$ rpki-client -vvf rpki-rsync.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a383a3a2f34382d3438203d3e203535363835.roa File: 323430343a653130303a383a3a2f34382d3438203d3e203535363835.roa (raw, json) Hash identifier: +LirAuzLcoxy5m9cq8X0tN0hUiKGAI5gI8eCsUZvwVI= Subject key identifier: 17:F5:79:30:BD:4C:90:9F:18:5B:1C:77:DF:03:87:CB:36:AF:DE:EF Certificate issuer: /CN=408DEB7465856EE053B64340FA814B862FA5ED30 Certificate serial: 2FE9EA68C18765E412D2A4A0BA17A1C3B0C7D015 Authority key identifier: 40:8D:EB:74:65:85:6E:E0:53:B6:43:40:FA:81:4B:86:2F:A5:ED:30 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/408DEB7465856EE053B64340FA814B862FA5ED30.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a383a3a2f34382d3438203d3e203535363835.roa Signing time: Sun 03 May 2026 02:47:56 +0000 ROA not before: Sun 03 May 2026 02:42:56 +0000 ROA not after: Sun 02 May 2027 02:47:56 +0000 asID: 55685 IP address blocks: 2404:e100:8::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/408DEB7465856EE053B64340FA814B862FA5ED30.crl rsync://rpki-rsync.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/408DEB7465856EE053B64340FA814B862FA5ED30.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/408DEB7465856EE053B64340FA814B862FA5ED30.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 00:05:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:e9:ea:68:c1:87:65:e4:12:d2:a4:a0:ba:17:a1:c3:b0:c7:d0:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=408DEB7465856EE053B64340FA814B862FA5ED30 Validity Not Before: May 3 02:42:56 2026 GMT Not After : May 2 02:47:56 2027 GMT Subject: CN=17F57930BD4C909F185B1C77DF0387CB36AFDEEF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:73:61:4c:df:26:fe:e8:f9:38:93:34:3c:a6: bf:70:a6:37:2d:1e:99:d3:e3:f7:be:21:7b:b4:c2: c3:78:ac:b4:2a:8f:2b:95:39:7e:42:a4:27:6a:ca: a9:7b:1a:ad:08:1b:1b:a0:7b:54:e8:17:90:e2:60: 17:90:dd:5a:2c:97:ef:e8:70:90:7b:2d:67:82:71: 7a:fa:b2:d0:67:d8:6a:d0:62:a9:d1:cd:5c:36:86: 95:33:0b:8a:d8:3d:a9:ac:7f:2c:e5:ed:88:ac:5c: 25:94:8a:ee:a2:1a:18:0d:00:fb:fa:b4:05:86:0a: 74:cb:7d:37:e4:a8:57:f2:a5:ad:ef:fd:bf:d2:8b: 0b:f5:cd:38:49:31:9a:4a:d8:50:68:6b:36:c7:b3: 79:c6:d1:5a:95:c1:5e:34:2c:1e:3d:63:04:f2:fa: cf:6a:c4:61:82:cb:85:7b:5e:43:5b:f4:9b:ad:fc: 5e:75:33:c2:85:df:24:03:43:9b:e0:7e:2e:3b:c0: 44:3a:af:aa:87:fc:fd:f4:ab:b0:f6:8e:16:f5:d2: 70:5c:b1:c6:3d:f1:4f:cf:39:3f:f3:c8:62:f7:6b: 0c:de:46:26:2d:d1:d8:ec:9f:6b:d1:50:a9:2c:8f: fc:12:a0:19:a6:6d:e6:6f:82:61:81:f9:8a:b7:4f: 4e:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:F5:79:30:BD:4C:90:9F:18:5B:1C:77:DF:03:87:CB:36:AF:DE:EF X509v3 Authority Key Identifier: keyid:40:8D:EB:74:65:85:6E:E0:53:B6:43:40:FA:81:4B:86:2F:A5:ED:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/408DEB7465856EE053B64340FA814B862FA5ED30.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/408DEB7465856EE053B64340FA814B862FA5ED30.