$ rpki-client -vvf rpki-rsync.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a32333a3a2f34382d3438203d3e203536323436.roa File: 323430343a666430303a32333a3a2f34382d3438203d3e203536323436.roa (raw, json) Hash identifier: XvCFECNQmw33528fP9b+w0o41EbLoR8ju10gTm7vAYY= Subject key identifier: 5E:3A:F9:53:02:B9:2C:29:00:AC:4A:D5:9C:38:47:E2:EF:37:C6:C7 Certificate issuer: /CN=10DB2C44E26CA2A146EF738D39F53CBB0901DB52 Certificate serial: 05EBB818664719B054180B4294DAB490B8E66F7E Authority key identifier: 10:DB:2C:44:E2:6C:A2:A1:46:EF:73:8D:39:F5:3C:BB:09:01:DB:52 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/10DB2C44E26CA2A146EF738D39F53CBB0901DB52.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a32333a3a2f34382d3438203d3e203536323436.roa Signing time: Sun 03 May 2026 02:36:23 +0000 ROA not before: Sun 03 May 2026 02:31:23 +0000 ROA not after: Sun 02 May 2027 02:36:23 +0000 asID: 56246 IP address blocks: 2404:fd00:23::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/10DB2C44E26CA2A146EF738D39F53CBB0901DB52.crl rsync://rpki-rsync.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/10DB2C44E26CA2A146EF738D39F53CBB0901DB52.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/10DB2C44E26CA2A146EF738D39F53CBB0901DB52.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 00:10:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:eb:b8:18:66:47:19:b0:54:18:0b:42:94:da:b4:90:b8:e6:6f:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=10DB2C44E26CA2A146EF738D39F53CBB0901DB52 Validity Not Before: May 3 02:31:23 2026 GMT Not After : May 2 02:36:23 2027 GMT Subject: CN=5E3AF95302B92C2900AC4AD59C3847E2EF37C6C7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:aa:0b:49:6f:0e:9d:24:0e:7b:1a:38:ad:bc: 1d:b3:d1:46:74:0b:8a:14:ad:05:13:50:a2:44:15: 40:95:37:ac:32:87:32:04:51:36:09:ec:8f:e7:eb: bf:2e:f1:ae:ef:1e:0b:86:80:11:01:f9:d9:79:c3: 25:46:02:95:7c:e6:cb:1b:8a:d7:bb:c5:40:69:1f: c6:ff:33:5e:d5:81:77:b3:54:7d:87:77:60:2b:ce: fe:19:2d:06:b3:80:8f:62:84:4f:7b:a9:26:9b:89: 86:48:6c:62:dd:16:31:f1:dd:4e:d7:8a:5b:48:fa: cc:6c:83:0e:ff:18:13:ea:d0:00:49:f1:c2:1d:67: 1a:0f:ad:8a:bd:55:24:46:6e:5f:a1:18:26:8f:f9: 48:a2:ba:32:1f:87:b4:93:6c:db:31:fb:ab:71:0f: a6:a5:18:cd:f4:40:1e:78:17:18:e8:e6:9c:2a:41: b2:01:66:41:f3:61:ab:58:f0:b1:4e:61:85:6c:be: be:1b:ff:2d:9b:ea:94:ea:21:62:5c:34:7c:14:63: 64:e3:0b:42:dd:21:c0:8c:d1:f1:b3:9d:26:3e:45: 1c:3d:9a:b3:fc:03:80:17:c2:fb:9f:b7:75:71:38: 0b:dc:83:18:cb:73:ff:4b:92:e8:d1:5b:05:03:4e: c3:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:3A:F9:53:02:B9:2C:29:00:AC:4A:D5:9C:38:47:E2:EF:37:C6:C7 X509v3 Authority Key Identifier: keyid:10:DB:2C:44:E2:6C:A2:A1:46:EF:73:8D:39:F5:3C:BB:09:01:DB:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/10DB2C44E26CA2A146EF738D39F53CBB0901DB52.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/10DB2C44E26CA2A146EF738D39F53CBB0901DB52.