$ rpki-client -vvf rpki-rsync.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a31313a3a2f34382d3438203d3e203538353532.roa File: 323430343a666430303a31313a3a2f34382d3438203d3e203538353532.roa (raw, json) Hash identifier: +aWphO0VSBkAgsWCpXXHQl3HSgV63OwAInQLLmvGKno= Subject key identifier: 1B:E9:6B:F7:FE:8E:5F:B1:CF:CF:EC:B6:B8:7A:F0:28:E9:26:D0:4E Certificate issuer: /CN=10DB2C44E26CA2A146EF738D39F53CBB0901DB52 Certificate serial: 4FBF8C2A012BE6889EF7394071F301053C3BB533 Authority key identifier: 10:DB:2C:44:E2:6C:A2:A1:46:EF:73:8D:39:F5:3C:BB:09:01:DB:52 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/10DB2C44E26CA2A146EF738D39F53CBB0901DB52.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a31313a3a2f34382d3438203d3e203538353532.roa Signing time: Sun 03 May 2026 02:36:36 +0000 ROA not before: Sun 03 May 2026 02:31:36 +0000 ROA not after: Sun 02 May 2027 02:36:36 +0000 asID: 58552 IP address blocks: 2404:fd00:11::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/10DB2C44E26CA2A146EF738D39F53CBB0901DB52.crl rsync://rpki-rsync.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/10DB2C44E26CA2A146EF738D39F53CBB0901DB52.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/10DB2C44E26CA2A146EF738D39F53CBB0901DB52.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 00:10:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:bf:8c:2a:01:2b:e6:88:9e:f7:39:40:71:f3:01:05:3c:3b:b5:33 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=10DB2C44E26CA2A146EF738D39F53CBB0901DB52 Validity Not Before: May 3 02:31:36 2026 GMT Not After : May 2 02:36:36 2027 GMT Subject: CN=1BE96BF7FE8E5FB1CFCFECB6B87AF028E926D04E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:6f:3a:ce:09:af:22:0e:ff:8f:77:b2:eb:a7: 2c:e7:0e:c1:28:b9:03:23:40:2d:8b:60:42:49:64: 9c:6b:5a:48:68:2c:9e:9d:a5:ba:55:ab:b6:26:51: 4d:f6:dc:95:ca:18:01:04:9b:0a:67:fb:d7:0c:52: 55:ad:63:2c:47:66:7b:63:cb:62:bf:35:2a:f5:2f: 0c:09:a9:20:be:c4:e4:1a:65:04:c3:f6:bd:b2:a9: 93:24:69:3b:e7:bc:4e:5c:a4:ce:bf:cb:56:85:d9: c3:76:8b:f0:6b:7d:60:e4:b7:e4:f6:fa:55:ec:30: 40:54:9d:35:3e:2f:76:92:44:d0:2d:67:53:6c:60: 84:ea:ad:7a:4b:f9:44:a5:8e:fd:fa:5d:69:93:ac: 03:fa:c0:62:0d:2b:b8:cc:1d:9a:bc:8b:3e:80:d7: 65:a9:bd:aa:11:3d:8e:48:1e:3e:59:5e:70:e8:63: 4c:c1:bc:b4:ee:45:d1:69:39:4c:1e:86:88:1a:27: 1f:68:e7:09:96:0d:09:1f:63:a5:a9:2a:40:bc:22: ce:fc:8b:e1:6e:ec:4e:af:bf:7a:51:e4:de:64:92: f5:d0:d6:12:7e:1e:12:f0:5e:f7:ce:d4:03:cb:6e: 44:b4:54:a5:77:f9:2e:1d:cd:8e:97:f8:7d:8d:be: c0:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:E9:6B:F7:FE:8E:5F:B1:CF:CF:EC:B6:B8:7A:F0:28:E9:26:D0:4E X509v3 Authority Key Identifier: keyid:10:DB:2C:44:E2:6C:A2:A1:46:EF:73:8D:39:F5:3C:BB:09:01:DB:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/10DB2C44E26CA2A146EF738D39F53CBB0901DB52.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/10DB2C44E26CA2A146EF738D39F53CBB0901DB52.