$ rpki-client -vvf rpki-rsync.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a626162613a3a2f34382d3438203d3e20313336303838.roa File: 323430303a643934303a626162613a3a2f34382d3438203d3e20313336303838.roa (raw, json) Hash identifier: D+h8jX3eqkGKLtVhz2jT7gpvFEWVMRt52UNBLxkGJhs= Subject key identifier: 28:CA:2A:98:F8:FC:6C:3C:7D:F4:F4:19:5B:22:C3:DB:A7:01:D3:66 Certificate issuer: /CN=CAFD3A17B2ADC6F9001E57A01BB29E9B693B7CC8 Certificate serial: 0DB3BC7D4C0FE2E49FBF4B0713581DB4EC4263 Authority key identifier: CA:FD:3A:17:B2:AD:C6:F9:00:1E:57:A0:1B:B2:9E:9B:69:3B:7C:C8 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CAFD3A17B2ADC6F9001E57A01BB29E9B693B7CC8.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a626162613a3a2f34382d3438203d3e20313336303838.roa Signing time: Sun 03 May 2026 02:43:04 +0000 ROA not before: Sun 03 May 2026 02:38:04 +0000 ROA not after: Sun 02 May 2027 02:43:04 +0000 asID: 136088 IP address blocks: 2400:d940:baba::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/CAFD3A17B2ADC6F9001E57A01BB29E9B693B7CC8.crl rsync://rpki-rsync.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/CAFD3A17B2ADC6F9001E57A01BB29E9B693B7CC8.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CAFD3A17B2ADC6F9001E57A01BB29E9B693B7CC8.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 02:15:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:b3:bc:7d:4c:0f:e2:e4:9f:bf:4b:07:13:58:1d:b4:ec:42:63 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CAFD3A17B2ADC6F9001E57A01BB29E9B693B7CC8 Validity Not Before: May 3 02:38:04 2026 GMT Not After : May 2 02:43:04 2027 GMT Subject: CN=28CA2A98F8FC6C3C7DF4F4195B22C3DBA701D366 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:9e:d3:f6:39:81:d5:c8:1c:99:30:5d:a7:98: cb:83:f2:08:9a:9c:9f:b3:0c:c2:31:09:9c:f9:3d: f2:75:4b:96:9c:98:59:cf:0a:27:40:0a:81:9d:d9: 62:ac:70:bd:3a:05:cc:63:2c:33:24:c8:5e:f7:b5: fe:cc:60:44:f3:77:06:6a:f7:c4:4a:47:8f:e7:3e: 4d:96:69:39:6b:12:80:bd:e6:3b:c9:2a:b0:54:8b: d1:41:9c:7e:75:8b:69:3c:9e:fa:9b:95:b8:17:e9: 25:e2:af:b6:e4:fa:17:71:b1:a6:7e:7f:59:65:ec: bb:72:ca:d8:a6:3a:e5:f4:92:18:04:a3:11:b2:b4: b7:95:6e:0e:3a:6d:64:25:31:43:fd:35:6f:7a:b0: 15:d4:f8:5d:a0:19:46:a0:ae:b3:27:69:42:cf:f4: 46:04:88:8b:93:84:a0:70:76:fd:f8:89:c3:27:37: 18:68:c6:4a:1d:16:03:47:9b:00:55:ce:49:68:cd: af:b9:6c:89:f3:08:67:22:cd:07:48:3a:6a:28:4e: 3c:ba:52:46:42:8a:a0:6a:9b:cc:63:b7:01:00:f4: f2:f4:59:73:db:88:02:a7:18:67:b2:e8:b9:4f:39: 4c:02:48:3a:1d:5c:7b:05:2d:4e:98:ea:6b:56:46: 87:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:CA:2A:98:F8:FC:6C:3C:7D:F4:F4:19:5B:22:C3:DB:A7:01:D3:66 X509v3 Authority Key Identifier: keyid:CA:FD:3A:17:B2:AD:C6:F9:00:1E:57:A0:1B:B2:9E:9B:69:3B:7C:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/CAFD3A17B2ADC6F9001E57A01BB29E9B693B7CC8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CAFD3A17B2ADC6F9001E57A01BB29E9B693B7CC8.