$ rpki-client -vvf rpki-rsync.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a3130303a3a2f34382d3438203d3e20313336303838.roa File: 323430303a643934303a3130303a3a2f34382d3438203d3e20313336303838.roa (raw, json) Hash identifier: hVmreBSejl8Ng95zD8+VjoKGoyOFeerqH52Ryd6nA/g= Subject key identifier: 97:43:C0:D9:53:97:6C:FF:FA:18:1D:2B:EE:3C:B2:A0:60:F9:62:4D Certificate issuer: /CN=CAFD3A17B2ADC6F9001E57A01BB29E9B693B7CC8 Certificate serial: 4F16230795F4EEDBC1CBC1823E6D91AF1B222F7C Authority key identifier: CA:FD:3A:17:B2:AD:C6:F9:00:1E:57:A0:1B:B2:9E:9B:69:3B:7C:C8 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CAFD3A17B2ADC6F9001E57A01BB29E9B693B7CC8.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a3130303a3a2f34382d3438203d3e20313336303838.roa Signing time: Sun 03 May 2026 02:43:08 +0000 ROA not before: Sun 03 May 2026 02:38:08 +0000 ROA not after: Sun 02 May 2027 02:43:08 +0000 asID: 136088 IP address blocks: 2400:d940:100::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/CAFD3A17B2ADC6F9001E57A01BB29E9B693B7CC8.crl rsync://rpki-rsync.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/CAFD3A17B2ADC6F9001E57A01BB29E9B693B7CC8.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CAFD3A17B2ADC6F9001E57A01BB29E9B693B7CC8.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 02:15:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:16:23:07:95:f4:ee:db:c1:cb:c1:82:3e:6d:91:af:1b:22:2f:7c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CAFD3A17B2ADC6F9001E57A01BB29E9B693B7CC8 Validity Not Before: May 3 02:38:08 2026 GMT Not After : May 2 02:43:08 2027 GMT Subject: CN=9743C0D953976CFFFA181D2BEE3CB2A060F9624D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:55:8c:72:8f:2f:c4:45:1e:f7:92:d0:aa:9a: bd:ed:01:57:a5:91:00:cd:c1:d1:ab:ba:4b:c2:68: 6c:38:4a:72:a5:5c:55:b7:12:1b:a5:a3:fb:97:1f: ed:a5:0e:cb:32:fb:34:08:86:61:5a:f0:4b:a0:77: b6:4b:86:2b:ef:66:bc:a5:da:87:57:e0:3b:02:d9: 10:7b:73:2d:a6:8e:77:52:ad:89:96:d7:29:c9:ca: c0:e8:d9:90:ad:db:8c:ab:c6:44:a8:f9:ae:9f:c0: eb:83:43:51:a0:30:85:53:c8:c3:ec:4a:1d:72:04: 4d:75:b0:2e:25:3e:56:b8:0e:16:20:6a:e9:fb:9e: b3:c4:4a:d1:63:68:5a:56:d8:34:20:42:cd:cf:42: 8e:27:f2:2d:46:3f:71:6f:bc:95:be:4e:10:74:c1: 21:f0:d2:1f:9b:46:18:16:b2:f7:e9:d6:7b:59:08: d6:c1:95:45:03:8f:20:5a:ba:d7:3d:f0:44:38:07: 7a:2c:f3:b8:45:94:5b:be:56:61:d1:cc:cd:e7:e4: e5:c7:b9:1e:74:67:14:31:4b:0c:ef:7a:9f:de:fc: e1:4b:80:8c:19:0b:5c:26:20:7f:10:91:80:c9:47: 93:55:ae:9e:d3:60:b3:e2:5a:ac:8c:0c:f2:65:4b: e8:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:43:C0:D9:53:97:6C:FF:FA:18:1D:2B:EE:3C:B2:A0:60:F9:62:4D X509v3 Authority Key Identifier: keyid:CA:FD:3A:17:B2:AD:C6:F9:00:1E:57:A0:1B:B2:9E:9B:69:3B:7C:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/CAFD3A17B2ADC6F9001E57A01BB29E9B693B7CC8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CAFD3A17B2ADC6F9001E57A01BB29E9B693B7CC8.