$ rpki-client -vvf rpki-rsync.idnic.net/repo/829e7064-b352-43b6-9f09-514d68a2739e/0/323430363a6263303a3a2f33322d3332203d3e20313430343032.roa File: 323430363a6263303a3a2f33322d3332203d3e20313430343032.roa (raw, json) Hash identifier: GxU5DwtXFetlD8xuWWi1FQ28pr6GVadjxWaNVjtxKHQ= Subject key identifier: 1E:3E:CE:B5:7D:2F:5C:39:54:5B:D7:C2:EF:93:77:9A:6B:E2:BD:37 Certificate issuer: /CN=29FF1F61AC5E94F6E64A877D64C898891C93B9D4 Certificate serial: 25DB7F87D88E1408AE1B168B84609DD9DE6A6431 Authority key identifier: 29:FF:1F:61:AC:5E:94:F6:E6:4A:87:7D:64:C8:98:89:1C:93:B9:D4 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/29FF1F61AC5E94F6E64A877D64C898891C93B9D4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/829e7064-b352-43b6-9f09-514d68a2739e/0/323430363a6263303a3a2f33322d3332203d3e20313430343032.roa Signing time: Sun 03 May 2026 02:47:14 +0000 ROA not before: Sun 03 May 2026 02:42:14 +0000 ROA not after: Sun 02 May 2027 02:47:14 +0000 asID: 140402 IP address blocks: 2406:bc0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/829e7064-b352-43b6-9f09-514d68a2739e/0/29FF1F61AC5E94F6E64A877D64C898891C93B9D4.crl rsync://rpki-rsync.idnic.net/repo/829e7064-b352-43b6-9f09-514d68a2739e/0/29FF1F61AC5E94F6E64A877D64C898891C93B9D4.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/29FF1F61AC5E94F6E64A877D64C898891C93B9D4.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 00:35:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:db:7f:87:d8:8e:14:08:ae:1b:16:8b:84:60:9d:d9:de:6a:64:31 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=29FF1F61AC5E94F6E64A877D64C898891C93B9D4 Validity Not Before: May 3 02:42:14 2026 GMT Not After : May 2 02:47:14 2027 GMT Subject: CN=1E3ECEB57D2F5C39545BD7C2EF93779A6BE2BD37 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:7f:57:5b:cf:09:2b:57:c8:e5:da:0c:a6:82: d0:48:d9:24:37:8b:a8:61:93:41:01:7f:12:53:c5: a5:e8:e7:b3:0d:ab:8e:00:56:9c:81:13:c7:1e:b0: 57:69:f4:32:75:4f:15:2a:f0:4e:83:28:4b:5c:1c: 05:01:50:c5:d0:00:35:e4:fa:65:b9:ea:6d:33:51: 07:69:8d:a2:39:99:a3:eb:6f:26:b9:b2:36:37:95: 0b:44:1a:f6:33:d4:5c:d2:1b:02:e1:62:51:4d:44: 7b:58:0a:4d:47:13:20:01:fc:a6:e3:e3:19:91:50: 6b:97:09:8a:a7:42:28:c3:76:38:41:09:69:38:04: 70:b7:73:3e:b9:84:44:5c:ea:96:59:fa:cf:9c:37: f0:9f:4f:93:e8:35:b7:c5:bf:5b:55:a8:51:02:d6: 3f:fc:73:d6:14:df:de:d7:dc:5e:d3:de:95:72:6f: 02:d8:99:19:76:bc:dd:de:e1:a5:92:08:36:dd:fb: 1e:ff:68:8d:ed:c2:71:a3:c6:7c:51:94:f5:5c:62: af:e4:e6:2a:96:35:58:07:88:ee:2b:7b:3f:56:5d: c1:69:ed:05:1d:c2:e3:44:cf:7d:ed:18:94:98:f0: 7c:21:34:b9:8b:6f:60:3f:7a:d5:4f:06:46:77:0e: 6a:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:3E:CE:B5:7D:2F:5C:39:54:5B:D7:C2:EF:93:77:9A:6B:E2:BD:37 X509v3 Authority Key Identifier: keyid:29:FF:1F:61:AC:5E:94:F6:E6:4A:87:7D:64:C8:98:89:1C:93:B9:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/829e7064-b352-43b6-9f09-514d68a2739e/0/29FF1F61AC5E94F6E64A877D64C898891C93B9D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/29FF1F61AC5E94F6E64A877D64C898891C93B9D4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/829e7064-b352-43b6-9f09-514d68a2739e/0/323430363a6263303a3a2f33322d3332203d3e20313430343032.