$ rpki-client -vvf rpki-rsync.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a31363a3a2f34382d3438203d3e203538353532.roa File: 323430343a666430303a31363a3a2f34382d3438203d3e203538353532.roa (raw, json) Hash identifier: HQO3gvRLCNgay/56Q4RmJMIf7MhbAY7YN67cjNI1jBg= Subject key identifier: D6:14:1E:A0:92:C1:4C:9A:E0:CD:71:3A:B8:6F:41:FA:04:03:DA:BB Certificate issuer: /CN=10DB2C44E26CA2A146EF738D39F53CBB0901DB52 Certificate serial: 420EDAA178C393163E5EB0E8A0EE1BF0DD2500B5 Authority key identifier: 10:DB:2C:44:E2:6C:A2:A1:46:EF:73:8D:39:F5:3C:BB:09:01:DB:52 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/10DB2C44E26CA2A146EF738D39F53CBB0901DB52.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a31363a3a2f34382d3438203d3e203538353532.roa Signing time: Sun 03 May 2026 02:36:43 +0000 ROA not before: Sun 03 May 2026 02:31:43 +0000 ROA not after: Sun 02 May 2027 02:36:43 +0000 asID: 58552 IP address blocks: 2404:fd00:16::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/10DB2C44E26CA2A146EF738D39F53CBB0901DB52.crl rsync://rpki-rsync.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/10DB2C44E26CA2A146EF738D39F53CBB0901DB52.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/10DB2C44E26CA2A146EF738D39F53CBB0901DB52.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 00:10:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:0e:da:a1:78:c3:93:16:3e:5e:b0:e8:a0:ee:1b:f0:dd:25:00:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=10DB2C44E26CA2A146EF738D39F53CBB0901DB52 Validity Not Before: May 3 02:31:43 2026 GMT Not After : May 2 02:36:43 2027 GMT Subject: CN=D6141EA092C14C9AE0CD713AB86F41FA0403DABB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:ab:f6:ea:e6:61:c8:30:70:c1:80:92:a9:e3: a1:05:45:ed:1c:70:9d:03:34:00:e7:ff:f8:0a:e3: 5f:8e:ab:05:a9:50:54:8f:0b:05:41:12:ba:f7:fc: 2a:b8:60:e6:d7:63:1b:50:5f:86:62:04:1f:fc:88: 95:7f:a6:d3:ed:3b:92:61:4b:3e:fc:06:52:17:20: f0:4c:bb:96:2b:4e:f7:74:58:3f:9b:bf:fc:d9:f6: b8:1d:a0:fd:2d:9d:3b:63:6a:35:1c:14:4b:c8:98: a6:e5:6d:ff:dd:dd:d0:24:06:70:b0:df:26:8d:a2: 13:01:b7:b3:0d:40:bd:32:af:13:0b:6f:88:c8:26: c3:c8:77:1e:e8:3e:6b:83:8b:18:2e:15:4e:8b:82: 44:88:a5:87:c5:d1:63:b2:73:69:da:95:96:44:a8: 38:9d:6b:86:fd:74:f9:77:3e:ec:b3:d5:15:d2:c5: fd:f1:e2:98:11:0b:21:64:2c:95:cf:40:a3:f9:87: 86:be:cc:80:7b:ae:fd:00:d1:d2:d8:db:af:0b:65: d9:1d:e4:cf:48:01:f8:e0:6d:60:b9:d6:44:0a:9e: 27:c4:73:8e:56:33:f2:96:ba:ad:58:8e:78:93:d3: 05:04:ae:14:af:0a:a0:4b:bc:29:82:cd:ce:6a:46: 5f:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:14:1E:A0:92:C1:4C:9A:E0:CD:71:3A:B8:6F:41:FA:04:03:DA:BB X509v3 Authority Key Identifier: keyid:10:DB:2C:44:E2:6C:A2:A1:46:EF:73:8D:39:F5:3C:BB:09:01:DB:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/10DB2C44E26CA2A146EF738D39F53CBB0901DB52.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/10DB2C44E26CA2A146EF738D39F53CBB0901DB52.