$ rpki-client -vvf rpki-rsync.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/323430313a646538303a623a3a2f34382d3438203d3e203338353234.roa File: 323430313a646538303a623a3a2f34382d3438203d3e203338353234.roa (raw, json) Hash identifier: DI41zECW620FOKsJ0FqMvCY0itCp873yKiXLwmLThnY= Subject key identifier: F5:20:DB:E4:CD:C8:59:A9:D7:9F:A4:67:43:CF:F1:FB:5D:BA:74:24 Certificate issuer: /CN=9436E607F375F72BBD96588FBB7CE6D5B628FF86 Certificate serial: 3D912B4C349D1F8055D5C20AB2A1BD41F6B451F1 Authority key identifier: 94:36:E6:07:F3:75:F7:2B:BD:96:58:8F:BB:7C:E6:D5:B6:28:FF:86 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9436E607F375F72BBD96588FBB7CE6D5B628FF86.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/323430313a646538303a623a3a2f34382d3438203d3e203338353234.roa Signing time: Sun 03 May 2026 02:46:23 +0000 ROA not before: Sun 03 May 2026 02:41:23 +0000 ROA not after: Sun 02 May 2027 02:46:23 +0000 asID: 38524 IP address blocks: 2401:de80:b::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/9436E607F375F72BBD96588FBB7CE6D5B628FF86.crl rsync://rpki-rsync.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/9436E607F375F72BBD96588FBB7CE6D5B628FF86.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9436E607F375F72BBD96588FBB7CE6D5B628FF86.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 21:29:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:91:2b:4c:34:9d:1f:80:55:d5:c2:0a:b2:a1:bd:41:f6:b4:51:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9436E607F375F72BBD96588FBB7CE6D5B628FF86 Validity Not Before: May 3 02:41:23 2026 GMT Not After : May 2 02:46:23 2027 GMT Subject: CN=F520DBE4CDC859A9D79FA46743CFF1FB5DBA7424 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:c2:ba:f5:91:5b:bf:fd:9f:48:c1:9f:02:61: bd:31:76:19:9e:ca:a1:1f:29:36:35:c5:47:66:36: 42:c2:ec:7d:2e:3f:08:f2:b2:ca:cf:6c:30:a2:80: bc:42:58:c0:05:86:50:48:cb:50:9b:e4:41:e8:c8: e1:d4:ca:c0:e4:d5:98:a1:f9:59:c7:88:15:35:07: 8f:76:83:72:e6:8d:4f:9d:43:73:68:de:0a:c8:95: c8:e6:1e:4e:a5:22:ac:85:0a:c5:0a:18:44:18:80: 7d:18:c3:d7:d8:a3:f1:65:57:b5:57:23:0e:76:3a: da:16:0d:74:d4:2e:99:d2:5f:9b:68:95:2d:b0:29: c8:f7:5b:cc:c9:8e:b8:1d:77:96:e6:65:67:93:f2: c1:56:1e:5b:40:0d:af:2e:20:b4:ee:93:92:44:b6: ab:35:73:2e:40:f7:99:a5:ea:78:9a:c8:2d:f3:30: 36:dd:12:5e:7c:2e:08:28:5e:fb:e3:72:cf:1b:0d: df:c4:d6:c3:51:1c:15:d7:b5:4e:4c:4c:a1:06:6b: 5f:72:81:9e:e8:7a:e6:7f:cc:f4:6c:a6:e8:fc:b4: 4a:c3:91:33:62:38:ea:83:76:f4:9a:c2:da:a6:af: 89:32:10:0d:24:b7:6b:cc:54:70:31:ca:3f:61:97: b8:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:20:DB:E4:CD:C8:59:A9:D7:9F:A4:67:43:CF:F1:FB:5D:BA:74:24 X509v3 Authority Key Identifier: keyid:94:36:E6:07:F3:75:F7:2B:BD:96:58:8F:BB:7C:E6:D5:B6:28:FF:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/9436E607F375F72BBD96588FBB7CE6D5B628FF86.