$ rpki-client -vvf rpki-rsync.idnic.net/repo/60e4750e-4393-43ec-9ab5-d247bbc07d86/0/323430353a633563303a666630303a3a2f34302d3438203d3e20313334363534.roa File: 323430353a633563303a666630303a3a2f34302d3438203d3e20313334363534.roa (raw, json) Hash identifier: GxX5lfBpXcjqMmca1p8RO5KpzC5umjRU6XwnA7zvfuQ= Subject key identifier: 76:EE:3F:DD:DE:9A:FE:FC:C1:A0:C1:61:15:65:DE:03:BC:88:4E:78 Certificate issuer: /CN=BA5788B9D9BEA734CE494C9762645F7B8B4EE750 Certificate serial: 5F552FD5BC83C75A767866052012931EDADB0561 Authority key identifier: BA:57:88:B9:D9:BE:A7:34:CE:49:4C:97:62:64:5F:7B:8B:4E:E7:50 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BA5788B9D9BEA734CE494C9762645F7B8B4EE750.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/60e4750e-4393-43ec-9ab5-d247bbc07d86/0/323430353a633563303a666630303a3a2f34302d3438203d3e20313334363534.roa Signing time: Sun 03 May 2026 02:37:49 +0000 ROA not before: Sun 03 May 2026 02:32:49 +0000 ROA not after: Sun 02 May 2027 02:37:49 +0000 asID: 134654 IP address blocks: 2405:c5c0:ff00::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/60e4750e-4393-43ec-9ab5-d247bbc07d86/0/BA5788B9D9BEA734CE494C9762645F7B8B4EE750.crl rsync://rpki-rsync.idnic.net/repo/60e4750e-4393-43ec-9ab5-d247bbc07d86/0/BA5788B9D9BEA734CE494C9762645F7B8B4EE750.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BA5788B9D9BEA734CE494C9762645F7B8B4EE750.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 23:22:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:55:2f:d5:bc:83:c7:5a:76:78:66:05:20:12:93:1e:da:db:05:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BA5788B9D9BEA734CE494C9762645F7B8B4EE750 Validity Not Before: May 3 02:32:49 2026 GMT Not After : May 2 02:37:49 2027 GMT Subject: CN=76EE3FDDDE9AFEFCC1A0C1611565DE03BC884E78 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:7c:d2:de:93:0d:0b:76:50:b3:b8:4c:ce:79: cd:a9:2a:ae:d7:84:48:28:9e:96:74:13:b3:5c:3b: df:e0:b9:fc:4d:9f:9d:33:9d:79:d0:dd:34:1d:30: d9:3d:ba:16:a1:0f:23:c9:52:dc:16:dd:29:35:9e: 91:07:1d:a8:e7:4c:a0:65:bb:7b:1f:4b:96:de:16: 6e:a1:78:51:05:a2:ee:fc:b1:3a:7a:f1:67:3f:89: 00:e6:42:e4:aa:1d:3e:ef:ba:1a:e7:19:0c:b1:a9: 8e:67:a4:87:b4:34:9b:9c:6a:4b:01:42:46:bc:7d: 71:db:b6:62:2c:8f:7d:7e:84:df:8d:0f:1b:ea:a9: 7b:28:42:22:1c:96:ef:88:71:5f:ed:31:6a:ca:ee: 09:2f:1a:bd:84:94:2a:c2:52:ce:92:a4:a8:8f:32: 6a:f6:f8:19:7f:5c:ca:09:0f:db:cc:41:02:f7:e9: f5:f6:59:86:25:a1:7e:36:f4:20:1c:34:bc:e1:2b: 47:d3:85:85:27:1b:f1:aa:3f:ca:7d:06:1a:c3:d7: 7a:60:f5:28:ef:fb:86:5f:ce:0b:d7:1d:e5:61:bf: 51:cb:45:90:f9:74:50:91:f6:89:6a:30:3c:11:75: 6c:81:d3:ef:20:0d:3e:b2:c3:1a:29:5e:11:96:f2: 6f:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:EE:3F:DD:DE:9A:FE:FC:C1:A0:C1:61:15:65:DE:03:BC:88:4E:78 X509v3 Authority Key Identifier: keyid:BA:57:88:B9:D9:BE:A7:34:CE:49:4C:97:62:64:5F:7B:8B:4E:E7:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/60e4750e-4393-43ec-9ab5-d247bbc07d86/0/BA5788B9D9BEA734CE494C9762645F7B8B4EE750.