$ rpki-client -vvf rpki-rsync.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/323430313a646538303a323a3a2f34382d3438203d3e203338353234.roa File: 323430313a646538303a323a3a2f34382d3438203d3e203338353234.roa (raw, json) Hash identifier: rO7GcjaU0q6kVUxx8e/e2ALJnWe/BEvCij1MwjgN8JM= Subject key identifier: 9A:10:CF:BF:84:FB:26:8C:52:67:BD:90:98:49:8F:D1:F4:E4:7D:14 Certificate issuer: /CN=9436E607F375F72BBD96588FBB7CE6D5B628FF86 Certificate serial: 66DCFCF160247F85593E058AB783041D117B20D2 Authority key identifier: 94:36:E6:07:F3:75:F7:2B:BD:96:58:8F:BB:7C:E6:D5:B6:28:FF:86 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9436E607F375F72BBD96588FBB7CE6D5B628FF86.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/323430313a646538303a323a3a2f34382d3438203d3e203338353234.roa Signing time: Sun 03 May 2026 02:46:30 +0000 ROA not before: Sun 03 May 2026 02:41:30 +0000 ROA not after: Sun 02 May 2027 02:46:30 +0000 asID: 38524 IP address blocks: 2401:de80:2::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/9436E607F375F72BBD96588FBB7CE6D5B628FF86.crl rsync://rpki-rsync.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/9436E607F375F72BBD96588FBB7CE6D5B628FF86.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9436E607F375F72BBD96588FBB7CE6D5B628FF86.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 21:29:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:dc:fc:f1:60:24:7f:85:59:3e:05:8a:b7:83:04:1d:11:7b:20:d2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9436E607F375F72BBD96588FBB7CE6D5B628FF86 Validity Not Before: May 3 02:41:30 2026 GMT Not After : May 2 02:46:30 2027 GMT Subject: CN=9A10CFBF84FB268C5267BD9098498FD1F4E47D14 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:d9:00:45:4e:56:56:ff:00:82:c3:b8:7b:5a: a7:c3:a7:dc:8d:7c:14:24:8f:0b:88:da:37:ca:dd: e8:15:d6:fa:2a:2e:02:9d:7c:a7:d2:74:eb:30:ed: 5c:b6:77:01:4c:4a:8b:fe:a3:9d:af:30:7d:95:97: 72:1e:ca:bc:03:2b:4b:3d:13:9a:0c:4f:c5:83:67: 19:ca:c9:cf:46:e1:f3:d7:c1:0d:ae:2f:c6:b1:94: 81:b4:a4:8a:20:17:77:ca:88:b6:01:24:0e:be:81: 74:12:27:28:c3:a0:e6:ba:36:c6:05:72:1b:f6:fc: 81:56:ea:ff:39:d8:b8:85:d7:64:97:16:82:e8:59: fe:cb:cc:f7:29:7d:b7:64:4d:67:4a:86:9e:d0:eb: ee:2c:41:5b:38:5b:c3:3e:5c:60:fc:e4:b6:7d:0e: 1a:42:91:05:b1:12:d5:4e:a6:b4:ae:87:2b:05:f4: c4:e4:df:60:5c:77:cd:00:32:7f:08:ff:69:88:2d: 7a:94:5d:79:96:9f:00:d3:d4:1f:66:c1:33:c6:d9: 10:6c:cb:07:51:31:90:ae:d0:73:1b:80:ca:15:b7: 10:fe:23:66:e2:d2:5c:5e:a1:ce:b6:33:bd:da:71: b1:28:d5:54:75:cd:77:dc:8c:37:f4:0b:ae:f2:62: 3d:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:10:CF:BF:84:FB:26:8C:52:67:BD:90:98:49:8F:D1:F4:E4:7D:14 X509v3 Authority Key Identifier: keyid:94:36:E6:07:F3:75:F7:2B:BD:96:58:8F:BB:7C:E6:D5:B6:28:FF:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/9436E607F375F72BBD96588FBB7CE6D5B628FF86.