$ rpki-client -vvf rpki-rsync.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a3a2f33322d3332203d3e20313336303838.roa File: 323430303a643934303a3a2f33322d3332203d3e20313336303838.roa (raw, json) Hash identifier: 6v3qgdUIZjmuHWouV9dOsfbIOPcGM+FuLf4il05N+Ek= Subject key identifier: 0A:C3:6C:E6:11:56:4E:A6:36:57:D3:59:FB:BF:DC:2A:0A:FF:5F:2E Certificate issuer: /CN=CAFD3A17B2ADC6F9001E57A01BB29E9B693B7CC8 Certificate serial: 368AD71350236F01032B27FECCBD2F61725D245E Authority key identifier: CA:FD:3A:17:B2:AD:C6:F9:00:1E:57:A0:1B:B2:9E:9B:69:3B:7C:C8 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CAFD3A17B2ADC6F9001E57A01BB29E9B693B7CC8.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a3a2f33322d3332203d3e20313336303838.roa Signing time: Sun 03 May 2026 02:43:08 +0000 ROA not before: Sun 03 May 2026 02:38:08 +0000 ROA not after: Sun 02 May 2027 02:43:08 +0000 asID: 136088 IP address blocks: 2400:d940::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/CAFD3A17B2ADC6F9001E57A01BB29E9B693B7CC8.crl rsync://rpki-rsync.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/CAFD3A17B2ADC6F9001E57A01BB29E9B693B7CC8.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CAFD3A17B2ADC6F9001E57A01BB29E9B693B7CC8.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 02:15:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:8a:d7:13:50:23:6f:01:03:2b:27:fe:cc:bd:2f:61:72:5d:24:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CAFD3A17B2ADC6F9001E57A01BB29E9B693B7CC8 Validity Not Before: May 3 02:38:08 2026 GMT Not After : May 2 02:43:08 2027 GMT Subject: CN=0AC36CE611564EA63657D359FBBFDC2A0AFF5F2E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:d1:31:49:b0:ae:75:0d:38:a3:5a:2b:c2:49: 6e:87:39:5b:dc:3e:2b:d0:4a:3c:08:df:0b:43:ac: 16:67:5b:5f:8e:51:35:c2:30:11:41:75:5d:2d:ca: c8:d4:e3:ea:eb:34:a1:22:c5:25:3c:99:b8:3c:d9: cf:c4:27:5a:d4:46:6c:68:a9:74:89:cb:ed:26:97: 0a:4d:6c:11:e1:d0:3b:6d:41:fb:e6:07:36:2a:76: 7c:4e:ef:c6:18:15:d2:f6:6c:4c:cd:87:f0:d5:1e: 70:28:9e:10:2d:33:4d:9d:83:07:0f:44:45:51:90: 9f:05:d6:34:8a:52:ee:5d:09:9e:5b:32:b7:b2:f2: 1d:f3:d5:16:f4:54:69:39:e6:63:29:c1:49:a7:c0: fe:21:94:80:60:4a:87:d4:3b:52:b0:db:3c:40:2d: 1d:80:bd:29:04:ba:a9:c7:43:86:97:04:e0:5b:1b: 2e:d8:e9:6e:08:f0:8e:45:95:aa:0a:19:27:cc:c8: 91:78:62:fc:73:f2:f9:6d:66:80:a6:55:9c:cb:01: 3f:4a:49:74:cc:ba:e6:6e:f0:dc:3f:3f:c8:f2:ef: 34:20:d8:f7:70:a5:92:37:29:86:86:43:19:05:d2: f8:e4:70:63:cd:77:2e:99:fe:2a:fa:63:7a:04:21: 18:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:C3:6C:E6:11:56:4E:A6:36:57:D3:59:FB:BF:DC:2A:0A:FF:5F:2E X509v3 Authority Key Identifier: keyid:CA:FD:3A:17:B2:AD:C6:F9:00:1E:57:A0:1B:B2:9E:9B:69:3B:7C:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/CAFD3A17B2ADC6F9001E57A01BB29E9B693B7CC8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CAFD3A17B2ADC6F9001E57A01BB29E9B693B7CC8.