$ rpki-client -vvf rpki-rsync.idnic.net/repo/66c1f51a-8645-4eb1-a2ff-e27c24c8e0c8/0/323430343a3630303a3a2f33322d3438203d3e2034383333.roa File: 323430343a3630303a3a2f33322d3438203d3e2034383333.roa (raw, json) Hash identifier: oHCuH/wfD5uofyH9qDQzuSNonMRnW2BjZEpAbHvRcj0= Subject key identifier: C4:F8:34:1F:5C:64:FE:B6:99:B6:2E:23:83:E3:F8:98:CE:06:75:D2 Certificate issuer: /CN=1133578221407DA4E6D6E1F7DDBD402AD17142D1 Certificate serial: 4BCD6C654B4A73B1EFF0D558F8B0B85E489CB064 Authority key identifier: 11:33:57:82:21:40:7D:A4:E6:D6:E1:F7:DD:BD:40:2A:D1:71:42:D1 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/1133578221407DA4E6D6E1F7DDBD402AD17142D1.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/66c1f51a-8645-4eb1-a2ff-e27c24c8e0c8/0/323430343a3630303a3a2f33322d3438203d3e2034383333.roa Signing time: Sun 03 May 2026 02:40:09 +0000 ROA not before: Sun 03 May 2026 02:35:09 +0000 ROA not after: Sun 02 May 2027 02:40:09 +0000 asID: 4833 IP address blocks: 2404:600::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/66c1f51a-8645-4eb1-a2ff-e27c24c8e0c8/0/1133578221407DA4E6D6E1F7DDBD402AD17142D1.crl rsync://rpki-rsync.idnic.net/repo/66c1f51a-8645-4eb1-a2ff-e27c24c8e0c8/0/1133578221407DA4E6D6E1F7DDBD402AD17142D1.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/1133578221407DA4E6D6E1F7DDBD402AD17142D1.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:cd:6c:65:4b:4a:73:b1:ef:f0:d5:58:f8:b0:b8:5e:48:9c:b0:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1133578221407DA4E6D6E1F7DDBD402AD17142D1 Validity Not Before: May 3 02:35:09 2026 GMT Not After : May 2 02:40:09 2027 GMT Subject: CN=C4F8341F5C64FEB699B62E2383E3F898CE0675D2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:d7:90:c9:88:15:a5:dd:a5:c1:eb:08:a5:98: 43:cc:f8:93:61:e8:f8:75:5c:c7:e3:7c:f5:a3:3b: ae:98:a7:85:6b:f7:d3:97:36:ca:f3:83:ca:f0:10: db:92:f3:3c:9f:a8:6b:09:63:66:54:47:14:6b:5c: 93:08:ae:41:8c:6c:84:e5:2a:db:09:e6:e9:63:54: 52:61:c9:3a:0d:f3:39:56:1c:d7:96:c4:1c:3f:1c: fe:e6:d5:00:3b:47:1d:6b:9e:fe:b9:75:5f:09:7f: 31:14:d2:f0:c7:a0:44:34:df:1a:ab:83:b1:0c:97: 87:60:b8:45:98:ef:b4:26:7e:27:43:96:c7:df:a7: 49:7f:66:dc:e6:df:a3:50:fd:2a:9b:e7:95:c4:02: 41:e6:db:31:e5:f3:68:f3:e1:11:a7:31:1e:01:8f: 86:3f:f6:7b:07:e1:16:43:71:52:4f:ff:c3:15:00: 88:cf:6a:d1:db:b7:53:e5:8e:79:78:85:2d:d1:80: b0:17:21:65:4a:5e:18:d8:5e:d4:bc:fa:f9:0a:88: f5:2a:6b:76:83:e1:87:d6:18:a8:44:78:42:be:98: 40:54:ae:72:be:9f:11:24:26:7b:b0:24:71:b4:a8: 3a:18:a3:23:5e:35:13:d9:dc:c4:68:29:f3:3c:6c: ae:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:F8:34:1F:5C:64:FE:B6:99:B6:2E:23:83:E3:F8:98:CE:06:75:D2 X509v3 Authority Key Identifier: keyid:11:33:57:82:21:40:7D:A4:E6:D6:E1:F7:DD:BD:40:2A:D1:71:42:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/66c1f51a-8645-4eb1-a2ff-e27c24c8e0c8/0/1133578221407DA4E6D6E1F7DDBD402AD17142D1.