$ rpki-client -vvf rpki-rsync.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/323430313a646538303a643a3a2f34382d3438203d3e203338353234.roa File: 323430313a646538303a643a3a2f34382d3438203d3e203338353234.roa (raw, json) Hash identifier: uJDtuiTEl95i1PxJ+VWIJf3d1dDO4VlSe65wkL8NmQY= Subject key identifier: 17:A0:32:F5:57:AB:94:70:00:4C:7A:D1:B7:80:90:9B:1E:ED:8D:7C Certificate issuer: /CN=9436E607F375F72BBD96588FBB7CE6D5B628FF86 Certificate serial: 3AEDC2C3745360087B4CAC5B11023758281A9D67 Authority key identifier: 94:36:E6:07:F3:75:F7:2B:BD:96:58:8F:BB:7C:E6:D5:B6:28:FF:86 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9436E607F375F72BBD96588FBB7CE6D5B628FF86.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/323430313a646538303a643a3a2f34382d3438203d3e203338353234.roa Signing time: Sun 03 May 2026 02:46:25 +0000 ROA not before: Sun 03 May 2026 02:41:25 +0000 ROA not after: Sun 02 May 2027 02:46:25 +0000 asID: 38524 IP address blocks: 2401:de80:d::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/9436E607F375F72BBD96588FBB7CE6D5B628FF86.crl rsync://rpki-rsync.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/9436E607F375F72BBD96588FBB7CE6D5B628FF86.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9436E607F375F72BBD96588FBB7CE6D5B628FF86.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 21:29:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:ed:c2:c3:74:53:60:08:7b:4c:ac:5b:11:02:37:58:28:1a:9d:67 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9436E607F375F72BBD96588FBB7CE6D5B628FF86 Validity Not Before: May 3 02:41:25 2026 GMT Not After : May 2 02:46:25 2027 GMT Subject: CN=17A032F557AB9470004C7AD1B780909B1EED8D7C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:3d:5c:d9:0c:22:f7:54:25:89:a4:2d:c5:13: 9b:9d:7c:af:0c:08:d4:77:38:ee:08:8b:ce:4a:67: 29:0a:9c:02:7c:31:ad:74:ed:bc:a8:80:54:27:50: ea:b8:ea:e3:38:2f:c6:35:d0:71:93:00:4d:3d:a7: 9f:87:63:52:9d:c8:c4:cf:bf:5a:8d:2d:38:8b:e1: 38:f1:35:8e:9e:1d:8d:cd:35:98:a0:cc:5c:ac:04: 5f:00:d9:09:ba:4e:50:eb:d7:bc:f2:fa:28:23:de: 98:e5:8f:d5:3f:24:b9:08:3c:b5:85:25:a0:37:31: c3:0c:5c:26:d0:4d:a4:9b:66:2a:10:14:f2:60:ec: b3:4b:dd:eb:2d:35:34:83:18:36:46:f5:e1:a1:ef: f0:4b:83:34:3d:e1:55:5a:35:5c:5a:28:d7:8d:93: a7:00:bd:dc:cf:56:b7:52:48:1a:d6:ca:f5:3a:77: 47:b1:04:08:91:c7:59:23:b4:d5:c9:48:9c:e0:a0: 14:0b:1c:84:eb:05:bf:48:87:6a:3a:3c:bb:dc:02: 4b:35:3b:11:da:08:68:14:9e:88:a7:2f:5f:31:45: b3:3d:af:88:86:87:26:df:01:9d:7e:8c:34:ea:68: 5a:a6:19:e3:75:a3:87:c3:b9:0e:32:c8:a5:15:68: 90:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:A0:32:F5:57:AB:94:70:00:4C:7A:D1:B7:80:90:9B:1E:ED:8D:7C X509v3 Authority Key Identifier: keyid:94:36:E6:07:F3:75:F7:2B:BD:96:58:8F:BB:7C:E6:D5:B6:28:FF:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/9436E607F375F72BBD96588FBB7CE6D5B628FF86.