$ rpki-client -vvf rpki-rsync.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a646561643a3a2f34382d3438203d3e20313336303838.roa File: 323430303a643934303a646561643a3a2f34382d3438203d3e20313336303838.roa (raw, json) Hash identifier: VeUuIEzR0KXaVdDKuIt8qmP7aqg4VDEFHLGvR21XwG0= Subject key identifier: F8:A0:5A:F2:77:93:BD:00:AB:AE:E5:ED:36:09:F1:1E:6F:5B:65:59 Certificate issuer: /CN=CAFD3A17B2ADC6F9001E57A01BB29E9B693B7CC8 Certificate serial: 346E0AD91AA73CBD87EA7180263E56CDF5C0D44F Authority key identifier: CA:FD:3A:17:B2:AD:C6:F9:00:1E:57:A0:1B:B2:9E:9B:69:3B:7C:C8 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CAFD3A17B2ADC6F9001E57A01BB29E9B693B7CC8.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a646561643a3a2f34382d3438203d3e20313336303838.roa Signing time: Sun 03 May 2026 02:43:10 +0000 ROA not before: Sun 03 May 2026 02:38:10 +0000 ROA not after: Sun 02 May 2027 02:43:10 +0000 asID: 136088 IP address blocks: 2400:d940:dead::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/CAFD3A17B2ADC6F9001E57A01BB29E9B693B7CC8.crl rsync://rpki-rsync.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/CAFD3A17B2ADC6F9001E57A01BB29E9B693B7CC8.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CAFD3A17B2ADC6F9001E57A01BB29E9B693B7CC8.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 02:15:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:6e:0a:d9:1a:a7:3c:bd:87:ea:71:80:26:3e:56:cd:f5:c0:d4:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CAFD3A17B2ADC6F9001E57A01BB29E9B693B7CC8 Validity Not Before: May 3 02:38:10 2026 GMT Not After : May 2 02:43:10 2027 GMT Subject: CN=F8A05AF27793BD00ABAEE5ED3609F11E6F5B6559 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:6f:92:c2:70:4f:1f:00:b4:25:8b:55:4d:49: c2:17:2b:1c:ac:1e:97:a5:e4:63:ac:12:f3:b9:ef: 75:f4:7b:7f:41:a8:b3:e5:6e:23:b8:8b:95:50:8b: 5b:98:f2:dd:99:f9:e4:0d:b0:bb:10:f1:3e:ab:b8: 38:cc:03:c9:78:26:cb:f7:7f:53:d3:47:07:6a:5f: d9:2e:6f:a3:c1:ca:bb:7c:9e:4d:ee:97:22:84:97: 50:87:41:f9:a8:34:c7:3d:48:1c:ff:74:bc:d2:d2: e9:fe:8f:d6:96:02:cb:e7:c6:df:32:20:be:c6:25: eb:f2:cd:72:39:3f:10:97:a9:43:80:54:cc:e7:f4: d5:4f:ee:2c:d6:0e:aa:de:79:fc:30:40:40:c6:bd: fd:6a:e2:fc:c2:21:e9:79:36:2b:8a:0b:43:40:4b: c0:03:a3:27:3b:fe:76:ab:f0:fa:3c:19:61:0d:b0: 36:55:0a:06:af:97:7f:91:6b:6b:79:71:a2:42:96: 1b:6f:8e:a4:0e:64:e1:c3:55:e8:a0:6f:7a:af:f7: 09:d6:c8:b4:c3:d7:d1:39:da:d9:21:a2:4e:6e:de: fe:07:26:90:5d:e7:30:ab:72:a1:5d:f1:e0:9b:c7: cb:44:bc:09:21:aa:4f:53:0e:f1:d3:c6:1b:a8:c9: 1b:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:A0:5A:F2:77:93:BD:00:AB:AE:E5:ED:36:09:F1:1E:6F:5B:65:59 X509v3 Authority Key Identifier: keyid:CA:FD:3A:17:B2:AD:C6:F9:00:1E:57:A0:1B:B2:9E:9B:69:3B:7C:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/CAFD3A17B2ADC6F9001E57A01BB29E9B693B7CC8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CAFD3A17B2ADC6F9001E57A01BB29E9B693B7CC8.