$ rpki-client -vvf rpki-rsync.idnic.net/repo/83d0786d-3d3e-45b7-9665-8d474fd14aea/0/323430313a316430303a3a2f34382d3438203d3e203338353035.roa File: 323430313a316430303a3a2f34382d3438203d3e203338353035.roa (raw, json) Hash identifier: +N9+uIvrbV+jDpFQEoLWVMjE7Tiq4ZoJyUrk8aQRIxU= Subject key identifier: E4:16:52:55:23:59:13:07:DD:6C:61:E6:E8:0A:B2:F3:37:31:12:B6 Certificate issuer: /CN=04C8EF6F5260FDA06661D9E95304572B8E7C4993 Certificate serial: 0A3C06AF20296CF378DF9D11028E70D152BECC37 Authority key identifier: 04:C8:EF:6F:52:60:FD:A0:66:61:D9:E9:53:04:57:2B:8E:7C:49:93 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/04C8EF6F5260FDA06661D9E95304572B8E7C4993.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/83d0786d-3d3e-45b7-9665-8d474fd14aea/0/323430313a316430303a3a2f34382d3438203d3e203338353035.roa Signing time: Sun 03 May 2026 02:47:40 +0000 ROA not before: Sun 03 May 2026 02:42:40 +0000 ROA not after: Sun 02 May 2027 02:47:40 +0000 asID: 38505 IP address blocks: 2401:1d00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/83d0786d-3d3e-45b7-9665-8d474fd14aea/0/04C8EF6F5260FDA06661D9E95304572B8E7C4993.crl rsync://rpki-rsync.idnic.net/repo/83d0786d-3d3e-45b7-9665-8d474fd14aea/0/04C8EF6F5260FDA06661D9E95304572B8E7C4993.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/04C8EF6F5260FDA06661D9E95304572B8E7C4993.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 01:05:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:3c:06:af:20:29:6c:f3:78:df:9d:11:02:8e:70:d1:52:be:cc:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=04C8EF6F5260FDA06661D9E95304572B8E7C4993 Validity Not Before: May 3 02:42:40 2026 GMT Not After : May 2 02:47:40 2027 GMT Subject: CN=E416525523591307DD6C61E6E80AB2F3373112B6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:b1:61:0d:15:a8:68:97:bd:83:cc:7c:6a:bc: 5f:95:bf:29:a1:e0:9c:86:a3:b7:1d:4e:98:34:90: 94:ad:74:dc:53:0b:66:06:61:f6:1c:d4:f8:45:6a: 0c:48:99:80:19:dc:e0:70:2c:af:d2:54:8f:f9:72: bb:d3:bc:ee:83:7b:f5:e0:1c:23:16:6c:33:74:09: fa:54:87:b3:15:c4:40:63:7d:e5:3e:f5:b5:58:af: 29:cb:a8:d9:73:0c:58:63:34:38:e6:0a:98:58:26: df:63:35:36:b9:fd:9c:50:0e:3c:99:3c:aa:98:a4: 64:08:5b:9f:96:e9:83:45:27:ad:2e:bc:a3:96:93: a6:f1:09:c7:89:ea:76:37:68:0b:72:bb:82:05:fe: 04:77:1c:5a:2e:90:9f:17:40:5f:2b:24:06:50:94: 07:89:f5:3d:97:d2:5e:0b:a0:d0:78:ea:c5:67:a8: e4:20:74:03:bf:b4:69:1d:d2:26:86:f8:34:09:bb: 9e:69:96:5a:72:17:ba:66:15:34:d2:23:8e:e6:63: f4:4a:68:62:7c:b0:ea:86:c4:85:9c:84:b8:c9:87: 01:19:0b:ff:03:85:f5:0e:6e:90:3a:4d:e7:f2:8c: a5:d8:45:12:7d:a5:c9:de:d1:10:8d:f1:8f:f9:13: 62:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:16:52:55:23:59:13:07:DD:6C:61:E6:E8:0A:B2:F3:37:31:12:B6 X509v3 Authority Key Identifier: keyid:04:C8:EF:6F:52:60:FD:A0:66:61:D9:E9:53:04:57:2B:8E:7C:49:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/83d0786d-3d3e-45b7-9665-8d474fd14aea/0/04C8EF6F5260FDA06661D9E95304572B8E7C4993.