$ rpki-client -vvf rpki-rsync.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/323430313a646538303a383a3a2f34382d3438203d3e203338353234.roa File: 323430313a646538303a383a3a2f34382d3438203d3e203338353234.roa (raw, json) Hash identifier: p875TAmU2A43GrzwVwl+OYcf7wyLUiIuUR2yXxkExDc= Subject key identifier: 86:B2:84:C7:6C:F0:2D:D7:EC:C1:5F:62:7A:27:A1:5D:4B:35:57:12 Certificate issuer: /CN=9436E607F375F72BBD96588FBB7CE6D5B628FF86 Certificate serial: 3BF42820C2B11714484A2272E7C29F7069D225B7 Authority key identifier: 94:36:E6:07:F3:75:F7:2B:BD:96:58:8F:BB:7C:E6:D5:B6:28:FF:86 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9436E607F375F72BBD96588FBB7CE6D5B628FF86.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/323430313a646538303a383a3a2f34382d3438203d3e203338353234.roa Signing time: Sun 03 May 2026 02:46:33 +0000 ROA not before: Sun 03 May 2026 02:41:33 +0000 ROA not after: Sun 02 May 2027 02:46:33 +0000 asID: 38524 IP address blocks: 2401:de80:8::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/9436E607F375F72BBD96588FBB7CE6D5B628FF86.crl rsync://rpki-rsync.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/9436E607F375F72BBD96588FBB7CE6D5B628FF86.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9436E607F375F72BBD96588FBB7CE6D5B628FF86.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 21:29:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:f4:28:20:c2:b1:17:14:48:4a:22:72:e7:c2:9f:70:69:d2:25:b7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9436E607F375F72BBD96588FBB7CE6D5B628FF86 Validity Not Before: May 3 02:41:33 2026 GMT Not After : May 2 02:46:33 2027 GMT Subject: CN=86B284C76CF02DD7ECC15F627A27A15D4B355712 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:87:48:2e:b8:5e:75:ca:29:1b:3e:a0:ff:4b: 00:23:0a:d2:d4:59:ed:ae:86:84:6e:01:09:85:03: c2:99:b7:7b:3a:6e:bf:e3:94:0f:79:6b:c1:56:87: af:02:b5:12:1f:f8:66:40:4e:de:79:52:36:15:c7: 59:db:78:cb:01:fd:81:0d:0a:a5:32:a8:8c:c5:78: 85:df:ec:25:61:f9:f9:19:0e:c5:ae:89:f0:d1:38: fd:c8:44:5f:99:a1:ab:ca:38:50:db:b2:0a:a5:4e: 5a:ed:cf:51:8c:15:34:6c:c3:42:94:63:72:0d:16: d4:82:a4:9a:12:18:ae:a3:c5:4c:4c:af:6b:b0:76: 31:d4:cc:90:da:7d:53:b9:ed:48:28:84:f6:3f:3a: b7:15:53:0a:28:d3:3f:0e:29:20:25:fd:68:81:87: 65:23:43:8c:54:de:01:04:10:37:95:28:57:78:3f: 84:96:df:09:64:4c:e3:46:44:62:42:57:8b:bd:52: 43:fa:e7:b5:23:f5:19:10:e6:43:6e:e7:37:5b:94: 09:89:39:b5:37:28:d4:e2:b8:dc:05:b0:4f:73:cc: 8e:b4:ba:10:76:82:97:db:66:9e:1d:14:c1:b4:af: 28:8d:a3:00:f1:09:bb:a0:5e:ee:c4:53:36:21:0a: 24:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:B2:84:C7:6C:F0:2D:D7:EC:C1:5F:62:7A:27:A1:5D:4B:35:57:12 X509v3 Authority Key Identifier: keyid:94:36:E6:07:F3:75:F7:2B:BD:96:58:8F:BB:7C:E6:D5:B6:28:FF:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/9436E607F375F72BBD96588FBB7CE6D5B628FF86.