$ rpki-client -vvf rpki-rsync.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a32353a3a2f34382d3438203d3e203536323436.roa File: 323430343a666430303a32353a3a2f34382d3438203d3e203536323436.roa (raw, json) Hash identifier: U6+qgwRxVdgIqxSoVSmpPZOalcj2/gnN9u6PClOXlb8= Subject key identifier: 9E:49:2D:9B:54:49:22:68:48:AD:1A:93:91:C7:84:39:10:F7:A8:E0 Certificate issuer: /CN=10DB2C44E26CA2A146EF738D39F53CBB0901DB52 Certificate serial: 569D837BA8BDB56412F1144A6B3291BD10A63BBD Authority key identifier: 10:DB:2C:44:E2:6C:A2:A1:46:EF:73:8D:39:F5:3C:BB:09:01:DB:52 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/10DB2C44E26CA2A146EF738D39F53CBB0901DB52.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a32353a3a2f34382d3438203d3e203536323436.roa Signing time: Sun 03 May 2026 02:36:44 +0000 ROA not before: Sun 03 May 2026 02:31:44 +0000 ROA not after: Sun 02 May 2027 02:36:44 +0000 asID: 56246 IP address blocks: 2404:fd00:25::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/10DB2C44E26CA2A146EF738D39F53CBB0901DB52.crl rsync://rpki-rsync.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/10DB2C44E26CA2A146EF738D39F53CBB0901DB52.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/10DB2C44E26CA2A146EF738D39F53CBB0901DB52.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 00:10:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:9d:83:7b:a8:bd:b5:64:12:f1:14:4a:6b:32:91:bd:10:a6:3b:bd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=10DB2C44E26CA2A146EF738D39F53CBB0901DB52 Validity Not Before: May 3 02:31:44 2026 GMT Not After : May 2 02:36:44 2027 GMT Subject: CN=9E492D9B5449226848AD1A9391C7843910F7A8E0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:4e:af:db:44:ee:a0:26:03:6e:25:a4:2a:76: 09:f3:c6:36:72:3c:0d:a5:e8:77:4d:44:71:0a:0d: ad:6c:c4:ba:a3:4c:f3:0f:c9:79:f9:06:d4:8f:4e: ce:a1:92:8d:65:83:d9:c2:98:6f:02:ef:fe:cf:aa: c9:fb:3d:01:62:51:bc:b3:d2:9a:e8:76:f9:6c:c7: fa:84:bf:4c:3e:81:36:7a:a8:d8:a9:dc:6b:78:8c: 3e:d7:81:8f:b5:61:6a:19:2b:3a:ad:8f:fc:da:06: 3c:0d:cc:66:c6:0b:46:9b:8a:73:fd:61:05:28:9c: 7d:db:b7:ae:70:3b:3c:c5:8f:dd:31:2f:48:35:ba: 92:0e:cf:56:0f:91:74:01:cc:15:f1:b8:bc:f8:5b: ce:86:0b:27:85:b6:c9:6e:3f:c4:a6:22:a8:7a:c4: ba:fa:5a:ad:5a:bc:fc:d7:66:9d:c0:bb:72:24:30: 21:0d:6d:06:ed:9e:8b:2d:85:41:4c:0a:b9:0b:88: 12:77:f7:8b:fc:0c:0d:e9:cb:8e:70:37:1a:6c:9d: 4a:0d:8b:a4:a5:df:b1:8d:3a:f9:9b:e8:2f:e6:7a: e2:b5:ed:b2:9f:11:a5:13:00:70:0a:db:28:3e:a0: 6b:67:c6:02:83:7d:f5:f2:99:19:30:66:b9:4d:d9: 0d:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:49:2D:9B:54:49:22:68:48:AD:1A:93:91:C7:84:39:10:F7:A8:E0 X509v3 Authority Key Identifier: keyid:10:DB:2C:44:E2:6C:A2:A1:46:EF:73:8D:39:F5:3C:BB:09:01:DB:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/10DB2C44E26CA2A146EF738D39F53CBB0901DB52.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/10DB2C44E26CA2A146EF738D39F53CBB0901DB52.