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a31313a3a2f34382d3438203d3e203538353532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:fd00:11::/48 Signature Algorithm: sha256WithRSAEncryption 89:8f:af:81:b8:3f:94:24:10:2c:bb:7f:44:ee:d8:f1:d2:2f: a9:64:f8:85:6a:ae:24:20:dd:93:3b:fa:db:b7:76:f4:50:4a: 83:04:55:c7:23:32:71:d3:07:e7:67:63:41:b8:d6:b6:3e:06: 61:c1:be:ff:da:c7:c2:d5:25:f5:d3:ca:14:82:c4:68:ee:35: cf:df:68:8e:16:05:e5:ea:ea:c1:57:e8:43:a9:d3:7f:44:46: 89:55:0c:6a:35:40:fa:ef:aa:41:c6:a0:36:69:a9:21:9e:9c: 47:fe:18:9e:1a:f2:d5:61:b0:2e:50:fe:b1:ef:4a:da:4f:20: 60:83:15:18:e5:9a:35:6d:8d:78:10:cc:4f:fb:98:c1:c8:b9: 24:9b:ca:9f:80:93:e6:7c:71:9d:6b:a8:6a:84:18:9d:7b:a9: e7:c2:6c:84:bb:b4:02:fe:bd:a5:f7:1f:8a:6c:d8:f0:fb:4f: 5f:1d:6b:91:10:38:15:0a:de:83:b4:26:7c:2d:d0:0c:9f:c0: ca:43:02:f7:af:10:b4:12:29:87:ef:3d:91:ea:d6:0a:aa:5e: 8d:d2:c9:6d:6b:95:9b:4c:5a:b7:21:23:a0:63:16:f7:bd:b1: be:cd:22:9a:d5:cf:2c:91:cc:fd:e4:61:41:9a:40:9c:d3:75: 28:6f:c7:08 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUT7+MKgEr5oie9zlAcfMBBTw7tTMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTBEQjJDNDRFMjZDQTJBMTQ2RUY3MzhEMzlGNTNDQkIw OTAxREI1MjAeFw0yNjA1MDMwMjMxMzZaFw0yNzA1MDIwMjM2MzZaMDMxMTAvBgNV BAMTKDFCRTk2QkY3RkU4RTVGQjFDRkNGRUNCNkI4N0FGMDI4RTkyNkQwNEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDjbzrOCa8iDv+Pd7LrpyznDsEo uQMjQC2LYEJJZJxrWkhoLJ6dpbpVq7YmUU323JXKGAEEmwpn+9cMUlWtYyxHZntj y2K/NSr1LwwJqSC+xOQaZQTD9r2yqZMkaTvnvE5cpM6/y1aF2cN2i/BrfWDkt+T2 +lXsMEBUnTU+L3aSRNAtZ1NsYITqrXpL+USljv36XWmTrAP6wGINK7jMHZq8iz6A 12WpvaoRPY5IHj5ZXnDoY0zBvLTuRdFpOUwehogaJx9o5wmWDQkfY6WpKkC8Is78 i+Fu7E6vv3pR5N5kkvXQ1hJ+HhLwXvfO1APLbkS0VKV3+S4dzY6X+H2NvsBrAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUG+lr9/6OX7HPz+y2uHrwKOkm0E4wHwYDVR0j BBgwFoAUENssROJsoqFG73ONOfU8uwkB21IwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NWQyMjdkYmUtNGExYy00MGIwLTk0YTYtNzkzYmRiZGEzNzc3LzAvMTBEQjJDNDRF MjZDQTJBMTQ2RUY3MzhEMzlGNTNDQkIwOTAxREI1Mi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8xMERCMkM0NEUyNkNBMkExNDZFRjczOEQzOUY1M0NCQjA5MDFE QjUyLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzVkMjI3ZGJlLTRhMWMtNDBiMC05 NGE2LTc5M2JkYmRhMzc3Ny8wLzMyMzQzMDM0M2E2NjY0MzAzMDNhMzEzMTNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzgzNTM1MzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBP0AABEw DQYJKoZIhvcNAQELBQADggEBAImPr4G4P5QkECy7f0Tu2PHSL6lk+IVqriQg3ZM7 +tu3dvRQSoMEVccjMnHTB+dnY0G41rY+BmHBvv/ax8LVJfXTyhSCxGjuNc/faI4W BeXq6sFX6EOp039ERolVDGo1QPrvqkHGoDZpqSGenEf+GJ4a8tVhsC5Q/rHvStpP IGCDFRjlmjVtjXgQzE/7mMHIuSSbyp+Ak+Z8cZ1rqGqEGJ17qefCbIS7tAL+vaX3 H4ps2PD7T18da5EQOBUK3oO0Jnwt0AyfwMpDAvevELQSKYfvPZHq1gqqXo3SyW1r lZtMWrchI6BjFve9sb7NIprVzyyRzP3kYUGaQJzTdShvxwg= -----END CERTIFICATE-----Generated at Wed May 13 06:48:30 2026 by rpki-client