$ rpki-client -vvf rpki-rsync.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a38303a3a2f34382d3438203d3e20313336303838.roa File: 323430303a643934303a38303a3a2f34382d3438203d3e20313336303838.roa (raw, json) Hash identifier: RJ17Dz/IGt6G1WroLkK6wHoimyT4sJSrPhTKtpoVzzk= Subject key identifier: 4A:FA:ED:75:C9:13:ED:C9:6E:BF:58:D8:F2:91:78:CD:C6:4A:4E:41 Certificate issuer: /CN=CAFD3A17B2ADC6F9001E57A01BB29E9B693B7CC8 Certificate serial: 163FA4441679C9AC1C863A4293FC74271AF0966F Authority key identifier: CA:FD:3A:17:B2:AD:C6:F9:00:1E:57:A0:1B:B2:9E:9B:69:3B:7C:C8 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CAFD3A17B2ADC6F9001E57A01BB29E9B693B7CC8.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a38303a3a2f34382d3438203d3e20313336303838.roa Signing time: Sun 03 May 2026 02:43:04 +0000 ROA not before: Sun 03 May 2026 02:38:04 +0000 ROA not after: Sun 02 May 2027 02:43:04 +0000 asID: 136088 IP address blocks: 2400:d940:80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/CAFD3A17B2ADC6F9001E57A01BB29E9B693B7CC8.crl rsync://rpki-rsync.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/CAFD3A17B2ADC6F9001E57A01BB29E9B693B7CC8.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CAFD3A17B2ADC6F9001E57A01BB29E9B693B7CC8.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 02:15:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:3f:a4:44:16:79:c9:ac:1c:86:3a:42:93:fc:74:27:1a:f0:96:6f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CAFD3A17B2ADC6F9001E57A01BB29E9B693B7CC8 Validity Not Before: May 3 02:38:04 2026 GMT Not After : May 2 02:43:04 2027 GMT Subject: CN=4AFAED75C913EDC96EBF58D8F29178CDC64A4E41 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:da:f9:d6:de:31:0c:10:c0:fd:c2:4e:2b:78: fc:d3:cd:4e:1d:94:d2:50:8c:93:e5:47:6d:1c:02: ff:6d:9c:d2:ee:c4:eb:7b:54:ef:61:bb:fd:0b:cf: 0f:4c:bf:d4:3f:1b:2f:ea:15:eb:1b:d5:34:b2:86: 6e:5a:13:f3:51:56:09:6e:bc:5c:7e:cb:07:43:0b: 33:d3:a5:14:83:86:ab:cd:62:ad:67:4e:33:e0:81: 77:c7:0b:3d:bf:dd:dc:78:40:c0:ba:80:86:d7:8b: 7f:01:3f:a1:b7:1b:03:e4:7d:a2:19:14:ee:fb:1e: 0c:01:ac:ef:85:9d:ca:75:af:55:a3:25:bf:63:17: 6a:cf:e5:74:ee:a9:8a:38:26:d5:ae:4a:90:97:e6: d0:20:4f:f5:f8:0a:4d:86:27:c9:27:d5:3d:c2:1e: ca:f8:59:6d:1d:d5:3c:bf:18:9e:0f:a7:d2:0f:84: e9:d5:75:84:f6:e9:1e:19:a1:8d:47:9b:a4:19:37: 66:e1:bd:80:0a:70:1f:20:93:86:e6:f8:c9:f2:2a: fa:d8:4c:cc:a8:d1:20:70:a8:e2:a7:db:35:22:d5: b3:55:70:f1:46:9b:9b:bc:91:8e:63:4a:dc:9e:95: 6f:68:08:c2:df:61:67:1d:2e:fd:4e:e6:1d:f8:79: e7:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:FA:ED:75:C9:13:ED:C9:6E:BF:58:D8:F2:91:78:CD:C6:4A:4E:41 X509v3 Authority Key Identifier: keyid:CA:FD:3A:17:B2:AD:C6:F9:00:1E:57:A0:1B:B2:9E:9B:69:3B:7C:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/CAFD3A17B2ADC6F9001E57A01BB29E9B693B7CC8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CAFD3A17B2ADC6F9001E57A01BB29E9B693B7CC8.