$ rpki-client -vvf rpki-rsync.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a666163653a3a2f34382d3438203d3e20313336303838.roa File: 323430303a643934303a666163653a3a2f34382d3438203d3e20313336303838.roa (raw, json) Hash identifier: 34GLqmPa0NzJ8OUNPh/1B0CyHBlCIeGKpKQ2WBBDdVw= Subject key identifier: 26:34:86:E3:DE:0A:0A:EF:88:57:22:3B:7C:F2:83:9F:D0:E6:80:03 Certificate issuer: /CN=CAFD3A17B2ADC6F9001E57A01BB29E9B693B7CC8 Certificate serial: 3763770DE010A17ECC7E5412A674E39573CB8EB2 Authority key identifier: CA:FD:3A:17:B2:AD:C6:F9:00:1E:57:A0:1B:B2:9E:9B:69:3B:7C:C8 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CAFD3A17B2ADC6F9001E57A01BB29E9B693B7CC8.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a666163653a3a2f34382d3438203d3e20313336303838.roa Signing time: Sun 03 May 2026 02:43:10 +0000 ROA not before: Sun 03 May 2026 02:38:10 +0000 ROA not after: Sun 02 May 2027 02:43:10 +0000 asID: 136088 IP address blocks: 2400:d940:face::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/CAFD3A17B2ADC6F9001E57A01BB29E9B693B7CC8.crl rsync://rpki-rsync.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/CAFD3A17B2ADC6F9001E57A01BB29E9B693B7CC8.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CAFD3A17B2ADC6F9001E57A01BB29E9B693B7CC8.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 02:15:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:63:77:0d:e0:10:a1:7e:cc:7e:54:12:a6:74:e3:95:73:cb:8e:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CAFD3A17B2ADC6F9001E57A01BB29E9B693B7CC8 Validity Not Before: May 3 02:38:10 2026 GMT Not After : May 2 02:43:10 2027 GMT Subject: CN=263486E3DE0A0AEF8857223B7CF2839FD0E68003 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:07:ad:f7:02:c5:bf:2d:a0:5e:42:83:00:38: 01:e2:89:26:05:20:e5:e7:07:7b:79:1d:e5:cb:cb: c8:1c:9e:30:12:51:90:a9:19:16:13:a1:26:64:37: b9:48:de:be:9e:9b:23:1f:8f:46:be:91:78:6b:22: e3:fe:72:14:cd:b1:9c:e7:f3:98:1f:10:bb:f6:4e: 80:e2:89:1d:c5:f0:98:1a:ec:07:29:55:d3:8e:80: 2a:52:9c:8d:05:fc:d8:a8:31:c7:f3:25:e6:a3:75: f2:c8:8d:20:50:0d:da:1c:0b:a8:c8:2e:6a:e0:a7: d9:ae:36:3e:5a:c2:ca:6a:f7:48:1c:c6:47:f2:13: ab:2d:eb:08:6f:4a:ab:10:68:04:d7:36:24:82:71: f2:ad:98:87:6d:e8:ee:38:54:8e:85:52:59:5f:cd: e9:26:b8:0a:3b:e6:ac:b2:a1:76:2c:5b:4f:6e:e0: 31:a9:43:45:df:a3:fe:f6:1f:0a:72:19:dd:bd:07: 60:be:9a:2d:fa:0c:58:f0:fe:b2:7b:6f:e3:90:54: 5f:92:bd:81:98:63:52:48:57:dd:52:ed:f2:62:61: 3a:1c:2e:b8:5d:18:04:b7:a1:8a:55:3b:ba:b4:64: 2f:e4:ed:21:d4:61:05:93:71:9f:89:7f:54:22:52: 37:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:34:86:E3:DE:0A:0A:EF:88:57:22:3B:7C:F2:83:9F:D0:E6:80:03 X509v3 Authority Key Identifier: keyid:CA:FD:3A:17:B2:AD:C6:F9:00:1E:57:A0:1B:B2:9E:9B:69:3B:7C:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/CAFD3A17B2ADC6F9001E57A01BB29E9B693B7CC8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CAFD3A17B2ADC6F9001E57A01BB29E9B693B7CC8.