$ rpki-client -vvf rpki-rsync.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a32363a3a2f34382d3438203d3e203536323436.roa File: 323430343a666430303a32363a3a2f34382d3438203d3e203536323436.roa (raw, json) Hash identifier: 8cqIcX0JpDBv3a9r/Ug9svJ4K2B62D5vpuHPDBiY9cg= Subject key identifier: EB:FA:E5:24:01:4E:2B:74:56:8A:E3:D4:A1:AE:DE:52:89:92:35:E8 Certificate issuer: /CN=10DB2C44E26CA2A146EF738D39F53CBB0901DB52 Certificate serial: 31AB48C426E00927816A257616D009C3433C8ACE Authority key identifier: 10:DB:2C:44:E2:6C:A2:A1:46:EF:73:8D:39:F5:3C:BB:09:01:DB:52 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/10DB2C44E26CA2A146EF738D39F53CBB0901DB52.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a32363a3a2f34382d3438203d3e203536323436.roa Signing time: Sun 03 May 2026 02:36:29 +0000 ROA not before: Sun 03 May 2026 02:31:29 +0000 ROA not after: Sun 02 May 2027 02:36:29 +0000 asID: 56246 IP address blocks: 2404:fd00:26::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/10DB2C44E26CA2A146EF738D39F53CBB0901DB52.crl rsync://rpki-rsync.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/10DB2C44E26CA2A146EF738D39F53CBB0901DB52.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/10DB2C44E26CA2A146EF738D39F53CBB0901DB52.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 00:10:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:ab:48:c4:26:e0:09:27:81:6a:25:76:16:d0:09:c3:43:3c:8a:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=10DB2C44E26CA2A146EF738D39F53CBB0901DB52 Validity Not Before: May 3 02:31:29 2026 GMT Not After : May 2 02:36:29 2027 GMT Subject: CN=EBFAE524014E2B74568AE3D4A1AEDE52899235E8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:54:a6:eb:db:5d:37:4f:25:b8:20:b5:e5:4b: 5d:83:c1:a9:f6:eb:c7:f4:14:c3:50:8b:c0:14:ca: 4d:3f:66:e1:a7:af:0b:96:f8:c7:28:62:8f:47:76: d4:e5:32:6f:d8:37:7f:df:93:cc:5b:f5:c1:4e:e2: ac:38:0a:d4:ae:0d:fc:c6:90:d6:49:b5:a8:51:a0: 9c:e7:d4:ad:3c:6e:61:ad:33:27:6c:b2:7d:d3:af: b9:74:69:07:db:fe:c1:26:46:67:7d:0d:2f:f7:73: bc:4b:3b:c4:df:34:f2:57:6d:5c:66:72:2a:d0:04: 80:9a:47:6f:e0:7b:2d:00:32:69:c8:bb:f2:f5:c6: 39:b1:39:bd:59:c1:69:1b:f4:a6:18:82:ec:dd:d3: 1c:a0:62:35:88:cd:68:3f:64:76:6f:06:58:6e:e4: e6:5d:38:77:53:cf:38:86:38:a2:34:92:e7:33:0f: 8a:d3:32:20:11:0f:7d:d2:1c:a7:45:4e:48:40:8f: 73:a0:5d:99:1c:4d:1d:5f:53:4b:91:69:21:fd:d4: 7c:a4:15:9b:af:bb:fa:5a:09:45:bf:3f:14:e4:6a: 74:6b:f8:2c:6f:5f:0d:15:2e:8e:45:16:5f:d8:f5: f0:06:5b:b5:f3:fd:4d:af:2e:de:30:2a:f6:34:e0: 05:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:FA:E5:24:01:4E:2B:74:56:8A:E3:D4:A1:AE:DE:52:89:92:35:E8 X509v3 Authority Key Identifier: keyid:10:DB:2C:44:E2:6C:A2:A1:46:EF:73:8D:39:F5:3C:BB:09:01:DB:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/10DB2C44E26CA2A146EF738D39F53CBB0901DB52.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/10DB2C44E26CA2A146EF738D39F53CBB0901DB52.