$ rpki-client -vvf rpki-rsync.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a33303a3a2f34382d3438203d3e20313336303838.roa File: 323430303a643934303a33303a3a2f34382d3438203d3e20313336303838.roa (raw, json) Hash identifier: oX8mmJjYFncLywEKonSF0YgdnGFD+ctQ155eJaCMAUg= Subject key identifier: 06:90:B2:C1:BD:8E:84:0E:50:96:9B:7B:A6:82:5F:BD:2A:31:4A:C4 Certificate issuer: /CN=CAFD3A17B2ADC6F9001E57A01BB29E9B693B7CC8 Certificate serial: 3E762973715DC1834D9CEDBBBB926B2B606F1366 Authority key identifier: CA:FD:3A:17:B2:AD:C6:F9:00:1E:57:A0:1B:B2:9E:9B:69:3B:7C:C8 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CAFD3A17B2ADC6F9001E57A01BB29E9B693B7CC8.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a33303a3a2f34382d3438203d3e20313336303838.roa Signing time: Sun 03 May 2026 02:43:02 +0000 ROA not before: Sun 03 May 2026 02:38:02 +0000 ROA not after: Sun 02 May 2027 02:43:02 +0000 asID: 136088 IP address blocks: 2400:d940:30::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/CAFD3A17B2ADC6F9001E57A01BB29E9B693B7CC8.crl rsync://rpki-rsync.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/CAFD3A17B2ADC6F9001E57A01BB29E9B693B7CC8.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CAFD3A17B2ADC6F9001E57A01BB29E9B693B7CC8.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 02:15:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:76:29:73:71:5d:c1:83:4d:9c:ed:bb:bb:92:6b:2b:60:6f:13:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CAFD3A17B2ADC6F9001E57A01BB29E9B693B7CC8 Validity Not Before: May 3 02:38:02 2026 GMT Not After : May 2 02:43:02 2027 GMT Subject: CN=0690B2C1BD8E840E50969B7BA6825FBD2A314AC4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:0c:12:8d:14:40:17:55:49:d0:fa:08:61:72: a0:22:60:63:bd:7d:d4:55:9d:ee:da:08:24:4b:40: 90:fc:ab:25:70:b7:c0:34:23:be:34:f3:f5:3c:f8: 4a:ea:0b:32:0a:e6:6e:38:be:b2:6e:2a:aa:48:5d: d9:4e:69:28:1e:15:ab:0f:8c:3b:f7:69:bc:00:42: a0:6f:48:8c:f6:36:e4:43:e1:a0:9f:6a:7b:9c:d9: 1e:62:94:3f:28:6f:d7:6b:c7:7a:9d:3a:d4:3b:17: ca:e8:af:ac:c3:9d:59:e3:cc:1a:9e:3c:c8:7e:ed: b7:c4:22:5b:bc:7a:c8:5a:da:52:2e:d5:ae:2b:ea: ba:33:4d:77:ac:54:23:1b:cb:38:b7:78:09:1f:48: 3c:c6:f9:a4:20:ce:53:ed:c0:6a:64:79:88:f7:57: d0:c5:f1:04:e9:97:63:19:46:6c:cf:07:ee:d7:9c: 57:5b:0f:5d:0d:da:e0:88:f9:d8:6d:c5:0b:ca:c4: 8a:b3:5a:92:56:ff:1f:5a:91:07:e9:25:41:96:6c: f7:c1:bb:68:52:33:68:8c:82:6a:71:86:5c:9f:da: 37:e1:0c:7f:35:65:5f:da:34:03:56:4f:39:13:1a: 40:50:0e:29:fd:55:fe:26:45:7c:13:de:e7:63:ab: bc:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:90:B2:C1:BD:8E:84:0E:50:96:9B:7B:A6:82:5F:BD:2A:31:4A:C4 X509v3 Authority Key Identifier: keyid:CA:FD:3A:17:B2:AD:C6:F9:00:1E:57:A0:1B:B2:9E:9B:69:3B:7C:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/CAFD3A17B2ADC6F9001E57A01BB29E9B693B7CC8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CAFD3A17B2ADC6F9001E57A01BB29E9B693B7CC8.