$ rpki-client -vvf rpki-rsync.idnic.net/repo/5a990125-609a-48c8-ac86-1c3bc315bad6/0/323430343a613634303a3133393a3a2f34382d3438203d3e20313333383237.roa File: 323430343a613634303a3133393a3a2f34382d3438203d3e20313333383237.roa (raw, json) Hash identifier: Lg4qdsj1osZUt2Wgs1cQh8M+Cq27I8kA05MBhaZ1e2E= Subject key identifier: 64:23:FE:E7:7F:CB:03:43:8C:A8:6D:7C:33:A5:38:39:67:27:59:A6 Certificate issuer: /CN=AF6B7BCDACF90BA83205EA298327379BAB489418 Certificate serial: 6006AD138E77FAF108B971D7E7CA9F165C09CA91 Authority key identifier: AF:6B:7B:CD:AC:F9:0B:A8:32:05:EA:29:83:27:37:9B:AB:48:94:18 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AF6B7BCDACF90BA83205EA298327379BAB489418.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/5a990125-609a-48c8-ac86-1c3bc315bad6/0/323430343a613634303a3133393a3a2f34382d3438203d3e20313333383237.roa Signing time: Sun 03 May 2026 02:35:29 +0000 ROA not before: Sun 03 May 2026 02:30:29 +0000 ROA not after: Sun 02 May 2027 02:35:29 +0000 asID: 133827 IP address blocks: 2404:a640:139::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/5a990125-609a-48c8-ac86-1c3bc315bad6/0/AF6B7BCDACF90BA83205EA298327379BAB489418.crl rsync://rpki-rsync.idnic.net/repo/5a990125-609a-48c8-ac86-1c3bc315bad6/0/AF6B7BCDACF90BA83205EA298327379BAB489418.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AF6B7BCDACF90BA83205EA298327379BAB489418.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 23:11:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:06:ad:13:8e:77:fa:f1:08:b9:71:d7:e7:ca:9f:16:5c:09:ca:91 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AF6B7BCDACF90BA83205EA298327379BAB489418 Validity Not Before: May 3 02:30:29 2026 GMT Not After : May 2 02:35:29 2027 GMT Subject: CN=6423FEE77FCB03438CA86D7C33A53839672759A6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:23:ff:d1:ae:63:ca:1c:40:ab:e9:07:6d:46: 1d:25:59:7f:3c:2d:5b:4e:18:4c:d4:7f:e5:15:92: da:56:8c:bc:44:7e:28:6d:7e:65:2c:1d:1d:ab:54: b6:ec:cd:79:e6:de:6c:54:bb:f2:ff:b4:31:43:24: 11:fd:2f:a8:eb:cf:e9:d9:7d:92:97:a8:01:a0:f6: bc:35:94:27:0d:c2:b4:eb:c9:20:a7:e4:43:09:2d: d8:61:1b:c6:44:f5:f3:f2:ce:f9:59:cd:b7:37:74: 3b:bf:46:2b:8f:4a:6d:d9:c0:71:f1:07:7a:db:f3: 69:54:f0:42:66:90:97:4c:0c:57:72:12:f6:cf:e5: 03:7d:41:a7:0a:91:49:32:77:72:c2:69:42:00:a7: 0e:5e:48:47:26:b5:37:5f:9e:35:99:67:04:44:b7: a7:70:54:10:20:b0:bc:f0:f4:eb:6e:71:00:85:78: 33:7f:8c:c8:3b:0b:48:d6:46:6f:75:17:7a:9f:19: 01:13:b8:b0:9a:b4:d0:4d:97:5b:08:dd:d7:fb:e6: 99:80:14:67:6e:00:89:2d:46:c0:8a:df:d1:20:57: 49:f3:a6:9e:8e:59:3b:2b:2c:36:09:7a:24:9d:b8: 06:6a:58:45:58:16:43:6d:27:b2:ac:4c:43:cb:06: 7a:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:23:FE:E7:7F:CB:03:43:8C:A8:6D:7C:33:A5:38:39:67:27:59:A6 X509v3 Authority Key Identifier: keyid:AF:6B:7B:CD:AC:F9:0B:A8:32:05:EA:29:83:27:37:9B:AB:48:94:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/5a990125-609a-48c8-ac86-1c3bc315bad6/0/AF6B7BCDACF90BA83205EA298327379BAB489418.