$ rpki-client -vvf rpki-rsync.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/323430313a646538303a313a3a2f34382d3438203d3e203338353234.roa File: 323430313a646538303a313a3a2f34382d3438203d3e203338353234.roa (raw, json) Hash identifier: otpz3GHCJXAl+zsX4V9JKumoq38+QopMzF9DBnvuyeQ= Subject key identifier: 30:22:7C:F4:FC:FE:4F:31:DC:07:79:07:8A:E1:74:0F:2D:C3:DA:75 Certificate issuer: /CN=9436E607F375F72BBD96588FBB7CE6D5B628FF86 Certificate serial: 1B202223690F9AC29BD0261AC64BBE76FF98A05F Authority key identifier: 94:36:E6:07:F3:75:F7:2B:BD:96:58:8F:BB:7C:E6:D5:B6:28:FF:86 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9436E607F375F72BBD96588FBB7CE6D5B628FF86.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/323430313a646538303a313a3a2f34382d3438203d3e203338353234.roa Signing time: Sun 03 May 2026 02:46:34 +0000 ROA not before: Sun 03 May 2026 02:41:34 +0000 ROA not after: Sun 02 May 2027 02:46:34 +0000 asID: 38524 IP address blocks: 2401:de80:1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/9436E607F375F72BBD96588FBB7CE6D5B628FF86.crl rsync://rpki-rsync.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/9436E607F375F72BBD96588FBB7CE6D5B628FF86.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9436E607F375F72BBD96588FBB7CE6D5B628FF86.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 21:29:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:20:22:23:69:0f:9a:c2:9b:d0:26:1a:c6:4b:be:76:ff:98:a0:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9436E607F375F72BBD96588FBB7CE6D5B628FF86 Validity Not Before: May 3 02:41:34 2026 GMT Not After : May 2 02:46:34 2027 GMT Subject: CN=30227CF4FCFE4F31DC0779078AE1740F2DC3DA75 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:3e:5b:1a:5b:5c:56:dd:74:79:f8:3d:db:cc: 2a:ae:83:06:50:49:93:3f:63:66:3b:b4:3d:dd:45: 51:b7:74:11:ff:73:4a:94:b9:26:07:e9:eb:54:e1: 17:72:2c:49:55:15:62:eb:9d:ac:1e:a6:77:52:6f: 0e:4d:f6:62:49:b9:64:5f:45:b6:e8:34:b1:17:1b: 99:cb:c8:4f:c6:97:62:56:a7:2e:b7:6f:ab:81:57: 0b:23:54:43:2b:3b:24:ed:3b:ca:69:d4:e3:20:63: 98:61:b4:8d:75:3d:35:c1:57:ba:ba:f8:77:7a:aa: 5e:94:b9:6d:86:cb:cb:54:56:6a:90:86:11:54:68: 04:b1:a8:5e:e0:b1:26:59:d9:9a:84:04:05:e1:da: 7e:94:6e:73:a8:9f:5b:71:9a:47:61:42:96:ee:87: bc:fe:62:70:98:19:c4:38:d1:72:2a:02:fc:d2:53: 78:08:04:f5:c6:3b:83:03:88:da:1b:f3:32:86:85: 87:22:2f:cb:b7:47:f1:52:14:58:a7:f1:15:d5:03: a8:2d:7c:a3:83:3a:97:58:8b:10:eb:74:0d:df:37: 1c:89:79:30:61:68:dc:bb:3d:07:60:35:7d:b8:dd: 6a:ed:7a:60:aa:17:8a:af:47:4d:18:ca:0f:ba:fb: 20:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:22:7C:F4:FC:FE:4F:31:DC:07:79:07:8A:E1:74:0F:2D:C3:DA:75 X509v3 Authority Key Identifier: keyid:94:36:E6:07:F3:75:F7:2B:BD:96:58:8F:BB:7C:E6:D5:B6:28:FF:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/9436E607F375F72BBD96588FBB7CE6D5B628FF86.