$ rpki-client -vvf rpki-rsync.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a646164613a3a2f34382d3438203d3e20313336303838.roa File: 323430303a643934303a646164613a3a2f34382d3438203d3e20313336303838.roa (raw, json) Hash identifier: wYag/KpQxcRCIm84mayvN/ce4e/42pmE6/MAHa5Gds8= Subject key identifier: DA:B8:9F:79:B6:58:BB:3D:EC:59:53:09:27:76:88:F3:C5:FA:E5:C7 Certificate issuer: /CN=CAFD3A17B2ADC6F9001E57A01BB29E9B693B7CC8 Certificate serial: 0B9B27E367AC2E800BFFA8031818090E53D907AB Authority key identifier: CA:FD:3A:17:B2:AD:C6:F9:00:1E:57:A0:1B:B2:9E:9B:69:3B:7C:C8 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CAFD3A17B2ADC6F9001E57A01BB29E9B693B7CC8.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a646164613a3a2f34382d3438203d3e20313336303838.roa Signing time: Sun 03 May 2026 02:43:05 +0000 ROA not before: Sun 03 May 2026 02:38:05 +0000 ROA not after: Sun 02 May 2027 02:43:05 +0000 asID: 136088 IP address blocks: 2400:d940:dada::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/CAFD3A17B2ADC6F9001E57A01BB29E9B693B7CC8.crl rsync://rpki-rsync.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/CAFD3A17B2ADC6F9001E57A01BB29E9B693B7CC8.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CAFD3A17B2ADC6F9001E57A01BB29E9B693B7CC8.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 02:15:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:9b:27:e3:67:ac:2e:80:0b:ff:a8:03:18:18:09:0e:53:d9:07:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CAFD3A17B2ADC6F9001E57A01BB29E9B693B7CC8 Validity Not Before: May 3 02:38:05 2026 GMT Not After : May 2 02:43:05 2027 GMT Subject: CN=DAB89F79B658BB3DEC595309277688F3C5FAE5C7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:bf:72:1c:96:e8:a1:bc:b3:25:91:be:3d:c0: 7f:51:aa:d2:ee:3c:b8:85:b7:35:13:a5:23:a1:0e: 95:1b:a8:68:15:5f:cd:b6:0c:80:14:58:c2:3d:fa: 97:62:4f:9f:1a:f8:a5:45:77:f6:d2:35:1f:9a:56: 28:81:4d:2f:0e:97:7b:1d:c9:27:0b:a9:17:62:25: 2b:f9:a3:de:be:57:31:db:96:61:a5:f4:84:62:c8: 52:96:20:ee:89:4d:ca:84:d2:ed:cb:a5:5c:37:62: 3b:50:eb:bd:21:c1:fb:a1:37:52:9a:d0:49:97:cd: d6:ef:3a:c4:21:86:f1:d3:eb:5a:7f:d0:c4:b9:fc: 71:49:e5:dd:be:8d:95:51:eb:ad:22:66:0b:b1:8f: 56:33:ee:b4:ac:d9:13:37:fc:fb:1d:48:db:f5:4b: 9e:91:bf:2d:04:48:7b:4d:03:ce:00:9a:c2:e9:bc: de:40:76:20:e3:27:45:35:50:bd:e0:60:59:f7:e5: ab:34:20:70:8c:f6:f4:c2:49:24:90:75:ad:26:3b: 16:10:3d:59:89:d8:e6:96:dd:90:15:3b:52:ff:94: 6b:db:77:ea:a4:88:f9:fa:cc:30:23:c8:6c:9b:79: 6c:da:e1:07:31:02:06:b3:89:7e:df:e4:6f:d4:a1: 3f:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:B8:9F:79:B6:58:BB:3D:EC:59:53:09:27:76:88:F3:C5:FA:E5:C7 X509v3 Authority Key Identifier: keyid:CA:FD:3A:17:B2:AD:C6:F9:00:1E:57:A0:1B:B2:9E:9B:69:3B:7C:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/CAFD3A17B2ADC6F9001E57A01BB29E9B693B7CC8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CAFD3A17B2ADC6F9001E57A01BB29E9B693B7CC8.