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a646561643a3a2f34382d3438203d3e20313336303838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:d940:dead::/48 Signature Algorithm: sha256WithRSAEncryption 6f:23:78:53:7c:11:63:7b:8f:aa:90:5d:34:e7:ec:64:8c:79: e0:c4:ad:2f:65:59:b9:20:38:7a:7c:7e:05:58:f4:66:be:03: 42:3d:00:d1:40:be:07:4f:10:95:0d:56:7c:32:26:98:04:93: d2:bd:e6:b2:70:50:cd:1f:06:b7:c5:2a:e6:71:fe:63:e5:de: a5:ad:55:f7:a8:97:67:9a:c8:b2:6a:75:4e:6f:73:5c:ca:fa: 13:52:64:57:a2:5f:2f:51:6b:94:e1:0a:0e:bd:f1:a3:46:4c: 68:5b:e3:77:c4:df:69:08:9e:e5:fc:e4:9f:5f:4f:52:e6:d3: 7b:88:c0:13:40:a4:4d:cf:62:3f:f8:0d:87:b9:9d:94:3d:ab: 8b:89:cc:3f:78:4f:2a:f6:d5:2e:29:50:1e:2f:90:f1:10:3b: a0:75:da:87:fa:c9:6e:08:c1:82:81:fa:91:c2:f8:cc:62:a2: 7e:6d:52:0e:87:04:5a:9b:48:14:d0:20:a9:e0:6d:c1:ac:3a: f4:5e:59:96:23:27:aa:19:6d:2d:7e:e6:38:ad:58:65:f6:f8: f6:75:83:24:03:48:dd:93:fa:21:96:41:db:12:e7:69:8b:31: e1:a0:2e:4f:c1:aa:5f:67:23:41:f5:d2:d2:c9:1f:d8:89:5d: 64:b5:92:9a -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUNG4K2RqnPL2H6nGAJj5WzfXA1E8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0FGRDNBMTdCMkFEQzZGOTAwMUU1N0EwMUJCMjlFOUI2 OTNCN0NDODAeFw0yNjA1MDMwMjM4MTBaFw0yNzA1MDIwMjQzMTBaMDMxMTAvBgNV BAMTKEY4QTA1QUYyNzc5M0JEMDBBQkFFRTVFRDM2MDlGMTFFNkY1QjY1NTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDb5LCcE8fALQli1VNScIXKxys Hpel5GOsEvO573X0e39BqLPlbiO4i5VQi1uY8t2Z+eQNsLsQ8T6ruDjMA8l4Jsv3 f1PTRwdqX9kub6PByrt8nk3ulyKEl1CHQfmoNMc9SBz/dLzS0un+j9aWAsvnxt8y IL7GJevyzXI5PxCXqUOAVMzn9NVP7izWDqreefwwQEDGvf1q4vzCIel5NiuKC0NA S8ADoyc7/nar8Po8GWENsDZVCgavl3+Ra2t5caJClhtvjqQOZOHDVeigb3qv9wnW yLTD19E52tkhok5u3v4HJpBd5zCrcqFd8eCbx8tEvAkhqk9TDvHTxhuoyRuHAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQU+KBa8neTvQCrruXtNgnxHm9bZVkwHwYDVR0j BBgwFoAUyv06F7KtxvkAHlegG7Kem2k7fMgwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NzNmNGVjMWMtOTUzNS00Y2JmLTljN2EtZmQzMmM4MzBlZGJhLzAvQ0FGRDNBMTdC MkFEQzZGOTAwMUU1N0EwMUJCMjlFOUI2OTNCN0NDOC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9DQUZEM0ExN0IyQURDNkY5MDAxRTU3QTAxQkIyOUU5QjY5M0I3 Q0M4LmNlcjCBrQYIKwYBBQUHAQsEgaAwgZ0wgZoGCCsGAQUFBzALhoGNcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzczZjRlYzFjLTk1MzUtNGNiZi05 YzdhLWZkMzJjODMwZWRiYS8wLzMyMzQzMDMwM2E2NDM5MzQzMDNhNjQ2NTYxNjQz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTMzMzYzMDM4Mzgucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk ANlA3q0wDQYJKoZIhvcNAQELBQADggEBAG8jeFN8EWN7j6qQXTTn7GSMeeDErS9l WbkgOHp8fgVY9Ga+A0I9ANFAvgdPEJUNVnwyJpgEk9K95rJwUM0fBrfFKuZx/mPl 3qWtVfeol2eayLJqdU5vc1zK+hNSZFeiXy9Ra5ThCg698aNGTGhb43fE32kInuX8 5J9fT1Lm03uIwBNApE3PYj/4DYe5nZQ9q4uJzD94Tyr21S4pUB4vkPEQO6B12of6 yW4IwYKB+pHC+Mxion5tUg6HBFqbSBTQIKngbcGsOvReWZYjJ6oZbS1+5jitWGX2 +PZ1gyQDSN2T+iGWQdsS52mLMeGgLk/Bql9nI0H10tLJH9iJXWS1kpo= -----END CERTIFICATE-----Generated at Wed May 13 10:23:35 2026 by rpki-client