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a3130303a3a2f34382d3438203d3e20313336303838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:d940:100::/48 Signature Algorithm: sha256WithRSAEncryption 92:33:54:97:10:18:05:2a:96:e5:0a:70:89:d3:e4:e0:6d:69: 66:08:0e:d9:d7:da:4b:b9:5f:f7:72:32:82:b6:97:e4:0f:31: 4d:01:d7:6e:fb:0e:75:60:0a:17:0e:05:a1:3e:8d:fd:14:f7: 98:c8:33:eb:8c:6d:ee:82:43:e3:67:f2:0f:b8:1f:a8:fe:a8: b2:ab:13:71:65:f2:0e:be:3f:ed:bb:6a:b8:f4:2d:79:d3:e6: 6c:dc:de:ec:95:63:1b:1c:ef:ae:c4:ba:8d:50:e4:50:ae:bd: ae:99:52:60:52:ab:03:17:c6:d8:34:d6:06:7b:73:c0:9a:53: f5:0c:a3:78:91:96:51:8b:e9:c2:3b:c9:8e:1c:e6:b8:3c:38: c5:8a:d0:9c:05:36:13:1e:59:3c:a1:d7:8d:d8:af:89:d5:e1: 88:73:db:fb:c5:71:4c:7e:66:58:cf:7f:6c:8e:ff:9e:9f:59: 95:03:91:52:c1:a4:d4:e3:69:2a:66:4f:5b:6c:3f:2e:1c:c2: 57:52:22:fb:cd:c3:92:c5:a8:2e:58:f2:66:2b:31:06:54:bf: 54:13:59:c7:d0:dd:3f:dd:ae:d1:b8:8a:f5:4b:a6:b3:ff:07: 59:98:2f:7c:f3:0f:d5:5d:ab:8c:39:11:c8:ad:df:72:8b:0c: c4:15:58:43 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUTxYjB5X07tvBy8GCPm2RrxsiL3wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0FGRDNBMTdCMkFEQzZGOTAwMUU1N0EwMUJCMjlFOUI2 OTNCN0NDODAeFw0yNjA1MDMwMjM4MDhaFw0yNzA1MDIwMjQzMDhaMDMxMTAvBgNV BAMTKDk3NDNDMEQ5NTM5NzZDRkZGQTE4MUQyQkVFM0NCMkEwNjBGOTYyNEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2VYxyjy/ERR73ktCqmr3tAVel kQDNwdGrukvCaGw4SnKlXFW3Ehulo/uXH+2lDssy+zQIhmFa8Eugd7ZLhivvZryl 2odX4DsC2RB7cy2mjndSrYmW1ynJysDo2ZCt24yrxkSo+a6fwOuDQ1GgMIVTyMPs Sh1yBE11sC4lPla4DhYgaun7nrPEStFjaFpW2DQgQs3PQo4n8i1GP3FvvJW+ThB0 wSHw0h+bRhgWsvfp1ntZCNbBlUUDjyBautc98EQ4B3os87hFlFu+VmHRzM3n5OXH uR50ZxQxSwzvep/e/OFLgIwZC1wmIH8QkYDJR5NVrp7TYLPiWqyMDPJlS+jHAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUl0PA2VOXbP/6GB0r7jyyoGD5Yk0wHwYDVR0j BBgwFoAUyv06F7KtxvkAHlegG7Kem2k7fMgwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NzNmNGVjMWMtOTUzNS00Y2JmLTljN2EtZmQzMmM4MzBlZGJhLzAvQ0FGRDNBMTdC MkFEQzZGOTAwMUU1N0EwMUJCMjlFOUI2OTNCN0NDOC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9DQUZEM0ExN0IyQURDNkY5MDAxRTU3QTAxQkIyOUU5QjY5M0I3 Q0M4LmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUFBzALhoGLcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzczZjRlYzFjLTk1MzUtNGNiZi05 YzdhLWZkMzJjODMwZWRiYS8wLzMyMzQzMDMwM2E2NDM5MzQzMDNhMzEzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM2MzAzODM4LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJADZ QAEAMA0GCSqGSIb3DQEBCwUAA4IBAQCSM1SXEBgFKpblCnCJ0+TgbWlmCA7Z19pL uV/3cjKCtpfkDzFNAddu+w51YAoXDgWhPo39FPeYyDPrjG3ugkPjZ/IPuB+o/qiy qxNxZfIOvj/tu2q49C150+Zs3N7slWMbHO+uxLqNUORQrr2umVJgUqsDF8bYNNYG e3PAmlP1DKN4kZZRi+nCO8mOHOa4PDjFitCcBTYTHlk8odeN2K+J1eGIc9v7xXFM fmZYz39sjv+en1mVA5FSwaTU42kqZk9bbD8uHMJXUiL7zcOSxaguWPJmKzEGVL9U E1nH0N0/3a7RuIr1S6az/wdZmC988w/VXauMORHIrd9yiwzEFVhD -----END CERTIFICATE-----Generated at Wed May 13 11:46:58 2026 by rpki-client