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9436E607F375F72BBD96588FBB7CE6D5B628FF86.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/323430313a646538303a383a3a2f34382d3438203d3e203338353234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:de80:8::/48 Signature Algorithm: sha256WithRSAEncryption 08:33:f8:95:e5:07:1a:f6:f3:85:97:4c:4d:76:a9:da:1d:81: f7:c5:80:41:fc:b5:72:fb:d1:ec:35:0e:45:17:97:cf:04:ad: 13:fc:85:7c:37:24:52:c6:5e:fd:5e:75:d9:49:42:9f:cb:74: 33:46:21:1c:68:08:20:ca:d4:66:ee:e0:a2:f9:42:48:82:c8: 3f:67:a9:b9:40:65:53:86:16:0b:91:d8:ef:65:c1:c4:9a:3c: 32:3a:22:c4:ff:1e:ba:99:99:ee:a0:d0:b5:ae:24:8e:ca:f3: 39:d3:6b:a1:fa:59:cc:5b:d1:9d:18:9f:09:2d:cf:ba:18:c5: 5a:01:17:c4:a5:4a:4e:d4:5b:ce:d0:ea:de:b9:50:5d:77:f2: c4:df:be:b3:e1:5b:d4:63:0f:20:ff:73:f7:c7:55:78:ba:3c: 10:69:13:ef:46:1e:2b:8f:c9:f8:0a:82:aa:1d:ca:60:03:5a: 58:8b:a0:a9:78:c0:6d:32:6e:a8:f7:21:ed:fa:83:fa:30:76: b0:4c:81:de:2f:31:3a:5f:40:a5:dd:e8:1e:eb:d6:f5:37:65: a9:27:ad:67:a1:60:d0:b8:12:2b:8f:f6:ef:3f:2d:0d:54:1f: 82:11:1c:98:13:7d:2a:10:85:9f:1d:7f:82:43:ec:ff:84:f0: 20:bc:22:aa -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUO/QoIMKxFxRISiJy58KfcGnSJbcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTQzNkU2MDdGMzc1RjcyQkJEOTY1ODhGQkI3Q0U2RDVC NjI4RkY4NjAeFw0yNjA1MDMwMjQxMzNaFw0yNzA1MDIwMjQ2MzNaMDMxMTAvBgNV BAMTKDg2QjI4NEM3NkNGMDJERDdFQ0MxNUY2MjdBMjdBMTVENEIzNTU3MTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxh0guuF51yikbPqD/SwAjCtLU We2uhoRuAQmFA8KZt3s6br/jlA95a8FWh68CtRIf+GZATt55UjYVx1nbeMsB/YEN CqUyqIzFeIXf7CVh+fkZDsWuifDROP3IRF+ZoavKOFDbsgqlTlrtz1GMFTRsw0KU Y3INFtSCpJoSGK6jxUxMr2uwdjHUzJDafVO57UgohPY/OrcVUwoo0z8OKSAl/WiB h2UjQ4xU3gEEEDeVKFd4P4SW3wlkTONGRGJCV4u9UkP657Uj9RkQ5kNu5zdblAmJ ObU3KNTiuNwFsE9zzI60uhB2gpfbZp4dFMG0ryiNowDxCbugXu7EUzYhCiT5AgMB AAGjggI3MIICMzAdBgNVHQ4EFgQUhrKEx2zwLdfswV9ieiehXUs1VxIwHwYDVR0j BBgwFoAUlDbmB/N19yu9lliPu3zm1bYo/4YwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v N2ZmOTY5ZmMtMzljNy00NGNkLTg3MTYtOWNlNGM2ZDVhYzkxLzAvOTQzNkU2MDdG Mzc1RjcyQkJEOTY1ODhGQkI3Q0U2RDVCNjI4RkY4Ni5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS85NDM2RTYwN0YzNzVGNzJCQkQ5NjU4OEZCQjdDRTZENUI2MjhG Rjg2LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzdmZjk2OWZjLTM5YzctNDRjZC04 NzE2LTljZTRjNmQ1YWM5MS8wLzMyMzQzMDMxM2E2NDY1MzgzMDNhMzgzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMzM4MzUzMjM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAHegAAIMA0G CSqGSIb3DQEBCwUAA4IBAQAIM/iV5Qca9vOFl0xNdqnaHYH3xYBB/LVy+9HsNQ5F F5fPBK0T/IV8NyRSxl79XnXZSUKfy3QzRiEcaAggytRm7uCi+UJIgsg/Z6m5QGVT hhYLkdjvZcHEmjwyOiLE/x66mZnuoNC1riSOyvM502uh+lnMW9GdGJ8JLc+6GMVa ARfEpUpO1FvO0OreuVBdd/LE376z4VvUYw8g/3P3x1V4ujwQaRPvRh4rj8n4CoKq HcpgA1pYi6CpeMBtMm6o9yHt+oP6MHawTIHeLzE6X0Cl3ege69b1N2WpJ61noWDQ uBIrj/bvPy0NVB+CERyYE30qEIWfHX+CQ+z/hPAgvCKq -----END CERTIFICATE-----Generated at Wed May 13 08:39:50 2026 by rpki-client