$ rpki-client -vvf rpki-rsync.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/323430313a646538303a393a3a2f34382d3438203d3e203338353234.roa File: 323430313a646538303a393a3a2f34382d3438203d3e203338353234.roa (raw, json) Hash identifier: AuYO5TccYbau3mi1SX/oBPb+qAUEFY3wZ2MqtqnmRSE= Subject key identifier: 25:70:41:2A:BC:2E:EA:06:30:EC:2C:A1:9D:4A:29:BD:7C:16:F7:A8 Certificate issuer: /CN=9436E607F375F72BBD96588FBB7CE6D5B628FF86 Certificate serial: 3EAC8332119D52C227D38AE9C20FD0EDFB1FDC57 Authority key identifier: 94:36:E6:07:F3:75:F7:2B:BD:96:58:8F:BB:7C:E6:D5:B6:28:FF:86 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9436E607F375F72BBD96588FBB7CE6D5B628FF86.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/323430313a646538303a393a3a2f34382d3438203d3e203338353234.roa Signing time: Sun 03 May 2026 02:46:22 +0000 ROA not before: Sun 03 May 2026 02:41:22 +0000 ROA not after: Sun 02 May 2027 02:46:22 +0000 asID: 38524 IP address blocks: 2401:de80:9::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/9436E607F375F72BBD96588FBB7CE6D5B628FF86.crl rsync://rpki-rsync.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/9436E607F375F72BBD96588FBB7CE6D5B628FF86.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9436E607F375F72BBD96588FBB7CE6D5B628FF86.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 21:29:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:ac:83:32:11:9d:52:c2:27:d3:8a:e9:c2:0f:d0:ed:fb:1f:dc:57 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9436E607F375F72BBD96588FBB7CE6D5B628FF86 Validity Not Before: May 3 02:41:22 2026 GMT Not After : May 2 02:46:22 2027 GMT Subject: CN=2570412ABC2EEA0630EC2CA19D4A29BD7C16F7A8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:f3:b6:ea:a1:a4:ec:16:15:4f:98:41:a4:a5: 23:44:0e:3e:cb:80:02:68:d0:91:1d:51:6d:ad:c8: 4a:81:62:4c:35:ac:8c:a4:b1:e9:8d:93:65:a7:c3: 01:61:99:7d:ff:fc:9f:dc:3d:a7:b4:8b:05:a0:3f: d4:10:b6:1e:c7:c0:ae:ed:3c:98:43:8f:c8:44:5f: 43:8f:10:09:b2:f0:c6:0d:49:e9:40:8e:37:6a:a6: 71:67:c9:dd:71:34:40:ed:5e:f5:42:23:91:5a:e9: b1:4c:53:d9:09:27:a6:78:1b:63:cd:ff:8f:5c:4f: fc:65:eb:a0:11:96:1b:1c:82:09:cb:2e:ac:1a:ff: 3b:51:ee:2f:06:5b:fe:90:79:db:f0:5a:27:d3:c5: 6e:60:2f:85:8c:bf:8a:82:e0:9a:b6:1c:30:44:5b: fc:9e:79:77:f7:be:6f:9e:4c:92:75:61:b1:27:df: cd:bd:e5:12:59:6a:47:ac:ba:29:c1:f0:df:90:ac: d5:83:cf:5e:81:3e:75:45:ad:4d:9c:41:4c:07:b9: cc:19:fd:51:85:bc:bc:68:4c:1c:62:4c:31:99:60: 60:3a:01:dc:4c:cb:9d:6c:eb:07:1a:f5:aa:d7:45: c4:91:27:0b:76:0d:ad:3c:8e:b2:d2:5b:7d:63:00: 9b:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:70:41:2A:BC:2E:EA:06:30:EC:2C:A1:9D:4A:29:BD:7C:16:F7:A8 X509v3 Authority Key Identifier: keyid:94:36:E6:07:F3:75:F7:2B:BD:96:58:8F:BB:7C:E6:D5:B6:28:FF:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/9436E607F375F72BBD96588FBB7CE6D5B628FF86.