$ rpki-client -vvf rpki-rsync.idnic.net/repo/7229781a-8ac9-4452-b25f-54e7edf7d4a4/0/323430333a393063303a3a2f33322d3332203d3e20313430343037.roa File: 323430333a393063303a3a2f33322d3332203d3e20313430343037.roa (raw, json) Hash identifier: evwEHBL+Efz58EUm4jU4ct9sLmawRVLDyaUcdYukI+g= Subject key identifier: 48:55:07:DF:B6:BA:8C:F8:06:7E:D9:B4:AD:28:77:F0:3C:BA:D8:7A Certificate issuer: /CN=9F2D47C27A0466647C9A8FAF246AC85A9F2B1FBD Certificate serial: 53FF896A792B69B61889BF4E5117039454F5429B Authority key identifier: 9F:2D:47:C2:7A:04:66:64:7C:9A:8F:AF:24:6A:C8:5A:9F:2B:1F:BD Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9F2D47C27A0466647C9A8FAF246AC85A9F2B1FBD.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/7229781a-8ac9-4452-b25f-54e7edf7d4a4/0/323430333a393063303a3a2f33322d3332203d3e20313430343037.roa Signing time: Sun 03 May 2026 02:42:41 +0000 ROA not before: Sun 03 May 2026 02:37:41 +0000 ROA not after: Sun 02 May 2027 02:42:41 +0000 asID: 140407 IP address blocks: 2403:90c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/7229781a-8ac9-4452-b25f-54e7edf7d4a4/0/9F2D47C27A0466647C9A8FAF246AC85A9F2B1FBD.crl rsync://rpki-rsync.idnic.net/repo/7229781a-8ac9-4452-b25f-54e7edf7d4a4/0/9F2D47C27A0466647C9A8FAF246AC85A9F2B1FBD.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9F2D47C27A0466647C9A8FAF246AC85A9F2B1FBD.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 10:27:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:ff:89:6a:79:2b:69:b6:18:89:bf:4e:51:17:03:94:54:f5:42:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9F2D47C27A0466647C9A8FAF246AC85A9F2B1FBD Validity Not Before: May 3 02:37:41 2026 GMT Not After : May 2 02:42:41 2027 GMT Subject: CN=485507DFB6BA8CF8067ED9B4AD2877F03CBAD87A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:1e:47:54:a6:35:d0:f1:5d:99:a8:10:b1:d6: 4f:7e:bc:e4:c8:17:86:94:5f:df:79:44:97:93:17: 84:b0:60:f0:03:be:67:8c:a4:e8:00:fc:0c:7c:eb: b8:bb:a0:c0:2c:16:33:c8:7a:46:2e:9b:a4:21:7c: 7f:1b:d5:bf:e6:12:cc:21:90:74:86:95:b2:76:e6: d8:0a:71:d3:13:f3:1e:94:62:89:a6:f4:e1:b2:59: 54:73:87:e2:87:8d:55:0c:d6:a9:8f:ab:97:4d:76: 4e:8e:5e:63:92:d1:51:a4:f4:d0:90:b5:a6:3f:6c: 33:e1:e9:55:bf:02:ca:8b:59:cf:43:60:de:0a:d8: 53:2d:4c:6e:49:de:f2:26:ee:a4:91:c3:a9:34:03: 2e:33:27:a4:b1:fa:6e:2a:24:e0:ab:7b:11:4e:c5: 43:12:75:6a:91:29:5e:5b:6b:f3:78:37:aa:4e:8e: fb:85:eb:a4:95:d1:0c:09:da:49:f9:f6:17:8c:5d: 27:91:d2:de:26:d1:78:d0:28:f1:43:1a:f6:8f:4b: fe:61:d9:81:ca:4d:50:be:38:c4:0d:dd:e9:da:dc: 01:3e:af:56:6f:cb:05:87:76:f8:ea:6c:3b:31:3e: a7:03:8a:42:56:87:00:54:1d:de:22:37:9d:59:c6: 68:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:55:07:DF:B6:BA:8C:F8:06:7E:D9:B4:AD:28:77:F0:3C:BA:D8:7A X509v3 Authority Key Identifier: keyid:9F:2D:47:C2:7A:04:66:64:7C:9A:8F:AF:24:6A:C8:5A:9F:2B:1F:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/7229781a-8ac9-4452-b25f-54e7edf7d4a4/0/9F2D47C27A0466647C9A8FAF246AC85A9F2B1FBD.