$ rpki-client -vvf rpki-rsync.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a35303a3a2f34382d3438203d3e20313336303838.roa File: 323430303a643934303a35303a3a2f34382d3438203d3e20313336303838.roa (raw, json) Hash identifier: hC0faeWGVogeaEgDmuTq2f3+pymLHliitj4mm9RD6Qs= Subject key identifier: 40:68:F2:FA:22:9D:78:9D:0B:63:01:1C:DE:01:5B:DD:F7:2D:45:A1 Certificate issuer: /CN=CAFD3A17B2ADC6F9001E57A01BB29E9B693B7CC8 Certificate serial: 13D686CD0F4F4D51F79134C42FEFF36128E2E5BE Authority key identifier: CA:FD:3A:17:B2:AD:C6:F9:00:1E:57:A0:1B:B2:9E:9B:69:3B:7C:C8 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CAFD3A17B2ADC6F9001E57A01BB29E9B693B7CC8.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a35303a3a2f34382d3438203d3e20313336303838.roa Signing time: Sun 03 May 2026 02:43:09 +0000 ROA not before: Sun 03 May 2026 02:38:09 +0000 ROA not after: Sun 02 May 2027 02:43:09 +0000 asID: 136088 IP address blocks: 2400:d940:50::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/CAFD3A17B2ADC6F9001E57A01BB29E9B693B7CC8.crl rsync://rpki-rsync.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/CAFD3A17B2ADC6F9001E57A01BB29E9B693B7CC8.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CAFD3A17B2ADC6F9001E57A01BB29E9B693B7CC8.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 02:15:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:d6:86:cd:0f:4f:4d:51:f7:91:34:c4:2f:ef:f3:61:28:e2:e5:be Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CAFD3A17B2ADC6F9001E57A01BB29E9B693B7CC8 Validity Not Before: May 3 02:38:09 2026 GMT Not After : May 2 02:43:09 2027 GMT Subject: CN=4068F2FA229D789D0B63011CDE015BDDF72D45A1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:7a:b2:91:80:4b:55:4d:8f:7e:3c:67:20:d5: ff:78:43:4d:41:dd:44:f1:9c:1a:eb:7c:1d:ea:f6: 6b:2f:bf:d6:2b:27:1e:c4:fe:c4:59:bb:ac:ae:53: 64:82:4f:50:a3:cd:db:6c:cc:5b:1a:ad:ab:37:7e: 37:18:a7:5c:a5:62:78:95:76:2b:6c:fb:4f:df:63: 58:62:e3:2c:39:87:2e:7f:39:48:9f:9b:89:8f:67: 95:b9:1f:32:09:f4:25:06:0a:71:c8:66:90:f6:8d: 08:e5:ab:e8:2e:0d:59:59:24:46:8b:6c:37:3c:ee: dd:c7:75:50:2d:e2:a7:6b:c5:48:c8:21:bb:90:e0: 93:9b:bc:7b:76:c0:34:4b:be:bc:1d:22:fe:0e:bc: 3d:9a:2d:96:89:13:f6:0c:c5:a2:ed:47:ba:96:51: fa:99:1e:39:bb:dd:0c:0a:5b:ef:af:41:a0:45:1f: 2b:94:7f:42:58:29:ee:a4:7f:7d:4b:43:68:79:90: 61:ca:3a:0a:da:05:c8:e8:92:35:d6:8b:f9:9d:4a: 2c:04:11:37:e0:1b:3f:9b:8b:0b:76:de:56:62:1e: cf:67:fc:35:db:ad:58:0a:fd:cb:d5:3b:ac:ce:80: 01:52:c2:b8:bc:b4:65:a3:ab:d4:2b:08:01:ca:27: 43:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:68:F2:FA:22:9D:78:9D:0B:63:01:1C:DE:01:5B:DD:F7:2D:45:A1 X509v3 Authority Key Identifier: keyid:CA:FD:3A:17:B2:AD:C6:F9:00:1E:57:A0:1B:B2:9E:9B:69:3B:7C:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/CAFD3A17B2ADC6F9001E57A01BB29E9B693B7CC8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CAFD3A17B2ADC6F9001E57A01BB29E9B693B7CC8.