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a32353a3a2f34382d3438203d3e203536323436.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:fd00:25::/48 Signature Algorithm: sha256WithRSAEncryption 92:4b:05:26:df:17:f6:9c:c1:e8:60:79:cf:4e:62:c0:fd:5e: d1:01:0a:ef:0e:f9:e9:d1:ea:dd:9f:72:86:d4:20:27:c0:57: d0:e3:d6:0b:c2:2f:63:53:43:75:ae:56:dc:2e:80:7f:5b:73: 66:6c:55:d3:cf:5f:5e:78:da:94:0f:a6:2d:a3:46:f6:f6:91: 97:75:91:57:d5:e8:1e:2e:01:71:4c:eb:0e:9b:be:89:09:f0: 67:b0:ef:82:33:4e:0e:9f:34:a5:f5:78:04:23:99:86:67:73: b5:e8:6d:49:4e:6b:d2:67:5e:9d:73:0c:20:1f:e4:b6:7d:37: cc:d3:6f:b7:30:d3:e4:12:47:26:a1:ed:e7:5f:8d:74:bc:65: 1c:83:3a:3c:37:42:1e:1d:d2:d7:b3:f3:be:c0:e1:30:aa:43: e4:a0:f3:32:ac:df:cf:80:61:79:e8:a1:43:06:71:59:40:78: f0:3e:42:78:39:fb:fe:31:64:7c:99:28:52:8b:d4:d0:33:ef: 0a:94:8e:2e:03:c6:3f:ef:b6:41:75:f4:82:c6:32:40:11:b9: d7:14:f7:5a:67:9e:e7:cf:b2:f6:b6:ab:52:44:2f:3d:14:f0: d5:73:d0:89:31:c4:52:12:cd:15:fb:c3:3d:a1:14:3e:2d:ea: eb:8f:b0:c0 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUVp2De6i9tWQS8RRKazKRvRCmO70wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTBEQjJDNDRFMjZDQTJBMTQ2RUY3MzhEMzlGNTNDQkIw OTAxREI1MjAeFw0yNjA1MDMwMjMxNDRaFw0yNzA1MDIwMjM2NDRaMDMxMTAvBgNV BAMTKDlFNDkyRDlCNTQ0OTIyNjg0OEFEMUE5MzkxQzc4NDM5MTBGN0E4RTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDnTq/bRO6gJgNuJaQqdgnzxjZy PA2l6HdNRHEKDa1sxLqjTPMPyXn5BtSPTs6hko1lg9nCmG8C7/7Pqsn7PQFiUbyz 0prodvlsx/qEv0w+gTZ6qNip3Gt4jD7XgY+1YWoZKzqtj/zaBjwNzGbGC0abinP9 YQUonH3bt65wOzzFj90xL0g1upIOz1YPkXQBzBXxuLz4W86GCyeFtsluP8SmIqh6 xLr6Wq1avPzXZp3Au3IkMCENbQbtnosthUFMCrkLiBJ394v8DA3py45wNxpsnUoN i6Sl37GNOvmb6C/meuK17bKfEaUTAHAK2yg+oGtnxgKDffXymRkwZrlN2Q07AgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUnkktm1RJImhIrRqTkceEORD3qOAwHwYDVR0j BBgwFoAUENssROJsoqFG73ONOfU8uwkB21IwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NWQyMjdkYmUtNGExYy00MGIwLTk0YTYtNzkzYmRiZGEzNzc3LzAvMTBEQjJDNDRF MjZDQTJBMTQ2RUY3MzhEMzlGNTNDQkIwOTAxREI1Mi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8xMERCMkM0NEUyNkNBMkExNDZFRjczOEQzOUY1M0NCQjA5MDFE QjUyLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzVkMjI3ZGJlLTRhMWMtNDBiMC05 NGE2LTc5M2JkYmRhMzc3Ny8wLzMyMzQzMDM0M2E2NjY0MzAzMDNhMzIzNTNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzYzMjM0MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBP0AACUw DQYJKoZIhvcNAQELBQADggEBAJJLBSbfF/acwehgec9OYsD9XtEBCu8O+enR6t2f cobUICfAV9Dj1gvCL2NTQ3WuVtwugH9bc2ZsVdPPX1542pQPpi2jRvb2kZd1kVfV 6B4uAXFM6w6bvokJ8Gew74IzTg6fNKX1eAQjmYZnc7XobUlOa9JnXp1zDCAf5LZ9 N8zTb7cw0+QSRyah7edfjXS8ZRyDOjw3Qh4d0tez877A4TCqQ+Sg8zKs38+AYXno oUMGcVlAePA+Qng5+/4xZHyZKFKL1NAz7wqUji4Dxj/vtkF19ILGMkARudcU91pn nufPsva2q1JELz0U8NVz0IkxxFISzRX7wz2hFD4t6uuPsMA= -----END CERTIFICATE-----Generated at Wed May 13 07:45:44 2026 by rpki-client