$ rpki-client -vvf rpki-rsync.idnic.net/repo/5a990125-609a-48c8-ac86-1c3bc315bad6/0/323430343a613634303a3131333a3a2f34382d3438203d3e20313333383237.roa File: 323430343a613634303a3131333a3a2f34382d3438203d3e20313333383237.roa (raw, json) Hash identifier: qCc2JIEbiwtQdnz7uQXbC2p3w6YwxAaU8dCI6McQWsM= Subject key identifier: 52:AC:43:94:DF:7C:AB:2F:F1:64:55:0F:26:D2:FE:5E:73:DF:D3:91 Certificate issuer: /CN=AF6B7BCDACF90BA83205EA298327379BAB489418 Certificate serial: 7063E1DDB16168A5A9328899386B3EDA879E2444 Authority key identifier: AF:6B:7B:CD:AC:F9:0B:A8:32:05:EA:29:83:27:37:9B:AB:48:94:18 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AF6B7BCDACF90BA83205EA298327379BAB489418.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/5a990125-609a-48c8-ac86-1c3bc315bad6/0/323430343a613634303a3131333a3a2f34382d3438203d3e20313333383237.roa Signing time: Sun 03 May 2026 02:35:29 +0000 ROA not before: Sun 03 May 2026 02:30:29 +0000 ROA not after: Sun 02 May 2027 02:35:29 +0000 asID: 133827 IP address blocks: 2404:a640:113::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/5a990125-609a-48c8-ac86-1c3bc315bad6/0/AF6B7BCDACF90BA83205EA298327379BAB489418.crl rsync://rpki-rsync.idnic.net/repo/5a990125-609a-48c8-ac86-1c3bc315bad6/0/AF6B7BCDACF90BA83205EA298327379BAB489418.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AF6B7BCDACF90BA83205EA298327379BAB489418.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 23:11:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:63:e1:dd:b1:61:68:a5:a9:32:88:99:38:6b:3e:da:87:9e:24:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AF6B7BCDACF90BA83205EA298327379BAB489418 Validity Not Before: May 3 02:30:29 2026 GMT Not After : May 2 02:35:29 2027 GMT Subject: CN=52AC4394DF7CAB2FF164550F26D2FE5E73DFD391 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:db:f4:5e:b6:46:49:06:19:5c:9a:bc:74:9d: 79:87:19:51:4e:fa:ce:2a:c4:c7:73:5a:52:f6:eb: a2:7f:1d:2d:83:7c:53:78:56:83:40:fa:2b:e1:d2: 0b:23:4c:4b:ce:92:55:41:68:7c:ef:a6:06:93:dc: 07:92:4b:20:39:fc:7e:dd:f1:ac:26:6c:c5:76:93: 09:18:6d:38:ac:91:2c:77:84:33:81:d5:80:b6:de: 7e:03:ca:51:2f:a7:64:26:c1:7b:84:1b:d0:04:0a: 20:9c:03:08:ac:bf:55:9a:88:39:ba:99:8c:13:d5: d2:38:46:b5:f8:0e:9e:c0:cc:d1:97:43:e5:be:82: 24:bd:fc:b3:a5:d2:05:27:c5:7d:ba:54:f5:f2:cd: ed:50:d0:a3:1b:f5:39:18:40:85:bd:71:a2:83:cb: d6:56:ea:f1:6c:87:d2:7a:ef:a4:9b:4f:e3:81:c7: a8:ab:15:31:57:88:b1:c5:1a:70:c3:dc:da:8e:d0: 60:2e:2c:c6:ca:3a:ae:52:3a:e4:e8:b7:62:79:ff: f8:81:e6:25:4f:bd:a6:b0:d8:47:6c:34:be:37:7a: 38:57:3a:77:cc:d0:0a:6d:97:d4:07:96:e6:fc:b0: b3:aa:d8:ac:f3:43:03:6a:ba:fe:d5:29:fb:68:9c: 3d:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:AC:43:94:DF:7C:AB:2F:F1:64:55:0F:26:D2:FE:5E:73:DF:D3:91 X509v3 Authority Key Identifier: keyid:AF:6B:7B:CD:AC:F9:0B:A8:32:05:EA:29:83:27:37:9B:AB:48:94:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/5a990125-609a-48c8-ac86-1c3bc315bad6/0/AF6B7BCDACF90BA83205EA298327379BAB489418.