$ rpki-client -vvf rpki-rsync.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/323430313a646538303a613a3a2f34382d3438203d3e203338353234.roa File: 323430313a646538303a613a3a2f34382d3438203d3e203338353234.roa (raw, json) Hash identifier: ioY0LmXXJMAeiAjxElD65sYyXfr33iNMFqhQa04nfug= Subject key identifier: 63:CB:F2:E8:01:7F:2B:A8:B0:96:F3:C9:F6:3E:32:CD:79:43:20:90 Certificate issuer: /CN=9436E607F375F72BBD96588FBB7CE6D5B628FF86 Certificate serial: 3110B4575C79E5581E972542C51516DAA3DE558A Authority key identifier: 94:36:E6:07:F3:75:F7:2B:BD:96:58:8F:BB:7C:E6:D5:B6:28:FF:86 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9436E607F375F72BBD96588FBB7CE6D5B628FF86.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/323430313a646538303a613a3a2f34382d3438203d3e203338353234.roa Signing time: Sun 03 May 2026 02:46:32 +0000 ROA not before: Sun 03 May 2026 02:41:32 +0000 ROA not after: Sun 02 May 2027 02:46:32 +0000 asID: 38524 IP address blocks: 2401:de80:a::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/9436E607F375F72BBD96588FBB7CE6D5B628FF86.crl rsync://rpki-rsync.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/9436E607F375F72BBD96588FBB7CE6D5B628FF86.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9436E607F375F72BBD96588FBB7CE6D5B628FF86.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 21:29:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:10:b4:57:5c:79:e5:58:1e:97:25:42:c5:15:16:da:a3:de:55:8a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9436E607F375F72BBD96588FBB7CE6D5B628FF86 Validity Not Before: May 3 02:41:32 2026 GMT Not After : May 2 02:46:32 2027 GMT Subject: CN=63CBF2E8017F2BA8B096F3C9F63E32CD79432090 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:00:f4:78:19:5a:f9:9c:fd:d9:15:be:f6:29: 66:29:c0:df:d6:ac:f9:91:d9:fe:8e:af:d9:d3:0f: 65:7c:52:48:32:5a:a6:f1:47:19:e6:07:be:07:5c: 7c:b9:c0:8d:83:0f:c3:34:cc:71:f9:02:c0:36:91: 1a:30:4d:bf:39:a6:3f:f7:e8:87:30:7a:ed:fe:57: ec:c1:92:04:ac:69:01:b6:9e:11:df:3b:96:1d:be: 9b:ef:f6:b6:7f:6b:06:fa:32:a9:4d:1c:0c:a3:23: 79:05:88:7c:c2:f6:b5:87:ba:1f:24:ed:eb:63:44: e0:03:57:67:0b:6d:60:d0:a2:25:3a:6b:3c:7b:a4: 72:85:73:53:ee:86:34:7a:b7:0f:05:90:41:26:2c: ad:d8:ee:91:e0:61:36:b9:c0:e1:7b:f1:6f:47:46: 09:a6:00:1e:43:09:df:81:3d:f3:65:28:0e:b6:a3: 89:2b:e3:e9:d1:00:46:64:ac:a1:da:54:e0:87:be: df:ac:26:94:d8:ba:38:b2:ba:f0:83:7e:1c:22:4f: 95:59:0e:d3:e2:f0:41:e4:73:0e:9e:67:15:77:54: ea:52:3b:b5:f8:7b:c3:62:39:68:db:ff:6a:13:38: a1:09:d7:c8:c8:84:80:69:a2:3b:88:ae:42:2b:8f: 62:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:CB:F2:E8:01:7F:2B:A8:B0:96:F3:C9:F6:3E:32:CD:79:43:20:90 X509v3 Authority Key Identifier: keyid:94:36:E6:07:F3:75:F7:2B:BD:96:58:8F:BB:7C:E6:D5:B6:28:FF:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/9436E607F375F72BBD96588FBB7CE6D5B628FF86.