$ rpki-client -vvf rpki-rsync.idnic.net/repo/6be578d0-d3aa-4f0f-bb9d-f74b49c6a655/0/323430303a663334303a3a2f33322d3438203d3e20313331373436.roa File: 323430303a663334303a3a2f33322d3438203d3e20313331373436.roa (raw, json) Hash identifier: TXX1EsQWcyzmG34D8pyojWErAMIsJ/+eZmwKf6nr6gQ= Subject key identifier: 06:D1:CF:F0:73:36:0B:3A:94:15:D2:FF:AC:15:5F:91:CD:24:0F:7F Certificate issuer: /CN=7CA991AB85999F4151C22A6310EF08374F65F5D1 Certificate serial: 2D429D8E93279CD58D9E6DBA9972FE04F668DCDE Authority key identifier: 7C:A9:91:AB:85:99:9F:41:51:C2:2A:63:10:EF:08:37:4F:65:F5:D1 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/7CA991AB85999F4151C22A6310EF08374F65F5D1.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/6be578d0-d3aa-4f0f-bb9d-f74b49c6a655/0/323430303a663334303a3a2f33322d3438203d3e20313331373436.roa Signing time: Sun 03 May 2026 02:40:56 +0000 ROA not before: Sun 03 May 2026 02:35:56 +0000 ROA not after: Sun 02 May 2027 02:40:56 +0000 asID: 131746 IP address blocks: 2400:f340::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/6be578d0-d3aa-4f0f-bb9d-f74b49c6a655/0/7CA991AB85999F4151C22A6310EF08374F65F5D1.crl rsync://rpki-rsync.idnic.net/repo/6be578d0-d3aa-4f0f-bb9d-f74b49c6a655/0/7CA991AB85999F4151C22A6310EF08374F65F5D1.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/7CA991AB85999F4151C22A6310EF08374F65F5D1.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 23:29:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:42:9d:8e:93:27:9c:d5:8d:9e:6d:ba:99:72:fe:04:f6:68:dc:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7CA991AB85999F4151C22A6310EF08374F65F5D1 Validity Not Before: May 3 02:35:56 2026 GMT Not After : May 2 02:40:56 2027 GMT Subject: CN=06D1CFF073360B3A9415D2FFAC155F91CD240F7F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:00:34:ab:44:65:49:18:79:51:36:5d:3a:d2: 3b:ee:c1:a1:02:e7:ff:b5:fe:4e:22:24:1d:44:d1: 81:16:66:10:89:c8:29:76:c1:e2:55:3c:af:46:a4: 11:b1:87:27:05:7e:ff:f0:dd:4d:bb:8f:a0:fd:ba: 05:de:b7:bf:b3:5d:90:99:f5:02:ff:fe:c3:d5:f4: 70:40:82:f7:cd:c3:d0:65:37:38:46:2b:78:4f:47: 5a:aa:22:e5:42:6f:17:a1:ac:71:bb:67:76:e1:03: 15:aa:e5:96:31:0e:b3:32:48:d4:43:cb:9d:dc:7d: 30:ec:ee:fd:7b:64:84:00:de:99:1d:c9:b5:4b:d4: f1:44:62:7d:83:bf:90:42:6a:e1:b9:30:9c:23:01: a6:46:46:03:b9:76:16:1f:93:e3:74:f0:0e:74:52: 71:46:6e:7d:de:ef:af:09:9a:03:2e:78:05:11:dc: fb:7f:15:5c:2c:a6:93:e1:40:2c:72:4b:dd:65:ca: 51:8c:f0:f9:34:0c:4b:7f:7c:3c:63:01:60:48:87: 62:76:7c:77:6c:4b:b8:21:2e:82:68:e0:32:a8:9e: 27:d0:62:d4:56:ab:1a:05:8c:47:d1:3b:fc:01:e8: 75:70:1d:64:af:85:26:04:be:04:2a:d8:11:ec:03: 07:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:D1:CF:F0:73:36:0B:3A:94:15:D2:FF:AC:15:5F:91:CD:24:0F:7F X509v3 Authority Key Identifier: keyid:7C:A9:91:AB:85:99:9F:41:51:C2:2A:63:10:EF:08:37:4F:65:F5:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/6be578d0-d3aa-4f0f-bb9d-f74b49c6a655/0/7CA991AB85999F4151C22A6310EF08374F65F5D1.