$ rpki-client -vvf rpki-rsync.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a636162653a3a2f34382d3438203d3e20313336303838.roa File: 323430303a643934303a636162653a3a2f34382d3438203d3e20313336303838.roa (raw, json) Hash identifier: cEoIyEjinxE4GnYC0CNRuXvF+WOLWNhACz4dP/4/xaU= Subject key identifier: 5A:E4:6A:FB:C7:E3:87:09:18:E4:D8:06:79:90:4A:E9:76:84:A9:E5 Certificate issuer: /CN=CAFD3A17B2ADC6F9001E57A01BB29E9B693B7CC8 Certificate serial: 7E82AFDDE4D098ADABF068E4D625BD54A4EC285C Authority key identifier: CA:FD:3A:17:B2:AD:C6:F9:00:1E:57:A0:1B:B2:9E:9B:69:3B:7C:C8 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CAFD3A17B2ADC6F9001E57A01BB29E9B693B7CC8.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a636162653a3a2f34382d3438203d3e20313336303838.roa Signing time: Sun 03 May 2026 02:43:02 +0000 ROA not before: Sun 03 May 2026 02:38:02 +0000 ROA not after: Sun 02 May 2027 02:43:02 +0000 asID: 136088 IP address blocks: 2400:d940:cabe::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/CAFD3A17B2ADC6F9001E57A01BB29E9B693B7CC8.crl rsync://rpki-rsync.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/CAFD3A17B2ADC6F9001E57A01BB29E9B693B7CC8.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CAFD3A17B2ADC6F9001E57A01BB29E9B693B7CC8.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 02:15:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:82:af:dd:e4:d0:98:ad:ab:f0:68:e4:d6:25:bd:54:a4:ec:28:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CAFD3A17B2ADC6F9001E57A01BB29E9B693B7CC8 Validity Not Before: May 3 02:38:02 2026 GMT Not After : May 2 02:43:02 2027 GMT Subject: CN=5AE46AFBC7E3870918E4D80679904AE97684A9E5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:5d:11:35:9c:53:b5:ce:9c:84:1e:ab:09:3e: e0:e0:77:83:67:db:d0:ce:45:61:11:14:86:db:fd: e9:ed:07:ef:67:f0:c3:c7:b9:f0:01:dc:73:b0:c4: ef:3a:49:61:63:bb:97:d4:d9:83:ae:a2:c4:a0:09: 99:bb:d3:77:1e:a6:1a:7d:c2:5b:23:10:1b:6d:03: 81:dc:82:f3:d8:55:19:73:44:df:89:64:17:6f:f9: 54:94:39:f7:db:bd:98:19:a4:81:0e:06:90:98:b9: 84:bc:9b:36:39:b6:35:81:ee:eb:f3:73:97:72:90: e6:da:f2:73:49:83:15:19:f8:58:50:eb:c6:bd:e0: 8a:6b:7b:ed:5a:88:38:e1:53:38:ad:7d:ee:51:ea: bf:0a:3d:f8:54:be:d0:25:d5:ea:62:4d:9a:1c:11: 23:3a:ba:f5:8a:e2:e6:d4:08:41:e9:14:30:58:5e: b0:96:7d:b8:0a:5e:d3:e6:e4:79:4a:ce:ea:4e:a8: df:27:0f:60:60:20:31:64:5b:8e:cf:67:f4:f9:c0: 83:fa:23:fa:c4:8c:50:87:5d:64:ec:e7:2f:eb:48: 94:8d:05:d3:a4:29:bc:f1:25:e6:4d:22:c9:d1:17: a3:79:d9:ac:02:d2:3e:cc:91:b8:96:33:97:92:a4: 1c:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:E4:6A:FB:C7:E3:87:09:18:E4:D8:06:79:90:4A:E9:76:84:A9:E5 X509v3 Authority Key Identifier: keyid:CA:FD:3A:17:B2:AD:C6:F9:00:1E:57:A0:1B:B2:9E:9B:69:3B:7C:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/CAFD3A17B2ADC6F9001E57A01BB29E9B693B7CC8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CAFD3A17B2ADC6F9001E57A01BB29E9B693B7CC8.