$ rpki-client -vvf rpki-rsync.idnic.net/repo/63c8f4d7-e4b3-4b41-a685-514940fec819/0/323430363a663138303a3a2f33322d3332203d3e20313335343734.roa File: 323430363a663138303a3a2f33322d3332203d3e20313335343734.roa (raw, json) Hash identifier: 3rOAi8k8stl86mFqGKreWcTbEEAFU4VlaCFaMidaKjM= Subject key identifier: 5A:63:7D:A3:3F:59:CB:09:91:EB:0A:9C:39:D1:C7:87:12:A9:BB:DE Certificate issuer: /CN=62B2A4312116C7B41E1FAF110B76B37E3AD66DD4 Certificate serial: 4501BC58D43DD39BD8B616FA9EE73040DE96B622 Authority key identifier: 62:B2:A4:31:21:16:C7:B4:1E:1F:AF:11:0B:76:B3:7E:3A:D6:6D:D4 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/62B2A4312116C7B41E1FAF110B76B37E3AD66DD4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/63c8f4d7-e4b3-4b41-a685-514940fec819/0/323430363a663138303a3a2f33322d3332203d3e20313335343734.roa Signing time: Sun 03 May 2026 02:38:57 +0000 ROA not before: Sun 03 May 2026 02:33:57 +0000 ROA not after: Sun 02 May 2027 02:38:57 +0000 asID: 135474 IP address blocks: 2406:f180::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/63c8f4d7-e4b3-4b41-a685-514940fec819/0/62B2A4312116C7B41E1FAF110B76B37E3AD66DD4.crl rsync://rpki-rsync.idnic.net/repo/63c8f4d7-e4b3-4b41-a685-514940fec819/0/62B2A4312116C7B41E1FAF110B76B37E3AD66DD4.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/62B2A4312116C7B41E1FAF110B76B37E3AD66DD4.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:01:bc:58:d4:3d:d3:9b:d8:b6:16:fa:9e:e7:30:40:de:96:b6:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=62B2A4312116C7B41E1FAF110B76B37E3AD66DD4 Validity Not Before: May 3 02:33:57 2026 GMT Not After : May 2 02:38:57 2027 GMT Subject: CN=5A637DA33F59CB0991EB0A9C39D1C78712A9BBDE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:53:f9:75:2f:94:9a:84:d5:61:bf:6c:89:91: d4:b7:d8:67:86:bd:6d:7e:eb:08:b8:29:88:28:f2: 5d:0f:44:9a:18:23:f9:d3:44:9b:51:43:65:3a:4b: 2a:b0:56:dd:60:83:40:3c:d0:c8:f6:6f:0e:f9:e4: 15:c8:23:a5:3d:eb:e8:5e:6a:16:c7:c3:b6:10:c7: 6c:33:50:eb:a5:21:97:69:2f:6c:aa:db:52:89:c2: 5c:2f:c4:a9:7a:35:bc:22:f7:2f:28:f1:5a:cb:91: be:67:d5:18:cd:af:07:f4:5e:b0:a8:ba:b7:e4:50: 21:17:a1:6b:db:a8:a9:69:94:98:e3:79:3a:26:0d: 7f:cf:e7:a0:f6:e9:8e:e4:dd:c5:d9:23:19:97:19: 49:96:f4:07:07:77:da:ce:41:7f:bc:22:89:1f:db: 32:a1:da:63:cf:9e:73:57:ea:73:19:94:4d:ba:bc: 83:18:7d:95:65:92:98:15:be:f5:8e:18:13:33:2e: b5:d1:0a:3d:b6:a1:1a:e1:a0:d2:c7:92:73:4a:37: 9d:45:f1:5e:e0:b7:6c:01:b7:a2:21:43:9f:4d:2b: 8c:55:fd:92:6e:ce:e6:53:ff:27:e9:25:07:a2:92: da:22:30:c4:62:57:5c:e6:90:17:38:40:6b:cf:69: e4:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:63:7D:A3:3F:59:CB:09:91:EB:0A:9C:39:D1:C7:87:12:A9:BB:DE X509v3 Authority Key Identifier: keyid:62:B2:A4:31:21:16:C7:B4:1E:1F:AF:11:0B:76:B3:7E:3A:D6:6D:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/63c8f4d7-e4b3-4b41-a685-514940fec819/0/62B2A4312116C7B41E1FAF110B76B37E3AD66DD4.