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AF6B7BCDACF90BA83205EA298327379BAB489418.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/5a990125-609a-48c8-ac86-1c3bc315bad6/0/323430343a613634303a3133393a3a2f34382d3438203d3e20313333383237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:a640:139::/48 Signature Algorithm: sha256WithRSAEncryption 7f:78:79:b7:72:a3:57:c2:bb:77:12:fa:6b:ef:f4:3b:ed:7d: cc:a8:17:c9:4a:7e:da:ee:e6:e5:55:91:d6:6d:b0:6c:a1:12: 84:67:97:1d:57:6f:a1:a5:74:dd:a7:5c:9e:c1:0d:be:9e:ee: 25:37:62:47:dd:99:66:6d:7c:b4:c8:58:6e:1a:04:d9:da:6d: b7:70:71:4d:99:8c:9d:b7:68:11:20:82:07:a9:24:d0:27:81: 61:6b:52:49:17:df:36:91:1e:2d:73:57:d7:11:02:38:3a:77: cb:99:57:c2:c4:ee:43:5a:3d:87:25:2f:b0:e8:ac:7d:1d:7e: df:dd:c4:c0:33:90:8b:ed:ef:a0:c2:30:40:12:2c:5f:6f:fe: 50:91:10:8e:cb:e5:74:4b:9a:89:b7:03:62:5b:22:69:25:1f: cc:3b:46:27:a4:4b:1d:c5:ce:5b:93:b5:ff:c5:3a:36:37:fe: 6f:ae:04:54:08:36:0b:39:ec:d7:6f:bd:cf:0b:78:e6:75:99: ff:3f:0d:04:ff:4d:4c:f9:e2:32:6b:b6:dc:e9:d6:9d:68:9f: af:2b:a2:df:e1:e1:28:67:e0:9f:6e:69:52:e5:a9:51:4e:f3: e3:30:d4:67:8d:00:e5:c7:98:ab:a6:3c:07:89:a0:3b:af:65: a8:4f:c7:b2 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUYAatE453+vEIuXHX58qfFlwJypEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUY2QjdCQ0RBQ0Y5MEJBODMyMDVFQTI5ODMyNzM3OUJB QjQ4OTQxODAeFw0yNjA1MDMwMjMwMjlaFw0yNzA1MDIwMjM1MjlaMDMxMTAvBgNV BAMTKDY0MjNGRUU3N0ZDQjAzNDM4Q0E4NkQ3QzMzQTUzODM5NjcyNzU5QTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrI//RrmPKHECr6QdtRh0lWX88 LVtOGEzUf+UVktpWjLxEfihtfmUsHR2rVLbszXnm3mxUu/L/tDFDJBH9L6jrz+nZ fZKXqAGg9rw1lCcNwrTrySCn5EMJLdhhG8ZE9fPyzvlZzbc3dDu/RiuPSm3ZwHHx B3rb82lU8EJmkJdMDFdyEvbP5QN9QacKkUkyd3LCaUIApw5eSEcmtTdfnjWZZwRE t6dwVBAgsLzw9OtucQCFeDN/jMg7C0jWRm91F3qfGQETuLCatNBNl1sI3df75pmA FGduAIktRsCK39EgV0nzpp6OWTsrLDYJeiSduAZqWEVYFkNtJ7KsTEPLBnr7AgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUZCP+53/LA0OMqG18M6U4OWcnWaYwHwYDVR0j BBgwFoAUr2t7zaz5C6gyBeopgyc3m6tIlBgwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NWE5OTAxMjUtNjA5YS00OGM4LWFjODYtMWMzYmMzMTViYWQ2LzAvQUY2QjdCQ0RB Q0Y5MEJBODMyMDVFQTI5ODMyNzM3OUJBQjQ4OTQxOC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9BRjZCN0JDREFDRjkwQkE4MzIwNUVBMjk4MzI3Mzc5QkFCNDg5 NDE4LmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUFBzALhoGLcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzVhOTkwMTI1LTYwOWEtNDhjOC1h Yzg2LTFjM2JjMzE1YmFkNi8wLzMyMzQzMDM0M2E2MTM2MzQzMDNhMzEzMzM5M2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzMzMzgzMjM3LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJASm QAE5MA0GCSqGSIb3DQEBCwUAA4IBAQB/eHm3cqNXwrt3Evpr7/Q77X3MqBfJSn7a 7ublVZHWbbBsoRKEZ5cdV2+hpXTdp1yewQ2+nu4lN2JH3ZlmbXy0yFhuGgTZ2m23 cHFNmYydt2gRIIIHqSTQJ4Fha1JJF982kR4tc1fXEQI4OnfLmVfCxO5DWj2HJS+w 6Kx9HX7f3cTAM5CL7e+gwjBAEixfb/5QkRCOy+V0S5qJtwNiWyJpJR/MO0YnpEsd xc5bk7X/xTo2N/5vrgRUCDYLOezXb73PC3jmdZn/Pw0E/01M+eIya7bc6dadaJ+v K6Lf4eEoZ+CfbmlS5alRTvPjMNRnjQDlx5irpjwHiaA7r2WoT8ey -----END CERTIFICATE-----Generated at Wed May 13 13:48:20 2026 by rpki-client