$ rpki-client -vvf rpki-rsync.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a666163333a3a2f34382d3438203d3e203538353532.roa File: 323430343a666430303a666163333a3a2f34382d3438203d3e203538353532.roa (raw, json) Hash identifier: qUbqf/dYL+KpI+nzVE6IUNEoAdzbdnOz6fR0z5ltKTk= Subject key identifier: AC:54:2D:20:4F:7D:EE:33:12:16:9A:06:E7:0D:39:E6:74:A0:66:34 Certificate issuer: /CN=10DB2C44E26CA2A146EF738D39F53CBB0901DB52 Certificate serial: 1B08EC5A3A344CA3306BD396B1FFFD28ACB2BB13 Authority key identifier: 10:DB:2C:44:E2:6C:A2:A1:46:EF:73:8D:39:F5:3C:BB:09:01:DB:52 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/10DB2C44E26CA2A146EF738D39F53CBB0901DB52.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a666163333a3a2f34382d3438203d3e203538353532.roa Signing time: Sun 03 May 2026 02:36:40 +0000 ROA not before: Sun 03 May 2026 02:31:40 +0000 ROA not after: Sun 02 May 2027 02:36:40 +0000 asID: 58552 IP address blocks: 2404:fd00:fac3::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/10DB2C44E26CA2A146EF738D39F53CBB0901DB52.crl rsync://rpki-rsync.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/10DB2C44E26CA2A146EF738D39F53CBB0901DB52.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/10DB2C44E26CA2A146EF738D39F53CBB0901DB52.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 00:10:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:08:ec:5a:3a:34:4c:a3:30:6b:d3:96:b1:ff:fd:28:ac:b2:bb:13 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=10DB2C44E26CA2A146EF738D39F53CBB0901DB52 Validity Not Before: May 3 02:31:40 2026 GMT Not After : May 2 02:36:40 2027 GMT Subject: CN=AC542D204F7DEE3312169A06E70D39E674A06634 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:df:ef:d1:03:a6:b0:87:eb:de:71:06:e1:5f: df:70:09:66:ce:50:5b:8c:60:79:d1:2e:fd:dc:fc: 74:ff:44:1b:b5:6e:14:ac:f5:20:7b:46:6e:56:05: 77:ed:c9:19:01:ef:c3:9b:60:49:d8:a7:f5:b2:73: 0e:77:e8:e0:5d:83:d1:a6:ea:58:ca:f8:36:a8:2d: 03:0c:76:70:4e:70:69:21:3a:7c:c3:0e:e8:80:fe: 5b:2f:61:4b:43:a5:eb:27:aa:98:70:ad:ea:a0:8a: b4:eb:44:69:c3:ca:16:1f:a2:32:87:69:af:af:e4: 58:aa:bb:77:67:56:3a:53:d0:cc:3b:ef:7e:d9:b4: a0:64:12:0a:c5:0b:ee:77:74:57:df:2c:2b:65:ed: 85:2a:11:57:22:1b:a9:12:e9:31:12:be:7e:45:20: 54:fd:09:e2:01:0f:8d:24:da:19:38:80:96:8b:8d: c9:c1:24:89:ba:2c:85:25:c1:89:5e:c8:56:a5:25: 97:85:3f:1f:af:c9:99:a5:45:75:f7:e8:25:48:98: 29:12:cb:43:b2:56:f3:f8:c1:68:ad:a1:aa:ac:fd: f4:ac:c7:b5:47:c5:99:3a:a0:cc:72:74:fd:50:0c: 52:05:97:47:4a:88:25:78:2c:14:ab:3e:0b:d3:a2: 1a:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:54:2D:20:4F:7D:EE:33:12:16:9A:06:E7:0D:39:E6:74:A0:66:34 X509v3 Authority Key Identifier: keyid:10:DB:2C:44:E2:6C:A2:A1:46:EF:73:8D:39:F5:3C:BB:09:01:DB:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/10DB2C44E26CA2A146EF738D39F53CBB0901DB52.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/10DB2C44E26CA2A146EF738D39F53CBB0901DB52.