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/7CA991AB85999F4151C22A6310EF08374F65F5D1.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/6be578d0-d3aa-4f0f-bb9d-f74b49c6a655/0/323430303a663334303a3a2f33322d3438203d3e20313331373436.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:f340::/32 Signature Algorithm: sha256WithRSAEncryption 77:45:37:dd:b2:73:a5:32:e4:0e:20:81:ad:a3:b3:92:99:51: a0:99:f5:fb:58:fe:e2:03:e6:88:64:da:9b:e8:53:dd:18:67: e0:60:88:0e:a5:01:3a:3f:6f:21:44:33:5b:75:bc:c3:07:fa: 2e:70:0b:16:92:91:e9:15:12:29:d6:11:f4:a1:23:9e:4d:1f: 52:c2:ac:1b:c7:ff:06:94:99:9b:c5:a3:ac:29:07:1f:a4:9f: 18:25:5d:20:da:07:96:be:4f:89:82:9e:f6:55:b8:14:cc:8e: 6a:01:61:f5:43:e7:0a:a6:e3:62:0d:67:15:ea:77:7d:27:bb: 3b:07:e7:83:c7:3a:3d:f3:13:fd:d3:c5:1d:46:d1:f1:df:8c: 5a:7e:30:08:49:c1:07:3e:32:ff:62:de:da:a2:27:45:a7:df: 78:11:6d:3e:57:b0:e4:f9:25:41:c4:96:1f:c7:67:be:d1:5e: 26:05:be:2a:0d:e1:b5:d3:60:1d:08:a1:16:e1:d8:9c:2d:a0: 76:df:0d:b0:2a:54:78:7e:96:a7:f4:64:0e:a0:a0:12:8b:f8: eb:1e:d9:6a:eb:1e:48:4a:75:8f:a4:f4:86:1b:1b:cf:61:47: 17:56:a6:46:14:bb:4c:2f:53:fb:de:4b:11:e9:57:e2:31:d2: c8:f7:f0:f8 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIULUKdjpMnnNWNnm26mXL+BPZo3N4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0NBOTkxQUI4NTk5OUY0MTUxQzIyQTYzMTBFRjA4Mzc0 RjY1RjVEMTAeFw0yNjA1MDMwMjM1NTZaFw0yNzA1MDIwMjQwNTZaMDMxMTAvBgNV BAMTKDA2RDFDRkYwNzMzNjBCM0E5NDE1RDJGRkFDMTU1RjkxQ0QyNDBGN0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7ADSrRGVJGHlRNl060jvuwaEC 5/+1/k4iJB1E0YEWZhCJyCl2weJVPK9GpBGxhycFfv/w3U27j6D9ugXet7+zXZCZ 9QL//sPV9HBAgvfNw9BlNzhGK3hPR1qqIuVCbxehrHG7Z3bhAxWq5ZYxDrMySNRD y53cfTDs7v17ZIQA3pkdybVL1PFEYn2Dv5BCauG5MJwjAaZGRgO5dhYfk+N08A50 UnFGbn3e768JmgMueAUR3Pt/FVwsppPhQCxyS91lylGM8Pk0DEt/fDxjAWBIh2J2 fHdsS7ghLoJo4DKonifQYtRWqxoFjEfRO/wB6HVwHWSvhSYEvgQq2BHsAwfHAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUBtHP8HM2CzqUFdL/rBVfkc0kD38wHwYDVR0j BBgwFoAUfKmRq4WZn0FRwipjEO8IN09l9dEwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NmJlNTc4ZDAtZDNhYS00ZjBmLWJiOWQtZjc0YjQ5YzZhNjU1LzAvN0NBOTkxQUI4 NTk5OUY0MTUxQzIyQTYzMTBFRjA4Mzc0RjY1RjVEMS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS83Q0E5OTFBQjg1OTk5RjQxNTFDMjJBNjMxMEVGMDgzNzRGNjVG NUQxLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzZiZTU3OGQwLWQzYWEtNGYwZi1i YjlkLWY3NGI0OWM2YTY1NS8wLzMyMzQzMDMwM2E2NjMzMzQzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMxMzMzMTM3MzQzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQA80AwDQYJKoZI hvcNAQELBQADggEBAHdFN92yc6Uy5A4gga2js5KZUaCZ9ftY/uID5ohk2pvoU90Y Z+BgiA6lATo/byFEM1t1vMMH+i5wCxaSkekVEinWEfShI55NH1LCrBvH/waUmZvF o6wpBx+knxglXSDaB5a+T4mCnvZVuBTMjmoBYfVD5wqm42INZxXqd30nuzsH54PH Oj3zE/3TxR1G0fHfjFp+MAhJwQc+Mv9i3tqiJ0Wn33gRbT5XsOT5JUHElh/HZ77R XiYFvioN4bXTYB0IoRbh2JwtoHbfDbAqVHh+lqf0ZA6goBKL+Ose2WrrHkhKdY+k 9IYbG89hRxdWpkYUu0wvU/veSxHpV+Ix0sj38Pg= -----END CERTIFICATE-----Generated at Wed May 13 13:05:39 2026 by rpki-client