$ rpki-client -vvf rpki-rsync.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/323430343a3838303a31323a3a2f34382d3438203d3e203338373530.roa File: 323430343a3838303a31323a3a2f34382d3438203d3e203338373530.roa (raw, json) Hash identifier: QNrAoCsUOKZCnY1N/fc3km7EG9A1f+dPgBphZu0nJbw= Subject key identifier: 29:EC:22:6C:FB:3C:81:98:B8:69:E8:FC:2F:25:AB:95:08:FA:17:54 Certificate issuer: /CN=99F0E6DE02C602D1E485455474F4B21207D2D7F8 Certificate serial: 2D05ECB4F2F6467EF1835B21C86ED0697396A4DF Authority key identifier: 99:F0:E6:DE:02:C6:02:D1:E4:85:45:54:74:F4:B2:12:07:D2:D7:F8 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/99F0E6DE02C602D1E485455474F4B21207D2D7F8.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/323430343a3838303a31323a3a2f34382d3438203d3e203338373530.roa Signing time: Sun 03 May 2026 02:42:35 +0000 ROA not before: Sun 03 May 2026 02:37:35 +0000 ROA not after: Sun 02 May 2027 02:42:35 +0000 asID: 38750 IP address blocks: 2404:880:12::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/99F0E6DE02C602D1E485455474F4B21207D2D7F8.crl rsync://rpki-rsync.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/99F0E6DE02C602D1E485455474F4B21207D2D7F8.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/99F0E6DE02C602D1E485455474F4B21207D2D7F8.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 18:56:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:05:ec:b4:f2:f6:46:7e:f1:83:5b:21:c8:6e:d0:69:73:96:a4:df Signature Algorithm: sha256WithRSAEncryption Issuer: CN=99F0E6DE02C602D1E485455474F4B21207D2D7F8 Validity Not Before: May 3 02:37:35 2026 GMT Not After : May 2 02:42:35 2027 GMT Subject: CN=29EC226CFB3C8198B869E8FC2F25AB9508FA1754 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:15:fe:f5:7d:0a:fa:47:14:18:70:ab:54:05: 08:03:a8:58:50:a5:88:12:48:39:a7:f3:b0:b5:63: 91:6b:49:f9:71:ae:27:26:2b:4f:0e:10:01:c4:72: b0:8f:41:30:6c:f8:9c:69:71:73:ce:88:07:0f:bf: b7:c0:53:1f:f4:f6:93:52:be:ab:b7:29:a8:10:eb: cd:76:96:e2:ee:ec:35:f9:1e:d0:ad:09:b1:17:a7: ab:21:04:18:63:9f:8e:8e:1d:48:dd:be:67:e9:88: 88:cb:0d:44:28:90:bd:82:d3:3d:45:f0:b3:a8:4c: f9:a0:2b:67:f7:06:4e:34:ad:87:03:52:20:9d:6d: 32:20:24:90:ee:c6:da:02:30:2d:90:f9:20:9d:4f: 3e:3f:38:4d:06:de:31:46:81:ab:5f:d1:69:4e:ae: 55:28:cb:8c:03:ef:53:a3:b1:45:11:58:4e:e1:2b: c9:47:9d:44:f9:9b:ee:5a:66:68:62:74:02:f4:8f: 16:d8:a0:e9:fb:c9:6d:e6:b1:5d:22:c1:fb:7a:bf: 23:6c:1b:75:75:6b:17:32:1d:de:ca:0c:0d:da:64: 33:0f:88:65:8c:4e:58:b7:8b:85:9c:a7:32:0c:04: ed:52:ef:7a:96:97:96:11:c7:ea:b0:d8:93:22:c1: 93:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:EC:22:6C:FB:3C:81:98:B8:69:E8:FC:2F:25:AB:95:08:FA:17:54 X509v3 Authority Key Identifier: keyid:99:F0:E6:DE:02:C6:02:D1:E4:85:45:54:74:F4:B2:12:07:D2:D7:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/99F0E6DE02C602D1E485455474F4B21207D2D7F8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/99F0E6DE02C602D1E485455474F4B21207D2D7F8.