$ rpki-client -vvf rpki-rsync.idnic.net/repo/60e4750e-4393-43ec-9ab5-d247bbc07d86/0/323430353a633563303a3a2f33322d3438203d3e20313339393736.roa File: 323430353a633563303a3a2f33322d3438203d3e20313339393736.roa (raw, json) Hash identifier: bK2fsV+VK/o1aLXTk9/ke6JBkK1wOgjAm/5MH3N06d0= Subject key identifier: 51:60:DE:63:40:CD:31:70:2B:B2:B7:A7:51:5C:CC:D6:6E:B0:7A:F4 Certificate issuer: /CN=BA5788B9D9BEA734CE494C9762645F7B8B4EE750 Certificate serial: 114E1505B1CFCFB8FF367ECF1DCBEB70771FCC81 Authority key identifier: BA:57:88:B9:D9:BE:A7:34:CE:49:4C:97:62:64:5F:7B:8B:4E:E7:50 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BA5788B9D9BEA734CE494C9762645F7B8B4EE750.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/60e4750e-4393-43ec-9ab5-d247bbc07d86/0/323430353a633563303a3a2f33322d3438203d3e20313339393736.roa Signing time: Sun 03 May 2026 02:37:50 +0000 ROA not before: Sun 03 May 2026 02:32:50 +0000 ROA not after: Sun 02 May 2027 02:37:50 +0000 asID: 139976 IP address blocks: 2405:c5c0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/60e4750e-4393-43ec-9ab5-d247bbc07d86/0/BA5788B9D9BEA734CE494C9762645F7B8B4EE750.crl rsync://rpki-rsync.idnic.net/repo/60e4750e-4393-43ec-9ab5-d247bbc07d86/0/BA5788B9D9BEA734CE494C9762645F7B8B4EE750.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BA5788B9D9BEA734CE494C9762645F7B8B4EE750.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 23:22:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:4e:15:05:b1:cf:cf:b8:ff:36:7e:cf:1d:cb:eb:70:77:1f:cc:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BA5788B9D9BEA734CE494C9762645F7B8B4EE750 Validity Not Before: May 3 02:32:50 2026 GMT Not After : May 2 02:37:50 2027 GMT Subject: CN=5160DE6340CD31702BB2B7A7515CCCD66EB07AF4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:95:8f:3e:7b:a3:e7:47:9b:8e:9a:ae:05:ca: f4:a5:bd:e0:6b:1f:03:cb:2a:22:da:4c:0d:f0:90: de:bf:84:94:33:2b:41:87:8c:60:5a:22:8a:78:c7: d4:0a:26:49:eb:c1:a7:77:94:e9:58:e6:05:b5:d5: 70:cb:3a:04:93:33:8e:07:10:19:d6:43:b8:71:48: 4f:1b:2a:02:dd:9b:8f:44:56:98:7b:f5:c4:7e:85: 0d:67:f9:27:3e:0c:2d:de:07:c2:38:0a:23:cc:cc: fb:46:07:7c:b9:20:fa:f4:88:c2:e7:4d:10:9c:2f: 03:01:f6:0e:9b:60:62:31:19:e4:40:51:e9:4e:d3: e9:2d:7d:c2:36:66:a5:79:f5:20:ef:f1:b2:8b:01: b8:f4:b1:6b:8c:8f:a4:f3:40:e5:12:b6:39:f8:e4: e1:5a:63:39:ef:95:46:38:c4:9b:bc:14:6e:bf:4c: e7:aa:fa:ac:7d:06:30:d8:11:c3:36:cc:1c:08:50: 1d:74:2c:d2:06:5b:c3:21:34:76:57:bd:2c:c6:85: 7c:26:89:c1:6f:92:d7:6c:72:70:ea:3b:fd:7f:14: 0d:dd:d6:c2:9f:ae:54:81:f0:6e:d5:7a:25:e0:e7: 94:33:e4:3b:a8:5c:7e:78:09:71:39:24:1a:86:bd: d5:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:60:DE:63:40:CD:31:70:2B:B2:B7:A7:51:5C:CC:D6:6E:B0:7A:F4 X509v3 Authority Key Identifier: keyid:BA:57:88:B9:D9:BE:A7:34:CE:49:4C:97:62:64:5F:7B:8B:4E:E7:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/60e4750e-4393-43ec-9ab5-d247bbc07d86/0/BA5788B9D9BEA734CE494C9762645F7B8B4EE750.