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a33303a3a2f34382d3438203d3e20313336303838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:d940:30::/48 Signature Algorithm: sha256WithRSAEncryption 7d:a8:a4:bc:dc:0b:e7:97:db:a2:0e:bf:d9:18:e2:98:6b:53: 6b:12:f1:93:50:dc:30:8a:6f:25:fa:7e:16:06:6e:2b:02:06: b6:95:6e:9a:c4:49:d3:f9:35:48:d2:2c:01:da:ae:e8:4e:4b: c6:46:4f:35:1e:d3:99:a6:6e:55:ac:46:a4:50:ae:4c:54:b0: e8:9e:16:3e:5c:74:c8:c6:4e:64:fc:4e:b6:ad:10:b1:17:93: 31:11:23:68:e5:20:f7:63:0c:f0:ad:0a:c3:4c:0e:a9:1d:3b: 38:ee:13:35:0d:ad:a3:f7:30:4b:9a:70:9c:11:d6:94:d8:7a: e0:50:91:87:21:82:69:4b:a2:9c:bc:06:4f:82:ce:7e:06:44: 7a:ab:fb:60:6b:f2:43:9e:f7:99:e4:8d:ae:20:60:a0:7c:c6: dc:62:c3:ae:11:fb:05:2d:d2:02:a0:b7:9e:03:55:0d:b7:2e: b3:08:c6:f3:d5:61:e6:c3:d1:46:0b:79:dc:fc:eb:1d:25:57: e8:c8:17:7b:45:66:0d:bb:20:48:ac:58:cb:ff:fa:63:72:ce: bb:66:38:de:09:5b:45:c6:97:6a:30:b4:83:48:c4:77:66:0f: 71:4e:1b:f7:2a:a6:93:1a:cf:a0:e7:0b:78:22:5d:1d:b2:b9: 46:4b:4c:40 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUPnYpc3FdwYNNnO27u5JrK2BvE2YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0FGRDNBMTdCMkFEQzZGOTAwMUU1N0EwMUJCMjlFOUI2 OTNCN0NDODAeFw0yNjA1MDMwMjM4MDJaFw0yNzA1MDIwMjQzMDJaMDMxMTAvBgNV BAMTKDA2OTBCMkMxQkQ4RTg0MEU1MDk2OUI3QkE2ODI1RkJEMkEzMTRBQzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCZDBKNFEAXVUnQ+ghhcqAiYGO9 fdRVne7aCCRLQJD8qyVwt8A0I7408/U8+ErqCzIK5m44vrJuKqpIXdlOaSgeFasP jDv3abwAQqBvSIz2NuRD4aCfanuc2R5ilD8ob9drx3qdOtQ7F8ror6zDnVnjzBqe PMh+7bfEIlu8esha2lIu1a4r6rozTXesVCMbyzi3eAkfSDzG+aQgzlPtwGpkeYj3 V9DF8QTpl2MZRmzPB+7XnFdbD10N2uCI+dhtxQvKxIqzWpJW/x9akQfpJUGWbPfB u2hSM2iMgmpxhlyf2jfhDH81ZV/aNANWTzkTGkBQDin9Vf4mRXwT3udjq7xnAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUBpCywb2OhA5Qlpt7poJfvSoxSsQwHwYDVR0j BBgwFoAUyv06F7KtxvkAHlegG7Kem2k7fMgwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NzNmNGVjMWMtOTUzNS00Y2JmLTljN2EtZmQzMmM4MzBlZGJhLzAvQ0FGRDNBMTdC MkFEQzZGOTAwMUU1N0EwMUJCMjlFOUI2OTNCN0NDOC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9DQUZEM0ExN0IyQURDNkY5MDAxRTU3QTAxQkIyOUU5QjY5M0I3 Q0M4LmNlcjCBqQYIKwYBBQUHAQsEgZwwgZkwgZYGCCsGAQUFBzALhoGJcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzczZjRlYzFjLTk1MzUtNGNiZi05 YzdhLWZkMzJjODMwZWRiYS8wLzMyMzQzMDMwM2E2NDM5MzQzMDNhMzMzMDNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzMzNjMwMzgzOC5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQA2UAA MDANBgkqhkiG9w0BAQsFAAOCAQEAfaikvNwL55fbog6/2RjimGtTaxLxk1DcMIpv Jfp+FgZuKwIGtpVumsRJ0/k1SNIsAdqu6E5LxkZPNR7TmaZuVaxGpFCuTFSw6J4W Plx0yMZOZPxOtq0QsReTMREjaOUg92MM8K0Kw0wOqR07OO4TNQ2to/cwS5pwnBHW lNh64FCRhyGCaUuinLwGT4LOfgZEeqv7YGvyQ573meSNriBgoHzG3GLDrhH7BS3S AqC3ngNVDbcuswjG89Vh5sPRRgt53PzrHSVX6MgXe0VmDbsgSKxYy//6Y3LOu2Y4 3glbRcaXajC0g0jEd2YPcU4b9yqmkxrPoOcLeCJdHbK5RktMQA== -----END CERTIFICATE-----Generated at Wed May 13 09:24:02 2026 by rpki-client