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AF6B7BCDACF90BA83205EA298327379BAB489418.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/5a990125-609a-48c8-ac86-1c3bc315bad6/0/323430343a613634303a3131333a3a2f34382d3438203d3e20313333383237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:a640:113::/48 Signature Algorithm: sha256WithRSAEncryption 76:5b:fe:61:48:23:86:c1:53:9e:c1:65:d4:ac:42:cf:b1:39: f4:05:67:05:b5:57:6e:77:3d:a3:96:11:02:63:e7:38:7a:a2: 14:8a:d4:a0:c2:64:92:8a:5a:b8:47:d6:4b:ad:a8:aa:3d:4a: 42:f4:96:96:77:d3:71:89:6a:74:0c:f3:33:93:35:08:94:71: ba:3f:18:f4:78:21:c6:76:2e:3d:4d:e8:79:c7:20:3c:11:f3: 04:62:c4:28:d7:a2:a4:0c:3d:84:09:96:ef:36:26:91:b4:ae: b0:ba:ea:95:e8:be:09:ea:fa:99:13:79:f8:cc:90:0a:2b:09: 5c:1e:13:94:94:c9:68:7d:71:5b:93:ab:55:53:55:9f:84:34: 30:0c:62:07:d6:3b:b0:80:e2:97:9e:02:4b:da:e8:ad:76:96: f8:7b:b3:f7:ac:fe:90:80:81:aa:a0:98:24:ef:bc:17:79:ba: e9:d1:0e:b1:37:d5:0c:96:b7:b8:80:13:1f:33:b5:59:09:f9: af:92:f8:d7:9b:81:ef:13:ab:50:fe:b9:3a:d0:ae:da:a1:d7: a4:1a:62:8a:87:e6:23:be:c4:a4:88:4f:54:e1:c3:08:05:54: 55:1a:65:13:99:ff:64:66:e0:13:e9:31:da:ad:7e:88:6c:66: 64:8e:48:63 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUcGPh3bFhaKWpMoiZOGs+2oeeJEQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUY2QjdCQ0RBQ0Y5MEJBODMyMDVFQTI5ODMyNzM3OUJB QjQ4OTQxODAeFw0yNjA1MDMwMjMwMjlaFw0yNzA1MDIwMjM1MjlaMDMxMTAvBgNV BAMTKDUyQUM0Mzk0REY3Q0FCMkZGMTY0NTUwRjI2RDJGRTVFNzNERkQzOTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC02/RetkZJBhlcmrx0nXmHGVFO +s4qxMdzWlL266J/HS2DfFN4VoNA+ivh0gsjTEvOklVBaHzvpgaT3AeSSyA5/H7d 8awmbMV2kwkYbTiskSx3hDOB1YC23n4DylEvp2QmwXuEG9AECiCcAwisv1WaiDm6 mYwT1dI4RrX4Dp7AzNGXQ+W+giS9/LOl0gUnxX26VPXyze1Q0KMb9TkYQIW9caKD y9ZW6vFsh9J676SbT+OBx6irFTFXiLHFGnDD3NqO0GAuLMbKOq5SOuTot2J5//iB 5iVPvaaw2EdsNL43ejhXOnfM0Aptl9QHlub8sLOq2KzzQwNquv7VKftonD2rAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUUqxDlN98qy/xZFUPJtL+XnPf05EwHwYDVR0j BBgwFoAUr2t7zaz5C6gyBeopgyc3m6tIlBgwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NWE5OTAxMjUtNjA5YS00OGM4LWFjODYtMWMzYmMzMTViYWQ2LzAvQUY2QjdCQ0RB Q0Y5MEJBODMyMDVFQTI5ODMyNzM3OUJBQjQ4OTQxOC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9BRjZCN0JDREFDRjkwQkE4MzIwNUVBMjk4MzI3Mzc5QkFCNDg5 NDE4LmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUFBzALhoGLcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzVhOTkwMTI1LTYwOWEtNDhjOC1h Yzg2LTFjM2JjMzE1YmFkNi8wLzMyMzQzMDM0M2E2MTM2MzQzMDNhMzEzMTMzM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzMzMzgzMjM3LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJASm QAETMA0GCSqGSIb3DQEBCwUAA4IBAQB2W/5hSCOGwVOewWXUrELPsTn0BWcFtVdu dz2jlhECY+c4eqIUitSgwmSSilq4R9ZLraiqPUpC9JaWd9NxiWp0DPMzkzUIlHG6 Pxj0eCHGdi49Teh5xyA8EfMEYsQo16KkDD2ECZbvNiaRtK6wuuqV6L4J6vqZE3n4 zJAKKwlcHhOUlMlofXFbk6tVU1WfhDQwDGIH1juwgOKXngJL2uitdpb4e7P3rP6Q gIGqoJgk77wXebrp0Q6xN9UMlre4gBMfM7VZCfmvkvjXm4HvE6tQ/rk60K7aodek GmKKh+YjvsSkiE9U4cMIBVRVGmUTmf9kZuAT6THarX6IbGZkjkhj -----END CERTIFICATE-----Generated at Wed May 13 13:48:29 2026 by rpki-client