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BA5788B9D9BEA734CE494C9762645F7B8B4EE750.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/60e4750e-4393-43ec-9ab5-d247bbc07d86/0/323430353a633563303a3a2f33322d3438203d3e20313339393736.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:c5c0::/32 Signature Algorithm: sha256WithRSAEncryption 11:f0:fc:80:5a:99:a0:b3:13:f7:1f:b5:72:f2:66:0e:51:56: 91:3d:b8:50:df:b6:3d:a0:8b:2c:88:70:56:08:12:62:4d:66: e2:17:50:7f:eb:74:6c:56:0e:31:c9:86:7a:42:0d:0e:c0:55: 8c:08:f7:e2:b6:dc:75:80:38:76:79:2d:8d:88:fa:97:9a:0a: c3:37:52:38:90:e0:6e:19:b4:50:2e:54:cc:31:6e:0c:95:2a: c3:c3:c0:05:96:9e:07:be:81:fc:b5:e4:90:7f:a0:86:a1:69: 4f:02:ef:cf:63:dc:e0:93:8d:c6:8d:fb:b4:d6:fc:eb:60:24: 03:15:28:78:a1:ef:69:54:d8:39:db:90:07:b5:cf:36:66:83: a7:ca:aa:63:e7:b9:85:67:87:c7:40:75:df:8b:71:0a:12:27: b2:26:2a:58:f1:d0:8d:1e:27:70:a5:b4:d9:a8:bc:38:f8:29: 1c:32:ad:bb:70:86:7b:f3:57:96:de:b8:27:63:25:20:19:4e: 00:48:23:60:83:89:13:9d:02:84:79:f0:d9:27:72:9e:c1:bc: d0:30:45:a8:f5:11:f6:d8:96:40:c6:f8:52:2d:56:bf:9c:ee: 51:37:fc:df:d3:90:88:c5:3f:f7:d8:5f:81:cd:09:8b:65:82: ce:1e:9c:63 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUEU4VBbHPz7j/Nn7PHcvrcHcfzIEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkE1Nzg4QjlEOUJFQTczNENFNDk0Qzk3NjI2NDVGN0I4 QjRFRTc1MDAeFw0yNjA1MDMwMjMyNTBaFw0yNzA1MDIwMjM3NTBaMDMxMTAvBgNV BAMTKDUxNjBERTYzNDBDRDMxNzAyQkIyQjdBNzUxNUNDQ0Q2NkVCMDdBRjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+lY8+e6PnR5uOmq4FyvSlveBr HwPLKiLaTA3wkN6/hJQzK0GHjGBaIop4x9QKJknrwad3lOlY5gW11XDLOgSTM44H EBnWQ7hxSE8bKgLdm49EVph79cR+hQ1n+Sc+DC3eB8I4CiPMzPtGB3y5IPr0iMLn TRCcLwMB9g6bYGIxGeRAUelO0+ktfcI2ZqV59SDv8bKLAbj0sWuMj6TzQOUStjn4 5OFaYznvlUY4xJu8FG6/TOeq+qx9BjDYEcM2zBwIUB10LNIGW8MhNHZXvSzGhXwm icFvktdscnDqO/1/FA3d1sKfrlSB8G7VeiXg55Qz5DuoXH54CXE5JBqGvdXNAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUUWDeY0DNMXArsrenUVzM1m6wevQwHwYDVR0j BBgwFoAUuleIudm+pzTOSUyXYmRfe4tO51AwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NjBlNDc1MGUtNDM5My00M2VjLTlhYjUtZDI0N2JiYzA3ZDg2LzAvQkE1Nzg4QjlE OUJFQTczNENFNDk0Qzk3NjI2NDVGN0I4QjRFRTc1MC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9CQTU3ODhCOUQ5QkVBNzM0Q0U0OTRDOTc2MjY0NUY3QjhCNEVF NzUwLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzYwZTQ3NTBlLTQzOTMtNDNlYy05 YWI1LWQyNDdiYmMwN2Q4Ni8wLzMyMzQzMDM1M2E2MzM1NjMzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMxMzMzOTM5MzczNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQFxcAwDQYJKoZI hvcNAQELBQADggEBABHw/IBamaCzE/cftXLyZg5RVpE9uFDftj2giyyIcFYIEmJN ZuIXUH/rdGxWDjHJhnpCDQ7AVYwI9+K23HWAOHZ5LY2I+peaCsM3UjiQ4G4ZtFAu VMwxbgyVKsPDwAWWnge+gfy15JB/oIahaU8C789j3OCTjcaN+7TW/OtgJAMVKHih 72lU2DnbkAe1zzZmg6fKqmPnuYVnh8dAdd+LcQoSJ7ImKljx0I0eJ3CltNmovDj4 KRwyrbtwhnvzV5beuCdjJSAZTgBII2CDiROdAoR58Nkncp7BvNAwRaj1EfbYlkDG +FItVr+c7lE3/N/TkIjFP/fYX4HNCYtlgs4enGM= -----END CERTIFICATE-----Generated at Wed May 13 07:56:31 2026 by rpki-client