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BA5788B9D9BEA734CE494C9762645F7B8B4EE750.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/60e4750e-4393-43ec-9ab5-d247bbc07d86/0/323430353a633563303a666630303a3a2f34302d3438203d3e20313334363534.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:c5c0:ff00::/40 Signature Algorithm: sha256WithRSAEncryption 59:0d:3a:e7:1b:e2:ac:31:9c:a7:be:8e:cd:0d:91:51:a1:12: 04:72:8d:e6:1c:20:0e:b1:a8:1b:cf:2b:ef:25:68:46:79:89: ea:31:fd:3d:52:79:89:ba:64:bf:e0:5e:3c:76:be:66:42:77: 0e:07:3f:94:3e:45:ed:d3:ff:ba:0f:03:6a:c8:f8:08:c2:1d: da:af:28:8a:69:f6:78:aa:cb:7a:84:25:70:8e:01:d5:4c:45: 93:ba:94:05:66:70:bf:2f:05:7a:02:a7:36:da:45:70:9c:49: 55:64:ef:9c:73:cd:43:7b:3e:3a:73:2a:a5:5d:fe:00:a3:02: ef:1d:f1:46:fb:c4:7a:e6:09:70:3c:e4:56:c1:a9:fb:bd:17: f2:fc:63:6c:9b:f2:de:3c:4a:5f:73:d1:09:32:4c:1d:38:64: 18:7e:5a:fe:45:ef:07:f4:fd:60:96:50:c7:8b:ab:ad:29:d4: 00:d4:99:00:43:58:c8:df:c9:68:42:4c:0f:dd:94:da:09:c9: 01:93:6e:2e:2d:0d:1c:64:87:86:57:d0:21:33:d5:e4:6e:50: 93:7a:10:92:9d:d8:cc:db:a8:bd:e9:3c:c8:54:55:6c:59:ec: ce:71:b2:c3:f5:a9:44:4e:fe:8e:0f:b3:50:4c:f8:12:59:05: 70:cb:d9:e6 -----BEGIN CERTIFICATE----- MIIFNDCCBBygAwIBAgIUX1Uv1byDx1p2eGYFIBKTHtrbBWEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkE1Nzg4QjlEOUJFQTczNENFNDk0Qzk3NjI2NDVGN0I4 QjRFRTc1MDAeFw0yNjA1MDMwMjMyNDlaFw0yNzA1MDIwMjM3NDlaMDMxMTAvBgNV BAMTKDc2RUUzRkREREU5QUZFRkNDMUEwQzE2MTE1NjVERTAzQkM4ODRFNzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDYfNLekw0LdlCzuEzOec2pKq7X hEgonpZ0E7NcO9/gufxNn50znXnQ3TQdMNk9uhahDyPJUtwW3Sk1npEHHajnTKBl u3sfS5beFm6heFEFou78sTp68Wc/iQDmQuSqHT7vuhrnGQyxqY5npIe0NJucaksB Qka8fXHbtmIsj31+hN+NDxvqqXsoQiIclu+IcV/tMWrK7gkvGr2ElCrCUs6SpKiP Mmr2+Bl/XMoJD9vMQQL36fX2WYYloX429CAcNLzhK0fThYUnG/GqP8p9BhrD13pg 9Sjv+4ZfzgvXHeVhv1HLRZD5dFCR9olqMDwRdWyB0+8gDT6ywxopXhGW8m9JAgMB AAGjggI+MIICOjAdBgNVHQ4EFgQUdu4/3d6a/vzBoMFhFWXeA7yITngwHwYDVR0j BBgwFoAUuleIudm+pzTOSUyXYmRfe4tO51AwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NjBlNDc1MGUtNDM5My00M2VjLTlhYjUtZDI0N2JiYzA3ZDg2LzAvQkE1Nzg4QjlE OUJFQTczNENFNDk0Qzk3NjI2NDVGN0I4QjRFRTc1MC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9CQTU3ODhCOUQ5QkVBNzM0Q0U0OTRDOTc2MjY0NUY3QjhCNEVF NzUwLmNlcjCBrQYIKwYBBQUHAQsEgaAwgZ0wgZoGCCsGAQUFBzALhoGNcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzYwZTQ3NTBlLTQzOTMtNDNlYy05 YWI1LWQyNDdiYmMwN2Q4Ni8wLzMyMzQzMDM1M2E2MzM1NjMzMDNhNjY2NjMwMzAz YTNhMmYzNDMwMmQzNDM4MjAzZDNlMjAzMTMzMzQzNjM1MzQucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgAk BcXA/zANBgkqhkiG9w0BAQsFAAOCAQEAWQ065xvirDGcp76OzQ2RUaESBHKN5hwg DrGoG88r7yVoRnmJ6jH9PVJ5ibpkv+BePHa+ZkJ3Dgc/lD5F7dP/ug8Dasj4CMId 2q8oimn2eKrLeoQlcI4B1UxFk7qUBWZwvy8FegKnNtpFcJxJVWTvnHPNQ3s+OnMq pV3+AKMC7x3xRvvEeuYJcDzkVsGp+70X8vxjbJvy3jxKX3PRCTJMHThkGH5a/kXv B/T9YJZQx4urrSnUANSZAENYyN/JaEJMD92U2gnJAZNuLi0NHGSHhlfQITPV5G5Q k3oQkp3YzNuovek8yFRVbFnsznGyw/WpRE7+jg+zUEz4ElkFcMvZ5g== -----END CERTIFICATE-----Generated at Wed May 13 12:21:17 2026 by rpki-client