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a3a2f33322d3332203d3e20313336303838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:d940::/32 Signature Algorithm: sha256WithRSAEncryption 3b:39:03:40:bc:6c:8a:45:48:3b:df:1f:d4:f0:d9:68:47:b3: 1d:27:b9:38:16:33:22:b8:0a:25:c6:81:d2:80:ca:78:89:73: 7c:5d:4d:c9:6a:0f:b6:7c:12:4a:77:a6:a1:05:90:3b:7c:81: 6f:f4:31:f2:b8:bc:ba:54:14:de:7a:67:2d:9f:29:81:95:81: c2:29:f1:5d:7d:73:de:2c:5f:05:a1:f3:c1:50:5e:28:16:6c: 50:06:ff:97:f3:3b:75:aa:0a:bd:2d:5f:d3:13:87:7a:dc:13: e6:4c:3d:c5:34:07:8e:10:ee:6a:88:45:36:22:57:a0:50:bc: 7b:4d:9f:e5:44:ae:32:23:bd:7d:51:47:4d:b3:1f:c6:52:f3: ad:de:a4:51:e5:2b:70:b8:65:07:ce:c2:9c:46:a7:b3:ae:34: 30:ae:63:67:71:61:13:b5:d8:e2:9d:f7:14:c6:e6:8b:dc:ff: 05:7f:c8:69:58:f7:28:d7:e0:5e:81:65:89:ba:1a:08:bb:d9: f9:8a:17:0d:6d:4b:ff:3e:07:80:70:3f:23:9d:11:b0:73:25: c8:ce:ef:b1:b0:d5:b3:d5:56:f0:cb:73:46:62:a0:13:6e:0c: 12:5c:99:de:1a:83:79:d2:91:e8:c2:6e:a3:fa:2a:56:15:5d: 9f:db:81:23 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUNorXE1AjbwEDKyf+zL0vYXJdJF4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0FGRDNBMTdCMkFEQzZGOTAwMUU1N0EwMUJCMjlFOUI2 OTNCN0NDODAeFw0yNjA1MDMwMjM4MDhaFw0yNzA1MDIwMjQzMDhaMDMxMTAvBgNV BAMTKDBBQzM2Q0U2MTE1NjRFQTYzNjU3RDM1OUZCQkZEQzJBMEFGRjVGMkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCr0TFJsK51DTijWivCSW6HOVvc PivQSjwI3wtDrBZnW1+OUTXCMBFBdV0tysjU4+rrNKEixSU8mbg82c/EJ1rURmxo qXSJy+0mlwpNbBHh0DttQfvmBzYqdnxO78YYFdL2bEzNh/DVHnAonhAtM02dgwcP REVRkJ8F1jSKUu5dCZ5bMrey8h3z1Rb0VGk55mMpwUmnwP4hlIBgSofUO1Kw2zxA LR2AvSkEuqnHQ4aXBOBbGy7Y6W4I8I5FlaoKGSfMyJF4Yvxz8vltZoCmVZzLAT9K SXTMuuZu8Nw/P8jy7zQg2PdwpZI3KYaGQxkF0vjkcGPNdy6Z/ir6Y3oEIRhZAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUCsNs5hFWTqY2V9NZ+7/cKgr/Xy4wHwYDVR0j BBgwFoAUyv06F7KtxvkAHlegG7Kem2k7fMgwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NzNmNGVjMWMtOTUzNS00Y2JmLTljN2EtZmQzMmM4MzBlZGJhLzAvQ0FGRDNBMTdC MkFEQzZGOTAwMUU1N0EwMUJCMjlFOUI2OTNCN0NDOC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9DQUZEM0ExN0IyQURDNkY5MDAxRTU3QTAxQkIyOUU5QjY5M0I3 Q0M4LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzczZjRlYzFjLTk1MzUtNGNiZi05 YzdhLWZkMzJjODMwZWRiYS8wLzMyMzQzMDMwM2E2NDM5MzQzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzMzNjMwMzgzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQA2UAwDQYJKoZI hvcNAQELBQADggEBADs5A0C8bIpFSDvfH9Tw2WhHsx0nuTgWMyK4CiXGgdKAyniJ c3xdTclqD7Z8Ekp3pqEFkDt8gW/0MfK4vLpUFN56Zy2fKYGVgcIp8V19c94sXwWh 88FQXigWbFAG/5fzO3WqCr0tX9MTh3rcE+ZMPcU0B44Q7mqIRTYiV6BQvHtNn+VE rjIjvX1RR02zH8ZS863epFHlK3C4ZQfOwpxGp7OuNDCuY2dxYRO12OKd9xTG5ovc /wV/yGlY9yjX4F6BZYm6Ggi72fmKFw1tS/8+B4BwPyOdEbBzJcjO77Gw1bPVVvDL c0ZioBNuDBJcmd4ag3nSkejCbqP6KlYVXZ/bgSM= -----END CERTIFICATE-----Generated at Wed May 13 10:07:32 2026 by rpki-client