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a666163653a3a2f34382d3438203d3e20313336303838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:d940:face::/48 Signature Algorithm: sha256WithRSAEncryption 52:ca:fa:59:28:83:3f:95:fe:15:d8:62:d7:be:f8:4d:9b:69: c7:82:69:d4:5b:fb:36:bf:86:b1:26:97:d8:2b:05:10:c2:2b: 33:90:59:d8:7d:9b:40:3d:5d:35:59:b6:e6:4a:2f:30:c1:ba: 1c:67:8f:5c:ec:49:af:9e:b5:c8:cb:77:02:b6:ba:03:7a:4d: 5d:c2:5c:ac:73:97:05:1b:d2:96:39:e9:b5:36:32:6c:53:12: 91:c3:ed:38:bb:28:f0:27:0f:0d:1d:6d:2e:b1:46:91:49:b2: 98:28:55:93:74:69:f4:2a:b0:64:70:af:3e:b1:44:8e:ec:a1: d6:7e:e3:f2:ec:8b:9c:93:ac:1e:c7:c1:11:e3:98:1d:af:c1: c9:8e:3f:b6:a5:77:d7:81:25:18:11:21:da:ae:67:ef:42:42: e1:37:50:98:06:98:71:40:39:b0:b8:58:fd:2b:6d:44:2c:82: f2:32:c2:d2:b4:84:07:a0:20:00:b7:22:bb:b2:e6:af:ee:f1: 82:27:0d:1e:9e:ac:80:b8:96:60:19:b9:53:c2:c8:3b:cd:56: cf:06:b6:ff:65:e9:c7:a3:91:09:6d:04:30:dc:d5:ee:eb:ce: 3f:73:08:7e:71:de:6f:ca:1a:4f:25:92:5b:a8:e7:81:0b:b3: 2b:6a:b6:96 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUN2N3DeAQoX7MflQSpnTjlXPLjrIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0FGRDNBMTdCMkFEQzZGOTAwMUU1N0EwMUJCMjlFOUI2 OTNCN0NDODAeFw0yNjA1MDMwMjM4MTBaFw0yNzA1MDIwMjQzMTBaMDMxMTAvBgNV BAMTKDI2MzQ4NkUzREUwQTBBRUY4ODU3MjIzQjdDRjI4MzlGRDBFNjgwMDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDlB633AsW/LaBeQoMAOAHiiSYF IOXnB3t5HeXLy8gcnjASUZCpGRYToSZkN7lI3r6emyMfj0a+kXhrIuP+chTNsZzn 85gfELv2ToDiiR3F8Jga7AcpVdOOgCpSnI0F/NioMcfzJeajdfLIjSBQDdocC6jI Lmrgp9muNj5awspq90gcxkfyE6st6whvSqsQaATXNiSCcfKtmIdt6O44VI6FUllf zekmuAo75qyyoXYsW09u4DGpQ0Xfo/72HwpyGd29B2C+mi36DFjw/rJ7b+OQVF+S vYGYY1JIV91S7fJiYTocLrhdGAS3oYpVO7q0ZC/k7SHUYQWTcZ+Jf1QiUjdrAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUJjSG494KCu+IVyI7fPKDn9DmgAMwHwYDVR0j BBgwFoAUyv06F7KtxvkAHlegG7Kem2k7fMgwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NzNmNGVjMWMtOTUzNS00Y2JmLTljN2EtZmQzMmM4MzBlZGJhLzAvQ0FGRDNBMTdC MkFEQzZGOTAwMUU1N0EwMUJCMjlFOUI2OTNCN0NDOC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9DQUZEM0ExN0IyQURDNkY5MDAxRTU3QTAxQkIyOUU5QjY5M0I3 Q0M4LmNlcjCBrQYIKwYBBQUHAQsEgaAwgZ0wgZoGCCsGAQUFBzALhoGNcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzczZjRlYzFjLTk1MzUtNGNiZi05 YzdhLWZkMzJjODMwZWRiYS8wLzMyMzQzMDMwM2E2NDM5MzQzMDNhNjY2MTYzNjUz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTMzMzYzMDM4Mzgucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk ANlA+s4wDQYJKoZIhvcNAQELBQADggEBAFLK+lkogz+V/hXYYte++E2baceCadRb +za/hrEml9grBRDCKzOQWdh9m0A9XTVZtuZKLzDBuhxnj1zsSa+etcjLdwK2ugN6 TV3CXKxzlwUb0pY56bU2MmxTEpHD7Ti7KPAnDw0dbS6xRpFJspgoVZN0afQqsGRw rz6xRI7sodZ+4/Lsi5yTrB7HwRHjmB2vwcmOP7ald9eBJRgRIdquZ+9CQuE3UJgG mHFAObC4WP0rbUQsgvIywtK0hAegIAC3Iruy5q/u8YInDR6erIC4lmAZuVPCyDvN Vs8Gtv9l6cejkQltBDDc1e7rzj9zCH5x3m/KGk8lkluo54ELsytqtpY= -----END CERTIFICATE-----Generated at Wed May 13 12:06:14 2026 by rpki-client