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a32333a3a2f34382d3438203d3e203536323436.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:fd00:23::/48 Signature Algorithm: sha256WithRSAEncryption 58:62:bb:47:58:85:29:44:04:64:82:e6:db:cf:3b:f3:c8:8e: b0:13:20:01:e4:19:9e:2c:f1:be:4c:9b:61:04:b7:71:2b:90: 0f:c2:f2:ba:71:a7:d0:5d:94:17:80:7e:8e:2b:73:6d:47:3a: c5:d8:ec:06:e6:97:8a:2d:c1:26:c0:a1:2b:2c:07:04:c7:32: 05:52:00:5a:08:93:d1:91:36:f3:19:20:f0:ba:0e:85:39:9d: 39:e0:15:cc:09:71:bc:25:e2:a2:12:ed:e6:bd:a6:fa:86:c1: 56:3e:79:14:d2:7d:16:e2:0a:ac:24:57:00:e1:c8:e9:87:eb: 0c:39:f3:89:56:70:13:25:d1:2c:58:fa:42:68:a6:c8:45:51: 50:fb:5b:6f:94:77:01:ed:f3:66:27:16:62:3b:71:ac:fa:7c: 57:97:71:4f:b7:d9:58:ac:f8:b8:9d:97:ab:8c:aa:c8:c9:b7: 05:cd:87:b1:0a:c8:dd:d1:9d:44:1c:83:bd:89:b7:78:8c:f8: c5:72:16:21:ea:7c:51:6f:47:14:06:03:d1:a1:13:19:dd:ad: 90:5a:30:6a:fe:8b:5d:a4:3d:15:77:ab:96:fb:42:48:93:f3: e0:91:d9:5a:93:b6:d8:a8:65:38:2c:32:56:0a:70:88:f2:5c: 6a:ee:8e:56 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUBeu4GGZHGbBUGAtClNq0kLjmb34wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTBEQjJDNDRFMjZDQTJBMTQ2RUY3MzhEMzlGNTNDQkIw OTAxREI1MjAeFw0yNjA1MDMwMjMxMjNaFw0yNzA1MDIwMjM2MjNaMDMxMTAvBgNV BAMTKDVFM0FGOTUzMDJCOTJDMjkwMEFDNEFENTlDMzg0N0UyRUYzN0M2QzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8qgtJbw6dJA57GjitvB2z0UZ0 C4oUrQUTUKJEFUCVN6wyhzIEUTYJ7I/n678u8a7vHguGgBEB+dl5wyVGApV85ssb ite7xUBpH8b/M17VgXezVH2Hd2Arzv4ZLQazgI9ihE97qSabiYZIbGLdFjHx3U7X iltI+sxsgw7/GBPq0ABJ8cIdZxoPrYq9VSRGbl+hGCaP+UiiujIfh7STbNsx+6tx D6alGM30QB54Fxjo5pwqQbIBZkHzYatY8LFOYYVsvr4b/y2b6pTqIWJcNHwUY2Tj C0LdIcCM0fGznSY+RRw9mrP8A4AXwvuft3VxOAvcgxjLc/9LkujRWwUDTsNhAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUXjr5UwK5LCkArErVnDhH4u83xscwHwYDVR0j BBgwFoAUENssROJsoqFG73ONOfU8uwkB21IwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NWQyMjdkYmUtNGExYy00MGIwLTk0YTYtNzkzYmRiZGEzNzc3LzAvMTBEQjJDNDRF MjZDQTJBMTQ2RUY3MzhEMzlGNTNDQkIwOTAxREI1Mi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8xMERCMkM0NEUyNkNBMkExNDZFRjczOEQzOUY1M0NCQjA5MDFE QjUyLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzVkMjI3ZGJlLTRhMWMtNDBiMC05 NGE2LTc5M2JkYmRhMzc3Ny8wLzMyMzQzMDM0M2E2NjY0MzAzMDNhMzIzMzNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzYzMjM0MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBP0AACMw DQYJKoZIhvcNAQELBQADggEBAFhiu0dYhSlEBGSC5tvPO/PIjrATIAHkGZ4s8b5M m2EEt3ErkA/C8rpxp9BdlBeAfo4rc21HOsXY7Abml4otwSbAoSssBwTHMgVSAFoI k9GRNvMZIPC6DoU5nTngFcwJcbwl4qIS7ea9pvqGwVY+eRTSfRbiCqwkVwDhyOmH 6ww584lWcBMl0SxY+kJopshFUVD7W2+UdwHt82YnFmI7caz6fFeXcU+32Vis+Lid l6uMqsjJtwXNh7EKyN3RnUQcg72Jt3iM+MVyFiHqfFFvRxQGA9GhExndrZBaMGr+ i12kPRV3q5b7QkiT8+CR2VqTttioZTgsMlYKcIjyXGrujlY= -----END CERTIFICATE-----Generated at Wed May 13 06:37:19 2026 by rpki-client