$ rpki-client -vvf rpki-rsync.idnic.net/repo/5c897c4a-e0ff-4652-a591-ff2d48e72c91/0/323430363a383434303a3a2f33322d3332203d3e20313431303837.roa File: 323430363a383434303a3a2f33322d3332203d3e20313431303837.roa (raw, json) Hash identifier: DURCQ0yaLxsLK0NyQoA/+8rorIbQkFZb7X0OVwrX9XQ= Subject key identifier: 92:B1:57:BF:A9:8B:66:94:4D:58:C6:0E:93:38:C9:6E:0E:A8:8F:2E Certificate issuer: /CN=AF4CB46FA8353CB5A3B23EF57F2318D46C27E3CE Certificate serial: 1317EE2018EA288E350C85FB2159833129327F5C Authority key identifier: AF:4C:B4:6F:A8:35:3C:B5:A3:B2:3E:F5:7F:23:18:D4:6C:27:E3:CE Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AF4CB46FA8353CB5A3B23EF57F2318D46C27E3CE.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/5c897c4a-e0ff-4652-a591-ff2d48e72c91/0/323430363a383434303a3a2f33322d3332203d3e20313431303837.roa Signing time: Sun 03 May 2026 02:36:18 +0000 ROA not before: Sun 03 May 2026 02:31:18 +0000 ROA not after: Sun 02 May 2027 02:36:18 +0000 asID: 141087 IP address blocks: 2406:8440::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/5c897c4a-e0ff-4652-a591-ff2d48e72c91/0/AF4CB46FA8353CB5A3B23EF57F2318D46C27E3CE.crl rsync://rpki-rsync.idnic.net/repo/5c897c4a-e0ff-4652-a591-ff2d48e72c91/0/AF4CB46FA8353CB5A3B23EF57F2318D46C27E3CE.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AF4CB46FA8353CB5A3B23EF57F2318D46C27E3CE.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 01:21:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:17:ee:20:18:ea:28:8e:35:0c:85:fb:21:59:83:31:29:32:7f:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AF4CB46FA8353CB5A3B23EF57F2318D46C27E3CE Validity Not Before: May 3 02:31:18 2026 GMT Not After : May 2 02:36:18 2027 GMT Subject: CN=92B157BFA98B66944D58C60E9338C96E0EA88F2E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:fe:fa:dd:a7:d4:1f:87:98:5e:3c:26:69:96: ff:7d:22:b5:54:55:ec:40:c8:5e:d9:56:73:52:82: d0:05:e5:84:3a:fb:0e:a6:92:e8:c4:45:aa:0f:97: f8:a4:c5:7c:d2:5d:36:16:42:a6:37:cc:7c:2b:4c: 67:3c:1d:b6:2f:ad:a4:55:4e:9b:6d:73:b2:f1:ea: 6d:3f:ea:a2:37:c4:e4:1e:be:d8:87:b5:03:f7:73: d6:7c:60:e6:dc:6b:a6:47:8f:d1:12:19:f4:fb:1c: 11:f4:50:b5:05:55:65:9e:f8:b1:8b:35:ea:c8:af: 33:bf:0b:34:e5:81:5a:a7:b1:ba:37:85:fa:94:31: a5:8c:cd:00:87:3d:5f:8c:bd:78:7e:2d:37:4e:32: 50:bb:c4:81:3c:42:a6:73:cf:4b:49:2a:38:cf:9b: 43:03:38:cd:a8:97:38:45:0e:c0:ba:f5:70:38:e7: ac:c4:f9:41:1c:38:44:df:d7:7b:1f:a6:8e:13:15: 1c:55:67:89:0b:bb:eb:7a:56:6a:c3:10:30:5c:2e: c7:a1:db:e5:81:75:73:ed:fa:43:10:32:84:ca:59: e4:d5:0e:00:56:23:ae:47:13:99:4a:3d:ec:bb:46: e3:2d:7b:90:16:23:32:30:1c:fd:c9:31:f7:88:5d: 72:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:B1:57:BF:A9:8B:66:94:4D:58:C6:0E:93:38:C9:6E:0E:A8:8F:2E X509v3 Authority Key Identifier: keyid:AF:4C:B4:6F:A8:35:3C:B5:A3:B2:3E:F5:7F:23:18:D4:6C:27:E3:CE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/5c897c4a-e0ff-4652-a591-ff2d48e72c91/0/AF4CB46FA8353CB5A3B23EF57F2318D46C27E3CE.