$ rpki-client -vvf rpki-rsync.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a646564653a3a2f34382d3438203d3e20313336303838.roa File: 323430303a643934303a646564653a3a2f34382d3438203d3e20313336303838.roa (raw, json) Hash identifier: lq8n0YPrI0ej0qKCbfOlpW4tTPmD0iFL3XzQMezYPDc= Subject key identifier: 03:DD:EA:AB:E1:24:E8:BB:7D:C6:95:C2:B2:D1:44:B0:7E:EC:44:EB Certificate issuer: /CN=CAFD3A17B2ADC6F9001E57A01BB29E9B693B7CC8 Certificate serial: 0EAB53520D5F451813580FD4CFBB0DD4AC42BCF1 Authority key identifier: CA:FD:3A:17:B2:AD:C6:F9:00:1E:57:A0:1B:B2:9E:9B:69:3B:7C:C8 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CAFD3A17B2ADC6F9001E57A01BB29E9B693B7CC8.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a646564653a3a2f34382d3438203d3e20313336303838.roa Signing time: Sun 03 May 2026 02:43:02 +0000 ROA not before: Sun 03 May 2026 02:38:02 +0000 ROA not after: Sun 02 May 2027 02:43:02 +0000 asID: 136088 IP address blocks: 2400:d940:dede::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/CAFD3A17B2ADC6F9001E57A01BB29E9B693B7CC8.crl rsync://rpki-rsync.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/CAFD3A17B2ADC6F9001E57A01BB29E9B693B7CC8.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CAFD3A17B2ADC6F9001E57A01BB29E9B693B7CC8.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 02:15:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:ab:53:52:0d:5f:45:18:13:58:0f:d4:cf:bb:0d:d4:ac:42:bc:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CAFD3A17B2ADC6F9001E57A01BB29E9B693B7CC8 Validity Not Before: May 3 02:38:02 2026 GMT Not After : May 2 02:43:02 2027 GMT Subject: CN=03DDEAABE124E8BB7DC695C2B2D144B07EEC44EB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:cf:f7:77:d3:32:87:25:9e:bb:b4:c2:74:33: 33:9b:a3:7c:34:d1:c5:fb:84:10:bd:ea:59:18:eb: 11:67:c4:98:d8:0d:de:db:b8:71:54:a0:7c:58:66: 11:c1:8f:12:dc:aa:00:22:d4:e3:0a:64:3c:1d:4f: a4:42:b2:da:1b:c8:f0:2a:86:d1:a3:77:35:ee:5a: de:cb:6a:56:82:17:5b:2b:47:e1:63:90:23:25:1c: 51:56:be:aa:82:d7:27:40:ad:2d:56:c3:97:09:4f: 1e:b3:ac:98:a2:d2:a9:97:5f:ee:c9:c8:f7:66:ce: ae:2e:d8:57:48:14:0b:5a:60:fe:06:8f:86:c4:4e: 55:34:8d:ee:64:7c:4a:bb:41:9b:ae:44:61:5d:be: 9c:fd:5e:4d:96:63:aa:c3:09:aa:75:38:f5:9e:b8: 66:f3:f9:c8:30:36:47:7b:51:61:ce:f1:ea:b1:99: ea:6c:3e:3a:86:6c:bf:09:f2:07:b1:20:95:e2:8a: 62:f0:31:27:00:ac:61:52:fc:7c:69:fb:b6:e2:6c: 81:3a:05:96:26:c1:dc:c9:26:2a:7e:2b:74:0d:bf: 82:7a:77:50:1a:39:56:b2:9f:0e:6b:e0:b4:64:a7: 88:03:97:e8:7d:de:a2:4e:5c:15:bd:b2:7e:be:14: 7c:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:DD:EA:AB:E1:24:E8:BB:7D:C6:95:C2:B2:D1:44:B0:7E:EC:44:EB X509v3 Authority Key Identifier: keyid:CA:FD:3A:17:B2:AD:C6:F9:00:1E:57:A0:1B:B2:9E:9B:69:3B:7C:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/CAFD3A17B2ADC6F9001E57A01BB29E9B693B7CC8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CAFD3A17B2ADC6F9001E57A01BB29E9B693B7CC8.