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9436E607F375F72BBD96588FBB7CE6D5B628FF86.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/323430313a646538303a393a3a2f34382d3438203d3e203338353234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:de80:9::/48 Signature Algorithm: sha256WithRSAEncryption a7:b2:b9:16:6c:68:e1:5b:e2:86:0e:d7:fd:bf:ef:a8:00:65: 7b:15:f8:4d:ac:99:7f:7f:ac:78:9e:c2:a4:20:9d:82:35:6f: 0d:be:15:9c:c6:f4:f5:18:3e:23:c9:99:4f:31:77:88:18:49: a1:f3:95:e5:5d:21:cc:c0:c6:bc:2e:42:6c:51:83:95:eb:86: 03:e6:bf:b7:d5:02:bb:78:7f:c7:0d:53:b2:18:6e:6d:29:b2: e3:97:44:6c:07:01:67:51:87:b4:56:ed:6c:70:75:54:26:1b: 0e:06:9f:ab:e9:00:29:bc:80:e9:41:29:32:dd:05:17:f4:0d: 7b:c5:e4:75:b0:fc:92:2c:90:3c:27:b9:33:de:d1:e6:b3:d8: 90:1a:94:84:0a:dc:6c:c0:4c:a7:37:c3:fd:1e:db:fd:cd:1f: 9f:b9:70:89:ed:c0:d0:7b:6d:58:a2:b6:da:09:60:8e:35:8d: 15:a2:ea:7e:b9:bb:f9:7a:11:3c:87:02:88:fa:7c:46:86:05: 40:89:68:39:72:0e:5d:f5:fc:2e:be:ec:b7:03:2e:d1:27:44: e5:a7:e4:79:c0:cc:b2:12:46:2c:07:6b:0b:18:77:e6:ef:4b: 5b:03:e2:45:ff:f9:1d:c5:31:6d:f2:60:40:fa:c7:05:cf:3b: 4f:f4:05:2b -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUPqyDMhGdUsIn04rpwg/Q7fsf3FcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTQzNkU2MDdGMzc1RjcyQkJEOTY1ODhGQkI3Q0U2RDVC NjI4RkY4NjAeFw0yNjA1MDMwMjQxMjJaFw0yNzA1MDIwMjQ2MjJaMDMxMTAvBgNV BAMTKDI1NzA0MTJBQkMyRUVBMDYzMEVDMkNBMTlENEEyOUJEN0MxNkY3QTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCo87bqoaTsFhVPmEGkpSNEDj7L gAJo0JEdUW2tyEqBYkw1rIyksemNk2WnwwFhmX3//J/cPae0iwWgP9QQth7HwK7t PJhDj8hEX0OPEAmy8MYNSelAjjdqpnFnyd1xNEDtXvVCI5Fa6bFMU9kJJ6Z4G2PN /49cT/xl66ARlhscggnLLqwa/ztR7i8GW/6QedvwWifTxW5gL4WMv4qC4Jq2HDBE W/yeeXf3vm+eTJJ1YbEn38295RJZakesuinB8N+QrNWDz16BPnVFrU2cQUwHucwZ /VGFvLxoTBxiTDGZYGA6AdxMy51s6wca9arXRcSRJwt2Da08jrLSW31jAJsZAgMB AAGjggI3MIICMzAdBgNVHQ4EFgQUJXBBKrwu6gYw7CyhnUopvXwW96gwHwYDVR0j BBgwFoAUlDbmB/N19yu9lliPu3zm1bYo/4YwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v N2ZmOTY5ZmMtMzljNy00NGNkLTg3MTYtOWNlNGM2ZDVhYzkxLzAvOTQzNkU2MDdG Mzc1RjcyQkJEOTY1ODhGQkI3Q0U2RDVCNjI4RkY4Ni5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS85NDM2RTYwN0YzNzVGNzJCQkQ5NjU4OEZCQjdDRTZENUI2MjhG Rjg2LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzdmZjk2OWZjLTM5YzctNDRjZC04 NzE2LTljZTRjNmQ1YWM5MS8wLzMyMzQzMDMxM2E2NDY1MzgzMDNhMzkzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMzM4MzUzMjM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAHegAAJMA0G CSqGSIb3DQEBCwUAA4IBAQCnsrkWbGjhW+KGDtf9v++oAGV7FfhNrJl/f6x4nsKk IJ2CNW8NvhWcxvT1GD4jyZlPMXeIGEmh85XlXSHMwMa8LkJsUYOV64YD5r+31QK7 eH/HDVOyGG5tKbLjl0RsBwFnUYe0Vu1scHVUJhsOBp+r6QApvIDpQSky3QUX9A17 xeR1sPySLJA8J7kz3tHms9iQGpSECtxswEynN8P9Htv9zR+fuXCJ7cDQe21Yorba CWCONY0Voup+ubv5ehE8hwKI+nxGhgVAiWg5cg5d9fwuvuy3Ay7RJ0Tlp+R5wMyy EkYsB2sLGHfm70tbA+JF//kdxTFt8mBA+scFzztP9AUr -----END CERTIFICATE-----Generated at Wed May 13 08:24:52 2026 by rpki-client