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/323430343a3838303a31323a3a2f34382d3438203d3e203338373530.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:880:12::/48 Signature Algorithm: sha256WithRSAEncryption 43:06:49:2b:90:44:3f:54:c4:89:a5:b3:0d:ba:17:d7:4e:b5: 75:55:3c:9b:27:80:0f:e3:83:05:7b:99:31:6b:82:a8:b5:56: 3d:05:06:c2:d3:b4:90:d6:02:c5:f9:c4:ce:66:25:8f:58:52: b0:b3:52:ef:f0:5e:3a:f8:6d:4e:c5:33:f0:ef:a1:8f:a5:0d: 2c:18:0b:b9:d4:8b:64:1e:df:9c:a8:e1:73:45:48:ca:8c:98: 2c:6f:84:71:3c:0d:36:1f:b6:59:54:49:80:63:25:8f:fa:77: 4a:2c:ac:b0:7d:72:a1:58:21:1b:ed:c2:aa:88:ce:e3:05:4a: a9:cb:60:d3:d1:65:25:72:57:f9:85:bb:11:60:38:e6:91:74: 47:a5:70:14:31:c8:8a:02:0f:44:c0:08:09:36:f9:11:ce:ff: 6a:45:28:4d:1a:a1:97:2b:57:89:fb:be:4e:cd:73:1f:c2:07: 68:04:df:34:66:4e:f3:23:26:28:5c:a9:97:10:1e:7d:93:f6: cf:1e:db:1e:a2:6e:1d:aa:b3:c1:b9:5e:9f:ac:aa:3a:df:7c: 18:e5:fb:3b:21:15:4e:ec:1e:45:c4:24:dd:01:f2:63:be:5b: 1d:03:8e:e0:6a:0c:fe:fb:e4:25:58:5e:8b:0a:13:82:22:2e: de:c2:67:c7 -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIULQXstPL2Rn7xg1shyG7QaXOWpN8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTlGMEU2REUwMkM2MDJEMUU0ODU0NTU0NzRGNEIyMTIw N0QyRDdGODAeFw0yNjA1MDMwMjM3MzVaFw0yNzA1MDIwMjQyMzVaMDMxMTAvBgNV BAMTKDI5RUMyMjZDRkIzQzgxOThCODY5RThGQzJGMjVBQjk1MDhGQTE3NTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCuFf71fQr6RxQYcKtUBQgDqFhQ pYgSSDmn87C1Y5FrSflxricmK08OEAHEcrCPQTBs+JxpcXPOiAcPv7fAUx/09pNS vqu3KagQ6812luLu7DX5HtCtCbEXp6shBBhjn46OHUjdvmfpiIjLDUQokL2C0z1F 8LOoTPmgK2f3Bk40rYcDUiCdbTIgJJDuxtoCMC2Q+SCdTz4/OE0G3jFGgatf0WlO rlUoy4wD71OjsUURWE7hK8lHnUT5m+5aZmhidAL0jxbYoOn7yW3msV0iwft6vyNs G3V1axcyHd7KDA3aZDMPiGWMTli3i4WcpzIMBO1S73qWl5YRx+qw2JMiwZN9AgMB AAGjggI3MIICMzAdBgNVHQ4EFgQUKewibPs8gZi4aej8LyWrlQj6F1QwHwYDVR0j BBgwFoAUmfDm3gLGAtHkhUVUdPSyEgfS1/gwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NzBmNWNmZGItNzk4Ny00MzUxLWJjMmUtNjZjMjRmNDlmNDQwLzAvOTlGMEU2REUw MkM2MDJEMUU0ODU0NTU0NzRGNEIyMTIwN0QyRDdGOC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS85OUYwRTZERTAyQzYwMkQxRTQ4NTQ1NTQ3NEY0QjIxMjA3RDJE N0Y4LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzcwZjVjZmRiLTc5ODctNDM1MS1i YzJlLTY2YzI0ZjQ5ZjQ0MC8wLzMyMzQzMDM0M2EzODM4MzAzYTMxMzIzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMzM4MzczNTMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAQIgAASMA0G CSqGSIb3DQEBCwUAA4IBAQBDBkkrkEQ/VMSJpbMNuhfXTrV1VTybJ4AP44MFe5kx a4KotVY9BQbC07SQ1gLF+cTOZiWPWFKws1Lv8F46+G1OxTPw76GPpQ0sGAu51Itk Ht+cqOFzRUjKjJgsb4RxPA02H7ZZVEmAYyWP+ndKLKywfXKhWCEb7cKqiM7jBUqp y2DT0WUlclf5hbsRYDjmkXRHpXAUMciKAg9EwAgJNvkRzv9qRShNGqGXK1eJ+75O zXMfwgdoBN80Zk7zIyYoXKmXEB59k/bPHtseom4dqrPBuV6frKo633wY5fs7IRVO 7B5FxCTdAfJjvlsdA47gagz+++QlWF6LChOCIi7ewmfH -----END CERTIFICATE-----Generated at Wed May 13 04:02:35 2026 by rpki-client