$ rpki-client -vvf rpki-rsync.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a32303a3a2f34382d3438203d3e203538353532.roa File: 323430343a666430303a32303a3a2f34382d3438203d3e203538353532.roa (raw, json) Hash identifier: /mm2MBDCgdIbfr+R3Zp6eHf/ZkCCBEZWxDqC5JKMKhg= Subject key identifier: B4:1E:7E:7A:E2:EB:D7:0E:F3:E0:AE:61:4E:64:2B:49:FD:C9:CD:A8 Certificate issuer: /CN=10DB2C44E26CA2A146EF738D39F53CBB0901DB52 Certificate serial: 0EDE25F4C1189E9A7032A341795F4ED20CCF8F71 Authority key identifier: 10:DB:2C:44:E2:6C:A2:A1:46:EF:73:8D:39:F5:3C:BB:09:01:DB:52 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/10DB2C44E26CA2A146EF738D39F53CBB0901DB52.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a32303a3a2f34382d3438203d3e203538353532.roa Signing time: Sun 03 May 2026 02:36:39 +0000 ROA not before: Sun 03 May 2026 02:31:39 +0000 ROA not after: Sun 02 May 2027 02:36:39 +0000 asID: 58552 IP address blocks: 2404:fd00:20::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/10DB2C44E26CA2A146EF738D39F53CBB0901DB52.crl rsync://rpki-rsync.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/10DB2C44E26CA2A146EF738D39F53CBB0901DB52.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/10DB2C44E26CA2A146EF738D39F53CBB0901DB52.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 00:10:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:de:25:f4:c1:18:9e:9a:70:32:a3:41:79:5f:4e:d2:0c:cf:8f:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=10DB2C44E26CA2A146EF738D39F53CBB0901DB52 Validity Not Before: May 3 02:31:39 2026 GMT Not After : May 2 02:36:39 2027 GMT Subject: CN=B41E7E7AE2EBD70EF3E0AE614E642B49FDC9CDA8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:fe:61:33:17:45:03:5d:98:06:d4:17:e7:a2: b6:28:fa:4b:8e:05:1c:4a:4e:21:08:0e:bd:1b:f5: 9b:45:96:af:f5:db:e9:f4:ba:cd:ea:54:22:fc:56: 6c:95:a9:2a:67:ba:00:1a:2c:85:90:29:ef:89:23: d5:f2:3d:b4:89:c7:07:c2:13:07:97:c9:85:bf:2f: c0:dc:b8:6d:3c:d3:27:21:da:93:77:ba:61:12:f0: 12:4c:57:17:26:30:cd:17:26:e9:72:de:e8:3e:e4: 81:27:1d:43:2d:e2:40:bf:dd:ff:c0:a4:11:7e:40: 65:d6:16:6f:de:4e:87:93:2b:c5:10:11:19:2e:5d: 42:7e:8b:cf:9a:b1:8b:14:36:8d:ea:ac:b0:e3:c7: 92:67:1d:d3:81:47:26:28:82:30:26:27:19:65:e4: ee:9c:73:a2:bd:8d:9c:6f:15:22:8d:fc:17:1f:19: 40:20:6c:5a:fa:e2:93:ce:18:46:69:58:c9:dc:61: 3c:33:92:ab:37:4b:47:89:fc:ee:9a:63:04:2a:3c: 3d:4e:ec:2f:7d:fe:1a:06:9a:51:f0:1b:76:69:a7: e3:bc:45:4c:fc:90:1b:ec:88:07:5d:3f:b7:da:8d: 10:91:6f:cb:dd:f0:03:4f:88:52:cf:c9:0f:07:c3: 37:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:1E:7E:7A:E2:EB:D7:0E:F3:E0:AE:61:4E:64:2B:49:FD:C9:CD:A8 X509v3 Authority Key Identifier: keyid:10:DB:2C:44:E2:6C:A2:A1:46:EF:73:8D:39:F5:3C:BB:09:01:DB:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/10DB2C44E26CA2A146EF738D39F53CBB0901DB52.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/10DB2C44E26CA2A146EF738D39F53CBB0901DB52.