$ rpki-client -vvf rpki-rsync.idnic.net/repo/83d0786d-3d3e-45b7-9665-8d474fd14aea/0/323430313a316430303a323a3a2f34382d3438203d3e203338353035.roa File: 323430313a316430303a323a3a2f34382d3438203d3e203338353035.roa (raw, json) Hash identifier: FB0gJNbI9gb2zm9vAMp0QwCkUB/Jt+h+ezAWp0ZQAY4= Subject key identifier: 93:30:0F:C1:6D:60:55:C7:E1:BE:52:50:A2:B2:2A:5B:C7:B8:12:F8 Certificate issuer: /CN=04C8EF6F5260FDA06661D9E95304572B8E7C4993 Certificate serial: 4C80C70EC1DA4D553990F337DFE6C6C0B945343B Authority key identifier: 04:C8:EF:6F:52:60:FD:A0:66:61:D9:E9:53:04:57:2B:8E:7C:49:93 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/04C8EF6F5260FDA06661D9E95304572B8E7C4993.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/83d0786d-3d3e-45b7-9665-8d474fd14aea/0/323430313a316430303a323a3a2f34382d3438203d3e203338353035.roa Signing time: Sun 03 May 2026 02:47:36 +0000 ROA not before: Sun 03 May 2026 02:42:36 +0000 ROA not after: Sun 02 May 2027 02:47:36 +0000 asID: 38505 IP address blocks: 2401:1d00:2::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/83d0786d-3d3e-45b7-9665-8d474fd14aea/0/04C8EF6F5260FDA06661D9E95304572B8E7C4993.crl rsync://rpki-rsync.idnic.net/repo/83d0786d-3d3e-45b7-9665-8d474fd14aea/0/04C8EF6F5260FDA06661D9E95304572B8E7C4993.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/04C8EF6F5260FDA06661D9E95304572B8E7C4993.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 01:05:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:80:c7:0e:c1:da:4d:55:39:90:f3:37:df:e6:c6:c0:b9:45:34:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=04C8EF6F5260FDA06661D9E95304572B8E7C4993 Validity Not Before: May 3 02:42:36 2026 GMT Not After : May 2 02:47:36 2027 GMT Subject: CN=93300FC16D6055C7E1BE5250A2B22A5BC7B812F8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:b7:21:05:97:60:c7:67:b0:01:5e:6d:f3:9d: 0a:14:79:9f:d6:78:cf:f7:46:0b:49:e1:a8:64:3e: ad:6f:6e:df:33:81:ed:1a:40:0e:c6:b7:6b:dc:99: 06:2a:66:96:33:47:7c:be:f6:c1:fe:4a:f5:f7:f2: 87:16:73:8d:a5:30:e6:ef:ac:18:19:40:35:9d:cc: 80:67:37:bd:e4:8f:4d:6e:c7:bd:45:a0:35:60:3d: 93:16:54:d5:d0:fa:e9:65:25:31:72:9d:3b:d2:a7: db:66:31:45:9b:c7:34:ab:14:1d:ae:c9:3b:d2:d0: c2:a3:b6:59:e6:b8:da:6f:80:81:1c:23:fa:f9:cf: 5e:7a:a9:24:69:90:50:ce:4b:46:96:21:4e:a9:7b: e6:fd:55:87:d2:97:19:36:55:3d:75:36:00:bb:7c: 2b:2e:5f:0a:44:5d:6b:f7:53:30:de:30:be:73:05: 3d:df:c1:c7:c8:59:e1:55:5f:9f:4f:a6:16:13:eb: e7:57:40:5f:45:7d:4a:cd:2f:53:1b:6d:ba:bf:fb: e9:d7:11:21:48:7f:27:16:30:a3:0b:1b:b1:30:43: 44:eb:cd:da:28:a9:bb:50:99:25:19:92:2c:ac:bc: 95:1a:60:eb:62:40:4e:3e:20:ba:53:29:06:7c:c9: 63:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:30:0F:C1:6D:60:55:C7:E1:BE:52:50:A2:B2:2A:5B:C7:B8:12:F8 X509v3 Authority Key Identifier: keyid:04:C8:EF:6F:52:60:FD:A0:66:61:D9:E9:53:04:57:2B:8E:7C:49:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/83d0786d-3d3e-45b7-9665-8d474fd14aea/0/04C8EF6F5260FDA06661D9E95304572B8E7C4993.