$ rpki-client -vvf rpki-rsync.idnic.net/repo/83d0786d-3d3e-45b7-9665-8d474fd14aea/0/323430313a316430303a3a2f33322d3438203d3e203338353035.roa File: 323430313a316430303a3a2f33322d3438203d3e203338353035.roa (raw, json) Hash identifier: 6BMdJfjQOk6ZMP+r3PWXA1452jn4jTz5h082fXgG9S4= Subject key identifier: 9B:B9:3D:9F:FE:7C:F5:12:C5:35:CD:C4:37:62:BD:26:9D:3C:BC:C7 Certificate issuer: /CN=04C8EF6F5260FDA06661D9E95304572B8E7C4993 Certificate serial: 7D9A93F45C91BE724D76F51AA7B2150BBEBF27CC Authority key identifier: 04:C8:EF:6F:52:60:FD:A0:66:61:D9:E9:53:04:57:2B:8E:7C:49:93 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/04C8EF6F5260FDA06661D9E95304572B8E7C4993.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/83d0786d-3d3e-45b7-9665-8d474fd14aea/0/323430313a316430303a3a2f33322d3438203d3e203338353035.roa Signing time: Sun 03 May 2026 02:47:40 +0000 ROA not before: Sun 03 May 2026 02:42:40 +0000 ROA not after: Sun 02 May 2027 02:47:40 +0000 asID: 38505 IP address blocks: 2401:1d00::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/83d0786d-3d3e-45b7-9665-8d474fd14aea/0/04C8EF6F5260FDA06661D9E95304572B8E7C4993.crl rsync://rpki-rsync.idnic.net/repo/83d0786d-3d3e-45b7-9665-8d474fd14aea/0/04C8EF6F5260FDA06661D9E95304572B8E7C4993.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/04C8EF6F5260FDA06661D9E95304572B8E7C4993.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 01:05:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:9a:93:f4:5c:91:be:72:4d:76:f5:1a:a7:b2:15:0b:be:bf:27:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=04C8EF6F5260FDA06661D9E95304572B8E7C4993 Validity Not Before: May 3 02:42:40 2026 GMT Not After : May 2 02:47:40 2027 GMT Subject: CN=9BB93D9FFE7CF512C535CDC43762BD269D3CBCC7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:85:ee:f2:fc:18:83:f0:2b:e3:da:b7:66:c9: f1:13:20:c0:4b:f7:9a:47:8f:e0:1e:bc:97:75:84: 18:4f:59:e1:c0:4b:ea:f7:32:d6:f2:23:73:5e:29: 26:a9:40:8a:0e:e6:a5:88:21:ed:78:b5:49:a9:61: 3f:51:51:64:19:fd:d6:f2:4c:00:b0:a8:4e:c3:5d: f1:a3:68:30:eb:4b:a0:ec:44:7b:04:36:09:cf:19: fc:b9:f8:8a:b9:75:7e:8a:03:63:6f:88:35:cd:9c: cd:77:28:a9:e7:1f:6d:d4:87:5e:24:04:e7:d1:98: 21:f5:36:ab:cf:22:7a:c5:a4:2b:b1:5a:75:22:e6: 54:fc:3a:72:d4:d4:1f:7b:9d:f8:c8:0e:9b:95:58: 8b:e1:25:1d:c2:ba:61:d8:57:2f:b3:f8:df:2e:1d: c6:e9:c4:b6:7a:73:21:77:ba:8a:57:4c:32:e5:97: 9e:23:87:cc:b1:cb:95:4e:7a:10:f7:46:d7:66:65: 92:35:e9:d3:51:a5:07:92:d6:af:9b:18:03:b6:5f: ad:3a:3b:d5:2c:2d:49:69:6c:fb:d9:5e:f3:48:ac: 73:42:13:2f:a4:e8:04:d4:5d:32:a8:7d:83:b5:b2: 8a:62:ed:44:f8:27:72:60:32:fc:41:99:37:79:74: f6:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:B9:3D:9F:FE:7C:F5:12:C5:35:CD:C4:37:62:BD:26:9D:3C:BC:C7 X509v3 Authority Key Identifier: keyid:04:C8:EF:6F:52:60:FD:A0:66:61:D9:E9:53:04:57:2B:8E:7C:49:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/83d0786d-3d3e-45b7-9665-8d474fd14aea/0/04C8EF6F5260FDA06661D9E95304572B8E7C4993.