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a636162653a3a2f34382d3438203d3e20313336303838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:d940:cabe::/48 Signature Algorithm: sha256WithRSAEncryption 46:ca:39:57:5f:bf:30:64:1e:ab:59:3b:e4:d8:e8:39:ce:dc: 9f:9d:12:b6:d9:09:a6:1c:92:50:85:30:5d:5e:32:54:7e:f1: dd:c8:a9:fc:32:5c:75:4c:b2:56:31:44:34:ef:e2:8f:b2:c5: 1c:a0:e7:b3:dc:34:34:37:c4:37:c9:cc:94:e6:72:d7:ec:94: c5:7d:4d:4c:04:09:6f:51:2f:4e:56:11:1d:12:f2:dc:73:2f: 34:af:a7:01:55:c5:7f:c4:e4:07:fc:97:1c:18:a8:b3:9a:c6: d7:82:36:62:8d:e0:56:1d:a2:95:ce:dd:a3:bf:fa:a3:51:a4: 0d:9a:55:c7:93:32:c1:35:57:50:06:d1:71:79:bd:63:0d:96: 8c:17:84:37:3b:7e:41:ab:03:c3:dc:f3:43:f8:ff:81:db:67: c9:df:7b:ab:97:ac:e9:6e:4c:8b:76:0b:b5:1b:6f:88:d1:5a: 9d:b0:84:f6:d3:2a:76:b5:7a:70:e9:0d:de:c3:ee:2c:87:2d: c7:3a:a0:c0:84:86:36:87:0d:42:83:38:52:5b:a6:eb:21:29: 97:17:8d:d1:1b:5c:e4:cb:59:33:09:57:0e:a9:55:8a:11:3a: 29:14:93:fc:c5:d5:19:12:a4:a8:cf:6d:cf:f9:23:53:85:b0: e3:94:10:38 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUfoKv3eTQmK2r8Gjk1iW9VKTsKFwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0FGRDNBMTdCMkFEQzZGOTAwMUU1N0EwMUJCMjlFOUI2 OTNCN0NDODAeFw0yNjA1MDMwMjM4MDJaFw0yNzA1MDIwMjQzMDJaMDMxMTAvBgNV BAMTKDVBRTQ2QUZCQzdFMzg3MDkxOEU0RDgwNjc5OTA0QUU5NzY4NEE5RTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzXRE1nFO1zpyEHqsJPuDgd4Nn 29DORWERFIbb/entB+9n8MPHufAB3HOwxO86SWFju5fU2YOuosSgCZm703cephp9 wlsjEBttA4HcgvPYVRlzRN+JZBdv+VSUOffbvZgZpIEOBpCYuYS8mzY5tjWB7uvz c5dykOba8nNJgxUZ+FhQ68a94Ipre+1aiDjhUzitfe5R6r8KPfhUvtAl1epiTZoc ESM6uvWK4ubUCEHpFDBYXrCWfbgKXtPm5HlKzupOqN8nD2BgIDFkW47PZ/T5wIP6 I/rEjFCHXWTs5y/rSJSNBdOkKbzxJeZNIsnRF6N52awC0j7MkbiWM5eSpBwRAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUWuRq+8fjhwkY5NgGeZBK6XaEqeUwHwYDVR0j BBgwFoAUyv06F7KtxvkAHlegG7Kem2k7fMgwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NzNmNGVjMWMtOTUzNS00Y2JmLTljN2EtZmQzMmM4MzBlZGJhLzAvQ0FGRDNBMTdC MkFEQzZGOTAwMUU1N0EwMUJCMjlFOUI2OTNCN0NDOC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9DQUZEM0ExN0IyQURDNkY5MDAxRTU3QTAxQkIyOUU5QjY5M0I3 Q0M4LmNlcjCBrQYIKwYBBQUHAQsEgaAwgZ0wgZoGCCsGAQUFBzALhoGNcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzczZjRlYzFjLTk1MzUtNGNiZi05 YzdhLWZkMzJjODMwZWRiYS8wLzMyMzQzMDMwM2E2NDM5MzQzMDNhNjM2MTYyNjUz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTMzMzYzMDM4Mzgucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk ANlAyr4wDQYJKoZIhvcNAQELBQADggEBAEbKOVdfvzBkHqtZO+TY6DnO3J+dErbZ CaYcklCFMF1eMlR+8d3IqfwyXHVMslYxRDTv4o+yxRyg57PcNDQ3xDfJzJTmctfs lMV9TUwECW9RL05WER0S8txzLzSvpwFVxX/E5Af8lxwYqLOaxteCNmKN4FYdopXO 3aO/+qNRpA2aVceTMsE1V1AG0XF5vWMNlowXhDc7fkGrA8Pc80P4/4HbZ8nfe6uX rOluTIt2C7Ubb4jRWp2whPbTKna1enDpDd7D7iyHLcc6oMCEhjaHDUKDOFJbpush KZcXjdEbXOTLWTMJVw6pVYoROikUk/zF1RkSpKjPbc/5I1OFsOOUEDg= -----END CERTIFICATE-----Generated at Wed May 13 11:50:02 2026 by rpki-client