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a38303a3a2f34382d3438203d3e20313336303838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:d940:80::/48 Signature Algorithm: sha256WithRSAEncryption 37:6c:d3:73:7a:1d:3e:ae:3b:ba:75:51:2d:f4:9b:43:a8:0c: 73:1f:8c:32:88:d3:f9:4e:0a:bc:86:59:94:6f:1d:44:ec:cd: db:25:e9:33:8f:a3:cf:29:e8:86:85:d9:6e:df:11:45:c9:6f: cd:cb:a8:cf:e8:6c:39:47:90:bb:2c:c4:ce:6e:04:2a:c0:fd: eb:7a:ce:65:78:5e:ce:3d:5b:71:fb:17:24:c5:ec:74:df:62: 13:6e:4b:18:06:d8:4f:71:d1:0a:6a:cb:80:b9:d5:23:a4:1c: 8e:e3:4d:06:05:ad:b4:44:b2:98:3b:ef:ba:a9:1a:eb:7c:57: 10:82:b8:80:81:03:e6:30:dc:a6:b2:cc:28:94:95:02:58:28: fc:04:be:60:f6:ae:48:b7:38:f8:a2:1f:9f:85:d8:05:0e:a1: ed:99:b5:57:40:81:79:15:6f:0c:a4:18:6b:63:19:b6:30:3f: ad:f1:b8:47:06:c2:48:cb:cf:ba:37:9f:db:53:0b:fa:58:0b: 38:00:60:7e:a6:12:97:d9:9e:e3:3d:08:16:2a:e5:36:ba:07: ab:01:58:d7:dc:c2:b6:a4:a6:fe:d5:eb:80:16:b1:e4:ce:ed: 43:f7:d5:c5:72:db:fa:ef:30:2b:c6:92:8a:bd:5c:e5:3f:5d: 37:89:28:ea -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUFj+kRBZ5yawchjpCk/x0Jxrwlm8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0FGRDNBMTdCMkFEQzZGOTAwMUU1N0EwMUJCMjlFOUI2 OTNCN0NDODAeFw0yNjA1MDMwMjM4MDRaFw0yNzA1MDIwMjQzMDRaMDMxMTAvBgNV BAMTKDRBRkFFRDc1QzkxM0VEQzk2RUJGNThEOEYyOTE3OENEQzY0QTRFNDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDC2vnW3jEMEMD9wk4rePzTzU4d lNJQjJPlR20cAv9tnNLuxOt7VO9hu/0Lzw9Mv9Q/Gy/qFesb1TSyhm5aE/NRVglu vFx+ywdDCzPTpRSDhqvNYq1nTjPggXfHCz2/3dx4QMC6gIbXi38BP6G3GwPkfaIZ FO77HgwBrO+Fncp1r1WjJb9jF2rP5XTuqYo4JtWuSpCX5tAgT/X4Ck2GJ8kn1T3C Hsr4WW0d1Ty/GJ4Pp9IPhOnVdYT26R4ZoY1Hm6QZN2bhvYAKcB8gk4bm+MnyKvrY TMyo0SBwqOKn2zUi1bNVcPFGm5u8kY5jStyelW9oCMLfYWcdLv1O5h34eefvAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUSvrtdckT7cluv1jY8pF4zcZKTkEwHwYDVR0j BBgwFoAUyv06F7KtxvkAHlegG7Kem2k7fMgwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NzNmNGVjMWMtOTUzNS00Y2JmLTljN2EtZmQzMmM4MzBlZGJhLzAvQ0FGRDNBMTdC MkFEQzZGOTAwMUU1N0EwMUJCMjlFOUI2OTNCN0NDOC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9DQUZEM0ExN0IyQURDNkY5MDAxRTU3QTAxQkIyOUU5QjY5M0I3 Q0M4LmNlcjCBqQYIKwYBBQUHAQsEgZwwgZkwgZYGCCsGAQUFBzALhoGJcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzczZjRlYzFjLTk1MzUtNGNiZi05 YzdhLWZkMzJjODMwZWRiYS8wLzMyMzQzMDMwM2E2NDM5MzQzMDNhMzgzMDNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzMzNjMwMzgzOC5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQA2UAA gDANBgkqhkiG9w0BAQsFAAOCAQEAN2zTc3odPq47unVRLfSbQ6gMcx+MMojT+U4K vIZZlG8dROzN2yXpM4+jzynohoXZbt8RRclvzcuoz+hsOUeQuyzEzm4EKsD963rO ZXhezj1bcfsXJMXsdN9iE25LGAbYT3HRCmrLgLnVI6QcjuNNBgWttESymDvvuqka 63xXEIK4gIED5jDcprLMKJSVAlgo/AS+YPauSLc4+KIfn4XYBQ6h7Zm1V0CBeRVv DKQYa2MZtjA/rfG4RwbCSMvPujef21ML+lgLOABgfqYSl9me4z0IFirlNroHqwFY 19zCtqSm/tXrgBax5M7tQ/fVxXLb+u8wK8aSir1c5T9dN4ko6g== -----END CERTIFICATE-----Generated at Wed May 13 10:07:19 2026 by rpki-client