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/1133578221407DA4E6D6E1F7DDBD402AD17142D1.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/66c1f51a-8645-4eb1-a2ff-e27c24c8e0c8/0/323430343a3630303a3a2f33322d3438203d3e2034383333.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:600::/32 Signature Algorithm: sha256WithRSAEncryption 22:3c:e5:fc:46:93:88:af:24:57:8b:54:c1:e5:7d:b5:67:ad: 9d:78:35:82:7b:43:29:e7:13:a7:0c:b6:5e:0d:42:c7:53:a7: d1:ca:bd:55:47:86:a8:77:f1:10:4d:e8:4d:6b:53:4f:ee:d9: 2c:4b:0b:ca:6a:e2:ed:a3:ae:ca:43:a3:a9:33:c8:79:bc:bc: 75:b4:72:c1:a8:ca:02:5e:63:ce:c9:bf:09:31:5a:ad:20:92: 56:b2:82:be:be:8a:ca:58:8f:d4:01:a0:2d:bb:75:d7:dc:12: c0:1a:ef:2c:48:74:81:80:04:07:07:cb:a3:5a:f4:bc:c9:5c: 89:e9:d7:ac:2d:26:34:b4:9a:92:ff:71:d9:6d:71:31:3c:72: 27:95:57:e1:47:f4:0e:78:6f:ed:e3:bb:b1:b1:40:cb:9e:35: 6d:f2:72:80:af:f9:c0:26:1d:87:d2:42:30:91:df:ff:bf:0b: 7d:25:90:dc:e1:c7:28:ae:d2:71:36:73:32:8a:d4:00:f9:c5: 54:f4:24:c2:22:25:c0:56:c3:4f:d8:58:87:ea:3b:5e:21:98: a7:0d:52:91:a8:c8:22:54:87:6f:10:99:f2:07:ca:e3:3b:56: b1:77:4e:8e:c3:62:72:1d:88:6d:b0:2d:ce:2f:69:d9:ff:73: 89:6a:6b:3c -----BEGIN CERTIFICATE----- MIIFIjCCBAqgAwIBAgIUS81sZUtKc7Hv8NVY+LC4XkicsGQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTEzMzU3ODIyMTQwN0RBNEU2RDZFMUY3RERCRDQwMkFE MTcxNDJEMTAeFw0yNjA1MDMwMjM1MDlaFw0yNzA1MDIwMjQwMDlaMDMxMTAvBgNV BAMTKEM0RjgzNDFGNUM2NEZFQjY5OUI2MkUyMzgzRTNGODk4Q0UwNjc1RDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCy15DJiBWl3aXB6wilmEPM+JNh 6Ph1XMfjfPWjO66Yp4Vr99OXNsrzg8rwENuS8zyfqGsJY2ZURxRrXJMIrkGMbITl KtsJ5uljVFJhyToN8zlWHNeWxBw/HP7m1QA7Rx1rnv65dV8JfzEU0vDHoEQ03xqr g7EMl4dguEWY77QmfidDlsffp0l/Ztzm36NQ/Sqb55XEAkHm2zHl82jz4RGnMR4B j4Y/9nsH4RZDcVJP/8MVAIjPatHbt1Pljnl4hS3RgLAXIWVKXhjYXtS8+vkKiPUq a3aD4YfWGKhEeEK+mEBUrnK+nxEkJnuwJHG0qDoYoyNeNRPZ3MRoKfM8bK4nAgMB AAGjggIsMIICKDAdBgNVHQ4EFgQUxPg0H1xk/raZti4jg+P4mM4GddIwHwYDVR0j BBgwFoAUETNXgiFAfaTm1uH33b1AKtFxQtEwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NjZjMWY1MWEtODY0NS00ZWIxLWEyZmYtZTI3YzI0YzhlMGM4LzAvMTEzMzU3ODIy MTQwN0RBNEU2RDZFMUY3RERCRDQwMkFEMTcxNDJEMS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8xMTMzNTc4MjIxNDA3REE0RTZENkUxRjdEREJENDAyQUQxNzE0 MkQxLmNlcjCBnAYIKwYBBQUHAQsEgY8wgYwwgYkGCCsGAQUFBzALhn1yc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vNjZjMWY1MWEtODY0NS00ZWIxLWEy ZmYtZTI3YzI0YzhlMGM4LzAvMzIzNDMwMzQzYTM2MzAzMDNhM2EyZjMzMzIyZDM0 MzgyMDNkM2UyMDM0MzgzMzMzLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAJAQGADANBgkqhkiG9w0BAQsF AAOCAQEAIjzl/EaTiK8kV4tUweV9tWetnXg1gntDKecTpwy2Xg1Cx1On0cq9VUeG qHfxEE3oTWtTT+7ZLEsLymri7aOuykOjqTPIeby8dbRywajKAl5jzsm/CTFarSCS VrKCvr6KyliP1AGgLbt119wSwBrvLEh0gYAEBwfLo1r0vMlcienXrC0mNLSakv9x 2W1xMTxyJ5VX4Uf0Dnhv7eO7sbFAy541bfJygK/5wCYdh9JCMJHf/78LfSWQ3OHH KK7ScTZzMorUAPnFVPQkwiIlwFbDT9hYh+o7XiGYpw1SkajIIlSHbxCZ8gfK4ztW sXdOjsNich2IbbAtzi9p2f9ziWprPA== -----END CERTIFICATE-----Generated at Wed May 13 00:43:38 2026 by rpki-client