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9436E607F375F72BBD96588FBB7CE6D5B628FF86.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/323430313a646538303a313a3a2f34382d3438203d3e203338353234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:de80:1::/48 Signature Algorithm: sha256WithRSAEncryption 0b:4f:43:51:27:0e:86:be:d6:63:21:9b:50:5e:82:08:cd:c5: 48:80:11:f1:45:84:df:9e:36:af:13:be:b2:12:36:9e:57:3c: 20:19:e6:41:2c:b6:5a:f1:75:42:3b:dc:9d:db:72:ed:a2:c8: eb:6d:8f:80:5b:44:01:84:70:fe:7d:fe:3b:67:f8:f1:d0:36: 7c:bd:d1:f4:0f:f3:4e:75:dc:51:c4:42:ef:bc:c0:0c:5c:bc: c3:cf:ef:a9:f2:00:12:55:5f:8d:b3:aa:6b:06:23:b7:66:f9: 5c:8c:fb:67:1d:49:7d:db:e6:c6:84:35:3b:8d:ba:7c:37:42: f6:ab:da:d8:d1:61:7e:2b:2c:cd:16:21:63:fc:f2:a4:37:5e: fa:74:1e:f8:2f:75:a1:0d:da:b7:df:c4:a7:8d:79:8b:92:23: 9e:cc:80:58:11:87:39:ee:1b:c3:58:41:9b:23:81:92:03:f7: 71:a9:cb:db:2d:ca:b0:ea:94:f3:5b:72:bb:d3:15:c4:7f:57: 90:16:30:34:e7:85:42:13:90:df:f7:27:21:ae:9f:74:bd:1f: 54:d6:04:82:91:ba:85:e7:6a:a4:89:c9:eb:56:f5:bd:49:e5: ee:10:13:30:39:ab:b2:2c:7e:6e:c3:14:67:e7:e9:0b:44:cb: 07:31:af:60 -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUGyAiI2kPmsKb0CYaxku+dv+YoF8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTQzNkU2MDdGMzc1RjcyQkJEOTY1ODhGQkI3Q0U2RDVC NjI4RkY4NjAeFw0yNjA1MDMwMjQxMzRaFw0yNzA1MDIwMjQ2MzRaMDMxMTAvBgNV BAMTKDMwMjI3Q0Y0RkNGRTRGMzFEQzA3NzkwNzhBRTE3NDBGMkRDM0RBNzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOPlsaW1xW3XR5+D3bzCqugwZQ SZM/Y2Y7tD3dRVG3dBH/c0qUuSYH6etU4RdyLElVFWLrnawepndSbw5N9mJJuWRf RbboNLEXG5nLyE/Gl2JWpy63b6uBVwsjVEMrOyTtO8pp1OMgY5hhtI11PTXBV7q6 +Hd6ql6UuW2Gy8tUVmqQhhFUaASxqF7gsSZZ2ZqEBAXh2n6UbnOon1txmkdhQpbu h7z+YnCYGcQ40XIqAvzSU3gIBPXGO4MDiNob8zKGhYciL8u3R/FSFFin8RXVA6gt fKODOpdYixDrdA3fNxyJeTBhaNy7PQdgNX243WrtemCqF4qvR00Yyg+6+yB9AgMB AAGjggI3MIICMzAdBgNVHQ4EFgQUMCJ89Pz+TzHcB3kHiuF0Dy3D2nUwHwYDVR0j BBgwFoAUlDbmB/N19yu9lliPu3zm1bYo/4YwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v N2ZmOTY5ZmMtMzljNy00NGNkLTg3MTYtOWNlNGM2ZDVhYzkxLzAvOTQzNkU2MDdG Mzc1RjcyQkJEOTY1ODhGQkI3Q0U2RDVCNjI4RkY4Ni5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS85NDM2RTYwN0YzNzVGNzJCQkQ5NjU4OEZCQjdDRTZENUI2MjhG Rjg2LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzdmZjk2OWZjLTM5YzctNDRjZC04 NzE2LTljZTRjNmQ1YWM5MS8wLzMyMzQzMDMxM2E2NDY1MzgzMDNhMzEzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMzM4MzUzMjM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAHegAABMA0G CSqGSIb3DQEBCwUAA4IBAQALT0NRJw6GvtZjIZtQXoIIzcVIgBHxRYTfnjavE76y EjaeVzwgGeZBLLZa8XVCO9yd23LtosjrbY+AW0QBhHD+ff47Z/jx0DZ8vdH0D/NO ddxRxELvvMAMXLzDz++p8gASVV+Ns6prBiO3ZvlcjPtnHUl92+bGhDU7jbp8N0L2 q9rY0WF+KyzNFiFj/PKkN176dB74L3WhDdq338SnjXmLkiOezIBYEYc57hvDWEGb I4GSA/dxqcvbLcqw6pTzW3K70xXEf1eQFjA054VCE5Df9ychrp90vR9U1gSCkbqF 52qkicnrVvW9SeXuEBMwOauyLH5uwxRn5+kLRMsHMa9g -----END CERTIFICATE-----Generated at Wed May 13 07:57:09 2026 by rpki-client