$ rpki-client -vvf rpki-rsync.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a32303a3a2f34382d3438203d3e20313336303838.roa File: 323430303a643934303a32303a3a2f34382d3438203d3e20313336303838.roa (raw, json) Hash identifier: GH9tET4mTW+/Gjc8WplZ0ASidCPn/60O8oLirXNQIgM= Subject key identifier: 3D:18:03:71:23:BA:F8:01:49:19:8A:D2:CA:B2:EB:A9:49:C2:B9:BD Certificate issuer: /CN=CAFD3A17B2ADC6F9001E57A01BB29E9B693B7CC8 Certificate serial: 32A9B19935DFA1892E47C3CE91F9142E9DE97CCE Authority key identifier: CA:FD:3A:17:B2:AD:C6:F9:00:1E:57:A0:1B:B2:9E:9B:69:3B:7C:C8 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CAFD3A17B2ADC6F9001E57A01BB29E9B693B7CC8.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a32303a3a2f34382d3438203d3e20313336303838.roa Signing time: Sun 03 May 2026 02:43:10 +0000 ROA not before: Sun 03 May 2026 02:38:10 +0000 ROA not after: Sun 02 May 2027 02:43:10 +0000 asID: 136088 IP address blocks: 2400:d940:20::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/CAFD3A17B2ADC6F9001E57A01BB29E9B693B7CC8.crl rsync://rpki-rsync.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/CAFD3A17B2ADC6F9001E57A01BB29E9B693B7CC8.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CAFD3A17B2ADC6F9001E57A01BB29E9B693B7CC8.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 02:15:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:a9:b1:99:35:df:a1:89:2e:47:c3:ce:91:f9:14:2e:9d:e9:7c:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CAFD3A17B2ADC6F9001E57A01BB29E9B693B7CC8 Validity Not Before: May 3 02:38:10 2026 GMT Not After : May 2 02:43:10 2027 GMT Subject: CN=3D18037123BAF80149198AD2CAB2EBA949C2B9BD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:0a:bb:5c:be:ed:d1:c2:77:c0:09:b1:bd:f5: 5e:88:54:2f:1d:f0:d4:32:0c:57:c5:fd:b5:0a:70: 99:1b:f0:68:bf:22:80:17:e3:b2:ea:d8:73:ce:c7: 59:01:c3:3e:93:eb:04:e4:11:44:1c:12:c1:aa:18: 28:0f:b1:cd:f4:61:d3:4e:2d:d1:60:c0:58:1e:37: 44:b0:5e:c8:97:68:8e:c1:f0:93:cb:f9:61:37:89: 99:3d:18:df:17:21:4f:b3:f6:17:12:7c:47:34:2c: ee:0c:5f:17:d6:a7:56:02:ba:e8:81:f8:44:91:3a: 0b:d2:90:00:ad:d9:0d:2c:ea:59:1c:0f:42:d6:88: 9a:cb:32:d9:ca:c4:df:24:c5:ec:2c:a6:ec:f8:00: bf:b3:68:2e:c0:1d:93:4a:f9:2f:ee:a8:43:80:c9: 78:5a:9f:f8:2d:d0:46:f4:d8:30:a6:f2:98:8b:fc: 3f:40:c7:3a:83:eb:8c:44:cf:ea:16:6c:ba:7a:76: 1e:4d:61:21:3c:f9:6f:28:65:e5:a8:0b:46:52:4d: 68:26:36:5e:a1:31:fe:91:46:25:0e:b1:ab:d7:0f: 58:ab:18:34:2e:9e:fc:8a:16:68:70:9b:1d:1a:8b: bc:f0:99:9e:42:9c:0c:8e:9d:ba:57:2c:9e:4d:01: ef:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:18:03:71:23:BA:F8:01:49:19:8A:D2:CA:B2:EB:A9:49:C2:B9:BD X509v3 Authority Key Identifier: keyid:CA:FD:3A:17:B2:AD:C6:F9:00:1E:57:A0:1B:B2:9E:9B:69:3B:7C:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/CAFD3A17B2ADC6F9001E57A01BB29E9B693B7CC8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CAFD3A17B2ADC6F9001E57A01BB29E9B693B7CC8.