$ rpki-client -vvf rpki-rsync.idnic.net/repo/6e2c9285-c09a-4506-a320-fda1a07fd9ec/0/323430333a653863303a3a2f33322d3332203d3e20313338303930.roa File: 323430333a653863303a3a2f33322d3332203d3e20313338303930.roa (raw, json) Hash identifier: qU+T/ppZu7pLksCA/CM9lZkM5mfpYBVP5R9hFRPxoSA= Subject key identifier: F1:24:FF:35:F0:76:17:69:5E:91:6B:35:FD:16:22:BD:40:6C:05:3D Certificate issuer: /CN=5D7BB6DBEA00E701779892AA686CCBF195A3D20D Certificate serial: 1A1A189722A88429253A25FC6AF2C823327E5C80 Authority key identifier: 5D:7B:B6:DB:EA:00:E7:01:77:98:92:AA:68:6C:CB:F1:95:A3:D2:0D Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/5D7BB6DBEA00E701779892AA686CCBF195A3D20D.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/6e2c9285-c09a-4506-a320-fda1a07fd9ec/0/323430333a653863303a3a2f33322d3332203d3e20313338303930.roa Signing time: Sun 03 May 2026 02:41:39 +0000 ROA not before: Sun 03 May 2026 02:36:39 +0000 ROA not after: Sun 02 May 2027 02:41:39 +0000 asID: 138090 IP address blocks: 2403:e8c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/6e2c9285-c09a-4506-a320-fda1a07fd9ec/0/5D7BB6DBEA00E701779892AA686CCBF195A3D20D.crl rsync://rpki-rsync.idnic.net/repo/6e2c9285-c09a-4506-a320-fda1a07fd9ec/0/5D7BB6DBEA00E701779892AA686CCBF195A3D20D.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/5D7BB6DBEA00E701779892AA686CCBF195A3D20D.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 01:48:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:1a:18:97:22:a8:84:29:25:3a:25:fc:6a:f2:c8:23:32:7e:5c:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5D7BB6DBEA00E701779892AA686CCBF195A3D20D Validity Not Before: May 3 02:36:39 2026 GMT Not After : May 2 02:41:39 2027 GMT Subject: CN=F124FF35F07617695E916B35FD1622BD406C053D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:d3:18:9c:36:79:1e:9b:c5:52:2c:74:86:fb: ae:94:82:4b:0b:02:d1:23:fd:22:2a:7c:95:56:52: c9:26:a1:36:1d:d2:c9:c7:f0:e6:4f:75:0a:2b:f3: 1d:39:60:e4:b4:fe:14:45:b5:d1:14:8d:72:fc:16: 8a:53:c7:7c:69:9b:f0:a2:a0:19:be:92:2b:ef:60: 30:8f:48:e7:2d:0f:2d:21:7f:bb:b9:96:bd:6b:5a: c5:a3:f2:5f:c0:46:25:b1:5e:4d:9c:d3:4f:7a:9e: 3c:e9:6e:a8:59:0b:4d:f2:15:02:d0:d0:98:aa:82: c1:81:ff:ae:55:60:1b:fa:85:95:80:73:85:1f:35: eb:2a:d6:52:ba:0f:f2:32:1f:ce:44:c7:7a:6b:17: aa:bf:55:0c:fc:9e:72:45:7c:8d:92:7e:67:b2:da: 0e:45:ff:d9:89:6f:5a:6f:ea:21:09:69:05:e9:a6: 65:59:ee:95:98:61:3c:72:10:01:a5:2e:8a:e8:c3: 20:fd:c8:4d:33:c8:c1:97:c2:f1:a4:c9:11:da:ff: 4a:c7:b4:15:f1:63:18:0c:bf:fa:f8:52:e4:f1:15: a6:5f:bb:c3:2c:a0:32:8e:22:a6:3d:32:36:c7:96: 09:ac:0e:d8:f7:7d:c8:31:c3:14:2b:1b:1e:89:39: 26:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:24:FF:35:F0:76:17:69:5E:91:6B:35:FD:16:22:BD:40:6C:05:3D X509v3 Authority Key Identifier: keyid:5D:7B:B6:DB:EA:00:E7:01:77:98:92:AA:68:6C:CB:F1:95:A3:D2:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/6e2c9285-c09a-4506-a320-fda1a07fd9ec/0/5D7BB6DBEA00E701779892AA686CCBF195A3D20D.