$ rpki-client -vvf rpki-rsync.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/323430313a646538303a353a3a2f34382d3438203d3e203338353234.roa File: 323430313a646538303a353a3a2f34382d3438203d3e203338353234.roa (raw, json) Hash identifier: BK8Ng6gUHrAMozhlvR37Fy2f7Svgeis+ZV1Co+t553Q= Subject key identifier: 12:71:CF:A2:5B:8C:86:28:2E:28:C0:E8:C3:70:9D:24:7B:22:5E:EF Certificate issuer: /CN=9436E607F375F72BBD96588FBB7CE6D5B628FF86 Certificate serial: 03B7FCCFA8372EB4D50B11BE54469617F5DEE599 Authority key identifier: 94:36:E6:07:F3:75:F7:2B:BD:96:58:8F:BB:7C:E6:D5:B6:28:FF:86 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9436E607F375F72BBD96588FBB7CE6D5B628FF86.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/323430313a646538303a353a3a2f34382d3438203d3e203338353234.roa Signing time: Sun 03 May 2026 02:46:25 +0000 ROA not before: Sun 03 May 2026 02:41:25 +0000 ROA not after: Sun 02 May 2027 02:46:25 +0000 asID: 38524 IP address blocks: 2401:de80:5::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/9436E607F375F72BBD96588FBB7CE6D5B628FF86.crl rsync://rpki-rsync.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/9436E607F375F72BBD96588FBB7CE6D5B628FF86.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9436E607F375F72BBD96588FBB7CE6D5B628FF86.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 21:29:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:b7:fc:cf:a8:37:2e:b4:d5:0b:11:be:54:46:96:17:f5:de:e5:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9436E607F375F72BBD96588FBB7CE6D5B628FF86 Validity Not Before: May 3 02:41:25 2026 GMT Not After : May 2 02:46:25 2027 GMT Subject: CN=1271CFA25B8C86282E28C0E8C3709D247B225EEF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:4b:ab:d9:7a:1c:cf:49:51:ed:69:c5:8a:db: 69:03:2e:cd:34:9d:39:8c:92:19:f3:f6:76:e4:8c: 45:e8:05:c3:8b:a4:f3:06:e6:f7:97:15:a9:d8:d7: 2b:07:0a:39:26:9e:88:b2:f7:03:ea:ef:a6:b5:7f: d2:88:47:96:51:b1:85:27:56:24:5f:78:8e:0a:d2: 20:cf:66:c8:a5:0c:b9:c1:85:52:19:ef:4f:0f:dc: 6b:3e:aa:ef:c9:f0:3b:ba:92:b0:3c:e3:a3:d0:8d: 8d:06:5d:28:66:87:8d:38:df:25:9f:78:b1:8b:2a: d7:10:42:67:73:db:b9:b4:b1:27:21:40:e6:f0:72: 53:b4:a2:68:c7:a0:34:68:43:21:e0:58:65:1b:c2: a5:c3:e2:fa:ec:9a:12:0b:17:b2:2d:4c:35:78:99: 07:a7:d1:ab:2b:fa:cd:6f:67:34:3e:19:11:ff:c7: 90:1c:a7:55:73:2c:e4:e6:18:bc:74:33:cb:d7:7f: 0b:3a:b0:c7:7e:c7:78:f7:3c:ad:c6:c6:f5:71:ab: cb:24:9b:7d:07:69:11:db:50:03:06:3d:62:ab:35: 66:02:85:6f:81:01:82:70:17:7b:ab:30:c6:e4:5c: 96:a4:86:b2:d4:53:0f:be:54:91:7e:be:4c:f1:76: 49:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:71:CF:A2:5B:8C:86:28:2E:28:C0:E8:C3:70:9D:24:7B:22:5E:EF X509v3 Authority Key Identifier: keyid:94:36:E6:07:F3:75:F7:2B:BD:96:58:8F:BB:7C:E6:D5:B6:28:FF:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/9436E607F375F72BBD96588FBB7CE6D5B628FF86.