$ rpki-client -vvf rpki-rsync.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a39303a3a2f34382d3438203d3e20313336303838.roa File: 323430303a643934303a39303a3a2f34382d3438203d3e20313336303838.roa (raw, json) Hash identifier: RC9a6LW/+eoJDdWzw8/UK2UNfYC2bIi6jAgj1aXZwfs= Subject key identifier: 25:76:81:75:89:E6:31:E1:D9:E7:CD:C2:20:54:A5:4C:5E:59:A4:95 Certificate issuer: /CN=CAFD3A17B2ADC6F9001E57A01BB29E9B693B7CC8 Certificate serial: 31638B7DEA7D6EE20211F33F4DF9F187899A6E77 Authority key identifier: CA:FD:3A:17:B2:AD:C6:F9:00:1E:57:A0:1B:B2:9E:9B:69:3B:7C:C8 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CAFD3A17B2ADC6F9001E57A01BB29E9B693B7CC8.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a39303a3a2f34382d3438203d3e20313336303838.roa Signing time: Sun 03 May 2026 02:43:05 +0000 ROA not before: Sun 03 May 2026 02:38:05 +0000 ROA not after: Sun 02 May 2027 02:43:05 +0000 asID: 136088 IP address blocks: 2400:d940:90::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/CAFD3A17B2ADC6F9001E57A01BB29E9B693B7CC8.crl rsync://rpki-rsync.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/CAFD3A17B2ADC6F9001E57A01BB29E9B693B7CC8.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CAFD3A17B2ADC6F9001E57A01BB29E9B693B7CC8.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 02:15:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:63:8b:7d:ea:7d:6e:e2:02:11:f3:3f:4d:f9:f1:87:89:9a:6e:77 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CAFD3A17B2ADC6F9001E57A01BB29E9B693B7CC8 Validity Not Before: May 3 02:38:05 2026 GMT Not After : May 2 02:43:05 2027 GMT Subject: CN=2576817589E631E1D9E7CDC22054A54C5E59A495 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:50:c6:7b:07:ee:e8:0f:a1:26:09:5c:66:6d: b9:5b:49:c8:8c:8a:c6:42:71:a1:ae:07:4b:e8:57: 85:2c:66:3e:c3:89:33:8f:47:ed:20:6b:48:89:77: 4f:94:5c:ad:09:f8:8a:3e:76:7a:8d:57:a7:5b:cc: 2a:38:88:65:ec:c7:38:d5:48:08:61:4a:ce:eb:c4: 55:20:bb:8a:8a:79:f4:e0:27:58:1d:01:3c:e2:34: fa:e1:ee:1b:4d:ce:5e:9d:a5:1e:90:c2:d7:5a:1a: bc:4b:af:32:42:f7:77:1b:5b:d2:b5:cb:31:c3:55: 78:10:f3:ef:b5:82:4d:2b:10:de:94:0a:8a:f1:74: e6:56:65:f0:c1:35:57:62:8a:5e:e4:3a:18:c4:05: bf:44:9d:2d:7e:71:59:4e:8d:6c:d6:20:6a:82:26: 5a:cb:61:61:c8:3f:b6:a7:69:ab:07:1b:5f:c2:25: 9a:59:e9:fe:10:9b:84:26:2d:f5:21:07:23:f9:25: a7:1b:b3:65:b2:e1:a2:a3:ae:94:44:84:7a:2e:2a: 10:b6:20:74:ad:f0:3e:7a:c8:3c:87:13:e8:0f:8a: d6:67:57:bd:dd:d2:dd:16:de:8d:17:5d:d9:9b:7b: f3:57:1c:2e:ec:f8:52:b1:76:09:d9:ff:a9:1a:17: 31:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:76:81:75:89:E6:31:E1:D9:E7:CD:C2:20:54:A5:4C:5E:59:A4:95 X509v3 Authority Key Identifier: keyid:CA:FD:3A:17:B2:AD:C6:F9:00:1E:57:A0:1B:B2:9E:9B:69:3B:7C:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/CAFD3A17B2ADC6F9001E57A01BB29E9B693B7CC8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CAFD3A17B2ADC6F9001E57A01BB29E9B693B7CC8.