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a666163333a3a2f34382d3438203d3e203538353532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:fd00:fac3::/48 Signature Algorithm: sha256WithRSAEncryption 74:33:3e:a9:cd:b3:93:a7:77:8a:e2:15:ac:bf:30:1c:e8:cf: 92:9e:e3:ad:c0:06:9f:9e:90:81:b8:08:ef:6d:4a:73:06:b7: dc:fe:de:38:4c:e2:81:8b:b7:91:56:cb:63:f0:e4:61:59:77: 11:99:28:0c:0f:0b:0e:bc:5b:fd:73:21:48:8e:d8:49:b4:31: 8e:85:da:c0:df:2f:33:6e:cb:fc:8e:91:c4:2b:9a:a5:94:64: ee:19:a5:57:d5:c6:21:3c:e2:ad:de:c2:5c:47:05:45:a9:02: 29:f8:4a:2e:37:3c:2f:e0:a3:01:cd:54:b3:d9:d6:d2:1d:87: 20:f1:a1:1e:3f:09:d5:92:76:71:e0:50:1f:fb:24:9d:9d:a6: cd:ce:9e:f5:f4:03:ad:18:f6:58:f8:36:1f:f1:66:3c:d0:0f: c3:7a:ee:6d:7f:7d:2f:0a:e9:0e:16:a7:10:a3:b5:0e:d0:68: bd:d1:64:24:f6:15:41:0d:73:05:14:23:0a:d2:29:9b:0e:bc: 27:e9:cd:78:3b:c6:e8:7f:a1:c9:80:51:10:cb:f3:c8:bb:25: 65:0e:51:4c:dd:bb:c0:d8:6d:d3:97:43:96:eb:15:91:78:de: 8e:c7:01:04:8b:9e:7a:20:be:73:be:d6:49:b6:1f:2c:a7:62: 0c:44:5c:62 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUGwjsWjo0TKMwa9OWsf/9KKyyuxMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTBEQjJDNDRFMjZDQTJBMTQ2RUY3MzhEMzlGNTNDQkIw OTAxREI1MjAeFw0yNjA1MDMwMjMxNDBaFw0yNzA1MDIwMjM2NDBaMDMxMTAvBgNV BAMTKEFDNTQyRDIwNEY3REVFMzMxMjE2OUEwNkU3MEQzOUU2NzRBMDY2MzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCz3+/RA6awh+vecQbhX99wCWbO UFuMYHnRLv3c/HT/RBu1bhSs9SB7Rm5WBXftyRkB78ObYEnYp/Wycw536OBdg9Gm 6ljK+DaoLQMMdnBOcGkhOnzDDuiA/lsvYUtDpesnqphwreqgirTrRGnDyhYfojKH aa+v5Fiqu3dnVjpT0Mw7737ZtKBkEgrFC+53dFffLCtl7YUqEVciG6kS6TESvn5F IFT9CeIBD40k2hk4gJaLjcnBJIm6LIUlwYleyFalJZeFPx+vyZmlRXX36CVImCkS y0OyVvP4wWitoaqs/fSsx7VHxZk6oMxydP1QDFIFl0dKiCV4LBSrPgvTohptAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUrFQtIE997jMSFpoG5w055nSgZjQwHwYDVR0j BBgwFoAUENssROJsoqFG73ONOfU8uwkB21IwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NWQyMjdkYmUtNGExYy00MGIwLTk0YTYtNzkzYmRiZGEzNzc3LzAvMTBEQjJDNDRF MjZDQTJBMTQ2RUY3MzhEMzlGNTNDQkIwOTAxREI1Mi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8xMERCMkM0NEUyNkNBMkExNDZFRjczOEQzOUY1M0NCQjA5MDFE QjUyLmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUFBzALhoGLcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzVkMjI3ZGJlLTRhMWMtNDBiMC05 NGE2LTc5M2JkYmRhMzc3Ny8wLzMyMzQzMDM0M2E2NjY0MzAzMDNhNjY2MTYzMzMz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzNTM4MzUzNTMyLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAT9 APrDMA0GCSqGSIb3DQEBCwUAA4IBAQB0Mz6pzbOTp3eK4hWsvzAc6M+SnuOtwAaf npCBuAjvbUpzBrfc/t44TOKBi7eRVstj8ORhWXcRmSgMDwsOvFv9cyFIjthJtDGO hdrA3y8zbsv8jpHEK5qllGTuGaVX1cYhPOKt3sJcRwVFqQIp+EouNzwv4KMBzVSz 2dbSHYcg8aEePwnVknZx4FAf+ySdnabNzp719AOtGPZY+DYf8WY80A/Deu5tf30v CukOFqcQo7UO0Gi90WQk9hVBDXMFFCMK0imbDrwn6c14O8bof6HJgFEQy/PIuyVl DlFM3bvA2G3Tl0OW6xWReN6OxwEEi556IL5zvtZJth8sp2IMRFxi -----END CERTIFICATE-----Generated at Wed May 13 10:20:19 2026 by rpki-client