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/62B2A4312116C7B41E1FAF110B76B37E3AD66DD4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/63c8f4d7-e4b3-4b41-a685-514940fec819/0/323430363a663138303a3a2f33322d3332203d3e20313335343734.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:f180::/32 Signature Algorithm: sha256WithRSAEncryption 3a:18:b6:91:c7:3b:95:92:1e:5d:0e:7f:80:cf:1c:f0:c2:f8: a7:0f:0b:84:2e:0c:98:f2:a5:5a:99:66:75:aa:0a:d2:42:ec: b6:66:42:de:74:2b:db:d4:90:4f:96:db:00:5a:e4:cc:80:3b: c3:8f:b0:e2:85:6d:d3:03:8e:d4:d4:aa:cd:f1:52:c5:e9:b5: 41:e8:a2:09:1b:40:ff:0e:e2:47:a0:f1:ab:56:f1:85:cf:3f: b0:5c:4e:38:0a:ce:ea:48:23:44:1a:72:b2:2a:09:4a:7c:bf: b5:2a:67:a7:37:19:ed:a8:98:a4:b1:51:90:64:a0:9b:f1:7a: 3a:18:88:5c:3a:4d:be:69:b3:b9:2f:52:1b:be:bf:88:1a:13: 44:90:09:bb:95:0b:60:1d:9b:30:2f:54:dc:72:61:93:8c:71: 63:9c:83:4b:b1:0b:30:56:92:90:60:fc:61:d5:38:b1:ca:03: 13:e3:cd:59:c0:b1:ce:0c:e5:71:dc:de:53:29:fe:f2:7a:bc: 1d:3a:be:a9:11:9b:1a:60:f5:17:3d:9d:5d:73:3f:a6:6d:77: b4:96:5e:91:55:92:7d:12:ce:c5:39:b9:2e:34:d7:a5:81:67: 37:9e:a1:92:54:35:a1:ac:af:cf:f4:bf:01:ed:c7:fc:11:d5: 77:b6:42:30 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIURQG8WNQ905vYthb6nucwQN6WtiIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjJCMkE0MzEyMTE2QzdCNDFFMUZBRjExMEI3NkIzN0Uz QUQ2NkRENDAeFw0yNjA1MDMwMjMzNTdaFw0yNzA1MDIwMjM4NTdaMDMxMTAvBgNV BAMTKDVBNjM3REEzM0Y1OUNCMDk5MUVCMEE5QzM5RDFDNzg3MTJBOUJCREUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpU/l1L5SahNVhv2yJkdS32GeG vW1+6wi4KYgo8l0PRJoYI/nTRJtRQ2U6SyqwVt1gg0A80Mj2bw755BXII6U96+he ahbHw7YQx2wzUOulIZdpL2yq21KJwlwvxKl6Nbwi9y8o8VrLkb5n1RjNrwf0XrCo urfkUCEXoWvbqKlplJjjeTomDX/P56D26Y7k3cXZIxmXGUmW9AcHd9rOQX+8Iokf 2zKh2mPPnnNX6nMZlE26vIMYfZVlkpgVvvWOGBMzLrXRCj22oRrhoNLHknNKN51F 8V7gt2wBt6IhQ59NK4xV/ZJuzuZT/yfpJQeiktoiMMRiV1zmkBc4QGvPaeQ/AgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUWmN9oz9ZywmR6wqcOdHHhxKpu94wHwYDVR0j BBgwFoAUYrKkMSEWx7QeH68RC3azfjrWbdQwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NjNjOGY0ZDctZTRiMy00YjQxLWE2ODUtNTE0OTQwZmVjODE5LzAvNjJCMkE0MzEy MTE2QzdCNDFFMUZBRjExMEI3NkIzN0UzQUQ2NkRENC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS82MkIyQTQzMTIxMTZDN0I0MUUxRkFGMTEwQjc2QjM3RTNBRDY2 REQ0LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzYzYzhmNGQ3LWU0YjMtNGI0MS1h Njg1LTUxNDk0MGZlYzgxOS8wLzMyMzQzMDM2M2E2NjMxMzgzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzMzNTM0MzczNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQG8YAwDQYJKoZI hvcNAQELBQADggEBADoYtpHHO5WSHl0Of4DPHPDC+KcPC4QuDJjypVqZZnWqCtJC 7LZmQt50K9vUkE+W2wBa5MyAO8OPsOKFbdMDjtTUqs3xUsXptUHoogkbQP8O4keg 8atW8YXPP7BcTjgKzupII0QacrIqCUp8v7UqZ6c3Ge2omKSxUZBkoJvxejoYiFw6 Tb5ps7kvUhu+v4gaE0SQCbuVC2AdmzAvVNxyYZOMcWOcg0uxCzBWkpBg/GHVOLHK AxPjzVnAsc4M5XHc3lMp/vJ6vB06vqkRmxpg9Rc9nV1zP6Ztd7SWXpFVkn0SzsU5 uS4016WBZzeeoZJUNaGsr8/0vwHtx/wR1Xe2QjA= -----END CERTIFICATE-----Generated at Wed May 13 03:26:37 2026 by rpki-client