$ rpki-client -vvf rpki-rsync.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/323430313a646538303a373a3a2f34382d3438203d3e203338353234.roa File: 323430313a646538303a373a3a2f34382d3438203d3e203338353234.roa (raw, json) Hash identifier: KkxEXZhjp/oGWHBiD1U4ajaYXvkfO2+59RNFB3d9ZrE= Subject key identifier: CB:8C:42:57:4E:97:0D:3D:FE:6C:35:B1:4E:8C:05:B6:26:B4:94:9F Certificate issuer: /CN=9436E607F375F72BBD96588FBB7CE6D5B628FF86 Certificate serial: 2C35DB098144BF93ECDE590A0516C8149CFE5F33 Authority key identifier: 94:36:E6:07:F3:75:F7:2B:BD:96:58:8F:BB:7C:E6:D5:B6:28:FF:86 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9436E607F375F72BBD96588FBB7CE6D5B628FF86.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/323430313a646538303a373a3a2f34382d3438203d3e203338353234.roa Signing time: Sun 03 May 2026 02:46:29 +0000 ROA not before: Sun 03 May 2026 02:41:29 +0000 ROA not after: Sun 02 May 2027 02:46:29 +0000 asID: 38524 IP address blocks: 2401:de80:7::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/9436E607F375F72BBD96588FBB7CE6D5B628FF86.crl rsync://rpki-rsync.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/9436E607F375F72BBD96588FBB7CE6D5B628FF86.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9436E607F375F72BBD96588FBB7CE6D5B628FF86.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 21:29:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:35:db:09:81:44:bf:93:ec:de:59:0a:05:16:c8:14:9c:fe:5f:33 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9436E607F375F72BBD96588FBB7CE6D5B628FF86 Validity Not Before: May 3 02:41:29 2026 GMT Not After : May 2 02:46:29 2027 GMT Subject: CN=CB8C42574E970D3DFE6C35B14E8C05B626B4949F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:b2:d9:e2:80:04:37:36:77:03:45:01:bd:33: 96:09:e1:22:41:df:1c:71:df:d3:00:0f:f0:10:8c: 16:f5:07:e1:f2:f9:75:ef:0a:f2:26:a1:60:72:e0: c3:6a:ba:c4:92:40:9a:c6:30:3e:ea:11:57:1e:d7: 34:a4:45:97:96:98:3c:51:87:1e:ea:0b:ec:02:d5: e1:2f:c0:f8:7b:88:ca:5b:02:11:b1:a5:37:e5:b2: 47:56:84:73:a5:0a:a5:83:ad:8e:1e:ac:82:db:df: 69:63:dd:bd:a5:92:a2:fb:60:c8:40:fb:55:f2:c1: d8:59:af:05:e3:ed:39:93:43:c1:f7:d2:b6:2c:d5: 3d:9f:b8:88:ed:e0:6c:c7:2c:0b:c4:3a:ed:d4:25: 94:61:8c:5c:c9:a5:71:03:c5:51:60:50:ca:56:5d: c7:cb:7b:80:dc:9b:e5:8e:a1:96:d4:d9:2c:5c:39: 7c:05:0a:da:d3:d8:15:cb:62:b3:f5:71:1c:f2:3c: 56:72:7c:3c:77:73:59:a5:80:ce:35:39:19:a8:22: c9:ac:58:2e:8a:7c:11:77:de:8f:38:dc:02:16:58: 61:49:fa:10:fb:18:9d:4d:69:7a:54:73:46:01:4c: f6:7c:19:d2:45:db:6b:4d:6c:73:4f:03:95:41:32: c4:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:8C:42:57:4E:97:0D:3D:FE:6C:35:B1:4E:8C:05:B6:26:B4:94:9F X509v3 Authority Key Identifier: keyid:94:36:E6:07:F3:75:F7:2B:BD:96:58:8F:BB:7C:E6:D5:B6:28:FF:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/9436E607F375F72BBD96588FBB7CE6D5B628FF86.