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/04C8EF6F5260FDA06661D9E95304572B8E7C4993.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/83d0786d-3d3e-45b7-9665-8d474fd14aea/0/323430313a316430303a323a3a2f34382d3438203d3e203338353035.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:1d00:2::/48 Signature Algorithm: sha256WithRSAEncryption 0a:1b:36:9c:52:72:69:3b:40:34:63:71:69:e8:c9:15:37:e0: 37:17:c0:0d:bf:aa:1d:2c:5c:bf:cf:d5:60:95:67:c1:21:56: 16:76:fb:21:8a:d1:01:ea:fa:0c:94:25:59:e1:87:6f:09:c9: 9e:d2:70:f6:59:96:b2:ea:e9:79:bb:01:8c:cc:48:6c:3b:d9: 64:58:9f:0f:70:20:3f:c5:a5:05:d0:6b:06:43:37:eb:d2:ed: 25:1e:f0:d7:89:bd:16:5b:e2:0b:64:c9:71:77:6a:b7:36:56: ce:43:48:4f:99:2e:aa:50:ee:e5:20:c3:b1:9e:62:20:5d:e2: f0:18:f3:7d:03:0f:6d:6d:a7:f6:7a:f2:ef:4d:1d:35:81:1c: 9a:b7:9f:af:bc:07:bf:48:6e:f6:88:18:23:7b:7f:70:12:1b: 6f:95:81:a3:ab:bb:b1:d8:53:ea:de:b2:b4:bb:26:76:8a:9a: 31:5c:53:b5:fb:2d:a5:a9:29:53:f0:85:ce:17:72:0d:ab:bc: b1:15:2b:fb:05:25:2b:1b:3c:7c:79:37:c4:49:87:17:cc:60: 69:6e:6d:39:c5:4e:13:14:85:63:c9:32:a4:52:77:1e:86:8c: 61:74:5d:0a:60:16:7a:c2:3b:d5:c9:43:12:0c:bd:96:7b:bb: f5:f0:88:83 -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUTIDHDsHaTVU5kPM33+bGwLlFNDswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDRDOEVGNkY1MjYwRkRBMDY2NjFEOUU5NTMwNDU3MkI4 RTdDNDk5MzAeFw0yNjA1MDMwMjQyMzZaFw0yNzA1MDIwMjQ3MzZaMDMxMTAvBgNV BAMTKDkzMzAwRkMxNkQ2MDU1QzdFMUJFNTI1MEEyQjIyQTVCQzdCODEyRjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQChtyEFl2DHZ7ABXm3znQoUeZ/W eM/3RgtJ4ahkPq1vbt8zge0aQA7Gt2vcmQYqZpYzR3y+9sH+SvX38ocWc42lMObv rBgZQDWdzIBnN73kj01ux71FoDVgPZMWVNXQ+ullJTFynTvSp9tmMUWbxzSrFB2u yTvS0MKjtlnmuNpvgIEcI/r5z156qSRpkFDOS0aWIU6pe+b9VYfSlxk2VT11NgC7 fCsuXwpEXWv3UzDeML5zBT3fwcfIWeFVX59PphYT6+dXQF9FfUrNL1Mbbbq/++nX ESFIfycWMKMLG7EwQ0TrzdooqbtQmSUZkiysvJUaYOtiQE4+ILpTKQZ8yWPpAgMB AAGjggI3MIICMzAdBgNVHQ4EFgQUkzAPwW1gVcfhvlJQorIqW8e4EvgwHwYDVR0j BBgwFoAUBMjvb1Jg/aBmYdnpUwRXK458SZMwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ODNkMDc4NmQtM2QzZS00NWI3LTk2NjUtOGQ0NzRmZDE0YWVhLzAvMDRDOEVGNkY1 MjYwRkRBMDY2NjFEOUU5NTMwNDU3MkI4RTdDNDk5My5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8wNEM4RUY2RjUyNjBGREEwNjY2MUQ5RTk1MzA0NTcyQjhFN0M0 OTkzLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzgzZDA3ODZkLTNkM2UtNDViNy05 NjY1LThkNDc0ZmQxNGFlYS8wLzMyMzQzMDMxM2EzMTY0MzAzMDNhMzIzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMzM4MzUzMDM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAEdAAACMA0G CSqGSIb3DQEBCwUAA4IBAQAKGzacUnJpO0A0Y3Fp6MkVN+A3F8ANv6odLFy/z9Vg lWfBIVYWdvshitEB6voMlCVZ4YdvCcme0nD2WZay6ul5uwGMzEhsO9lkWJ8PcCA/ xaUF0GsGQzfr0u0lHvDXib0WW+ILZMlxd2q3NlbOQ0hPmS6qUO7lIMOxnmIgXeLw GPN9Aw9tbaf2evLvTR01gRyat5+vvAe/SG72iBgje39wEhtvlYGjq7ux2FPq3rK0 uyZ2ipoxXFO1+y2lqSlT8IXOF3INq7yxFSv7BSUrGzx8eTfESYcXzGBpbm05xU4T FIVjyTKkUncehoxhdF0KYBZ6wjvVyUMSDL2We7v18IiD -----END CERTIFICATE-----Generated at Wed May 13 04:54:18 2026 by rpki-client