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9F2D47C27A0466647C9A8FAF246AC85A9F2B1FBD.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/7229781a-8ac9-4452-b25f-54e7edf7d4a4/0/323430333a393063303a3a2f33322d3332203d3e20313430343037.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:90c0::/32 Signature Algorithm: sha256WithRSAEncryption 33:16:aa:be:1c:35:93:3c:03:55:74:7c:fd:b2:72:91:51:51: 0a:bd:0c:ca:cd:cd:a0:72:2b:08:29:0b:8c:4e:66:20:2a:a0: 02:f6:4a:78:ad:b9:c9:4c:d5:1e:5a:45:57:5d:86:0b:4d:1f: 6b:5d:85:c7:51:d1:b2:19:53:c7:88:ca:06:1f:33:09:eb:e8: d8:e2:ff:0f:01:3a:53:16:f6:8b:97:b7:9a:6a:2d:a9:5a:9d: 16:cd:6a:f2:b9:cb:d1:be:2f:5f:8d:8c:46:62:7e:e3:18:0a: a3:5e:8a:00:ca:b6:99:4f:fe:2a:85:c8:94:19:13:92:51:ec: e9:e2:93:f5:5f:96:75:fb:0f:d8:89:a4:db:9f:f8:06:39:23: e1:e1:7c:bf:f8:57:e2:07:d2:92:9f:3f:64:a5:90:2b:b3:ee: d6:e6:43:ac:a3:7a:62:6d:7a:4a:ab:81:8b:8a:54:f1:04:40: 2e:f3:d2:ce:12:29:48:f2:bf:0a:d9:1f:3c:e8:6f:99:cc:39: 1c:f6:c4:c1:25:af:2f:27:92:b3:90:df:61:91:36:7e:e2:43: 97:fc:d6:de:2d:19:6e:5a:b5:e3:ce:b7:76:b2:ca:40:39:16: 15:19:89:57:a5:b7:70:ba:82:96:fc:d7:5a:0e:8e:44:dc:b5: 1e:29:65:a9 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUU/+JankrabYYib9OURcDlFT1QpswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUYyRDQ3QzI3QTA0NjY2NDdDOUE4RkFGMjQ2QUM4NUE5 RjJCMUZCRDAeFw0yNjA1MDMwMjM3NDFaFw0yNzA1MDIwMjQyNDFaMDMxMTAvBgNV BAMTKDQ4NTUwN0RGQjZCQThDRjgwNjdFRDlCNEFEMjg3N0YwM0NCQUQ4N0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDHkdUpjXQ8V2ZqBCx1k9+vOTI F4aUX995RJeTF4SwYPADvmeMpOgA/Ax867i7oMAsFjPIekYum6QhfH8b1b/mEswh kHSGlbJ25tgKcdMT8x6UYomm9OGyWVRzh+KHjVUM1qmPq5dNdk6OXmOS0VGk9NCQ taY/bDPh6VW/AsqLWc9DYN4K2FMtTG5J3vIm7qSRw6k0Ay4zJ6Sx+m4qJOCrexFO xUMSdWqRKV5ba/N4N6pOjvuF66SV0QwJ2kn59heMXSeR0t4m0XjQKPFDGvaPS/5h 2YHKTVC+OMQN3ena3AE+r1ZvywWHdvjqbDsxPqcDikJWhwBUHd4iN51ZxmjpAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUSFUH37a6jPgGftm0rSh38Dy62HowHwYDVR0j BBgwFoAUny1HwnoEZmR8mo+vJGrIWp8rH70wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NzIyOTc4MWEtOGFjOS00NDUyLWIyNWYtNTRlN2VkZjdkNGE0LzAvOUYyRDQ3QzI3 QTA0NjY2NDdDOUE4RkFGMjQ2QUM4NUE5RjJCMUZCRC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS85RjJENDdDMjdBMDQ2NjY0N0M5QThGQUYyNDZBQzg1QTlGMkIx RkJELmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzcyMjk3ODFhLThhYzktNDQ1Mi1i MjVmLTU0ZTdlZGY3ZDRhNC8wLzMyMzQzMDMzM2EzOTMwNjMzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzQzMDM0MzAzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQDkMAwDQYJKoZI hvcNAQELBQADggEBADMWqr4cNZM8A1V0fP2ycpFRUQq9DMrNzaByKwgpC4xOZiAq oAL2SnituclM1R5aRVddhgtNH2tdhcdR0bIZU8eIygYfMwnr6Nji/w8BOlMW9ouX t5pqLalanRbNavK5y9G+L1+NjEZifuMYCqNeigDKtplP/iqFyJQZE5JR7Onik/Vf lnX7D9iJpNuf+AY5I+HhfL/4V+IH0pKfP2SlkCuz7tbmQ6yjemJtekqrgYuKVPEE QC7z0s4SKUjyvwrZHzzob5nMORz2xMElry8nkrOQ32GRNn7iQ5f81t4tGW5atePO t3ayykA5FhUZiVelt3C6gpb811oOjkTctR4pZak= -----END CERTIFICATE-----Generated at Wed May 13 14:16:46 2026 by rpki-client