$ rpki-client -vvf rpki-rsync.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a633030303a3a2f34382d3438203d3e20313336303838.roa File: 323430303a643934303a633030303a3a2f34382d3438203d3e20313336303838.roa (raw, json) Hash identifier: RWX46rojpF6BQSm8l4yUodE90WBaf+wB8Y4OTAFQ4ME= Subject key identifier: C3:F3:3D:46:3D:CC:76:4F:54:50:17:FE:8D:6E:6A:98:43:6E:05:33 Certificate issuer: /CN=CAFD3A17B2ADC6F9001E57A01BB29E9B693B7CC8 Certificate serial: 0F5BAA1DB926DFE6AE9842AACF93AA9650FA33A8 Authority key identifier: CA:FD:3A:17:B2:AD:C6:F9:00:1E:57:A0:1B:B2:9E:9B:69:3B:7C:C8 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CAFD3A17B2ADC6F9001E57A01BB29E9B693B7CC8.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a633030303a3a2f34382d3438203d3e20313336303838.roa Signing time: Sun 03 May 2026 02:43:01 +0000 ROA not before: Sun 03 May 2026 02:38:01 +0000 ROA not after: Sun 02 May 2027 02:43:01 +0000 asID: 136088 IP address blocks: 2400:d940:c000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/CAFD3A17B2ADC6F9001E57A01BB29E9B693B7CC8.crl rsync://rpki-rsync.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/CAFD3A17B2ADC6F9001E57A01BB29E9B693B7CC8.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CAFD3A17B2ADC6F9001E57A01BB29E9B693B7CC8.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 02:15:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:5b:aa:1d:b9:26:df:e6:ae:98:42:aa:cf:93:aa:96:50:fa:33:a8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CAFD3A17B2ADC6F9001E57A01BB29E9B693B7CC8 Validity Not Before: May 3 02:38:01 2026 GMT Not After : May 2 02:43:01 2027 GMT Subject: CN=C3F33D463DCC764F545017FE8D6E6A98436E0533 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:14:96:ac:92:40:e5:8f:e8:ad:10:3c:2c:59: d9:2d:e7:bd:89:cd:16:05:d6:17:c8:32:15:5b:42: 77:a8:21:9e:01:ba:d7:6e:ab:81:90:d0:ad:58:c0: c2:6f:f5:1e:ba:9e:aa:e1:a3:9d:2b:b4:09:35:e4: e8:1b:73:7e:ff:7e:e5:b6:b9:eb:5f:41:3d:05:33: 9b:0f:67:61:9e:8f:0d:75:c7:a3:dc:28:92:fa:1a: c8:ad:c9:1e:10:14:58:d7:44:d7:a1:9b:5d:ff:b5: 09:83:28:2f:31:8f:6a:bc:5f:40:b6:eb:2a:5a:c2: 53:8e:85:ab:4c:fa:ae:c4:f0:f1:2b:29:c3:dd:51: 3f:c1:0b:22:36:89:3b:c4:53:20:f8:3c:13:7c:da: de:f1:e2:3a:c1:c9:c1:c4:ff:ba:2d:56:e5:86:45: 77:50:d3:ba:af:89:31:81:e2:18:64:d8:1a:94:ba: 65:85:b2:30:eb:ac:16:af:e2:03:30:4a:1b:15:96: 62:e0:5b:24:19:92:0d:bd:e0:35:04:9a:a3:61:06: 04:7f:ec:aa:b4:61:12:e0:36:1d:ef:75:3f:75:7a: 38:2f:84:7c:a7:3a:40:c5:04:bf:df:83:10:ac:4e: 9b:1c:60:e1:3c:bf:e4:af:f3:16:a2:1c:c9:84:f7: f1:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:F3:3D:46:3D:CC:76:4F:54:50:17:FE:8D:6E:6A:98:43:6E:05:33 X509v3 Authority Key Identifier: keyid:CA:FD:3A:17:B2:AD:C6:F9:00:1E:57:A0:1B:B2:9E:9B:69:3B:7C:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/CAFD3A17B2ADC6F9001E57A01BB29E9B693B7CC8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CAFD3A17B2ADC6F9001E57A01BB29E9B693B7CC8.