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a383a3a2f34382d3438203d3e203535363835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:e100:8::/48 Signature Algorithm: sha256WithRSAEncryption 43:36:18:9d:b2:ef:75:a0:3f:b9:a8:f8:1e:85:2f:6e:5b:51: 6f:90:fb:c5:40:96:e9:00:45:b5:2a:e2:e8:e0:b7:1d:07:df: 28:0a:5f:1d:82:dd:31:ec:73:a5:ae:6e:f2:50:5d:46:71:99: 0c:95:19:de:44:65:9f:68:e5:05:77:b9:01:bc:34:98:94:3e: 67:5e:cc:2d:df:64:c1:4b:57:6a:a7:4f:eb:3c:b0:e0:28:71: 2f:d4:cc:8d:cb:3c:1d:20:f8:77:64:f3:60:db:e9:f6:3d:95: fc:5f:40:54:39:2f:be:73:68:e3:c5:57:04:d6:eb:13:eb:4c: fb:49:ca:b3:c0:1a:13:de:b8:91:11:30:87:1f:ac:1e:5f:94: 95:4d:db:1f:00:5a:cb:f4:14:c5:24:5e:2b:d4:dd:1f:4d:43: dc:59:03:6b:0b:e3:c2:75:bd:0e:5d:8d:f0:34:dd:17:96:ea: 1d:46:42:fe:54:46:cd:07:bc:6e:d3:e6:20:8e:a7:7c:fa:a5: 9b:fe:0e:28:b2:d6:d6:66:82:89:2b:f0:77:41:3d:fd:37:5d: 4f:6d:74:8e:1a:62:aa:6f:76:76:da:3c:6d:2e:f7:66:f5:dc: 30:88:00:cb:e1:6e:d3:a6:48:52:c2:3c:57:9b:9d:6d:49:15: 9e:83:dc:1b -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUL+nqaMGHZeQS0qSguhehw7DH0BUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDA4REVCNzQ2NTg1NkVFMDUzQjY0MzQwRkE4MTRCODYy RkE1RUQzMDAeFw0yNjA1MDMwMjQyNTZaFw0yNzA1MDIwMjQ3NTZaMDMxMTAvBgNV BAMTKDE3RjU3OTMwQkQ0QzkwOUYxODVCMUM3N0RGMDM4N0NCMzZBRkRFRUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDxc2FM3yb+6Pk4kzQ8pr9wpjct HpnT4/e+IXu0wsN4rLQqjyuVOX5CpCdqyql7Gq0IGxuge1ToF5DiYBeQ3Vosl+/o cJB7LWeCcXr6stBn2GrQYqnRzVw2hpUzC4rYPamsfyzl7YisXCWUiu6iGhgNAPv6 tAWGCnTLfTfkqFfypa3v/b/Siwv1zThJMZpK2FBoazbHs3nG0VqVwV40LB49YwTy +s9qxGGCy4V7XkNb9Jut/F51M8KF3yQDQ5vgfi47wEQ6r6qH/P30q7D2jhb10nBc scY98U/POT/zyGL3awzeRiYt0djsn2vRUKksj/wSoBmmbeZvgmGB+Yq3T06NAgMB AAGjggI3MIICMzAdBgNVHQ4EFgQUF/V5ML1MkJ8YWxx33wOHyzav3u8wHwYDVR0j BBgwFoAUQI3rdGWFbuBTtkNA+oFLhi+l7TAwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ODVkOGRhYjQtOGJiNi00ZWQwLThkYWItNWE0MDYxNjdiOTlkLzAvNDA4REVCNzQ2 NTg1NkVFMDUzQjY0MzQwRkE4MTRCODYyRkE1RUQzMC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS80MDhERUI3NDY1ODU2RUUwNTNCNjQzNDBGQTgxNEI4NjJGQTVF RDMwLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzg1ZDhkYWI0LThiYjYtNGVkMC04 ZGFiLTVhNDA2MTY3Yjk5ZC8wLzMyMzQzMDM0M2E2NTMxMzAzMDNhMzgzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzNTM1MzYzODM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAThAAAIMA0G CSqGSIb3DQEBCwUAA4IBAQBDNhidsu91oD+5qPgehS9uW1FvkPvFQJbpAEW1KuLo 4LcdB98oCl8dgt0x7HOlrm7yUF1GcZkMlRneRGWfaOUFd7kBvDSYlD5nXswt32TB S1dqp0/rPLDgKHEv1MyNyzwdIPh3ZPNg2+n2PZX8X0BUOS++c2jjxVcE1usT60z7 ScqzwBoT3riRETCHH6weX5SVTdsfAFrL9BTFJF4r1N0fTUPcWQNrC+PCdb0OXY3w NN0XluodRkL+VEbNB7xu0+Ygjqd8+qWb/g4ostbWZoKJK/B3QT39N11PbXSOGmKq b3Z22jxtLvdm9dwwiADL4W7TpkhSwjxXm51tSRWeg9wb -----END CERTIFICATE-----Generated at Wed May 13 03:47:58 2026 by rpki-client