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9436E607F375F72BBD96588FBB7CE6D5B628FF86.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/323430313a646538303a613a3a2f34382d3438203d3e203338353234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:de80:a::/48 Signature Algorithm: sha256WithRSAEncryption 8d:4b:4d:12:d9:81:18:42:2b:b7:da:e3:81:b7:5d:c7:33:e4: a9:2b:86:2d:42:5d:70:2b:e6:bd:c0:6c:fa:2a:56:69:1c:d2: 1d:b2:fe:cf:82:80:b9:71:c5:8b:6d:fd:eb:47:55:40:7f:03: d8:44:22:0d:a1:0c:6a:dd:88:b9:73:cf:f2:ff:40:ee:6e:57: 67:98:bc:61:d7:06:ea:51:f1:72:75:4c:5f:00:4e:5a:04:f8: 0b:49:95:1b:44:1a:df:6e:6d:73:9a:d5:26:f6:bb:ea:54:3d: 79:12:52:19:66:08:a7:c5:cd:fe:aa:ce:bc:75:09:ad:ee:72: d4:d2:78:69:97:5d:0b:1e:9b:7a:75:bc:24:d5:15:97:af:2d: 39:76:f4:47:00:b5:21:61:63:23:5a:8e:7a:b1:c9:6e:7b:aa: 4a:41:7d:b9:53:56:75:9b:d0:f9:e6:f8:0e:59:c3:6a:69:49: c0:bc:60:57:0f:b4:9f:b0:d9:b7:e4:0c:d2:d5:7e:5b:fe:f9: 45:53:44:cc:58:8e:44:e3:02:c7:e0:93:fd:cd:9d:3e:3e:7c: b4:ba:09:8b:02:ab:9e:4a:63:72:53:ed:72:ad:2f:12:d6:c1: c6:10:c3:97:c8:39:0c:1d:38:14:d0:22:10:46:61:15:43:d2: 30:91:7d:d4 -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUMRC0V1x55VgelyVCxRUW2qPeVYowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTQzNkU2MDdGMzc1RjcyQkJEOTY1ODhGQkI3Q0U2RDVC NjI4RkY4NjAeFw0yNjA1MDMwMjQxMzJaFw0yNzA1MDIwMjQ2MzJaMDMxMTAvBgNV BAMTKDYzQ0JGMkU4MDE3RjJCQThCMDk2RjNDOUY2M0UzMkNENzk0MzIwOTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOAPR4GVr5nP3ZFb72KWYpwN/W rPmR2f6Or9nTD2V8UkgyWqbxRxnmB74HXHy5wI2DD8M0zHH5AsA2kRowTb85pj/3 6Icweu3+V+zBkgSsaQG2nhHfO5Ydvpvv9rZ/awb6MqlNHAyjI3kFiHzC9rWHuh8k 7etjROADV2cLbWDQoiU6azx7pHKFc1PuhjR6tw8FkEEmLK3Y7pHgYTa5wOF78W9H RgmmAB5DCd+BPfNlKA62o4kr4+nRAEZkrKHaVOCHvt+sJpTYujiyuvCDfhwiT5VZ DtPi8EHkcw6eZxV3VOpSO7X4e8NiOWjb/2oTOKEJ18jIhIBpojuIrkIrj2IzAgMB AAGjggI3MIICMzAdBgNVHQ4EFgQUY8vy6AF/K6iwlvPJ9j4yzXlDIJAwHwYDVR0j BBgwFoAUlDbmB/N19yu9lliPu3zm1bYo/4YwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v N2ZmOTY5ZmMtMzljNy00NGNkLTg3MTYtOWNlNGM2ZDVhYzkxLzAvOTQzNkU2MDdG Mzc1RjcyQkJEOTY1ODhGQkI3Q0U2RDVCNjI4RkY4Ni5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS85NDM2RTYwN0YzNzVGNzJCQkQ5NjU4OEZCQjdDRTZENUI2MjhG Rjg2LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzdmZjk2OWZjLTM5YzctNDRjZC04 NzE2LTljZTRjNmQ1YWM5MS8wLzMyMzQzMDMxM2E2NDY1MzgzMDNhNjEzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMzM4MzUzMjM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAHegAAKMA0G CSqGSIb3DQEBCwUAA4IBAQCNS00S2YEYQiu32uOBt13HM+SpK4YtQl1wK+a9wGz6 KlZpHNIdsv7PgoC5ccWLbf3rR1VAfwPYRCINoQxq3Yi5c8/y/0DubldnmLxh1wbq UfFydUxfAE5aBPgLSZUbRBrfbm1zmtUm9rvqVD15ElIZZginxc3+qs68dQmt7nLU 0nhpl10LHpt6dbwk1RWXry05dvRHALUhYWMjWo56sclue6pKQX25U1Z1m9D55vgO WcNqaUnAvGBXD7SfsNm35AzS1X5b/vlFU0TMWI5E4wLH4JP9zZ0+Pny0ugmLAque SmNyU+1yrS8S1sHGEMOXyDkMHTgU0CIQRmEVQ9IwkX3U -----END CERTIFICATE-----Generated at Wed May 13 07:35:31 2026 by rpki-client