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a32303a3a2f34382d3438203d3e20313336303838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:d940:20::/48 Signature Algorithm: sha256WithRSAEncryption 8a:2b:30:55:2d:25:c7:24:1e:3a:da:3f:f9:c2:ac:13:21:85: f2:fd:ea:22:df:11:bf:b2:67:e5:fd:9b:5e:46:95:20:ab:70: ca:76:46:e1:b8:c0:19:00:a8:13:b6:e3:b4:4d:f1:e4:3a:6d: 25:b3:67:ca:d7:b4:63:b2:7e:25:e2:fe:f3:0e:72:91:7c:e7: b9:e4:b3:b8:c6:7a:a6:64:4e:29:d8:33:47:bb:ff:a3:ca:74: 74:1b:a9:eb:fb:75:b3:62:69:d5:dd:62:0b:a6:bf:d1:0f:c0: 56:1d:e9:24:d5:d8:79:ed:23:d1:d2:11:96:0c:94:20:77:7b: c0:e4:9d:85:72:4d:f4:15:31:58:2b:cb:a9:22:f9:9d:44:aa: 89:b3:aa:bf:79:2c:f3:bd:67:5d:b1:aa:1f:b4:f1:7e:02:92: da:69:b9:68:37:34:9d:f3:58:21:41:e2:96:47:f5:19:bb:bf: 9a:aa:7d:c0:d2:82:3d:54:ae:da:16:88:a0:a0:bb:8e:d6:27: 11:65:a6:80:7d:2f:1b:37:d7:cb:19:9d:4d:23:e7:2f:d8:6b: a4:2c:3f:fa:a9:3b:f0:09:19:a0:0f:4b:5d:5e:0a:c7:9f:73: cd:85:fc:a9:08:0e:21:94:ab:f2:8a:b7:c1:f8:46:15:8f:be: eb:9d:dc:ce -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUMqmxmTXfoYkuR8POkfkULp3pfM4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0FGRDNBMTdCMkFEQzZGOTAwMUU1N0EwMUJCMjlFOUI2 OTNCN0NDODAeFw0yNjA1MDMwMjM4MTBaFw0yNzA1MDIwMjQzMTBaMDMxMTAvBgNV BAMTKDNEMTgwMzcxMjNCQUY4MDE0OTE5OEFEMkNBQjJFQkE5NDlDMkI5QkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCRCrtcvu3RwnfACbG99V6IVC8d 8NQyDFfF/bUKcJkb8Gi/IoAX47Lq2HPOx1kBwz6T6wTkEUQcEsGqGCgPsc30YdNO LdFgwFgeN0SwXsiXaI7B8JPL+WE3iZk9GN8XIU+z9hcSfEc0LO4MXxfWp1YCuuiB +ESROgvSkACt2Q0s6lkcD0LWiJrLMtnKxN8kxewspuz4AL+zaC7AHZNK+S/uqEOA yXhan/gt0Eb02DCm8piL/D9AxzqD64xEz+oWbLp6dh5NYSE8+W8oZeWoC0ZSTWgm Nl6hMf6RRiUOsavXD1irGDQunvyKFmhwmx0ai7zwmZ5CnAyOnbpXLJ5NAe/xAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUPRgDcSO6+AFJGYrSyrLrqUnCub0wHwYDVR0j BBgwFoAUyv06F7KtxvkAHlegG7Kem2k7fMgwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NzNmNGVjMWMtOTUzNS00Y2JmLTljN2EtZmQzMmM4MzBlZGJhLzAvQ0FGRDNBMTdC MkFEQzZGOTAwMUU1N0EwMUJCMjlFOUI2OTNCN0NDOC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9DQUZEM0ExN0IyQURDNkY5MDAxRTU3QTAxQkIyOUU5QjY5M0I3 Q0M4LmNlcjCBqQYIKwYBBQUHAQsEgZwwgZkwgZYGCCsGAQUFBzALhoGJcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzczZjRlYzFjLTk1MzUtNGNiZi05 YzdhLWZkMzJjODMwZWRiYS8wLzMyMzQzMDMwM2E2NDM5MzQzMDNhMzIzMDNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzMzNjMwMzgzOC5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQA2UAA IDANBgkqhkiG9w0BAQsFAAOCAQEAiiswVS0lxyQeOto/+cKsEyGF8v3qIt8Rv7Jn 5f2bXkaVIKtwynZG4bjAGQCoE7bjtE3x5DptJbNnyte0Y7J+JeL+8w5ykXznueSz uMZ6pmROKdgzR7v/o8p0dBup6/t1s2Jp1d1iC6a/0Q/AVh3pJNXYee0j0dIRlgyU IHd7wOSdhXJN9BUxWCvLqSL5nUSqibOqv3ks871nXbGqH7TxfgKS2mm5aDc0nfNY IUHilkf1Gbu/mqp9wNKCPVSu2haIoKC7jtYnEWWmgH0vGzfXyxmdTSPnL9hrpCw/ +qk78AkZoA9LXV4Kx59zzYX8qQgOIZSr8oq3wfhGFY++653czg== -----END CERTIFICATE-----Generated at Wed May 13 10:07:13 2026 by rpki-client