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9436E607F375F72BBD96588FBB7CE6D5B628FF86.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/323430313a646538303a323a3a2f34382d3438203d3e203338353234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:de80:2::/48 Signature Algorithm: sha256WithRSAEncryption 2a:be:a4:66:58:26:08:68:ba:89:2e:7e:43:70:ad:db:87:96: 49:f9:5a:0e:4f:b1:e5:62:a6:07:83:06:fe:3f:10:cc:20:d2: 12:b4:c8:b6:80:8b:dc:9d:2d:1c:4b:26:c2:e8:9d:0b:11:f7: 39:e4:03:a5:2e:95:dc:f0:a3:d0:5c:b0:e1:35:6f:f0:38:19: c6:4d:ab:ba:32:47:db:1f:4a:1a:29:d2:a6:e1:93:4b:fc:0b: c5:ee:17:73:e8:d3:79:34:0b:2c:2d:08:0a:97:ad:35:67:bb: a9:b5:8f:d1:da:96:48:29:da:ed:7c:fe:e4:03:2c:7f:b4:e1: cf:3e:2f:da:44:e0:00:77:57:8d:34:fe:e0:1a:61:47:04:8d: d0:ee:53:74:d9:8b:ee:8b:08:10:be:b5:75:65:de:f2:e3:b6: 6b:77:6e:ed:20:31:36:15:f7:23:b5:ca:44:d0:46:7c:22:ba: 42:4f:5f:b2:3d:5f:60:17:6f:4e:68:69:59:89:45:b0:4a:be: 15:a9:34:fa:fb:18:b3:5b:af:b8:a1:83:7e:6b:67:24:a6:81: 71:9c:78:d6:1d:b4:81:60:e8:3f:dc:61:8f:c7:de:02:d2:54: 40:6e:95:30:07:a3:f2:18:4b:8f:2d:76:32:1c:ed:15:22:59: ca:22:91:f2 -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUZtz88WAkf4VZPgWKt4MEHRF7INIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTQzNkU2MDdGMzc1RjcyQkJEOTY1ODhGQkI3Q0U2RDVC NjI4RkY4NjAeFw0yNjA1MDMwMjQxMzBaFw0yNzA1MDIwMjQ2MzBaMDMxMTAvBgNV BAMTKDlBMTBDRkJGODRGQjI2OEM1MjY3QkQ5MDk4NDk4RkQxRjRFNDdEMTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCs2QBFTlZW/wCCw7h7WqfDp9yN fBQkjwuI2jfK3egV1voqLgKdfKfSdOsw7Vy2dwFMSov+o52vMH2Vl3IeyrwDK0s9 E5oMT8WDZxnKyc9G4fPXwQ2uL8axlIG0pIogF3fKiLYBJA6+gXQSJyjDoOa6NsYF chv2/IFW6v852LiF12SXFoLoWf7LzPcpfbdkTWdKhp7Q6+4sQVs4W8M+XGD85LZ9 DhpCkQWxEtVOprSuhysF9MTk32Bcd80AMn8I/2mILXqUXXmWnwDT1B9mwTPG2RBs ywdRMZCu0HMbgMoVtxD+I2bi0lxeoc62M73acbEo1VR1zXfcjDf0C67yYj3FAgMB AAGjggI3MIICMzAdBgNVHQ4EFgQUmhDPv4T7JoxSZ72QmEmP0fTkfRQwHwYDVR0j BBgwFoAUlDbmB/N19yu9lliPu3zm1bYo/4YwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v N2ZmOTY5ZmMtMzljNy00NGNkLTg3MTYtOWNlNGM2ZDVhYzkxLzAvOTQzNkU2MDdG Mzc1RjcyQkJEOTY1ODhGQkI3Q0U2RDVCNjI4RkY4Ni5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS85NDM2RTYwN0YzNzVGNzJCQkQ5NjU4OEZCQjdDRTZENUI2MjhG Rjg2LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzdmZjk2OWZjLTM5YzctNDRjZC04 NzE2LTljZTRjNmQ1YWM5MS8wLzMyMzQzMDMxM2E2NDY1MzgzMDNhMzIzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMzM4MzUzMjM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAHegAACMA0G CSqGSIb3DQEBCwUAA4IBAQAqvqRmWCYIaLqJLn5DcK3bh5ZJ+VoOT7HlYqYHgwb+ PxDMINIStMi2gIvcnS0cSybC6J0LEfc55AOlLpXc8KPQXLDhNW/wOBnGTau6Mkfb H0oaKdKm4ZNL/AvF7hdz6NN5NAssLQgKl601Z7uptY/R2pZIKdrtfP7kAyx/tOHP Pi/aROAAd1eNNP7gGmFHBI3Q7lN02YvuiwgQvrV1Zd7y47Zrd27tIDE2FfcjtcpE 0EZ8IrpCT1+yPV9gF29OaGlZiUWwSr4VqTT6+xizW6+4oYN+a2ckpoFxnHjWHbSB YOg/3GGPx94C0lRAbpUwB6PyGEuPLXYyHO0VIlnKIpHy -----END CERTIFICATE-----Generated at Wed May 13 07:56:48 2026 by rpki-client