$ rpki-client -vvf rpki-rsync.idnic.net/repo/5a990125-609a-48c8-ac86-1c3bc315bad6/0/323430343a613634303a36363a3a2f34382d3438203d3e20313333383237.roa File: 323430343a613634303a36363a3a2f34382d3438203d3e20313333383237.roa (raw, json) Hash identifier: y5wzCpmCgccfr9+aDXB1mUmJvFdLQ1aEGTJds2iwsoo= Subject key identifier: D2:83:88:23:23:9E:43:AF:6E:B1:5F:2F:8A:BD:D6:18:0E:73:44:8A Certificate issuer: /CN=AF6B7BCDACF90BA83205EA298327379BAB489418 Certificate serial: 035AF90E9B32882DBB787A353A5EE01B4F367E32 Authority key identifier: AF:6B:7B:CD:AC:F9:0B:A8:32:05:EA:29:83:27:37:9B:AB:48:94:18 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AF6B7BCDACF90BA83205EA298327379BAB489418.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/5a990125-609a-48c8-ac86-1c3bc315bad6/0/323430343a613634303a36363a3a2f34382d3438203d3e20313333383237.roa Signing time: Sun 03 May 2026 02:35:30 +0000 ROA not before: Sun 03 May 2026 02:30:30 +0000 ROA not after: Sun 02 May 2027 02:35:30 +0000 asID: 133827 IP address blocks: 2404:a640:66::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/5a990125-609a-48c8-ac86-1c3bc315bad6/0/AF6B7BCDACF90BA83205EA298327379BAB489418.crl rsync://rpki-rsync.idnic.net/repo/5a990125-609a-48c8-ac86-1c3bc315bad6/0/AF6B7BCDACF90BA83205EA298327379BAB489418.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AF6B7BCDACF90BA83205EA298327379BAB489418.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 23:11:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:5a:f9:0e:9b:32:88:2d:bb:78:7a:35:3a:5e:e0:1b:4f:36:7e:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AF6B7BCDACF90BA83205EA298327379BAB489418 Validity Not Before: May 3 02:30:30 2026 GMT Not After : May 2 02:35:30 2027 GMT Subject: CN=D2838823239E43AF6EB15F2F8ABDD6180E73448A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:ab:1a:e3:99:19:0b:d0:ae:93:13:c5:a6:e3: 42:01:a6:82:3a:91:cb:65:7f:96:63:4e:0f:d2:5f: 90:7c:5f:9f:85:f7:8c:b8:c4:84:93:5b:4d:55:2a: f0:19:0c:eb:a0:31:97:c0:43:18:31:17:bc:a4:fe: 3b:35:9f:7e:14:85:93:06:2e:d7:d9:ec:df:75:bb: 0f:26:fa:74:76:fc:31:85:02:04:45:d2:1b:54:52: e3:6a:1e:e4:05:28:06:42:3a:e8:9f:5a:4f:21:51: df:21:97:00:b3:48:5a:c3:47:77:dd:81:af:f5:70: e0:29:8f:69:15:33:c1:cd:e1:d2:f7:15:56:75:d2: 26:97:a0:6d:1d:13:c5:f5:8a:8b:1e:ed:ad:d7:b6: b0:54:45:0a:7a:95:00:a4:b7:8d:ed:2e:43:f2:ac: 9d:93:96:e3:84:07:fa:6a:96:91:64:93:64:05:03: 05:64:f9:6e:1e:9f:98:93:05:26:a6:81:18:73:61: 6b:88:17:c3:2b:23:7a:88:29:99:26:a1:50:5d:3d: 4d:63:0f:46:4f:53:f5:91:17:a5:01:47:38:7f:d4: 3b:f2:aa:6b:5d:a2:66:f7:19:a6:7b:96:cf:88:cc: 4d:0a:59:37:d2:25:c1:33:a5:53:cb:c2:22:73:f6: c1:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:83:88:23:23:9E:43:AF:6E:B1:5F:2F:8A:BD:D6:18:0E:73:44:8A X509v3 Authority Key Identifier: keyid:AF:6B:7B:CD:AC:F9:0B:A8:32:05:EA:29:83:27:37:9B:AB:48:94:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/5a990125-609a-48c8-ac86-1c3bc315bad6/0/AF6B7BCDACF90BA83205EA298327379BAB489418.