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AF4CB46FA8353CB5A3B23EF57F2318D46C27E3CE.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/5c897c4a-e0ff-4652-a591-ff2d48e72c91/0/323430363a383434303a3a2f33322d3332203d3e20313431303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:8440::/32 Signature Algorithm: sha256WithRSAEncryption 11:69:24:05:61:bb:d0:37:89:f9:d4:46:bd:21:88:6b:63:ef: c6:f8:97:07:d5:1d:8c:1c:1f:d3:63:91:cc:5a:d7:5c:88:f5: 2a:ed:2a:1d:af:ac:2c:ed:c2:1c:dc:f0:f0:4d:3a:1e:88:3f: 1e:ff:15:30:3c:5d:45:bd:2b:66:5f:70:80:3b:f9:d3:d6:b9: 53:43:67:a9:aa:c5:55:76:81:e9:d0:e2:c1:80:7a:21:7a:59: c4:9c:15:28:30:8c:98:9f:69:08:be:47:3d:19:b8:52:a8:b7: 0a:55:55:33:be:37:3e:69:c3:25:4d:9d:cb:98:44:0f:d1:6c: b9:4c:cb:86:61:fa:d0:f6:03:c2:a8:59:30:59:65:0b:43:86: ab:f6:2a:32:d2:d1:51:2a:7c:eb:2b:60:16:99:ac:95:e2:39: 37:d5:83:ea:df:9e:14:93:b2:b2:53:ec:9f:c4:6b:74:c2:95: 4f:5d:c8:9f:1a:e8:cf:6d:61:1d:5a:87:04:94:2a:18:f6:c5: 9c:0a:5b:fe:68:99:b3:6f:27:04:6b:cf:f0:6b:8a:c6:74:c0: 7c:e0:db:03:66:24:12:fa:a3:ae:61:11:d0:35:7c:05:b0:4d: 92:e3:4e:d8:3f:aa:2e:27:0a:78:f4:88:ba:15:60:fb:57:af: ff:61:88:d6 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUExfuIBjqKI41DIX7IVmDMSkyf1wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUY0Q0I0NkZBODM1M0NCNUEzQjIzRUY1N0YyMzE4RDQ2 QzI3RTNDRTAeFw0yNjA1MDMwMjMxMThaFw0yNzA1MDIwMjM2MThaMDMxMTAvBgNV BAMTKDkyQjE1N0JGQTk4QjY2OTQ0RDU4QzYwRTkzMzhDOTZFMEVBODhGMkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDg/vrdp9Qfh5hePCZplv99IrVU VexAyF7ZVnNSgtAF5YQ6+w6mkujERaoPl/ikxXzSXTYWQqY3zHwrTGc8HbYvraRV Tpttc7Lx6m0/6qI3xOQevtiHtQP3c9Z8YObca6ZHj9ESGfT7HBH0ULUFVWWe+LGL NerIrzO/CzTlgVqnsbo3hfqUMaWMzQCHPV+MvXh+LTdOMlC7xIE8QqZzz0tJKjjP m0MDOM2olzhFDsC69XA456zE+UEcOETf13sfpo4TFRxVZ4kLu+t6VmrDEDBcLseh 2+WBdXPt+kMQMoTKWeTVDgBWI65HE5lKPey7RuMte5AWIzIwHP3JMfeIXXJRAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUkrFXv6mLZpRNWMYOkzjJbg6ojy4wHwYDVR0j BBgwFoAUr0y0b6g1PLWjsj71fyMY1Gwn484wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NWM4OTdjNGEtZTBmZi00NjUyLWE1OTEtZmYyZDQ4ZTcyYzkxLzAvQUY0Q0I0NkZB ODM1M0NCNUEzQjIzRUY1N0YyMzE4RDQ2QzI3RTNDRS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9BRjRDQjQ2RkE4MzUzQ0I1QTNCMjNFRjU3RjIzMThENDZDMjdF M0NFLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzVjODk3YzRhLWUwZmYtNDY1Mi1h NTkxLWZmMmQ0OGU3MmM5MS8wLzMyMzQzMDM2M2EzODM0MzQzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzQzMTMwMzgzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQGhEAwDQYJKoZI hvcNAQELBQADggEBABFpJAVhu9A3ifnURr0hiGtj78b4lwfVHYwcH9Njkcxa11yI 9SrtKh2vrCztwhzc8PBNOh6IPx7/FTA8XUW9K2ZfcIA7+dPWuVNDZ6mqxVV2genQ 4sGAeiF6WcScFSgwjJifaQi+Rz0ZuFKotwpVVTO+Nz5pwyVNncuYRA/RbLlMy4Zh +tD2A8KoWTBZZQtDhqv2KjLS0VEqfOsrYBaZrJXiOTfVg+rfnhSTsrJT7J/Ea3TC lU9dyJ8a6M9tYR1ahwSUKhj2xZwKW/5ombNvJwRrz/BrisZ0wHzg2wNmJBL6o65h EdA1fAWwTZLjTtg/qi4nCnj0iLoVYPtXr/9hiNY= -----END CERTIFICATE-----Generated at Wed May 13 07:59:38 2026 by rpki-client