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9436E607F375F72BBD96588FBB7CE6D5B628FF86.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/323430313a646538303a623a3a2f34382d3438203d3e203338353234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:de80:b::/48 Signature Algorithm: sha256WithRSAEncryption a0:8a:bc:71:58:f5:c4:a9:33:64:33:6c:5b:34:a4:73:4f:96: 16:f4:4b:72:2b:4c:03:a1:a8:37:46:c4:d6:e3:a7:99:e8:61: 91:15:03:78:22:1a:eb:bf:58:cf:6d:9c:69:e7:e1:64:82:78: db:fa:a5:d4:3d:f9:17:a8:98:d5:e9:4c:d1:c0:07:b2:01:3a: ab:f6:ec:0c:c4:91:60:4c:dc:f8:85:e8:e5:96:f1:58:58:a8: 7e:c8:54:cf:6b:85:65:48:0f:98:33:6e:b1:dd:6d:4b:52:d6: 69:09:dd:9a:31:c9:f8:c9:54:8d:df:ee:b7:02:ee:20:60:83: a2:a9:4e:59:fc:f3:95:fe:b5:cd:d4:22:4a:84:9f:19:c6:bc: 1b:d7:67:d0:5d:00:b1:17:fc:5d:a5:d4:e8:4f:23:ca:31:e5: e0:53:78:f8:ca:a2:37:41:19:48:fc:cc:21:bd:be:42:61:aa: 1a:1b:24:5a:ef:b6:71:f8:40:86:c1:62:ef:e3:85:81:30:e5: 04:7a:be:67:57:ad:40:14:70:0c:f2:21:3b:a4:4b:8c:dd:5f: 89:c2:84:38:08:17:e2:6a:b2:e3:56:d0:be:6e:47:b0:92:e1: e7:dd:ce:54:96:69:3a:00:7a:78:ee:12:d0:94:b5:df:32:9d: 78:12:08:41 -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUPZErTDSdH4BV1cIKsqG9Qfa0UfEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTQzNkU2MDdGMzc1RjcyQkJEOTY1ODhGQkI3Q0U2RDVC NjI4RkY4NjAeFw0yNjA1MDMwMjQxMjNaFw0yNzA1MDIwMjQ2MjNaMDMxMTAvBgNV BAMTKEY1MjBEQkU0Q0RDODU5QTlENzlGQTQ2NzQzQ0ZGMUZCNURCQTc0MjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLwrr1kVu//Z9IwZ8CYb0xdhme yqEfKTY1xUdmNkLC7H0uPwjyssrPbDCigLxCWMAFhlBIy1Cb5EHoyOHUysDk1Zih +VnHiBU1B492g3LmjU+dQ3No3grIlcjmHk6lIqyFCsUKGEQYgH0Yw9fYo/FlV7VX Iw52OtoWDXTULpnSX5tolS2wKcj3W8zJjrgdd5bmZWeT8sFWHltADa8uILTuk5JE tqs1cy5A95ml6niayC3zMDbdEl58LggoXvvjcs8bDd/E1sNRHBXXtU5MTKEGa19y gZ7oeuZ/zPRspuj8tErDkTNiOOqDdvSawtqmr4kyEA0kt2vMVHAxyj9hl7h5AgMB AAGjggI3MIICMzAdBgNVHQ4EFgQU9SDb5M3IWanXn6RnQ8/x+126dCQwHwYDVR0j BBgwFoAUlDbmB/N19yu9lliPu3zm1bYo/4YwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v N2ZmOTY5ZmMtMzljNy00NGNkLTg3MTYtOWNlNGM2ZDVhYzkxLzAvOTQzNkU2MDdG Mzc1RjcyQkJEOTY1ODhGQkI3Q0U2RDVCNjI4RkY4Ni5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS85NDM2RTYwN0YzNzVGNzJCQkQ5NjU4OEZCQjdDRTZENUI2MjhG Rjg2LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzdmZjk2OWZjLTM5YzctNDRjZC04 NzE2LTljZTRjNmQ1YWM5MS8wLzMyMzQzMDMxM2E2NDY1MzgzMDNhNjIzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMzM4MzUzMjM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAHegAALMA0G CSqGSIb3DQEBCwUAA4IBAQCgirxxWPXEqTNkM2xbNKRzT5YW9EtyK0wDoag3RsTW 46eZ6GGRFQN4Ihrrv1jPbZxp5+Fkgnjb+qXUPfkXqJjV6UzRwAeyATqr9uwMxJFg TNz4hejllvFYWKh+yFTPa4VlSA+YM26x3W1LUtZpCd2aMcn4yVSN3+63Au4gYIOi qU5Z/POV/rXN1CJKhJ8Zxrwb12fQXQCxF/xdpdToTyPKMeXgU3j4yqI3QRlI/Mwh vb5CYaoaGyRa77Zx+ECGwWLv44WBMOUEer5nV61AFHAM8iE7pEuM3V+JwoQ4CBfi arLjVtC+bkewkuHn3c5Ulmk6AHp47hLQlLXfMp14EghB -----END CERTIFICATE-----Generated at Wed May 13 06:38:10 2026 by rpki-client