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a646164613a3a2f34382d3438203d3e20313336303838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:d940:dada::/48 Signature Algorithm: sha256WithRSAEncryption 17:d2:5e:0a:d0:46:95:9e:73:b4:53:5d:b7:57:96:c1:54:25: 3e:c9:4a:d0:9e:bf:18:37:64:a8:2e:dd:d5:1d:cc:e9:e6:f4: fd:3d:ab:da:ce:52:35:8c:a1:fc:2c:b8:65:94:60:84:99:f7: f9:32:53:81:a0:b4:ef:1c:0e:78:4e:f5:dd:e0:a1:ab:f0:3f: 12:20:7f:09:23:1a:a2:1b:69:e3:a7:c2:33:2b:08:9c:67:15: 4f:49:77:21:65:f5:42:6a:96:54:da:6c:0c:f8:6e:ca:18:aa: c4:32:04:63:7e:54:fa:90:7b:19:cc:47:e7:f6:2c:39:e2:cc: aa:21:52:80:86:13:ad:f6:bd:7d:73:ac:3d:c5:8d:24:9f:1b: 41:99:06:36:36:f7:62:09:bd:7a:6f:51:d7:1c:7c:0e:e0:17: 41:c4:1c:42:f0:5c:8c:10:6f:d2:79:a8:be:ef:b6:c0:b1:0e: c6:d7:e2:af:2d:a5:61:f4:53:ee:72:3a:46:ec:28:f5:43:ae: 4c:a5:e8:f4:2a:b7:e1:df:35:d0:6e:ff:dd:d3:df:3d:1c:9d: 24:ac:46:65:e2:e7:04:42:e2:41:85:bb:e7:41:40:58:7e:c4: 7b:45:66:df:ee:71:e6:86:d5:92:12:7b:be:f4:e2:c7:ee:eb: 72:46:ed:b8 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUC5sn42esLoAL/6gDGBgJDlPZB6swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0FGRDNBMTdCMkFEQzZGOTAwMUU1N0EwMUJCMjlFOUI2 OTNCN0NDODAeFw0yNjA1MDMwMjM4MDVaFw0yNzA1MDIwMjQzMDVaMDMxMTAvBgNV BAMTKERBQjg5Rjc5QjY1OEJCM0RFQzU5NTMwOTI3NzY4OEYzQzVGQUU1QzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCdv3IcluihvLMlkb49wH9RqtLu PLiFtzUTpSOhDpUbqGgVX822DIAUWMI9+pdiT58a+KVFd/bSNR+aViiBTS8Ol3sd yScLqRdiJSv5o96+VzHblmGl9IRiyFKWIO6JTcqE0u3LpVw3YjtQ670hwfuhN1Ka 0EmXzdbvOsQhhvHT61p/0MS5/HFJ5d2+jZVR660iZguxj1Yz7rSs2RM3/PsdSNv1 S56Rvy0ESHtNA84AmsLpvN5AdiDjJ0U1UL3gYFn35as0IHCM9vTCSSSQda0mOxYQ PVmJ2OaW3ZAVO1L/lGvbd+qkiPn6zDAjyGybeWza4QcxAgaziX7f5G/UoT95AgMB AAGjggI/MIICOzAdBgNVHQ4EFgQU2rifebZYuz3sWVMJJ3aI88X65ccwHwYDVR0j BBgwFoAUyv06F7KtxvkAHlegG7Kem2k7fMgwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NzNmNGVjMWMtOTUzNS00Y2JmLTljN2EtZmQzMmM4MzBlZGJhLzAvQ0FGRDNBMTdC MkFEQzZGOTAwMUU1N0EwMUJCMjlFOUI2OTNCN0NDOC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9DQUZEM0ExN0IyQURDNkY5MDAxRTU3QTAxQkIyOUU5QjY5M0I3 Q0M4LmNlcjCBrQYIKwYBBQUHAQsEgaAwgZ0wgZoGCCsGAQUFBzALhoGNcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzczZjRlYzFjLTk1MzUtNGNiZi05 YzdhLWZkMzJjODMwZWRiYS8wLzMyMzQzMDMwM2E2NDM5MzQzMDNhNjQ2MTY0NjEz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTMzMzYzMDM4Mzgucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk ANlA2towDQYJKoZIhvcNAQELBQADggEBABfSXgrQRpWec7RTXbdXlsFUJT7JStCe vxg3ZKgu3dUdzOnm9P09q9rOUjWMofwsuGWUYISZ9/kyU4GgtO8cDnhO9d3goavw PxIgfwkjGqIbaeOnwjMrCJxnFU9JdyFl9UJqllTabAz4bsoYqsQyBGN+VPqQexnM R+f2LDnizKohUoCGE632vX1zrD3FjSSfG0GZBjY292IJvXpvUdccfA7gF0HEHELw XIwQb9J5qL7vtsCxDsbX4q8tpWH0U+5yOkbsKPVDrkyl6PQqt+HfNdBu/93T3z0c nSSsRmXi5wRC4kGFu+dBQFh+xHtFZt/uceaG1ZISe7704sfu63JG7bg= -----END CERTIFICATE-----Generated at Wed May 13 11:49:23 2026 by rpki-client