$ rpki-client -vvf rpki-rsync.idnic.net/repo/6cc462a5-8f74-42af-883b-5e89ee5f2df3/0/323430323a376163303a643030303a3a2f33362d3336203d3e20313337333136.roa File: 323430323a376163303a643030303a3a2f33362d3336203d3e20313337333136.roa (raw, json) Hash identifier: ZxVyXhnuV8KlUMQSAzHJI494PQ4CV7TDpZIzuQAdax0= Subject key identifier: 39:89:05:89:E6:16:10:4B:B4:FC:B4:4A:F4:DF:AF:CB:25:A6:86:19 Certificate issuer: /CN=B1C01C2D31007FA9F778570A33A0BBB321509E8A Certificate serial: 23F478931CE42423561F21F7007979E9D76B1EA3 Authority key identifier: B1:C0:1C:2D:31:00:7F:A9:F7:78:57:0A:33:A0:BB:B3:21:50:9E:8A Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B1C01C2D31007FA9F778570A33A0BBB321509E8A.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/6cc462a5-8f74-42af-883b-5e89ee5f2df3/0/323430323a376163303a643030303a3a2f33362d3336203d3e20313337333136.roa Signing time: Sun 03 May 2026 02:41:20 +0000 ROA not before: Sun 03 May 2026 02:36:20 +0000 ROA not after: Sun 02 May 2027 02:41:20 +0000 asID: 137316 IP address blocks: 2402:7ac0:d000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/6cc462a5-8f74-42af-883b-5e89ee5f2df3/0/B1C01C2D31007FA9F778570A33A0BBB321509E8A.crl rsync://rpki-rsync.idnic.net/repo/6cc462a5-8f74-42af-883b-5e89ee5f2df3/0/B1C01C2D31007FA9F778570A33A0BBB321509E8A.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B1C01C2D31007FA9F778570A33A0BBB321509E8A.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 22:04:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:f4:78:93:1c:e4:24:23:56:1f:21:f7:00:79:79:e9:d7:6b:1e:a3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B1C01C2D31007FA9F778570A33A0BBB321509E8A Validity Not Before: May 3 02:36:20 2026 GMT Not After : May 2 02:41:20 2027 GMT Subject: CN=39890589E616104BB4FCB44AF4DFAFCB25A68619 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:3e:bd:34:7f:47:83:cc:86:49:5a:0b:14:89: 36:2e:de:78:7f:c6:a1:ed:7a:8e:a6:a0:27:f3:9c: 25:37:11:87:8b:37:f9:e1:51:b4:2b:c7:f1:31:7d: 37:c4:e0:95:62:f4:53:3a:9f:bf:c7:25:53:8e:f1: 52:12:56:26:80:7d:62:a4:c9:23:cc:d3:5c:43:43: be:a1:b0:5a:8e:c2:41:40:9a:51:ee:ab:0c:7b:92: d7:20:cd:c9:87:e1:ac:1d:f4:89:50:f7:29:97:74: eb:19:e5:84:f8:20:01:22:02:73:a0:9a:7e:73:84: d0:99:c9:a4:b4:56:05:2f:6f:19:6f:fc:8d:d8:c0: 53:db:ee:3c:bb:05:aa:b0:c0:c0:e0:52:98:09:47: b8:cc:62:d6:ed:e8:6a:bf:c7:8c:40:7e:30:ab:e8: 6a:19:63:4f:4d:f8:fa:5b:9e:69:aa:f1:fb:b9:85: 83:e0:d2:88:f6:09:6a:52:f8:b6:58:1c:83:ca:36: 41:4e:6d:96:c1:19:8d:b4:b7:07:4c:16:54:02:b3: 9b:22:05:b5:79:cb:d9:bb:17:3f:5d:60:3e:9b:f3: 81:4f:61:87:b4:bc:fc:4e:f7:e9:af:f3:d2:5f:d9: bd:65:5c:e3:fc:a0:d5:d6:d9:88:77:b3:25:23:73: ca:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:89:05:89:E6:16:10:4B:B4:FC:B4:4A:F4:DF:AF:CB:25:A6:86:19 X509v3 Authority Key Identifier: keyid:B1:C0:1C:2D:31:00:7F:A9:F7:78:57:0A:33:A0:BB:B3:21:50:9E:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/6cc462a5-8f74-42af-883b-5e89ee5f2df3/0/B1C01C2D31007FA9F778570A33A0BBB321509E8A.