$ rpki-client -vvf rpki-rsync.idnic.net/repo/7229781a-8ac9-4452-b25f-54e7edf7d4a4/0/323430333a393063303a3a2f33322d3430203d3e20313430343037.roa File: 323430333a393063303a3a2f33322d3430203d3e20313430343037.roa (raw, json) Hash identifier: Yg7MUDs8e7RtjcON84BP67HQDd4RbJW/QQRbIefF+fk= Subject key identifier: 3F:98:1A:AC:45:EF:81:D5:97:D7:8D:A5:83:2A:9B:A1:9C:1A:4B:25 Certificate issuer: /CN=9F2D47C27A0466647C9A8FAF246AC85A9F2B1FBD Certificate serial: 0C301551E08629C54CC428A6F4259EE5EBA4228D Authority key identifier: 9F:2D:47:C2:7A:04:66:64:7C:9A:8F:AF:24:6A:C8:5A:9F:2B:1F:BD Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9F2D47C27A0466647C9A8FAF246AC85A9F2B1FBD.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/7229781a-8ac9-4452-b25f-54e7edf7d4a4/0/323430333a393063303a3a2f33322d3430203d3e20313430343037.roa Signing time: Sun 03 May 2026 02:42:40 +0000 ROA not before: Sun 03 May 2026 02:37:40 +0000 ROA not after: Sun 02 May 2027 02:42:40 +0000 asID: 140407 IP address blocks: 2403:90c0::/32 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/7229781a-8ac9-4452-b25f-54e7edf7d4a4/0/9F2D47C27A0466647C9A8FAF246AC85A9F2B1FBD.crl rsync://rpki-rsync.idnic.net/repo/7229781a-8ac9-4452-b25f-54e7edf7d4a4/0/9F2D47C27A0466647C9A8FAF246AC85A9F2B1FBD.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9F2D47C27A0466647C9A8FAF246AC85A9F2B1FBD.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 18:01:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:30:15:51:e0:86:29:c5:4c:c4:28:a6:f4:25:9e:e5:eb:a4:22:8d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9F2D47C27A0466647C9A8FAF246AC85A9F2B1FBD Validity Not Before: May 3 02:37:40 2026 GMT Not After : May 2 02:42:40 2027 GMT Subject: CN=3F981AAC45EF81D597D78DA5832A9BA19C1A4B25 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:9d:29:5b:5e:1e:08:57:d8:42:34:bb:70:e8: b7:4b:e9:f8:4e:a8:4c:07:94:99:36:de:d1:98:06: a2:0d:80:b0:b8:28:43:7e:a8:43:6b:6d:0c:f6:94: 5b:c5:e6:e0:45:f4:da:5b:be:a0:92:be:e2:59:9e: 98:3b:5f:6e:99:64:36:38:d7:d6:ea:4d:e7:76:37: f2:2a:fd:b4:b3:19:b3:27:f1:e2:4e:5d:0c:50:a4: 40:48:42:2e:5f:6b:9b:85:49:eb:a6:12:41:40:78: 0b:13:95:33:db:67:7b:f5:63:b7:e7:fb:f6:9c:8c: 86:41:e8:2c:89:90:4c:b7:3c:bc:40:b5:ae:94:16: 15:7e:53:7b:0b:c2:ef:89:86:8a:f6:08:16:09:57: ab:75:a3:e6:bd:c5:e9:a6:d5:8c:40:97:4f:c6:05: 58:9b:57:8a:13:10:ed:0f:e3:60:d0:36:6d:74:3d: 0b:f9:f6:f5:5b:25:30:dd:0a:fd:74:89:01:42:e6: 25:13:ae:ee:1d:2a:dd:a2:2e:bd:cd:42:f1:87:96: e7:99:d5:36:97:36:03:d1:23:a0:c5:c9:16:a7:31: 25:54:15:3a:69:0d:7b:c2:69:5e:ec:a4:be:37:cc: dd:94:f7:0b:e2:8f:71:03:23:73:e3:72:d9:ca:b3: 2f:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:98:1A:AC:45:EF:81:D5:97:D7:8D:A5:83:2A:9B:A1:9C:1A:4B:25 X509v3 Authority Key Identifier: keyid:9F:2D:47:C2:7A:04:66:64:7C:9A:8F:AF:24:6A:C8:5A:9F:2B:1F:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/7229781a-8ac9-4452-b25f-54e7edf7d4a4/0/9F2D47C27A0466647C9A8FAF246AC85A9F2B1FBD.