8f:ba:ab:b8: 51:8a:3b:33:f8:ab:3a:25:2a:78:de:e5:4e:c6:39:02:29:21: 14:33:0a:c3:a3:7a:3a:72:d7:bf:0d:8c:77:a5:d4:31:4a:2a: e7:29:0a:6e -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUX33SiFvXyRNTo/j3dhjnpYG9NCYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUE3RTgzREU3NDM1QUI3OEFERTYxMzdCMUVBQ0ZEQzZG NkJDOTU4QTAeFw0yNjA1MDMwMjMwMjJaFw0yNzA1MDIwMjM1MjJaMDMxMTAvBgNV BAMTKDRFOUZEOTU2OTgzODBERkM2QzU5QTFCODU5MkNCN0M3RDVCQTNERjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCoDVEqCSabtc9XrvJqWgzC564g LcSoIgH08Bj2sVA7CYxkVg3/RHQ4nldxZDFk9X42SH+97GpSkNOpyhOdlOhGc2K2 7c2NeiwnYD3sqH76kFBilKdutX5Povb4BP/v7G8be8o/KlYOacXonNts5G4qnC4z dIyJohbUEFoE3YEwP6FEqOgw3VnT4QQjORh6VqGhYvemNNml8Sd1f4Tz7FEJCwNz P2Dikuw9Y06Gzqmr1OvpCXzoIlxbKztew/ZGWpWqKmeUu5Lj3uDXjVDoeedVGcNB swf0NDporxM0h0LXk9TwBWXrBeDAHEHZX4ZSzV7gbk3lMmb89aj4gXBkIgn3AgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUTp/ZVpg4DfxsWaG4WSy3x9W6PfEwHwYDVR0j BBgwFoAUqn6D3nQ1q3it5hN7Hqz9xva8lYowDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NWE1MTlhZWItNWM1Ni00Y2IzLTk0YTAtMGY0MDBlYTZhMzc1LzAvQUE3RTgzREU3 NDM1QUI3OEFERTYxMzdCMUVBQ0ZEQzZGNkJDOTU4QS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9BQTdFODNERTc0MzVBQjc4QURFNjEzN0IxRUFDRkRDNkY2QkM5 NThBLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzVhNTE5YWViLTVjNTYtNGNiMy05 NGEwLTBmNDAwZWE2YTM3NS8wLzMyMzQzMDM0M2E2NjY1NjMzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMxMzMzODM4MzYzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQE/sAwDQYJKoZI hvcNAQELBQADggEBAJ8kvR2v+3gxzUtTpGu8giG/LKC94dbm5emhu97IQM4xq/uK Te7l4MRxOxvwmc/zGsMkZChgh5Rm9tBFmaO3qBW1cipjB8J7I5ueXyDFwqyyyimz iPQVPSi7qyk9SyoshcwflqNnD6OTGXmSB+iCo7/33ro6sbbI2w0KqM4wb3F0+R1O 2qm5H2V17GTvkg7DF8YeFBBgRY5uKHz5zjr9X9ivYWLbYSl5WblEmbclVmdZrj9d 9AGjT18e3c/Fl64XyX3OCyxJTXGjW235C1uZJQAOmekFj7qruFGKOzP4qzolKnje 5U7GOQIpIRQzCsOjejpy178NjHel1DFKKucpCm4= -----END CERTIFICATE-----Generated at Wed May 13 09:55:01 2026 by rpki-client