$ rpki-client -vvf rpki-rsync.idnic.net/repo/5a990125-609a-48c8-ac86-1c3bc315bad6/0/323430343a613634303a3935373a3a2f34382d3438203d3e20313333383237.roa File: 323430343a613634303a3935373a3a2f34382d3438203d3e20313333383237.roa (raw, json) Hash identifier: K8j/ZLU+ci7JWbQ44lPBg2aflFRtCWtRODUltXPnDVo= Subject key identifier: 3E:0C:8D:31:D4:E3:65:CC:97:2E:05:11:B9:ED:62:6D:D4:F4:B9:C2 Certificate issuer: /CN=AF6B7BCDACF90BA83205EA298327379BAB489418 Certificate serial: 3644305C32F5C874BDB33B62472D81811A35A79B Authority key identifier: AF:6B:7B:CD:AC:F9:0B:A8:32:05:EA:29:83:27:37:9B:AB:48:94:18 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AF6B7BCDACF90BA83205EA298327379BAB489418.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/5a990125-609a-48c8-ac86-1c3bc315bad6/0/323430343a613634303a3935373a3a2f34382d3438203d3e20313333383237.roa Signing time: Sun 03 May 2026 02:35:32 +0000 ROA not before: Sun 03 May 2026 02:30:32 +0000 ROA not after: Sun 02 May 2027 02:35:32 +0000 asID: 133827 IP address blocks: 2404:a640:957::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/5a990125-609a-48c8-ac86-1c3bc315bad6/0/AF6B7BCDACF90BA83205EA298327379BAB489418.crl rsync://rpki-rsync.idnic.net/repo/5a990125-609a-48c8-ac86-1c3bc315bad6/0/AF6B7BCDACF90BA83205EA298327379BAB489418.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AF6B7BCDACF90BA83205EA298327379BAB489418.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 23:11:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:44:30:5c:32:f5:c8:74:bd:b3:3b:62:47:2d:81:81:1a:35:a7:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AF6B7BCDACF90BA83205EA298327379BAB489418 Validity Not Before: May 3 02:30:32 2026 GMT Not After : May 2 02:35:32 2027 GMT Subject: CN=3E0C8D31D4E365CC972E0511B9ED626DD4F4B9C2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:be:76:09:99:5c:03:27:c3:c1:66:70:37:e4: 43:d7:ec:c5:71:fe:f1:09:5f:30:4b:ae:33:66:29: a7:a4:da:81:15:6a:12:49:5a:20:cc:8e:d9:c4:20: a1:52:51:9e:5a:7f:97:00:9a:63:18:66:10:99:2e: 1e:a8:1f:6d:45:8d:01:ca:7a:94:d0:47:1b:15:74: 62:f9:40:f6:93:57:5d:b5:ce:8a:21:95:23:2b:82: 31:85:e4:49:6f:12:76:6b:a5:da:3d:70:eb:01:bd: 96:bd:23:c7:56:bb:f3:83:6a:49:78:13:8c:e4:e5: 8b:77:c8:4f:da:02:04:90:79:42:76:fb:c7:3d:a2: de:fb:b6:4a:10:b8:3d:72:8d:a7:41:47:dc:06:07: af:70:74:e7:aa:6e:ee:c9:13:36:7b:68:94:b6:33: eb:63:4a:07:88:2b:49:93:b9:4a:5d:0c:8b:c8:eb: 1f:bc:ff:d4:08:20:dc:2c:44:0b:e7:ab:9c:8f:97: 19:0e:6e:7c:50:a2:7e:45:63:e3:d0:19:4f:fd:9b: eb:68:ad:9f:09:ac:ea:bd:35:30:1b:76:22:f3:81: a3:97:e2:e6:30:ef:24:f3:86:2f:0b:71:1c:a3:51: bf:56:00:21:3b:1a:09:28:4f:39:e5:e0:d0:b9:1c: e5:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:0C:8D:31:D4:E3:65:CC:97:2E:05:11:B9:ED:62:6D:D4:F4:B9:C2 X509v3 Authority Key Identifier: keyid:AF:6B:7B:CD:AC:F9:0B:A8:32:05:EA:29:83:27:37:9B:AB:48:94:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/5a990125-609a-48c8-ac86-1c3bc315bad6/0/AF6B7BCDACF90BA83205EA298327379BAB489418.