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:bc0::/32 Signature Algorithm: sha256WithRSAEncryption 62:83:fb:b1:23:0c:83:96:39:9d:d7:31:f4:f2:ea:66:8b:e0: 7b:4b:86:81:84:06:4a:31:78:1c:39:c3:f2:4a:a6:cd:27:94: ff:86:51:70:be:ab:a1:c4:91:0d:c3:0e:c1:03:67:0d:09:e0: ba:c1:1d:9e:7e:c8:74:e3:7d:e4:8e:ac:43:50:f3:77:58:e7: af:15:a8:25:50:59:a0:e9:b7:15:1b:63:a5:14:0d:50:8c:d5: 2f:98:57:48:22:50:89:9f:25:8f:a2:51:01:f5:43:78:03:b2: 52:b1:28:fb:cb:79:bf:4d:df:fc:59:cd:d7:ff:46:33:3f:d4: c8:e2:12:c5:3e:90:82:2d:ae:51:b4:f5:9a:5d:60:2d:a3:80: 0b:60:00:bf:75:71:9e:fc:61:d2:bb:32:cf:12:31:36:b5:ee: 24:bd:67:76:61:59:87:c6:52:db:7a:41:31:5d:b8:0a:5d:40: 7e:93:82:7a:a4:7e:d8:6f:d8:84:e7:88:3f:09:f4:57:ab:75: 98:37:02:1e:79:a4:d9:9f:44:16:5b:e3:6c:47:60:c5:2c:4e: b9:4d:29:09:8b:e5:1c:8e:1f:da:ba:b6:97:4d:8d:16:b5:b8: 4f:47:25:a3:cb:04:85:0b:ba:31:bb:2d:bb:36:2c:6a:e0:e7: a8:5f:02:90 -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUJdt/h9iOFAiuGxaLhGCd2d5qZDEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjlGRjFGNjFBQzVFOTRGNkU2NEE4NzdENjRDODk4ODkx QzkzQjlENDAeFw0yNjA1MDMwMjQyMTRaFw0yNzA1MDIwMjQ3MTRaMDMxMTAvBgNV BAMTKDFFM0VDRUI1N0QyRjVDMzk1NDVCRDdDMkVGOTM3NzlBNkJFMkJEMzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOf1dbzwkrV8jl2gymgtBI2SQ3 i6hhk0EBfxJTxaXo57MNq44AVpyBE8cesFdp9DJ1TxUq8E6DKEtcHAUBUMXQADXk +mW56m0zUQdpjaI5maPrbya5sjY3lQtEGvYz1FzSGwLhYlFNRHtYCk1HEyAB/Kbj 4xmRUGuXCYqnQijDdjhBCWk4BHC3cz65hERc6pZZ+s+cN/CfT5PoNbfFv1tVqFEC 1j/8c9YU397X3F7T3pVybwLYmRl2vN3e4aWSCDbd+x7/aI3twnGjxnxRlPVcYq/k 5iqWNVgHiO4rez9WXcFp7QUdwuNEz33tGJSY8HwhNLmLb2A/etVPBkZ3DmqPAgMB AAGjggIxMIICLTAdBgNVHQ4EFgQUHj7OtX0vXDlUW9fC75N3mmvivTcwHwYDVR0j BBgwFoAUKf8fYaxelPbmSod9ZMiYiRyTudQwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ODI5ZTcwNjQtYjM1Mi00M2I2LTlmMDktNTE0ZDY4YTI3MzllLzAvMjlGRjFGNjFB QzVFOTRGNkU2NEE4NzdENjRDODk4ODkxQzkzQjlENC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8yOUZGMUY2MUFDNUU5NEY2RTY0QTg3N0Q2NEM4OTg4OTFDOTNC OUQ0LmNlcjCBoQYIKwYBBQUHAQsEgZQwgZEwgY4GCCsGAQUFBzALhoGBcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzgyOWU3MDY0LWIzNTItNDNiNi05 ZjA5LTUxNGQ2OGEyNzM5ZS8wLzMyMzQzMDM2M2E2MjYzMzAzYTNhMmYzMzMyMmQz MzMyMjAzZDNlMjAzMTM0MzAzNDMwMzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkBgvAMA0GCSqGSIb3 DQEBCwUAA4IBAQBig/uxIwyDljmd1zH08upmi+B7S4aBhAZKMXgcOcPySqbNJ5T/ hlFwvquhxJENww7BA2cNCeC6wR2efsh0433kjqxDUPN3WOevFaglUFmg6bcVG2Ol FA1QjNUvmFdIIlCJnyWPolEB9UN4A7JSsSj7y3m/Td/8Wc3X/0YzP9TI4hLFPpCC La5RtPWaXWAto4ALYAC/dXGe/GHSuzLPEjE2te4kvWd2YVmHxlLbekExXbgKXUB+ k4J6pH7Yb9iE54g/CfRXq3WYNwIeeaTZn0QWW+NsR2DFLE65TSkJi+Ucjh/auraX TY0WtbhPRyWjywSFC7oxuy27Nixq4OeoXwKQ -----END CERTIFICATE-----Generated at Wed May 13 12:39:52 2026 by rpki-client