$ rpki-client -vvf rpki-rsync.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a626163613a3a2f34382d3438203d3e20313336303838.roa File: 323430303a643934303a626163613a3a2f34382d3438203d3e20313336303838.roa (raw, json) Hash identifier: oABovF7KdDdlY6+CHjePOcttfLrt7gjFGQnN04lySCo= Subject key identifier: D2:D1:87:A7:FA:12:26:48:B4:5C:78:37:BC:48:5F:32:C6:44:D0:D2 Certificate issuer: /CN=CAFD3A17B2ADC6F9001E57A01BB29E9B693B7CC8 Certificate serial: 512C576407ADC779F278ACF11AD91FFEC550F9B8 Authority key identifier: CA:FD:3A:17:B2:AD:C6:F9:00:1E:57:A0:1B:B2:9E:9B:69:3B:7C:C8 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CAFD3A17B2ADC6F9001E57A01BB29E9B693B7CC8.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a626163613a3a2f34382d3438203d3e20313336303838.roa Signing time: Sun 03 May 2026 02:43:12 +0000 ROA not before: Sun 03 May 2026 02:38:12 +0000 ROA not after: Sun 02 May 2027 02:43:12 +0000 asID: 136088 IP address blocks: 2400:d940:baca::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/CAFD3A17B2ADC6F9001E57A01BB29E9B693B7CC8.crl rsync://rpki-rsync.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/CAFD3A17B2ADC6F9001E57A01BB29E9B693B7CC8.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CAFD3A17B2ADC6F9001E57A01BB29E9B693B7CC8.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 02:15:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:2c:57:64:07:ad:c7:79:f2:78:ac:f1:1a:d9:1f:fe:c5:50:f9:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CAFD3A17B2ADC6F9001E57A01BB29E9B693B7CC8 Validity Not Before: May 3 02:38:12 2026 GMT Not After : May 2 02:43:12 2027 GMT Subject: CN=D2D187A7FA122648B45C7837BC485F32C644D0D2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:7b:ad:05:0f:05:dd:86:66:8f:f8:ae:78:5e: 3d:e4:d7:eb:ed:1d:50:84:e4:6c:4a:b6:24:32:0d: c2:08:df:84:43:a5:b0:71:48:72:64:ec:c2:af:ba: a0:91:8c:24:54:20:a1:c5:c1:ec:e0:57:f9:76:36: f1:74:30:53:48:ff:4b:b0:fb:6d:ee:be:8f:b1:a2: 6e:46:3f:ae:13:57:f6:70:fb:3a:90:02:72:c2:54: 1c:90:78:a0:72:c3:2e:66:e0:c4:35:91:d9:a3:5d: 4e:b1:63:a8:dc:b5:33:5d:80:a9:6a:06:f2:66:60: ee:42:c5:e0:a4:f0:ce:85:22:92:9a:01:37:aa:9a: 12:bb:92:62:b5:47:8b:86:2d:f0:74:d3:8a:91:69: 14:83:30:e1:58:8d:15:23:90:5c:08:3c:90:26:65: 0c:c4:a0:98:72:4d:98:73:35:4a:c6:09:90:08:ff: 48:f2:ca:b0:a2:3a:34:2b:b8:cb:b9:37:63:d1:2a: 8f:26:ab:b5:e9:fa:8a:6b:c9:a4:3e:b2:75:d9:e1: e7:9a:b6:9e:02:d4:2f:73:ce:d2:c5:37:c9:21:92: c2:c2:2a:5b:08:56:19:ea:77:cf:bb:d0:d9:08:ea: 26:30:33:eb:fe:4a:db:28:c0:cd:27:64:0b:90:e5: 64:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:D1:87:A7:FA:12:26:48:B4:5C:78:37:BC:48:5F:32:C6:44:D0:D2 X509v3 Authority Key Identifier: keyid:CA:FD:3A:17:B2:AD:C6:F9:00:1E:57:A0:1B:B2:9E:9B:69:3B:7C:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/CAFD3A17B2ADC6F9001E57A01BB29E9B693B7CC8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CAFD3A17B2ADC6F9001E57A01BB29E9B693B7CC8.