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/5D7BB6DBEA00E701779892AA686CCBF195A3D20D.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/6e2c9285-c09a-4506-a320-fda1a07fd9ec/0/323430333a653863303a3a2f33322d3332203d3e20313338303930.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:e8c0::/32 Signature Algorithm: sha256WithRSAEncryption 18:53:fb:ab:11:39:46:18:8d:b0:44:19:2d:9d:7f:7a:72:6f: ba:01:76:be:99:b7:c2:29:1a:c5:ff:4f:b0:a3:84:0f:23:b8: 54:ad:28:ce:36:5b:36:ea:db:bb:1a:54:c1:5f:e9:a9:e0:e6: 26:b8:a3:c6:ce:6f:99:32:07:3a:ab:5b:95:a2:1c:0f:c8:cb: 65:da:ef:d4:55:9c:cc:9e:1a:0c:85:3b:1e:e3:a3:7e:f0:be: e4:3c:ec:44:6d:44:95:ce:e7:e9:09:4f:5a:31:54:9d:72:d0: ba:88:11:cf:f9:62:64:69:54:e3:9c:67:89:f9:b8:80:8d:7e: 10:23:7a:ac:ba:00:6b:68:f9:0d:a5:df:64:f4:db:2d:43:4e: 3d:7a:3a:ce:59:94:8c:d9:71:9b:d0:30:cb:9d:6d:82:4d:cf: bf:3b:cc:a1:61:e8:2c:6c:f9:25:ab:51:15:86:09:13:da:fa: e9:a9:d8:26:bc:8f:83:f0:33:04:0d:91:39:84:d3:77:c6:63: fe:ab:c3:32:c8:c8:69:18:d3:23:71:f7:45:4e:42:05:69:8b: c9:e9:a6:cc:68:0b:f0:04:f0:25:a5:68:50:2f:e4:3b:3c:36: dc:43:1e:72:d1:69:4f:ce:11:40:fc:da:5a:06:91:02:90:07: 68:6a:27:9c -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUGhoYlyKohCklOiX8avLIIzJ+XIAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUQ3QkI2REJFQTAwRTcwMTc3OTg5MkFBNjg2Q0NCRjE5 NUEzRDIwRDAeFw0yNjA1MDMwMjM2MzlaFw0yNzA1MDIwMjQxMzlaMDMxMTAvBgNV BAMTKEYxMjRGRjM1RjA3NjE3Njk1RTkxNkIzNUZEMTYyMkJENDA2QzA1M0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDY0xicNnkem8VSLHSG+66UgksL AtEj/SIqfJVWUskmoTYd0snH8OZPdQor8x05YOS0/hRFtdEUjXL8FopTx3xpm/Ci oBm+kivvYDCPSOctDy0hf7u5lr1rWsWj8l/ARiWxXk2c0096njzpbqhZC03yFQLQ 0JiqgsGB/65VYBv6hZWAc4UfNesq1lK6D/IyH85Ex3prF6q/VQz8nnJFfI2Sfmey 2g5F/9mJb1pv6iEJaQXppmVZ7pWYYTxyEAGlLorowyD9yE0zyMGXwvGkyRHa/0rH tBXxYxgMv/r4UuTxFaZfu8MsoDKOIqY9MjbHlgmsDtj3fcgxwxQrGx6JOSYbAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQU8ST/NfB2F2lekWs1/RYivUBsBT0wHwYDVR0j BBgwFoAUXXu22+oA5wF3mJKqaGzL8ZWj0g0wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NmUyYzkyODUtYzA5YS00NTA2LWEzMjAtZmRhMWEwN2ZkOWVjLzAvNUQ3QkI2REJF QTAwRTcwMTc3OTg5MkFBNjg2Q0NCRjE5NUEzRDIwRC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS81RDdCQjZEQkVBMDBFNzAxNzc5ODkyQUE2ODZDQ0JGMTk1QTNE MjBELmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzZlMmM5Mjg1LWMwOWEtNDUwNi1h MzIwLWZkYTFhMDdmZDllYy8wLzMyMzQzMDMzM2E2NTM4NjMzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzMzODMwMzkzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQD6MAwDQYJKoZI hvcNAQELBQADggEBABhT+6sROUYYjbBEGS2df3pyb7oBdr6Zt8IpGsX/T7CjhA8j uFStKM42Wzbq27saVMFf6ang5ia4o8bOb5kyBzqrW5WiHA/Iy2Xa79RVnMyeGgyF Ox7jo37wvuQ87ERtRJXO5+kJT1oxVJ1y0LqIEc/5YmRpVOOcZ4n5uICNfhAjeqy6 AGto+Q2l32T02y1DTj16Os5ZlIzZcZvQMMudbYJNz787zKFh6Cxs+SWrURWGCRPa +ump2Ca8j4PwMwQNkTmE03fGY/6rwzLIyGkY0yNx90VOQgVpi8nppsxoC/AE8CWl aFAv5Ds8NtxDHnLRaU/OEUD82loGkQKQB2hqJ5w= -----END CERTIFICATE-----Generated at Wed May 13 14:36:43 2026 by rpki-client