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a633030303a3a2f34382d3438203d3e20313336303838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:d940:c000::/48 Signature Algorithm: sha256WithRSAEncryption 35:9e:2d:02:af:f2:c4:d8:43:28:bb:56:51:6a:93:a2:0a:fc: cd:be:f2:93:0d:3f:19:8a:cd:9d:79:5a:61:2e:9f:16:ad:6e: b0:60:06:c9:e9:20:3d:ba:63:96:32:08:3d:48:51:70:56:e7: 7f:a9:74:e1:f8:b5:bf:cf:7e:db:a0:fc:84:fb:6e:c4:64:7b: ef:c8:55:d0:06:40:ea:a4:55:b0:31:88:ed:ab:0d:fa:ca:7d: 53:94:f8:57:fe:e2:5b:17:fa:d7:ca:7c:0c:37:84:20:02:40: 14:b2:3b:b9:d2:8c:5b:c5:6b:82:45:fe:8f:02:5c:86:6e:a0: a2:a1:bb:a7:3a:28:81:c3:6c:06:80:22:e0:aa:63:09:7a:1b: 02:42:84:60:fa:c4:86:de:20:e4:10:73:53:31:2f:08:7f:e6: 5c:a7:62:2e:5b:6e:39:08:c9:e4:5e:9a:a4:71:12:e6:8f:ce: d5:b9:79:97:c2:1a:01:74:ae:33:f1:88:60:7d:b7:38:3d:74: 68:4f:82:e4:11:be:41:0b:49:0f:55:53:98:96:1b:15:48:14: a8:02:2f:b7:94:66:ac:13:09:16:a9:95:88:57:15:1d:55:a1: 7b:34:14:4d:71:eb:87:f6:14:97:4e:c3:88:0e:e2:af:aa:eb: d7:7c:7c:6e -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUD1uqHbkm3+aumEKqz5OqllD6M6gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0FGRDNBMTdCMkFEQzZGOTAwMUU1N0EwMUJCMjlFOUI2 OTNCN0NDODAeFw0yNjA1MDMwMjM4MDFaFw0yNzA1MDIwMjQzMDFaMDMxMTAvBgNV BAMTKEMzRjMzRDQ2M0RDQzc2NEY1NDUwMTdGRThENkU2QTk4NDM2RTA1MzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvFJaskkDlj+itEDwsWdkt572J zRYF1hfIMhVbQneoIZ4Butduq4GQ0K1YwMJv9R66nqrho50rtAk15Ogbc37/fuW2 uetfQT0FM5sPZ2Gejw11x6PcKJL6GsityR4QFFjXRNehm13/tQmDKC8xj2q8X0C2 6ypawlOOhatM+q7E8PErKcPdUT/BCyI2iTvEUyD4PBN82t7x4jrBycHE/7otVuWG RXdQ07qviTGB4hhk2BqUumWFsjDrrBav4gMwShsVlmLgWyQZkg294DUEmqNhBgR/ 7Kq0YRLgNh3vdT91ejgvhHynOkDFBL/fgxCsTpscYOE8v+Sv8xaiHMmE9/GHAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUw/M9Rj3Mdk9UUBf+jW5qmENuBTMwHwYDVR0j BBgwFoAUyv06F7KtxvkAHlegG7Kem2k7fMgwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NzNmNGVjMWMtOTUzNS00Y2JmLTljN2EtZmQzMmM4MzBlZGJhLzAvQ0FGRDNBMTdC MkFEQzZGOTAwMUU1N0EwMUJCMjlFOUI2OTNCN0NDOC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9DQUZEM0ExN0IyQURDNkY5MDAxRTU3QTAxQkIyOUU5QjY5M0I3 Q0M4LmNlcjCBrQYIKwYBBQUHAQsEgaAwgZ0wgZoGCCsGAQUFBzALhoGNcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzczZjRlYzFjLTk1MzUtNGNiZi05 YzdhLWZkMzJjODMwZWRiYS8wLzMyMzQzMDMwM2E2NDM5MzQzMDNhNjMzMDMwMzAz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTMzMzYzMDM4Mzgucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk ANlAwAAwDQYJKoZIhvcNAQELBQADggEBADWeLQKv8sTYQyi7VlFqk6IK/M2+8pMN PxmKzZ15WmEunxatbrBgBsnpID26Y5YyCD1IUXBW53+pdOH4tb/Pftug/IT7bsRk e+/IVdAGQOqkVbAxiO2rDfrKfVOU+Ff+4lsX+tfKfAw3hCACQBSyO7nSjFvFa4JF /o8CXIZuoKKhu6c6KIHDbAaAIuCqYwl6GwJChGD6xIbeIOQQc1MxLwh/5lynYi5b bjkIyeRemqRxEuaPztW5eZfCGgF0rjPxiGB9tzg9dGhPguQRvkELSQ9VU5iWGxVI FKgCL7eUZqwTCRaplYhXFR1VoXs0FE1x64f2FJdOw4gO4q+q69d8fG4= -----END CERTIFICATE-----Generated at Wed May 13 11:52:45 2026 by rpki-client