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a626163613a3a2f34382d3438203d3e20313336303838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:d940:baca::/48 Signature Algorithm: sha256WithRSAEncryption 6c:e5:c7:87:0e:b6:f7:b2:2c:49:98:fb:70:c8:99:56:b2:a7: 27:c0:29:4c:96:92:d0:77:b7:7b:96:b3:0e:26:61:a6:dd:3f: 8c:d9:81:72:12:e2:81:b0:5f:e2:03:82:c9:ae:9a:ed:32:9b: dd:13:5f:3e:42:db:6f:c3:cd:7d:ee:dc:a2:50:4a:55:7b:2a: 83:ac:3f:e2:a8:d1:d1:c4:b1:25:b4:6d:d3:3b:8e:2c:b5:0d: 96:10:33:68:ce:8c:c0:e1:df:bd:44:21:d7:db:0f:5d:34:a2: a4:f5:58:5b:53:c3:c9:08:43:bf:65:1e:dd:57:fb:83:9c:18: 49:59:f3:01:a6:bb:3c:e5:64:35:8b:05:d1:18:9c:e1:34:c2: 33:dd:1a:23:07:4c:d8:31:3a:75:5d:52:c1:d3:19:0a:87:be: cc:ab:17:81:0f:0b:b4:93:25:7c:0c:94:3f:e0:1f:73:a9:8c: 71:15:c8:48:db:75:18:69:9d:3a:46:da:16:4f:e9:f8:88:7e: e7:8b:6e:65:78:29:94:94:40:66:87:03:05:be:ba:61:ea:78: 5f:31:c8:f9:d1:2f:4a:c5:7f:e1:ed:7b:9a:e4:19:d8:fd:70: 6c:07:5d:21:f2:24:d4:27:c9:8c:9d:3e:d7:77:f2:7b:e2:b1: 25:67:72:5f -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUUSxXZAetx3nyeKzxGtkf/sVQ+bgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0FGRDNBMTdCMkFEQzZGOTAwMUU1N0EwMUJCMjlFOUI2 OTNCN0NDODAeFw0yNjA1MDMwMjM4MTJaFw0yNzA1MDIwMjQzMTJaMDMxMTAvBgNV BAMTKEQyRDE4N0E3RkExMjI2NDhCNDVDNzgzN0JDNDg1RjMyQzY0NEQwRDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEe60FDwXdhmaP+K54Xj3k1+vt HVCE5GxKtiQyDcII34RDpbBxSHJk7MKvuqCRjCRUIKHFwezgV/l2NvF0MFNI/0uw +23uvo+xom5GP64TV/Zw+zqQAnLCVByQeKBywy5m4MQ1kdmjXU6xY6jctTNdgKlq BvJmYO5CxeCk8M6FIpKaATeqmhK7kmK1R4uGLfB004qRaRSDMOFYjRUjkFwIPJAm ZQzEoJhyTZhzNUrGCZAI/0jyyrCiOjQruMu5N2PRKo8mq7Xp+opryaQ+snXZ4eea tp4C1C9zztLFN8khksLCKlsIVhnqd8+70NkI6iYwM+v+StsowM0nZAuQ5WRXAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQU0tGHp/oSJki0XHg3vEhfMsZE0NIwHwYDVR0j BBgwFoAUyv06F7KtxvkAHlegG7Kem2k7fMgwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NzNmNGVjMWMtOTUzNS00Y2JmLTljN2EtZmQzMmM4MzBlZGJhLzAvQ0FGRDNBMTdC MkFEQzZGOTAwMUU1N0EwMUJCMjlFOUI2OTNCN0NDOC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9DQUZEM0ExN0IyQURDNkY5MDAxRTU3QTAxQkIyOUU5QjY5M0I3 Q0M4LmNlcjCBrQYIKwYBBQUHAQsEgaAwgZ0wgZoGCCsGAQUFBzALhoGNcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzczZjRlYzFjLTk1MzUtNGNiZi05 YzdhLWZkMzJjODMwZWRiYS8wLzMyMzQzMDMwM2E2NDM5MzQzMDNhNjI2MTYzNjEz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTMzMzYzMDM4Mzgucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk ANlAusowDQYJKoZIhvcNAQELBQADggEBAGzlx4cOtveyLEmY+3DImVaypyfAKUyW ktB3t3uWsw4mYabdP4zZgXIS4oGwX+IDgsmumu0ym90TXz5C22/DzX3u3KJQSlV7 KoOsP+Ko0dHEsSW0bdM7jiy1DZYQM2jOjMDh371EIdfbD100oqT1WFtTw8kIQ79l Ht1X+4OcGElZ8wGmuzzlZDWLBdEYnOE0wjPdGiMHTNgxOnVdUsHTGQqHvsyrF4EP C7STJXwMlD/gH3OpjHEVyEjbdRhpnTpG2hZP6fiIfueLbmV4KZSUQGaHAwW+umHq eF8xyPnRL0rFf+Hte5rkGdj9cGwHXSHyJNQnyYydPtd38nvisSVncl8= -----END CERTIFICATE-----Generated at Wed May 13 12:51:46 2026 by rpki-client