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a32303a3a2f34382d3438203d3e203538353532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:fd00:20::/48 Signature Algorithm: sha256WithRSAEncryption aa:17:35:61:f1:51:92:1f:6f:33:ab:3d:52:90:34:99:ff:f9: 21:97:ae:b0:f9:89:40:2a:fb:80:ea:33:ea:cb:fb:cf:3c:a5: 94:ac:50:09:6f:ac:cd:7a:82:38:62:90:55:9d:3a:89:f7:ae: cc:15:1a:6a:fe:d5:f7:40:f1:fb:20:68:14:e0:56:2b:0f:22: 84:d9:39:f1:84:3d:43:f9:9f:5d:78:41:1d:83:d8:ad:52:f8: d3:d1:f1:15:54:06:0d:b0:1b:1c:cc:08:c4:9a:f8:63:3b:55: 03:c2:d0:0c:fd:96:ba:c5:55:b4:e2:f2:55:21:09:d1:65:12: 97:db:ab:12:c4:38:56:93:14:5c:07:29:c4:24:37:29:14:2c: 9a:48:40:e5:c6:fa:e0:fb:7f:a5:53:24:20:7c:8c:fb:08:09: 41:bb:00:77:7d:05:d0:e9:24:b4:35:66:2b:19:11:19:9e:4e: 3b:a9:61:7d:8c:5e:58:8c:8d:18:e1:dc:2e:83:89:4f:1c:fb: a9:af:12:73:15:7c:24:d2:b0:d3:21:fc:73:62:65:c5:dc:60: f1:bc:61:70:9b:f0:e4:a3:04:5f:ed:9e:59:1b:7a:aa:44:ff: 41:19:5f:cc:52:a3:1a:4b:40:6a:40:be:95:7b:94:e3:8f:43: c1:85:ad:f5 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUDt4l9MEYnppwMqNBeV9O0gzPj3EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTBEQjJDNDRFMjZDQTJBMTQ2RUY3MzhEMzlGNTNDQkIw OTAxREI1MjAeFw0yNjA1MDMwMjMxMzlaFw0yNzA1MDIwMjM2MzlaMDMxMTAvBgNV BAMTKEI0MUU3RTdBRTJFQkQ3MEVGM0UwQUU2MTRFNjQyQjQ5RkRDOUNEQTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCo/mEzF0UDXZgG1BfnorYo+kuO BRxKTiEIDr0b9ZtFlq/12+n0us3qVCL8VmyVqSpnugAaLIWQKe+JI9XyPbSJxwfC EweXyYW/L8DcuG080ych2pN3umES8BJMVxcmMM0XJuly3ug+5IEnHUMt4kC/3f/A pBF+QGXWFm/eToeTK8UQERkuXUJ+i8+asYsUNo3qrLDjx5JnHdOBRyYogjAmJxll 5O6cc6K9jZxvFSKN/BcfGUAgbFr64pPOGEZpWMncYTwzkqs3S0eJ/O6aYwQqPD1O 7C99/hoGmlHwG3Zpp+O8RUz8kBvsiAddP7fajRCRb8vd8ANPiFLPyQ8HwzflAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUtB5+euLr1w7z4K5hTmQrSf3JzagwHwYDVR0j BBgwFoAUENssROJsoqFG73ONOfU8uwkB21IwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NWQyMjdkYmUtNGExYy00MGIwLTk0YTYtNzkzYmRiZGEzNzc3LzAvMTBEQjJDNDRF MjZDQTJBMTQ2RUY3MzhEMzlGNTNDQkIwOTAxREI1Mi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8xMERCMkM0NEUyNkNBMkExNDZFRjczOEQzOUY1M0NCQjA5MDFE QjUyLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzVkMjI3ZGJlLTRhMWMtNDBiMC05 NGE2LTc5M2JkYmRhMzc3Ny8wLzMyMzQzMDM0M2E2NjY0MzAzMDNhMzIzMDNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzgzNTM1MzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBP0AACAw DQYJKoZIhvcNAQELBQADggEBAKoXNWHxUZIfbzOrPVKQNJn/+SGXrrD5iUAq+4Dq M+rL+888pZSsUAlvrM16gjhikFWdOon3rswVGmr+1fdA8fsgaBTgVisPIoTZOfGE PUP5n114QR2D2K1S+NPR8RVUBg2wGxzMCMSa+GM7VQPC0Az9lrrFVbTi8lUhCdFl EpfbqxLEOFaTFFwHKcQkNykULJpIQOXG+uD7f6VTJCB8jPsICUG7AHd9BdDpJLQ1 ZisZERmeTjupYX2MXliMjRjh3C6DiU8c+6mvEnMVfCTSsNMh/HNiZcXcYPG8YXCb 8OSjBF/tnlkbeqpE/0EZX8xSoxpLQGpAvpV7lOOPQ8GFrfU= -----END CERTIFICATE-----Generated at Wed May 13 07:38:39 2026 by rpki-client