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9436E607F375F72BBD96588FBB7CE6D5B628FF86.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/323430313a646538303a643a3a2f34382d3438203d3e203338353234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:de80:d::/48 Signature Algorithm: sha256WithRSAEncryption b2:22:51:04:a1:73:fe:94:2c:eb:ea:2a:50:40:ed:ee:60:e9: 93:38:81:15:68:8f:93:a8:72:f0:a6:ec:d7:a7:15:f8:8d:12: 8d:9a:e1:c9:d3:e1:6f:2c:19:fc:78:d4:e8:5f:8c:c9:b9:01: d4:ea:fc:93:c3:26:01:93:48:86:2a:4a:41:a6:94:46:dd:50: bd:2f:42:ad:9f:a9:ea:07:89:38:7c:ec:3d:64:43:e7:50:73: fa:a7:52:8c:8e:f4:3d:78:e8:07:c8:39:64:6b:b2:79:39:8a: 9d:b6:3f:e1:d3:8b:b8:6e:db:d3:73:91:37:4b:a0:1e:3e:b0: 53:35:e9:f6:fb:07:10:8c:f3:e0:f1:90:c5:0a:fc:38:22:f9: ac:8a:d8:98:54:fb:31:34:f3:2a:6c:53:fe:e8:1a:bc:28:c9: 5a:63:44:02:1a:ec:ff:aa:e4:a3:60:2e:d1:56:21:a6:09:d1: e1:73:8c:be:39:bf:c4:88:f4:e8:60:ac:0d:e4:dc:2e:3b:57: b2:7b:86:e1:a9:f7:77:91:c5:e4:8c:e2:99:8e:90:82:06:02: c4:75:c6:80:00:8e:d8:e7:a7:8a:fa:35:39:d9:1e:55:01:a3: 07:4b:0f:ac:68:5b:cb:7f:b8:bc:56:c3:ad:46:de:6c:d6:39: c2:22:b3:5c -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUOu3Cw3RTYAh7TKxbEQI3WCganWcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTQzNkU2MDdGMzc1RjcyQkJEOTY1ODhGQkI3Q0U2RDVC NjI4RkY4NjAeFw0yNjA1MDMwMjQxMjVaFw0yNzA1MDIwMjQ2MjVaMDMxMTAvBgNV BAMTKDE3QTAzMkY1NTdBQjk0NzAwMDRDN0FEMUI3ODA5MDlCMUVFRDhEN0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7PVzZDCL3VCWJpC3FE5udfK8M CNR3OO4Ii85KZykKnAJ8Ma107byogFQnUOq46uM4L8Y10HGTAE09p5+HY1KdyMTP v1qNLTiL4TjxNY6eHY3NNZigzFysBF8A2Qm6TlDr17zy+igj3pjlj9U/JLkIPLWF JaA3McMMXCbQTaSbZioQFPJg7LNL3estNTSDGDZG9eGh7/BLgzQ94VVaNVxaKNeN k6cAvdzPVrdSSBrWyvU6d0exBAiRx1kjtNXJSJzgoBQLHITrBb9Ih2o6PLvcAks1 OxHaCGgUnoinL18xRbM9r4iGhybfAZ1+jDTqaFqmGeN1o4fDuQ4yyKUVaJCjAgMB AAGjggI3MIICMzAdBgNVHQ4EFgQUF6Ay9VerlHAATHrRt4CQmx7tjXwwHwYDVR0j BBgwFoAUlDbmB/N19yu9lliPu3zm1bYo/4YwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v N2ZmOTY5ZmMtMzljNy00NGNkLTg3MTYtOWNlNGM2ZDVhYzkxLzAvOTQzNkU2MDdG Mzc1RjcyQkJEOTY1ODhGQkI3Q0U2RDVCNjI4RkY4Ni5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS85NDM2RTYwN0YzNzVGNzJCQkQ5NjU4OEZCQjdDRTZENUI2MjhG Rjg2LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzdmZjk2OWZjLTM5YzctNDRjZC04 NzE2LTljZTRjNmQ1YWM5MS8wLzMyMzQzMDMxM2E2NDY1MzgzMDNhNjQzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMzM4MzUzMjM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAHegAANMA0G CSqGSIb3DQEBCwUAA4IBAQCyIlEEoXP+lCzr6ipQQO3uYOmTOIEVaI+TqHLwpuzX pxX4jRKNmuHJ0+FvLBn8eNToX4zJuQHU6vyTwyYBk0iGKkpBppRG3VC9L0Ktn6nq B4k4fOw9ZEPnUHP6p1KMjvQ9eOgHyDlka7J5OYqdtj/h04u4btvTc5E3S6AePrBT Nen2+wcQjPPg8ZDFCvw4IvmsitiYVPsxNPMqbFP+6Bq8KMlaY0QCGuz/quSjYC7R ViGmCdHhc4y+Ob/EiPToYKwN5NwuO1eye4bhqfd3kcXkjOKZjpCCBgLEdcaAAI7Y 56eK+jU52R5VAaMHSw+saFvLf7i8VsOtRt5s1jnCIrNc -----END CERTIFICATE-----Generated at Wed May 13 06:25:52 2026 by rpki-client