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a39303a3a2f34382d3438203d3e20313336303838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:d940:90::/48 Signature Algorithm: sha256WithRSAEncryption 99:2d:c4:98:ee:3e:a1:17:6b:a0:43:f5:b6:a6:fa:a8:20:78: cc:cf:f6:50:29:64:d5:6c:14:65:19:04:15:78:f7:9c:f2:8d: 37:53:42:c6:bc:51:53:8c:2d:c5:ad:b5:85:b0:ac:d9:17:8f: 74:44:c0:f9:f9:38:5e:76:0a:ec:a8:62:f4:0e:31:d2:f1:57: 74:21:6c:40:9c:8d:8e:e6:f4:a5:69:7c:51:02:ed:b9:4d:7c: f6:f1:94:5f:70:de:94:5e:90:f9:56:c8:0d:72:08:f6:34:36: 30:b9:8c:13:44:ca:69:75:eb:ee:9d:a8:6a:25:0d:be:ad:9f: af:13:a3:72:cb:aa:df:8a:60:7e:7e:17:44:37:72:15:20:1b: 2d:7c:d7:b7:31:2d:12:cd:15:ad:79:8f:8a:f1:9e:90:43:0a: 42:e4:5c:36:74:de:f8:6d:4d:35:46:3e:6c:79:6d:4b:af:c8: 5c:46:6d:a1:06:29:af:5a:57:ee:0a:1c:e0:64:f5:b7:d4:75: ff:e3:a1:ab:88:7f:11:81:43:f3:dd:c0:4c:6e:b8:e5:b6:87: 27:b8:d9:ec:7a:c0:f9:4e:fd:1e:57:41:3a:ee:f0:22:fa:7b: 51:f6:c4:d6:ae:f5:05:f2:a7:01:02:4a:1b:9e:22:b7:92:8a: ba:2e:d4:83 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUMWOLfep9buICEfM/Tfnxh4mabncwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0FGRDNBMTdCMkFEQzZGOTAwMUU1N0EwMUJCMjlFOUI2 OTNCN0NDODAeFw0yNjA1MDMwMjM4MDVaFw0yNzA1MDIwMjQzMDVaMDMxMTAvBgNV BAMTKDI1NzY4MTc1ODlFNjMxRTFEOUU3Q0RDMjIwNTRBNTRDNUU1OUE0OTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQUMZ7B+7oD6EmCVxmbblbSciM isZCcaGuB0voV4UsZj7DiTOPR+0ga0iJd0+UXK0J+Io+dnqNV6dbzCo4iGXsxzjV SAhhSs7rxFUgu4qKefTgJ1gdATziNPrh7htNzl6dpR6QwtdaGrxLrzJC93cbW9K1 yzHDVXgQ8++1gk0rEN6UCorxdOZWZfDBNVdiil7kOhjEBb9EnS1+cVlOjWzWIGqC JlrLYWHIP7anaasHG1/CJZpZ6f4Qm4QmLfUhByP5Jacbs2Wy4aKjrpREhHouKhC2 IHSt8D56yDyHE+gPitZnV73d0t0W3o0XXdmbe/NXHC7s+FKxdgnZ/6kaFzFBAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUJXaBdYnmMeHZ583CIFSlTF5ZpJUwHwYDVR0j BBgwFoAUyv06F7KtxvkAHlegG7Kem2k7fMgwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NzNmNGVjMWMtOTUzNS00Y2JmLTljN2EtZmQzMmM4MzBlZGJhLzAvQ0FGRDNBMTdC MkFEQzZGOTAwMUU1N0EwMUJCMjlFOUI2OTNCN0NDOC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9DQUZEM0ExN0IyQURDNkY5MDAxRTU3QTAxQkIyOUU5QjY5M0I3 Q0M4LmNlcjCBqQYIKwYBBQUHAQsEgZwwgZkwgZYGCCsGAQUFBzALhoGJcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzczZjRlYzFjLTk1MzUtNGNiZi05 YzdhLWZkMzJjODMwZWRiYS8wLzMyMzQzMDMwM2E2NDM5MzQzMDNhMzkzMDNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzMzNjMwMzgzOC5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQA2UAA kDANBgkqhkiG9w0BAQsFAAOCAQEAmS3EmO4+oRdroEP1tqb6qCB4zM/2UClk1WwU ZRkEFXj3nPKNN1NCxrxRU4wtxa21hbCs2RePdETA+fk4XnYK7Khi9A4x0vFXdCFs QJyNjub0pWl8UQLtuU189vGUX3DelF6Q+VbIDXII9jQ2MLmME0TKaXXr7p2oaiUN vq2frxOjcsuq34pgfn4XRDdyFSAbLXzXtzEtEs0VrXmPivGekEMKQuRcNnTe+G1N NUY+bHltS6/IXEZtoQYpr1pX7goc4GT1t9R1/+Ohq4h/EYFD893ATG645baHJ7jZ 7HrA+U79HldBOu7wIvp7UfbE1q71BfKnAQJKG54it5KKui7Ugw== -----END CERTIFICATE-----Generated at Wed May 13 10:36:39 2026 by rpki-client