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/04C8EF6F5260FDA06661D9E95304572B8E7C4993.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/83d0786d-3d3e-45b7-9665-8d474fd14aea/0/323430313a316430303a3a2f34382d3438203d3e203338353035.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:1d00::/48 Signature Algorithm: sha256WithRSAEncryption 53:8b:29:b3:4f:9a:ae:af:14:26:07:22:6f:41:98:0c:34:13: b8:5f:18:5c:b0:56:2d:c1:6b:fd:e9:02:dd:e0:f2:44:98:bd: 05:b6:f3:32:cc:a1:80:1d:fb:47:f1:ed:a4:fa:55:61:86:a5: 02:d6:91:b5:94:04:55:cd:5a:7d:ca:87:21:1a:4e:f7:77:26: 51:26:bd:bf:0e:5a:cd:3a:04:13:1c:5e:14:de:03:af:34:9a: ae:76:c2:20:9e:9b:2a:40:cc:36:3d:b6:fe:7d:d7:8a:cc:39: 95:8e:06:5f:a2:3f:8b:89:00:e4:ef:c9:ad:d2:00:16:4c:16: fa:cc:66:87:7c:90:ad:eb:1d:36:af:00:6e:de:4c:50:90:63: 9e:4c:81:0a:15:9a:a0:5e:e3:30:52:40:36:03:a5:6b:ea:7c: f6:d9:b5:ab:f9:d3:3e:4d:9a:36:92:15:c8:a8:dc:4a:e3:89: 61:67:53:72:4a:ca:5e:a1:f9:0a:88:a4:48:6b:2c:73:1b:e6: e3:0b:fc:f6:14:8b:b1:e8:ff:7c:94:da:73:34:58:54:30:02: b5:10:00:a7:07:43:d1:5e:71:ef:dd:33:9d:4c:bc:14:20:1c: 00:36:95:20:c9:8b:d2:14:31:29:f6:a9:0d:32:d3:1e:66:9a: a3:8e:91:9a -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUCjwGryApbPN4350RAo5w0VK+zDcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDRDOEVGNkY1MjYwRkRBMDY2NjFEOUU5NTMwNDU3MkI4 RTdDNDk5MzAeFw0yNjA1MDMwMjQyNDBaFw0yNzA1MDIwMjQ3NDBaMDMxMTAvBgNV BAMTKEU0MTY1MjU1MjM1OTEzMDdERDZDNjFFNkU4MEFCMkYzMzczMTEyQjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQClsWENFahol72DzHxqvF+Vvymh 4JyGo7cdTpg0kJStdNxTC2YGYfYc1PhFagxImYAZ3OBwLK/SVI/5crvTvO6De/Xg HCMWbDN0CfpUh7MVxEBjfeU+9bVYrynLqNlzDFhjNDjmCphYJt9jNTa5/ZxQDjyZ PKqYpGQIW5+W6YNFJ60uvKOWk6bxCceJ6nY3aAtyu4IF/gR3HFoukJ8XQF8rJAZQ lAeJ9T2X0l4LoNB46sVnqOQgdAO/tGkd0iaG+DQJu55pllpyF7pmFTTSI47mY/RK aGJ8sOqGxIWchLjJhwEZC/8DhfUObpA6TefyjKXYRRJ9pcne0RCN8Y/5E2LhAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQU5BZSVSNZEwfdbGHm6Aqy8zcxErYwHwYDVR0j BBgwFoAUBMjvb1Jg/aBmYdnpUwRXK458SZMwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ODNkMDc4NmQtM2QzZS00NWI3LTk2NjUtOGQ0NzRmZDE0YWVhLzAvMDRDOEVGNkY1 MjYwRkRBMDY2NjFEOUU5NTMwNDU3MkI4RTdDNDk5My5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8wNEM4RUY2RjUyNjBGREEwNjY2MUQ5RTk1MzA0NTcyQjhFN0M0 OTkzLmNlcjCBoQYIKwYBBQUHAQsEgZQwgZEwgY4GCCsGAQUFBzALhoGBcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzgzZDA3ODZkLTNkM2UtNDViNy05 NjY1LThkNDc0ZmQxNGFlYS8wLzMyMzQzMDMxM2EzMTY0MzAzMDNhM2EyZjM0Mzgy ZDM0MzgyMDNkM2UyMDMzMzgzNTMwMzUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkAR0AAAAwDQYJKoZI hvcNAQELBQADggEBAFOLKbNPmq6vFCYHIm9BmAw0E7hfGFywVi3Ba/3pAt3g8kSY vQW28zLMoYAd+0fx7aT6VWGGpQLWkbWUBFXNWn3KhyEaTvd3JlEmvb8OWs06BBMc XhTeA680mq52wiCemypAzDY9tv5914rMOZWOBl+iP4uJAOTvya3SABZMFvrMZod8 kK3rHTavAG7eTFCQY55MgQoVmqBe4zBSQDYDpWvqfPbZtav50z5NmjaSFcio3Erj iWFnU3JKyl6h+QqIpEhrLHMb5uML/PYUi7Ho/3yU2nM0WFQwArUQAKcHQ9Fece/d M51MvBQgHAA2lSDJi9IUMSn2qQ0y0x5mmqOOkZo= -----END CERTIFICATE-----Generated at Wed May 13 03:58:45 2026 by rpki-client