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a646564653a3a2f34382d3438203d3e20313336303838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:d940:dede::/48 Signature Algorithm: sha256WithRSAEncryption 5a:58:22:60:65:de:59:ff:a0:f5:b9:32:2f:c4:3b:0d:ef:74: ca:9f:61:f2:a8:b9:ee:0f:0a:f7:65:da:d3:cb:c8:3d:2c:f6: 19:d6:01:03:cd:43:26:a4:7b:78:be:ac:38:6a:94:eb:ef:bc: d0:ab:b9:57:b6:88:08:21:dc:9f:a9:65:c9:38:7e:ac:10:67: 69:4a:76:88:95:eb:de:08:41:a5:cf:d5:9d:ed:0f:c8:00:2e: 1c:c1:47:62:c4:77:d0:af:b0:74:5b:4a:2f:91:35:bb:86:55: 12:73:88:5d:3a:98:c7:f7:51:d1:fe:3c:01:d0:08:96:75:de: 86:dd:8f:0d:de:9d:28:58:dc:8d:4d:62:b2:58:9b:58:56:bc: 6b:8e:81:33:c6:a9:36:e1:26:ee:e7:a6:40:4d:0c:7c:a5:18: fd:86:1e:f0:67:35:16:af:26:4a:40:13:a2:83:c5:07:b4:23: 9a:36:34:7c:56:0e:e7:8f:59:04:fe:79:02:b0:e8:23:e1:33: 7a:d8:4b:e8:26:fd:7a:6c:e2:84:4d:7d:60:98:b7:40:05:85: 1b:14:fa:3a:fe:0b:a9:cb:09:c9:85:2e:39:06:5a:36:c6:ae: 01:ed:5a:5a:fc:a0:c4:bc:9a:c4:5f:b7:b1:99:6b:a1:fc:0e: 33:57:b8:31 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUDqtTUg1fRRgTWA/Uz7sN1KxCvPEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0FGRDNBMTdCMkFEQzZGOTAwMUU1N0EwMUJCMjlFOUI2 OTNCN0NDODAeFw0yNjA1MDMwMjM4MDJaFw0yNzA1MDIwMjQzMDJaMDMxMTAvBgNV BAMTKDAzRERFQUFCRTEyNEU4QkI3REM2OTVDMkIyRDE0NEIwN0VFQzQ0RUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDtz/d30zKHJZ67tMJ0MzObo3w0 0cX7hBC96lkY6xFnxJjYDd7buHFUoHxYZhHBjxLcqgAi1OMKZDwdT6RCstobyPAq htGjdzXuWt7LalaCF1srR+FjkCMlHFFWvqqC1ydArS1Ww5cJTx6zrJii0qmXX+7J yPdmzq4u2FdIFAtaYP4Gj4bETlU0je5kfEq7QZuuRGFdvpz9Xk2WY6rDCap1OPWe uGbz+cgwNkd7UWHO8eqxmepsPjqGbL8J8gexIJXiimLwMScArGFS/Hxp+7bibIE6 BZYmwdzJJip+K3QNv4J6d1AaOVaynw5r4LRkp4gDl+h93qJOXBW9sn6+FHyhAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUA93qq+Ek6Lt9xpXCstFEsH7sROswHwYDVR0j BBgwFoAUyv06F7KtxvkAHlegG7Kem2k7fMgwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NzNmNGVjMWMtOTUzNS00Y2JmLTljN2EtZmQzMmM4MzBlZGJhLzAvQ0FGRDNBMTdC MkFEQzZGOTAwMUU1N0EwMUJCMjlFOUI2OTNCN0NDOC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9DQUZEM0ExN0IyQURDNkY5MDAxRTU3QTAxQkIyOUU5QjY5M0I3 Q0M4LmNlcjCBrQYIKwYBBQUHAQsEgaAwgZ0wgZoGCCsGAQUFBzALhoGNcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzczZjRlYzFjLTk1MzUtNGNiZi05 YzdhLWZkMzJjODMwZWRiYS8wLzMyMzQzMDMwM2E2NDM5MzQzMDNhNjQ2NTY0NjUz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTMzMzYzMDM4Mzgucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk ANlA3t4wDQYJKoZIhvcNAQELBQADggEBAFpYImBl3ln/oPW5Mi/EOw3vdMqfYfKo ue4PCvdl2tPLyD0s9hnWAQPNQyake3i+rDhqlOvvvNCruVe2iAgh3J+pZck4fqwQ Z2lKdoiV694IQaXP1Z3tD8gALhzBR2LEd9CvsHRbSi+RNbuGVRJziF06mMf3UdH+ PAHQCJZ13obdjw3enShY3I1NYrJYm1hWvGuOgTPGqTbhJu7npkBNDHylGP2GHvBn NRavJkpAE6KDxQe0I5o2NHxWDuePWQT+eQKw6CPhM3rYS+gm/Xps4oRNfWCYt0AF hRsU+jr+C6nLCcmFLjkGWjbGrgHtWlr8oMS8msRft7GZa6H8DjNXuDE= -----END CERTIFICATE-----Generated at Wed May 13 11:04:06 2026 by rpki-client