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/04C8EF6F5260FDA06661D9E95304572B8E7C4993.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/83d0786d-3d3e-45b7-9665-8d474fd14aea/0/323430313a316430303a3a2f33322d3438203d3e203338353035.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:1d00::/32 Signature Algorithm: sha256WithRSAEncryption 7b:48:48:9f:54:31:5c:eb:37:13:a5:6e:38:9b:2a:3e:c2:99: 3b:a1:c6:3f:b4:4c:b1:a8:7f:f8:57:84:97:9f:57:2f:56:5c: a5:7a:e2:4a:f1:33:2c:f1:40:f0:d6:29:0f:cf:3e:0f:0d:2f: 1e:04:5f:2e:27:35:d4:7b:79:49:0a:dc:fc:42:3c:db:d3:6c: c8:f5:ad:4f:0e:bc:6f:c7:54:e6:ee:3e:2a:7f:2a:81:56:53: 38:36:c7:4e:4e:37:a6:fd:7e:5c:c5:4e:25:70:c8:0a:c2:f9: 6f:fd:be:ae:0b:0d:d8:64:e1:9c:a1:ee:8f:4c:d3:5c:f9:0e: ed:3c:a7:0c:34:e3:3e:55:26:2d:1e:3a:7e:f7:32:4b:11:ce: bc:c2:83:c4:84:bd:f5:7c:04:a7:f6:75:4e:79:35:34:cf:c3: f1:c7:69:fe:b8:df:c7:96:6d:1c:f7:9e:87:5e:b0:37:50:03: b2:e9:54:9f:08:52:26:c7:fd:c3:27:8a:ed:b6:3c:b6:49:96: 5e:1c:04:a8:09:63:2b:60:d0:87:58:a6:68:25:cd:9d:68:fd: 73:4d:c9:1c:d6:5d:c2:ae:11:45:71:f7:a7:f8:14:cd:95:8b: 46:d7:10:d3:fa:f0:40:ae:5f:28:fd:f9:b2:ab:9e:ff:da:4d: e7:41:10:26 -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUfZqT9FyRvnJNdvUap7IVC76/J8wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDRDOEVGNkY1MjYwRkRBMDY2NjFEOUU5NTMwNDU3MkI4 RTdDNDk5MzAeFw0yNjA1MDMwMjQyNDBaFw0yNzA1MDIwMjQ3NDBaMDMxMTAvBgNV BAMTKDlCQjkzRDlGRkU3Q0Y1MTJDNTM1Q0RDNDM3NjJCRDI2OUQzQ0JDQzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHhe7y/BiD8Cvj2rdmyfETIMBL 95pHj+AevJd1hBhPWeHAS+r3MtbyI3NeKSapQIoO5qWIIe14tUmpYT9RUWQZ/dby TACwqE7DXfGjaDDrS6DsRHsENgnPGfy5+Iq5dX6KA2NviDXNnM13KKnnH23Uh14k BOfRmCH1NqvPInrFpCuxWnUi5lT8OnLU1B97nfjIDpuVWIvhJR3CumHYVy+z+N8u HcbpxLZ6cyF3uopXTDLll54jh8yxy5VOehD3RtdmZZI16dNRpQeS1q+bGAO2X606 O9UsLUlpbPvZXvNIrHNCEy+k6ATUXTKofYO1sopi7UT4J3JgMvxBmTd5dPbrAgMB AAGjggIxMIICLTAdBgNVHQ4EFgQUm7k9n/589RLFNc3EN2K9Jp08vMcwHwYDVR0j BBgwFoAUBMjvb1Jg/aBmYdnpUwRXK458SZMwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ODNkMDc4NmQtM2QzZS00NWI3LTk2NjUtOGQ0NzRmZDE0YWVhLzAvMDRDOEVGNkY1 MjYwRkRBMDY2NjFEOUU5NTMwNDU3MkI4RTdDNDk5My5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8wNEM4RUY2RjUyNjBGREEwNjY2MUQ5RTk1MzA0NTcyQjhFN0M0 OTkzLmNlcjCBoQYIKwYBBQUHAQsEgZQwgZEwgY4GCCsGAQUFBzALhoGBcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzgzZDA3ODZkLTNkM2UtNDViNy05 NjY1LThkNDc0ZmQxNGFlYS8wLzMyMzQzMDMxM2EzMTY0MzAzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMzMzgzNTMwMzUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkAR0AMA0GCSqGSIb3 DQEBCwUAA4IBAQB7SEifVDFc6zcTpW44myo+wpk7ocY/tEyxqH/4V4SXn1cvVlyl euJK8TMs8UDw1ikPzz4PDS8eBF8uJzXUe3lJCtz8Qjzb02zI9a1PDrxvx1Tm7j4q fyqBVlM4NsdOTjem/X5cxU4lcMgKwvlv/b6uCw3YZOGcoe6PTNNc+Q7tPKcMNOM+ VSYtHjp+9zJLEc68woPEhL31fASn9nVOeTU0z8Pxx2n+uN/Hlm0c956HXrA3UAOy 6VSfCFImx/3DJ4rttjy2SZZeHASoCWMrYNCHWKZoJc2daP1zTckc1l3CrhFFcfen +BTNlYtG1xDT+vBArl8o/fmyq57/2k3nQRAm -----END CERTIFICATE-----Generated at Wed May 13 04:03:12 2026 by rpki-client