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a626162613a3a2f34382d3438203d3e20313336303838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:d940:baba::/48 Signature Algorithm: sha256WithRSAEncryption ad:5f:4c:a6:2b:bc:52:48:af:11:35:3e:bd:fd:c8:da:85:87: 4b:d6:80:40:a7:f9:aa:01:77:f9:dd:96:20:7c:1d:9d:36:78: 15:ed:ff:49:34:6f:8d:0e:61:29:2c:5e:48:e6:10:33:94:bf: ea:c5:15:a8:7e:2a:8d:01:d8:53:96:13:5a:3c:7b:77:14:a0: 05:fa:f0:44:0a:35:6f:41:2b:7b:f1:a1:78:50:73:71:e2:02: 14:ed:6a:5d:75:4a:c2:aa:9e:ba:08:cc:d5:fb:39:72:1d:b3: f1:07:43:d0:5f:c0:3e:3d:31:a6:3e:55:87:06:23:62:cd:4f: e2:2b:3c:ba:34:a1:51:2a:3a:71:bf:56:8c:d6:4a:28:c3:37: 5a:b5:3e:05:a3:49:a1:69:4c:d0:a0:8e:5b:f5:7f:cf:6d:fc: d9:a6:d5:70:d4:cc:65:16:1a:54:b1:da:49:1d:6c:e7:46:cc: 1b:80:49:a6:bd:fb:de:d5:86:32:09:28:95:86:4a:f4:e3:4e: fe:34:9a:7a:42:7b:85:bd:dd:0c:25:5d:f0:85:00:7c:11:48: 30:d4:7b:77:3b:1d:99:7f:8e:2a:47:6c:1a:d2:d6:a0:44:16: fe:e4:68:6b:20:dc:88:1c:0b:03:9f:04:8d:ce:3c:2e:7a:78: bf:a6:9b:bd -----BEGIN CERTIFICATE----- MIIFNDCCBBygAwIBAgITDbO8fUwP4uSfv0sHE1gdtOxCYzANBgkqhkiG9w0BAQsF ADAzMTEwLwYDVQQDEyhDQUZEM0ExN0IyQURDNkY5MDAxRTU3QTAxQkIyOUU5QjY5 M0I3Q0M4MB4XDTI2MDUwMzAyMzgwNFoXDTI3MDUwMjAyNDMwNFowMzExMC8GA1UE AxMoMjhDQTJBOThGOEZDNkMzQzdERjRGNDE5NUIyMkMzREJBNzAxRDM2NjCCASIw DQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAOye0/Y5gdXIHJkwXaeYy4PyCJqc n7MMwjEJnPk98nVLlpyYWc8KJ0AKgZ3ZYqxwvToFzGMsMyTIXve1/sxgRPN3Bmr3 xEpHj+c+TZZpOWsSgL3mO8kqsFSL0UGcfnWLaTye+puVuBfpJeKvtuT6F3Gxpn5/ WWXsu3LK2KY65fSSGASjEbK0t5VuDjptZCUxQ/01b3qwFdT4XaAZRqCusydpQs/0 RgSIi5OEoHB2/fiJwyc3GGjGSh0WA0ebAFXOSWjNr7lsifMIZyLNB0g6aihOPLpS RkKKoGqbzGO3AQD08vRZc9uIAqcYZ7LouU85TAJIOh1cewUtTpjqa1ZGh3sCAwEA AaOCAj8wggI7MB0GA1UdDgQWBBQoyiqY+PxsPH309BlbIsPbpwHTZjAfBgNVHSME GDAWgBTK/ToXsq3G+QAeV6Absp6baTt8yDAOBgNVHQ8BAf8EBAMCB4AwgYYGA1Ud HwR/MH0we6B5oHeGdXJzeW5jOi8vcnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby83 M2Y0ZWMxYy05NTM1LTRjYmYtOWM3YS1mZDMyYzgzMGVkYmEvMC9DQUZEM0ExN0Iy QURDNkY5MDAxRTU3QTAxQkIyOUU5QjY5M0I3Q0M4LmNybDByBggrBgEFBQcBAQRm MGQwYgYIKwYBBQUHMAKGVnJzeW5jOi8vcnBraS1yc3luYy5pZG5pYy5uZXQvcmVw by9JRE5JQy8xL0NBRkQzQTE3QjJBREM2RjkwMDFFNTdBMDFCQjI5RTlCNjkzQjdD QzguY2VyMIGtBggrBgEFBQcBCwSBoDCBnTCBmgYIKwYBBQUHMAuGgY1yc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vNzNmNGVjMWMtOTUzNS00Y2JmLTlj N2EtZmQzMmM4MzBlZGJhLzAvMzIzNDMwMzAzYTY0MzkzNDMwM2E2MjYxNjI2MTNh M2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzMzNjMwMzgzOC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQA 2UC6ujANBgkqhkiG9w0BAQsFAAOCAQEArV9Mpiu8UkivETU+vf3I2oWHS9aAQKf5 qgF3+d2WIHwdnTZ4Fe3/STRvjQ5hKSxeSOYQM5S/6sUVqH4qjQHYU5YTWjx7dxSg BfrwRAo1b0Ere/GheFBzceICFO1qXXVKwqqeugjM1fs5ch2z8QdD0F/APj0xpj5V hwYjYs1P4is8ujShUSo6cb9WjNZKKMM3WrU+BaNJoWlM0KCOW/V/z2382abVcNTM ZRYaVLHaSR1s50bMG4BJpr373tWGMgkolYZK9ONO/jSaekJ7hb3dDCVd8IUAfBFI MNR7dzsdmX+OKkdsGtLWoEQW/uRoayDciBwLA58Ejc48Lnp4v6abvQ== -----END CERTIFICATE-----Generated at Wed May 13 14:08:28 2026 by rpki-client