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9436E607F375F72BBD96588FBB7CE6D5B628FF86.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/323430313a646538303a353a3a2f34382d3438203d3e203338353234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:de80:5::/48 Signature Algorithm: sha256WithRSAEncryption 63:33:db:7b:bb:c5:55:ec:14:97:d3:c4:e1:64:20:07:94:87: 20:9d:9f:39:b8:7b:c1:a3:b6:23:95:97:19:62:0c:2d:12:f4: e7:b2:42:80:0d:c6:92:64:40:39:68:b9:a1:58:1a:44:9f:03: 00:02:93:73:6c:39:68:b9:a9:1e:3f:90:f5:7d:aa:36:80:92: 29:35:6c:17:e2:bf:3e:ea:be:79:1a:1d:d7:d9:73:45:5e:67: 26:b7:28:f5:4e:0e:d3:8a:9e:20:97:f9:4e:52:2d:5c:cd:bf: 1a:5f:99:6b:e4:06:0d:79:ed:72:de:c6:e8:8d:c6:45:bb:27: 1a:a0:4c:c3:ae:44:16:d3:1e:fe:d8:65:91:a1:ba:ff:13:c1: 88:92:1a:48:df:ec:21:8d:d4:fb:c2:61:8d:e5:0d:fe:76:be: b8:73:4e:97:99:8c:03:27:af:6b:7f:d6:ee:6c:56:b6:b3:9c: ec:f4:b3:55:05:1b:16:a2:8d:c9:5d:b5:da:4a:4f:64:2d:53: c8:f6:b1:f3:c7:c7:19:26:40:3c:c9:08:65:47:dc:1f:cc:21: 59:9e:30:65:ee:7e:ab:f4:93:4c:0d:0c:e8:0f:ba:4d:9c:b8: ee:3d:99:70:79:ec:be:0c:d3:e1:64:52:f5:99:72:61:6b:70: 9d:59:21:f0 -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUA7f8z6g3LrTVCxG+VEaWF/Xe5ZkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTQzNkU2MDdGMzc1RjcyQkJEOTY1ODhGQkI3Q0U2RDVC NjI4RkY4NjAeFw0yNjA1MDMwMjQxMjVaFw0yNzA1MDIwMjQ2MjVaMDMxMTAvBgNV BAMTKDEyNzFDRkEyNUI4Qzg2MjgyRTI4QzBFOEMzNzA5RDI0N0IyMjVFRUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvS6vZehzPSVHtacWK22kDLs00 nTmMkhnz9nbkjEXoBcOLpPMG5veXFanY1ysHCjkmnoiy9wPq76a1f9KIR5ZRsYUn ViRfeI4K0iDPZsilDLnBhVIZ708P3Gs+qu/J8Du6krA846PQjY0GXShmh4043yWf eLGLKtcQQmdz27m0sSchQObwclO0omjHoDRoQyHgWGUbwqXD4vrsmhILF7ItTDV4 mQen0asr+s1vZzQ+GRH/x5Acp1VzLOTmGLx0M8vXfws6sMd+x3j3PK3GxvVxq8sk m30HaRHbUAMGPWKrNWYChW+BAYJwF3urMMbkXJakhrLUUw++VJF+vkzxdknJAgMB AAGjggI3MIICMzAdBgNVHQ4EFgQUEnHPoluMhiguKMDow3CdJHsiXu8wHwYDVR0j BBgwFoAUlDbmB/N19yu9lliPu3zm1bYo/4YwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v N2ZmOTY5ZmMtMzljNy00NGNkLTg3MTYtOWNlNGM2ZDVhYzkxLzAvOTQzNkU2MDdG Mzc1RjcyQkJEOTY1ODhGQkI3Q0U2RDVCNjI4RkY4Ni5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS85NDM2RTYwN0YzNzVGNzJCQkQ5NjU4OEZCQjdDRTZENUI2MjhG Rjg2LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzdmZjk2OWZjLTM5YzctNDRjZC04 NzE2LTljZTRjNmQ1YWM5MS8wLzMyMzQzMDMxM2E2NDY1MzgzMDNhMzUzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMzM4MzUzMjM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAHegAAFMA0G CSqGSIb3DQEBCwUAA4IBAQBjM9t7u8VV7BSX08ThZCAHlIcgnZ85uHvBo7YjlZcZ YgwtEvTnskKADcaSZEA5aLmhWBpEnwMAApNzbDlouakeP5D1fao2gJIpNWwX4r8+ 6r55Gh3X2XNFXmcmtyj1Tg7Tip4gl/lOUi1czb8aX5lr5AYNee1y3sbojcZFuyca oEzDrkQW0x7+2GWRobr/E8GIkhpI3+whjdT7wmGN5Q3+dr64c06XmYwDJ69rf9bu bFa2s5zs9LNVBRsWoo3JXbXaSk9kLVPI9rHzx8cZJkA8yQhlR9wfzCFZnjBl7n6r 9JNMDQzoD7pNnLjuPZlweey+DNPhZFL1mXJha3CdWSHw -----END CERTIFICATE-----Generated at Wed May 13 07:59:42 2026 by rpki-client