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a31363a3a2f34382d3438203d3e203538353532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:fd00:16::/48 Signature Algorithm: sha256WithRSAEncryption 64:2c:bf:61:ce:f9:9e:ba:9d:e5:64:fe:d1:64:2b:a0:b0:f4: 8a:6b:a5:09:66:f0:f5:23:bd:45:e6:c2:bd:af:66:e3:ce:c6: bb:b2:23:ff:19:e3:44:f7:f1:17:1d:c1:a4:bc:5e:e3:fb:6d: d3:8a:22:0a:30:30:ef:f0:22:8c:18:5a:c2:ec:9a:47:ca:c8: 95:93:b2:75:4a:6a:41:9b:f2:fe:1a:86:89:de:dd:18:dc:49: 97:81:55:b8:87:31:2a:40:c4:2c:68:b6:8e:aa:37:7e:69:34: 9f:ae:eb:68:ef:d8:d7:cc:c5:9e:17:1f:20:e6:8f:dd:02:f9: c3:b1:0b:a5:28:38:fc:fe:64:4a:f8:93:dc:68:4a:c0:d0:22: 95:ec:03:34:21:46:47:56:1b:ab:2d:1a:c8:c9:7b:73:30:9f: c0:de:a4:6a:19:3f:9b:c8:58:d9:de:f5:59:94:c9:67:a5:7e: 5a:b7:6e:b8:c5:f3:3d:47:35:96:3d:ae:55:e8:5e:5b:13:df: 3a:02:86:e5:ea:e7:7c:ac:80:81:66:dc:5c:c0:0c:d1:7a:17: 1f:30:9f:88:93:c3:ba:12:2f:7a:de:a6:0a:53:f4:fb:b0:13: 2f:17:96:20:0f:1b:43:b7:ff:8f:41:79:ce:be:04:5d:6a:12: 0e:1e:f6:79 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUQg7aoXjDkxY+XrDooO4b8N0lALUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTBEQjJDNDRFMjZDQTJBMTQ2RUY3MzhEMzlGNTNDQkIw OTAxREI1MjAeFw0yNjA1MDMwMjMxNDNaFw0yNzA1MDIwMjM2NDNaMDMxMTAvBgNV BAMTKEQ2MTQxRUEwOTJDMTRDOUFFMENENzEzQUI4NkY0MUZBMDQwM0RBQkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBq/bq5mHIMHDBgJKp46EFRe0c cJ0DNADn//gK41+OqwWpUFSPCwVBErr3/Cq4YObXYxtQX4ZiBB/8iJV/ptPtO5Jh Sz78BlIXIPBMu5YrTvd0WD+bv/zZ9rgdoP0tnTtjajUcFEvImKblbf/d3dAkBnCw 3yaNohMBt7MNQL0yrxMLb4jIJsPIdx7oPmuDixguFU6LgkSIpYfF0WOyc2nalZZE qDida4b9dPl3Puyz1RXSxf3x4pgRCyFkLJXPQKP5h4a+zIB7rv0A0dLY268LZdkd 5M9IAfjgbWC51kQKnifEc45WM/KWuq1YjniT0wUErhSvCqBLvCmCzc5qRl8NAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQU1hQeoJLBTJrgzXE6uG9B+gQD2rswHwYDVR0j BBgwFoAUENssROJsoqFG73ONOfU8uwkB21IwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NWQyMjdkYmUtNGExYy00MGIwLTk0YTYtNzkzYmRiZGEzNzc3LzAvMTBEQjJDNDRF MjZDQTJBMTQ2RUY3MzhEMzlGNTNDQkIwOTAxREI1Mi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8xMERCMkM0NEUyNkNBMkExNDZFRjczOEQzOUY1M0NCQjA5MDFE QjUyLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzVkMjI3ZGJlLTRhMWMtNDBiMC05 NGE2LTc5M2JkYmRhMzc3Ny8wLzMyMzQzMDM0M2E2NjY0MzAzMDNhMzEzNjNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzgzNTM1MzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBP0AABYw DQYJKoZIhvcNAQELBQADggEBAGQsv2HO+Z66neVk/tFkK6Cw9IprpQlm8PUjvUXm wr2vZuPOxruyI/8Z40T38RcdwaS8XuP7bdOKIgowMO/wIowYWsLsmkfKyJWTsnVK akGb8v4ahone3RjcSZeBVbiHMSpAxCxoto6qN35pNJ+u62jv2NfMxZ4XHyDmj90C +cOxC6UoOPz+ZEr4k9xoSsDQIpXsAzQhRkdWG6stGsjJe3Mwn8DepGoZP5vIWNne 9VmUyWelflq3brjF8z1HNZY9rlXoXlsT3zoChuXq53ysgIFm3FzADNF6Fx8wn4iT w7oSL3repgpT9PuwEy8XliAPG0O3/49Bec6+BF1qEg4e9nk= -----END CERTIFICATE-----Generated at Wed May 13 06:19:29 2026 by rpki-client