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a32363a3a2f34382d3438203d3e203536323436.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:fd00:26::/48 Signature Algorithm: sha256WithRSAEncryption 76:77:76:9a:3a:7f:96:d6:18:03:78:d6:a3:a1:d8:03:b2:e5: 38:f6:1a:b1:8f:51:c3:93:98:8e:bb:22:e8:bc:d0:fe:10:2f: c4:62:fb:d7:7e:77:ac:8b:62:76:38:56:9b:04:2f:d8:46:f8: a1:55:d2:45:c4:6a:f4:27:19:1b:ec:42:5a:83:a9:1a:db:50: 1c:75:6f:6e:53:a8:42:94:31:d0:3f:bf:12:4a:15:79:16:32: f4:ab:60:d0:2d:ee:28:70:20:62:6c:87:bd:b6:d6:c3:d1:86: 6e:43:7c:57:c0:9c:64:f8:2b:cf:10:d4:6e:52:d7:73:35:cf: 01:d2:67:55:3f:a6:3e:4f:d1:c3:69:11:f5:a5:e2:68:4a:d9: d8:ec:50:0d:4f:c6:1c:b9:18:04:60:b7:a8:4c:94:f7:cd:1b: 6b:88:63:48:46:35:5f:0a:be:55:9c:3d:c5:95:47:63:17:77: dc:4f:00:14:5d:12:a9:92:34:12:51:f7:6f:97:f7:e3:17:db: 2d:bc:c6:85:98:fe:05:c0:b1:02:a3:2f:8e:96:4f:ee:9b:11: 11:7c:20:10:72:6f:e9:e2:9c:90:41:27:9d:a8:7c:a1:68:7e: 62:44:13:0b:9b:c6:bc:51:81:5e:e4:49:33:ad:33:01:39:00: 64:12:06:3e -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUMatIxCbgCSeBaiV2FtAJw0M8is4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTBEQjJDNDRFMjZDQTJBMTQ2RUY3MzhEMzlGNTNDQkIw OTAxREI1MjAeFw0yNjA1MDMwMjMxMjlaFw0yNzA1MDIwMjM2MjlaMDMxMTAvBgNV BAMTKEVCRkFFNTI0MDE0RTJCNzQ1NjhBRTNENEExQUVERTUyODk5MjM1RTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOVKbr2103TyW4ILXlS12Dwan2 68f0FMNQi8AUyk0/ZuGnrwuW+McoYo9HdtTlMm/YN3/fk8xb9cFO4qw4CtSuDfzG kNZJtahRoJzn1K08bmGtMydssn3Tr7l0aQfb/sEmRmd9DS/3c7xLO8TfNPJXbVxm cirQBICaR2/gey0AMmnIu/L1xjmxOb1ZwWkb9KYYguzd0xygYjWIzWg/ZHZvBlhu 5OZdOHdTzziGOKI0kuczD4rTMiARD33SHKdFTkhAj3OgXZkcTR1fU0uRaSH91Hyk FZuvu/paCUW/PxTkanRr+CxvXw0VLo5FFl/Y9fAGW7Xz/U2vLt4wKvY04AXPAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQU6/rlJAFOK3RWiuPUoa7eUomSNegwHwYDVR0j BBgwFoAUENssROJsoqFG73ONOfU8uwkB21IwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NWQyMjdkYmUtNGExYy00MGIwLTk0YTYtNzkzYmRiZGEzNzc3LzAvMTBEQjJDNDRF MjZDQTJBMTQ2RUY3MzhEMzlGNTNDQkIwOTAxREI1Mi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8xMERCMkM0NEUyNkNBMkExNDZFRjczOEQzOUY1M0NCQjA5MDFE QjUyLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzVkMjI3ZGJlLTRhMWMtNDBiMC05 NGE2LTc5M2JkYmRhMzc3Ny8wLzMyMzQzMDM0M2E2NjY0MzAzMDNhMzIzNjNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzYzMjM0MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBP0AACYw DQYJKoZIhvcNAQELBQADggEBAHZ3dpo6f5bWGAN41qOh2AOy5Tj2GrGPUcOTmI67 Iui80P4QL8Ri+9d+d6yLYnY4VpsEL9hG+KFV0kXEavQnGRvsQlqDqRrbUBx1b25T qEKUMdA/vxJKFXkWMvSrYNAt7ihwIGJsh7221sPRhm5DfFfAnGT4K88Q1G5S13M1 zwHSZ1U/pj5P0cNpEfWl4mhK2djsUA1Pxhy5GARgt6hMlPfNG2uIY0hGNV8KvlWc PcWVR2MXd9xPABRdEqmSNBJR92+X9+MX2y28xoWY/gXAsQKjL46WT+6bERF8IBBy b+ninJBBJ52ofKFofmJEEwubxrxRgV7kSTOtMwE5AGQSBj4= -----END CERTIFICATE-----Generated at Wed May 13 07:15:26 2026 by rpki-client