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9436E607F375F72BBD96588FBB7CE6D5B628FF86.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/323430313a646538303a373a3a2f34382d3438203d3e203338353234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:de80:7::/48 Signature Algorithm: sha256WithRSAEncryption 0d:30:25:a4:82:f4:b0:47:3b:59:22:1a:d7:6a:b0:53:88:19: 85:39:ca:17:35:39:6a:60:0b:fc:42:76:5d:42:91:e2:89:da: e2:ed:21:3d:31:5f:41:ca:6e:81:16:b4:4b:a0:3e:29:88:d7: 90:81:26:0f:16:f5:af:1c:0d:c1:43:cb:11:58:12:49:da:c0: 2a:6d:f0:17:17:83:7e:60:62:3b:4a:f5:c1:52:8b:4d:97:bc: bb:fc:3e:8c:ff:23:d8:97:fa:59:e0:97:07:5f:3e:3a:89:8f: e5:fb:c2:2b:0c:73:5a:86:ac:f7:29:6b:9e:bb:ba:25:f7:08: ba:e5:18:a0:5e:6c:68:ac:3e:f7:75:19:06:cb:1e:76:69:54: e6:78:b2:26:90:9a:11:d8:37:e0:03:02:97:eb:60:46:43:05: 1b:22:8b:be:d9:74:bb:06:22:85:c7:39:6d:ae:2e:32:e2:2d: ee:c8:c1:88:88:2c:e0:7a:30:be:79:27:6e:2b:49:bb:de:34: de:27:08:db:94:ce:7f:af:ef:02:e2:00:26:2a:14:b0:96:f8: 8b:78:17:27:92:bf:c3:9f:db:1c:58:95:3f:5f:d1:3d:48:e1: d5:3b:40:26:c6:6f:12:11:d3:e9:2c:0c:10:77:e1:43:7c:ce: bc:67:9e:ba -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIULDXbCYFEv5Ps3lkKBRbIFJz+XzMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTQzNkU2MDdGMzc1RjcyQkJEOTY1ODhGQkI3Q0U2RDVC NjI4RkY4NjAeFw0yNjA1MDMwMjQxMjlaFw0yNzA1MDIwMjQ2MjlaMDMxMTAvBgNV BAMTKENCOEM0MjU3NEU5NzBEM0RGRTZDMzVCMTRFOEMwNUI2MjZCNDk0OUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCOstnigAQ3NncDRQG9M5YJ4SJB 3xxx39MAD/AQjBb1B+Hy+XXvCvImoWBy4MNqusSSQJrGMD7qEVce1zSkRZeWmDxR hx7qC+wC1eEvwPh7iMpbAhGxpTflskdWhHOlCqWDrY4erILb32lj3b2lkqL7YMhA +1XywdhZrwXj7TmTQ8H30rYs1T2fuIjt4GzHLAvEOu3UJZRhjFzJpXEDxVFgUMpW XcfLe4Dcm+WOoZbU2SxcOXwFCtrT2BXLYrP1cRzyPFZyfDx3c1mlgM41ORmoIsms WC6KfBF33o843AIWWGFJ+hD7GJ1NaXpUc0YBTPZ8GdJF22tNbHNPA5VBMsTrAgMB AAGjggI3MIICMzAdBgNVHQ4EFgQUy4xCV06XDT3+bDWxTowFtia0lJ8wHwYDVR0j BBgwFoAUlDbmB/N19yu9lliPu3zm1bYo/4YwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v N2ZmOTY5ZmMtMzljNy00NGNkLTg3MTYtOWNlNGM2ZDVhYzkxLzAvOTQzNkU2MDdG Mzc1RjcyQkJEOTY1ODhGQkI3Q0U2RDVCNjI4RkY4Ni5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS85NDM2RTYwN0YzNzVGNzJCQkQ5NjU4OEZCQjdDRTZENUI2MjhG Rjg2LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzdmZjk2OWZjLTM5YzctNDRjZC04 NzE2LTljZTRjNmQ1YWM5MS8wLzMyMzQzMDMxM2E2NDY1MzgzMDNhMzczYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMzM4MzUzMjM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAHegAAHMA0G CSqGSIb3DQEBCwUAA4IBAQANMCWkgvSwRztZIhrXarBTiBmFOcoXNTlqYAv8QnZd QpHiidri7SE9MV9Bym6BFrRLoD4piNeQgSYPFvWvHA3BQ8sRWBJJ2sAqbfAXF4N+ YGI7SvXBUotNl7y7/D6M/yPYl/pZ4JcHXz46iY/l+8IrDHNahqz3KWueu7ol9wi6 5RigXmxorD73dRkGyx52aVTmeLImkJoR2DfgAwKX62BGQwUbIou+2XS7BiKFxzlt ri4y4i3uyMGIiCzgejC+eSduK0m73jTeJwjblM5/r+8C4gAmKhSwlviLeBcnkr/D n9scWJU/X9E9SOHVO0Amxm8SEdPpLAwQd+FDfM68Z566 -----END CERTIFICATE-----Generated at Wed May 13 08:23:58 2026 by rpki-client