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AF6B7BCDACF90BA83205EA298327379BAB489418.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/5a990125-609a-48c8-ac86-1c3bc315bad6/0/323430343a613634303a36363a3a2f34382d3438203d3e20313333383237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:a640:66::/48 Signature Algorithm: sha256WithRSAEncryption 3d:7f:d5:7c:be:3a:97:cf:c4:d2:22:c2:c4:b2:3b:34:87:d0: bc:11:d6:fe:e4:27:01:c3:73:2c:99:83:d6:d6:de:c7:db:f8: aa:6a:44:91:7e:f2:55:6e:80:51:ca:c5:ea:3d:d7:34:66:7c: a7:5c:e3:c8:0d:06:70:d4:6b:c0:30:1c:50:bd:cc:c2:e0:01: ec:73:23:15:73:94:97:70:70:a1:15:14:7c:fe:83:b5:98:90: 4a:ef:84:d0:fc:c6:67:bb:b9:24:49:e4:69:77:ce:d2:e2:78: 8c:ef:cb:1b:6b:84:72:f9:1f:aa:41:ff:3a:07:22:20:96:7f: 0d:c7:6b:95:58:84:c6:4c:ea:51:ff:7f:52:44:3a:5c:fb:76: d7:b3:be:70:4d:7b:3b:6f:18:17:b9:86:7d:ec:47:70:29:0c: 96:f3:81:73:c6:2b:2e:63:7c:e1:95:07:2c:2a:78:88:dc:11: cc:90:ad:83:70:42:75:bc:e1:32:85:63:15:8f:b9:4b:5e:a3: f6:18:90:ab:b2:4e:20:8b:62:6e:eb:93:97:a5:04:87:ba:90: f1:5d:88:fa:e3:a4:29:8c:f8:65:71:76:58:05:ce:68:6a:b0: bc:0a:f0:74:cd:d2:28:a7:c2:85:87:a8:35:b9:db:79:88:7f: 17:6c:bf:53 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUA1r5DpsyiC27eHo1Ol7gG082fjIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUY2QjdCQ0RBQ0Y5MEJBODMyMDVFQTI5ODMyNzM3OUJB QjQ4OTQxODAeFw0yNjA1MDMwMjMwMzBaFw0yNzA1MDIwMjM1MzBaMDMxMTAvBgNV BAMTKEQyODM4ODIzMjM5RTQzQUY2RUIxNUYyRjhBQkRENjE4MEU3MzQ0OEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFqxrjmRkL0K6TE8Wm40IBpoI6 kctlf5ZjTg/SX5B8X5+F94y4xISTW01VKvAZDOugMZfAQxgxF7yk/js1n34UhZMG LtfZ7N91uw8m+nR2/DGFAgRF0htUUuNqHuQFKAZCOuifWk8hUd8hlwCzSFrDR3fd ga/1cOApj2kVM8HN4dL3FVZ10iaXoG0dE8X1iose7a3XtrBURQp6lQCkt43tLkPy rJ2TluOEB/pqlpFkk2QFAwVk+W4en5iTBSamgRhzYWuIF8MrI3qIKZkmoVBdPU1j D0ZPU/WRF6UBRzh/1Dvyqmtdomb3GaZ7ls+IzE0KWTfSJcEzpVPLwiJz9sGFAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQU0oOIIyOeQ69usV8vir3WGA5zRIowHwYDVR0j BBgwFoAUr2t7zaz5C6gyBeopgyc3m6tIlBgwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NWE5OTAxMjUtNjA5YS00OGM4LWFjODYtMWMzYmMzMTViYWQ2LzAvQUY2QjdCQ0RB Q0Y5MEJBODMyMDVFQTI5ODMyNzM3OUJBQjQ4OTQxOC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9BRjZCN0JDREFDRjkwQkE4MzIwNUVBMjk4MzI3Mzc5QkFCNDg5 NDE4LmNlcjCBqQYIKwYBBQUHAQsEgZwwgZkwgZYGCCsGAQUFBzALhoGJcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzVhOTkwMTI1LTYwOWEtNDhjOC1h Yzg2LTFjM2JjMzE1YmFkNi8wLzMyMzQzMDM0M2E2MTM2MzQzMDNhMzYzNjNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzMzMzM4MzIzNy5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQEpkAA ZjANBgkqhkiG9w0BAQsFAAOCAQEAPX/VfL46l8/E0iLCxLI7NIfQvBHW/uQnAcNz LJmD1tbex9v4qmpEkX7yVW6AUcrF6j3XNGZ8p1zjyA0GcNRrwDAcUL3MwuAB7HMj FXOUl3BwoRUUfP6DtZiQSu+E0PzGZ7u5JEnkaXfO0uJ4jO/LG2uEcvkfqkH/Ogci IJZ/DcdrlViExkzqUf9/UkQ6XPt217O+cE17O28YF7mGfexHcCkMlvOBc8YrLmN8 4ZUHLCp4iNwRzJCtg3BCdbzhMoVjFY+5S16j9hiQq7JOIItibuuTl6UEh7qQ8V2I +uOkKYz4ZXF2WAXOaGqwvArwdM3SKKfChYeoNbnbeYh/F2y/Uw== -----END CERTIFICATE-----Generated at Wed May 13 16:48:14 2026 by rpki-client