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a35303a3a2f34382d3438203d3e20313336303838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:d940:50::/48 Signature Algorithm: sha256WithRSAEncryption 6b:4c:60:5f:dd:1f:c8:f1:77:34:c5:5b:f6:14:b5:58:ec:15: c6:9f:7c:d5:27:06:8e:3f:57:f4:2d:a6:c1:ff:39:ca:ca:0b: 34:7a:18:01:24:2e:77:21:dd:18:a9:18:e1:cc:53:8a:84:dc: 92:64:2c:c0:6a:be:0c:be:99:ba:3e:90:6f:d2:51:53:35:05: 6b:21:e6:0c:4b:72:87:cf:41:c7:4a:1c:5c:44:ab:ce:6c:77: 6c:e9:bc:1e:5a:d7:36:aa:b9:c2:1b:67:21:2b:d3:ef:5a:e2: 54:eb:ff:80:8e:46:c9:3e:0a:5c:6f:58:f3:7a:fa:7a:c8:b4: c3:99:f9:cd:22:e3:3f:d5:c9:f1:cc:48:46:1b:2a:bd:73:99: c9:0a:cb:40:32:c9:25:25:ef:56:d0:13:7d:95:3a:49:1f:81: 8d:fb:21:18:a9:cd:c4:33:d4:63:05:45:9e:8d:eb:55:32:e6: 25:4a:b8:65:95:13:ea:79:37:80:eb:65:53:ae:a8:0d:9f:b7: e7:bd:69:40:bd:6d:87:e5:9b:da:54:e4:8c:69:d7:ab:6e:a1: e6:5f:86:72:44:0d:e6:8f:fe:a7:c0:4b:c1:ba:6a:c2:32:9f: a7:52:fc:c0:0d:e2:9e:45:83:30:95:fd:84:c3:35:ae:b4:11: 63:1f:ea:b7 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUE9aGzQ9PTVH3kTTEL+/zYSji5b4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0FGRDNBMTdCMkFEQzZGOTAwMUU1N0EwMUJCMjlFOUI2 OTNCN0NDODAeFw0yNjA1MDMwMjM4MDlaFw0yNzA1MDIwMjQzMDlaMDMxMTAvBgNV BAMTKDQwNjhGMkZBMjI5RDc4OUQwQjYzMDExQ0RFMDE1QkRERjcyRDQ1QTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVerKRgEtVTY9+PGcg1f94Q01B 3UTxnBrrfB3q9msvv9YrJx7E/sRZu6yuU2SCT1CjzdtszFsaras3fjcYp1ylYniV dits+0/fY1hi4yw5hy5/OUifm4mPZ5W5HzIJ9CUGCnHIZpD2jQjlq+guDVlZJEaL bDc87t3HdVAt4qdrxUjIIbuQ4JObvHt2wDRLvrwdIv4OvD2aLZaJE/YMxaLtR7qW UfqZHjm73QwKW++vQaBFHyuUf0JYKe6kf31LQ2h5kGHKOgraBcjokjXWi/mdSiwE ETfgGz+biwt23lZiHs9n/DXbrVgK/cvVO6zOgAFSwri8tGWjq9QrCAHKJ0MjAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUQGjy+iKdeJ0LYwEc3gFb3fctRaEwHwYDVR0j BBgwFoAUyv06F7KtxvkAHlegG7Kem2k7fMgwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NzNmNGVjMWMtOTUzNS00Y2JmLTljN2EtZmQzMmM4MzBlZGJhLzAvQ0FGRDNBMTdC MkFEQzZGOTAwMUU1N0EwMUJCMjlFOUI2OTNCN0NDOC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9DQUZEM0ExN0IyQURDNkY5MDAxRTU3QTAxQkIyOUU5QjY5M0I3 Q0M4LmNlcjCBqQYIKwYBBQUHAQsEgZwwgZkwgZYGCCsGAQUFBzALhoGJcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzczZjRlYzFjLTk1MzUtNGNiZi05 YzdhLWZkMzJjODMwZWRiYS8wLzMyMzQzMDMwM2E2NDM5MzQzMDNhMzUzMDNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzMzNjMwMzgzOC5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQA2UAA UDANBgkqhkiG9w0BAQsFAAOCAQEAa0xgX90fyPF3NMVb9hS1WOwVxp981ScGjj9X 9C2mwf85ysoLNHoYASQudyHdGKkY4cxTioTckmQswGq+DL6Zuj6Qb9JRUzUFayHm DEtyh89Bx0ocXESrzmx3bOm8HlrXNqq5whtnISvT71riVOv/gI5GyT4KXG9Y83r6 esi0w5n5zSLjP9XJ8cxIRhsqvXOZyQrLQDLJJSXvVtATfZU6SR+BjfshGKnNxDPU YwVFno3rVTLmJUq4ZZUT6nk3gOtlU66oDZ+3571pQL1th+Wb2lTkjGnXq26h5l+G ckQN5o/+p8BLwbpqwjKfp1L8wA3inkWDMJX9hMM1rrQRYx/qtw== -----END CERTIFICATE-----Generated at Wed May 13 10:20:52 2026 by rpki-client