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9F2D47C27A0466647C9A8FAF246AC85A9F2B1FBD.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/7229781a-8ac9-4452-b25f-54e7edf7d4a4/0/323430333a393063303a3a2f33322d3430203d3e20313430343037.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:90c0::/32 Signature Algorithm: sha256WithRSAEncryption 52:1b:e3:5b:36:0c:ac:45:25:24:e8:ae:b2:3d:c0:45:ff:0a: 1e:95:da:fc:8e:79:dd:a4:75:65:16:0b:7d:98:5e:57:c5:f6: 1c:55:cc:23:71:1c:db:31:b5:61:72:18:0a:ee:ff:59:d3:5e: 7d:b7:cd:6b:cd:db:69:a2:1b:64:92:fa:92:64:b1:e6:f3:6a: 64:92:61:02:67:94:72:d5:76:ac:e8:56:1c:fb:61:c6:da:35: 17:32:98:d8:06:6f:7e:69:bb:2a:96:e1:c8:16:08:52:19:28: fb:62:af:6f:aa:01:5c:67:89:45:24:2a:38:75:14:3b:72:23: f6:69:55:db:e0:4b:06:d5:4c:a0:af:a7:ee:28:7f:c4:d2:e8: 6c:e1:7e:ff:36:f4:3c:c9:98:20:39:ed:19:3b:a1:35:65:e2: 8c:41:23:42:1c:2a:c7:e7:3d:33:61:e7:9d:4f:79:a3:09:ce: b5:42:f6:ac:bb:55:99:45:c8:d9:9b:03:7b:a5:d3:ae:8d:28: 8d:65:6b:ed:a8:9c:f1:0f:8b:2c:27:1f:9c:72:54:b9:b6:92: 1c:a8:b1:0a:53:87:13:74:f9:56:8e:b8:2c:ef:25:3b:7d:ad: ab:62:4c:f3:b2:46:a9:3c:11:8b:b3:51:0b:b1:47:98:6d:ee: d3:86:aa:49 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUDDAVUeCGKcVMxCim9CWe5eukIo0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUYyRDQ3QzI3QTA0NjY2NDdDOUE4RkFGMjQ2QUM4NUE5 RjJCMUZCRDAeFw0yNjA1MDMwMjM3NDBaFw0yNzA1MDIwMjQyNDBaMDMxMTAvBgNV BAMTKDNGOTgxQUFDNDVFRjgxRDU5N0Q3OERBNTgzMkE5QkExOUMxQTRCMjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCXnSlbXh4IV9hCNLtw6LdL6fhO qEwHlJk23tGYBqINgLC4KEN+qENrbQz2lFvF5uBF9NpbvqCSvuJZnpg7X26ZZDY4 19bqTed2N/Iq/bSzGbMn8eJOXQxQpEBIQi5fa5uFSeumEkFAeAsTlTPbZ3v1Y7fn +/acjIZB6CyJkEy3PLxAta6UFhV+U3sLwu+Jhor2CBYJV6t1o+a9xemm1YxAl0/G BVibV4oTEO0P42DQNm10PQv59vVbJTDdCv10iQFC5iUTru4dKt2iLr3NQvGHlueZ 1TaXNgPRI6DFyRanMSVUFTppDXvCaV7spL43zN2U9wvij3EDI3PjctnKsy91AgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUP5garEXvgdWX142lgyqboZwaSyUwHwYDVR0j BBgwFoAUny1HwnoEZmR8mo+vJGrIWp8rH70wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NzIyOTc4MWEtOGFjOS00NDUyLWIyNWYtNTRlN2VkZjdkNGE0LzAvOUYyRDQ3QzI3 QTA0NjY2NDdDOUE4RkFGMjQ2QUM4NUE5RjJCMUZCRC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS85RjJENDdDMjdBMDQ2NjY0N0M5QThGQUYyNDZBQzg1QTlGMkIx RkJELmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzcyMjk3ODFhLThhYzktNDQ1Mi1i MjVmLTU0ZTdlZGY3ZDRhNC8wLzMyMzQzMDMzM2EzOTMwNjMzMDNhM2EyZjMzMzIy ZDM0MzAyMDNkM2UyMDMxMzQzMDM0MzAzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQDkMAwDQYJKoZI hvcNAQELBQADggEBAFIb41s2DKxFJSTorrI9wEX/Ch6V2vyOed2kdWUWC32YXlfF 9hxVzCNxHNsxtWFyGAru/1nTXn23zWvN22miG2SS+pJksebzamSSYQJnlHLVdqzo Vhz7YcbaNRcymNgGb35puyqW4cgWCFIZKPtir2+qAVxniUUkKjh1FDtyI/ZpVdvg SwbVTKCvp+4of8TS6Gzhfv829DzJmCA57Rk7oTVl4oxBI0IcKsfnPTNh551PeaMJ zrVC9qy7VZlFyNmbA3ul066NKI1la+2onPEPiywnH5xyVLm2khyosQpThxN0+VaO uCzvJTt9ratiTPOyRqk8EYuzUQuxR5ht7tOGqkk= -----END CERTIFICATE-----Generated at Wed May 13 11:21:42 2026 by rpki-client