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AF6B7BCDACF90BA83205EA298327379BAB489418.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/5a990125-609a-48c8-ac86-1c3bc315bad6/0/323430343a613634303a3935373a3a2f34382d3438203d3e20313333383237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:a640:957::/48 Signature Algorithm: sha256WithRSAEncryption 33:88:11:30:40:00:fe:95:8e:b1:4d:20:dc:50:85:a1:3c:87: 87:de:94:fa:6b:7c:1f:5a:77:32:9e:dc:99:bd:0b:58:51:74: 68:5b:aa:ab:ee:85:ea:57:1a:79:eb:ea:1d:97:d1:d6:f2:8b: 6f:df:21:12:dd:eb:5b:b0:07:be:d1:3f:d9:0f:9e:06:fe:31: a4:de:d6:54:ec:47:d4:e4:37:f0:34:33:80:af:83:0a:d3:6c: a5:57:f9:83:c5:14:73:25:24:62:bc:32:3e:9a:4b:2a:90:95: ff:f8:fa:74:00:1a:8c:58:21:f9:98:c3:93:68:e6:f5:bc:84: 4a:11:8c:f4:2c:ff:ad:93:2e:e6:b1:09:ed:0a:12:17:d7:78: 44:ce:bd:07:00:b5:bf:5d:b1:f9:c7:8f:d5:b6:60:a9:b7:b5: 9c:2c:da:29:17:1c:a6:81:44:39:27:07:a0:a0:b8:dd:d3:7c: 4e:bf:80:d6:14:ad:e5:8f:d5:db:d1:fe:bb:01:fb:99:ca:03: 8d:8b:44:3a:cf:56:d8:f2:15:4b:d9:2c:7b:2b:af:c2:99:a9: 9c:e3:11:a7:90:81:c4:ae:fc:4b:91:b9:7a:db:97:f5:c4:1d: 70:29:e1:8e:92:61:c8:e3:71:e5:0e:60:53:c0:48:4c:6c:1c: 0f:c3:22:a6 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUNkQwXDL1yHS9sztiRy2BgRo1p5swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUY2QjdCQ0RBQ0Y5MEJBODMyMDVFQTI5ODMyNzM3OUJB QjQ4OTQxODAeFw0yNjA1MDMwMjMwMzJaFw0yNzA1MDIwMjM1MzJaMDMxMTAvBgNV BAMTKDNFMEM4RDMxRDRFMzY1Q0M5NzJFMDUxMUI5RUQ2MjZERDRGNEI5QzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQClvnYJmVwDJ8PBZnA35EPX7MVx /vEJXzBLrjNmKaek2oEVahJJWiDMjtnEIKFSUZ5af5cAmmMYZhCZLh6oH21FjQHK epTQRxsVdGL5QPaTV121zoohlSMrgjGF5ElvEnZrpdo9cOsBvZa9I8dWu/ODakl4 E4zk5Yt3yE/aAgSQeUJ2+8c9ot77tkoQuD1yjadBR9wGB69wdOeqbu7JEzZ7aJS2 M+tjSgeIK0mTuUpdDIvI6x+8/9QIINwsRAvnq5yPlxkObnxQon5FY+PQGU/9m+to rZ8JrOq9NTAbdiLzgaOX4uYw7yTzhi8LcRyjUb9WACE7GgkoTznl4NC5HOUPAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUPgyNMdTjZcyXLgURue1ibdT0ucIwHwYDVR0j BBgwFoAUr2t7zaz5C6gyBeopgyc3m6tIlBgwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NWE5OTAxMjUtNjA5YS00OGM4LWFjODYtMWMzYmMzMTViYWQ2LzAvQUY2QjdCQ0RB Q0Y5MEJBODMyMDVFQTI5ODMyNzM3OUJBQjQ4OTQxOC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9BRjZCN0JDREFDRjkwQkE4MzIwNUVBMjk4MzI3Mzc5QkFCNDg5 NDE4LmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUFBzALhoGLcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzVhOTkwMTI1LTYwOWEtNDhjOC1h Yzg2LTFjM2JjMzE1YmFkNi8wLzMyMzQzMDM0M2E2MTM2MzQzMDNhMzkzNTM3M2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzMzMzgzMjM3LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJASm QAlXMA0GCSqGSIb3DQEBCwUAA4IBAQAziBEwQAD+lY6xTSDcUIWhPIeH3pT6a3wf WncyntyZvQtYUXRoW6qr7oXqVxp56+odl9HW8otv3yES3etbsAe+0T/ZD54G/jGk 3tZU7EfU5DfwNDOAr4MK02ylV/mDxRRzJSRivDI+mksqkJX/+Pp0ABqMWCH5mMOT aOb1vIRKEYz0LP+tky7msQntChIX13hEzr0HALW/XbH5x4/VtmCpt7WcLNopFxym gUQ5JwegoLjd03xOv4DWFK3lj9Xb0f67AfuZygONi0Q6z1bY8hVL2Sx7K6/Cmamc 4xGnkIHErvxLkbl625f1xB1wKeGOkmHI43HlDmBTwEhMbBwPwyKm -----END CERTIFICATE-----Generated at Wed May 13 14:40:48 2026 by rpki-client