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B1C01C2D31007FA9F778570A33A0BBB321509E8A.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/6cc462a5-8f74-42af-883b-5e89ee5f2df3/0/323430323a376163303a643030303a3a2f33362d3336203d3e20313337333136.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:7ac0:d000::/36 Signature Algorithm: sha256WithRSAEncryption 90:30:13:86:a7:89:96:3a:b5:16:01:2e:4c:de:83:25:18:18: 59:13:f8:29:03:15:07:94:73:88:4c:c4:8d:ec:f1:30:98:bc: 2f:c5:45:be:93:ff:fb:cc:f7:d3:df:bb:3b:f7:93:4f:70:11: a1:7b:35:99:be:c6:d4:28:15:84:03:6b:96:1b:5d:50:36:16: 08:df:23:ba:f6:a1:fe:88:38:76:be:33:95:a8:2a:f5:fc:76: 82:43:c8:58:7c:66:44:f7:33:d5:14:f2:02:09:90:22:fd:57: 5e:7e:92:1c:fa:09:19:1c:ac:08:20:1f:a0:0d:54:bf:c9:cf: d5:92:25:f1:04:61:e3:d4:43:e8:a4:de:87:63:89:21:28:34: 2a:c6:65:5a:74:2b:61:e1:ed:4b:61:83:53:f9:29:d8:5a:32: 17:c3:57:4d:a0:77:f5:92:3e:1d:af:34:bf:e1:48:63:1c:59: 52:9f:ed:d7:01:6d:55:fa:89:a4:10:7f:cb:bf:b4:7d:49:b5: 27:a8:5c:3e:82:1f:25:42:d3:08:8d:55:b1:9a:82:45:c0:9b: 17:75:e0:11:47:b8:3e:5b:ea:d8:0d:87:4e:e3:e6:85:19:94: 38:9c:35:6f:6d:d4:88:23:cd:4d:d5:db:e5:26:6b:7f:2d:64: 1a:f5:a9:cf -----BEGIN CERTIFICATE----- MIIFNDCCBBygAwIBAgIUI/R4kxzkJCNWHyH3AHl56ddrHqMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjFDMDFDMkQzMTAwN0ZBOUY3Nzg1NzBBMzNBMEJCQjMy MTUwOUU4QTAeFw0yNjA1MDMwMjM2MjBaFw0yNzA1MDIwMjQxMjBaMDMxMTAvBgNV BAMTKDM5ODkwNTg5RTYxNjEwNEJCNEZDQjQ0QUY0REZBRkNCMjVBNjg2MTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRPr00f0eDzIZJWgsUiTYu3nh/ xqHteo6moCfznCU3EYeLN/nhUbQrx/ExfTfE4JVi9FM6n7/HJVOO8VISViaAfWKk ySPM01xDQ76hsFqOwkFAmlHuqwx7ktcgzcmH4awd9IlQ9ymXdOsZ5YT4IAEiAnOg mn5zhNCZyaS0VgUvbxlv/I3YwFPb7jy7BaqwwMDgUpgJR7jMYtbt6Gq/x4xAfjCr 6GoZY09N+Ppbnmmq8fu5hYPg0oj2CWpS+LZYHIPKNkFObZbBGY20twdMFlQCs5si BbV5y9m7Fz9dYD6b84FPYYe0vPxO9+mv89Jf2b1lXOP8oNXW2Yh3syUjc8qJAgMB AAGjggI+MIICOjAdBgNVHQ4EFgQUOYkFieYWEEu0/LRK9N+vyyWmhhkwHwYDVR0j BBgwFoAUscAcLTEAf6n3eFcKM6C7syFQnoowDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NmNjNDYyYTUtOGY3NC00MmFmLTg4M2ItNWU4OWVlNWYyZGYzLzAvQjFDMDFDMkQz MTAwN0ZBOUY3Nzg1NzBBMzNBMEJCQjMyMTUwOUU4QS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9CMUMwMUMyRDMxMDA3RkE5Rjc3ODU3MEEzM0EwQkJCMzIxNTA5 RThBLmNlcjCBrQYIKwYBBQUHAQsEgaAwgZ0wgZoGCCsGAQUFBzALhoGNcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzZjYzQ2MmE1LThmNzQtNDJhZi04 ODNiLTVlODllZTVmMmRmMy8wLzMyMzQzMDMyM2EzNzYxNjMzMDNhNjQzMDMwMzAz YTNhMmYzMzM2MmQzMzM2MjAzZDNlMjAzMTMzMzczMzMxMzYucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgQk AnrA0DANBgkqhkiG9w0BAQsFAAOCAQEAkDAThqeJljq1FgEuTN6DJRgYWRP4KQMV B5RziEzEjezxMJi8L8VFvpP/+8z309+7O/eTT3ARoXs1mb7G1CgVhANrlhtdUDYW CN8juvah/og4dr4zlagq9fx2gkPIWHxmRPcz1RTyAgmQIv1XXn6SHPoJGRysCCAf oA1Uv8nP1ZIl8QRh49RD6KTeh2OJISg0KsZlWnQrYeHtS2GDU/kp2FoyF8NXTaB3 9ZI+Ha80v+FIYxxZUp/t1wFtVfqJpBB/y7+0fUm1J6hcPoIfJULTCI1VsZqCRcCb F3XgEUe4Plvq2A2HTuPmhRmUOJw1b23UiCPNTdXb5SZrfy1kGvWpzw== -----END CERTIFICATE-----Generated at Wed May 13 13:57:17 2026 by rpki-client