$ rpki-client -vvf rpki-rsync.idnic.net/repo/8792a4cd-dbac-43ac-8060-2e8d42eae655/0/323430313a343230303a3a2f33322d3438203d3e203234313935.roa File: 323430313a343230303a3a2f33322d3438203d3e203234313935.roa (raw, json) Hash identifier: JUZB6P5kO+Db3k9YCVP/aQyPW9NErekyd7f5TZeRyDM= Subject key identifier: D9:27:16:DD:89:93:DB:B3:94:F5:A6:BE:93:EA:D2:AF:F4:15:FE:84 Certificate issuer: /CN=FB3286A3734F366E27845180AD985879147BEA5E Certificate serial: 22576886F33C5B532CBD84FFDBBA2153CCD20852 Authority key identifier: FB:32:86:A3:73:4F:36:6E:27:84:51:80:AD:98:58:79:14:7B:EA:5E Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/FB3286A3734F366E27845180AD985879147BEA5E.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/8792a4cd-dbac-43ac-8060-2e8d42eae655/0/323430313a343230303a3a2f33322d3438203d3e203234313935.roa Signing time: Sun 03 May 2026 02:48:36 +0000 ROA not before: Sun 03 May 2026 02:43:36 +0000 ROA not after: Sun 02 May 2027 02:48:36 +0000 asID: 24195 IP address blocks: 2401:4200::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/8792a4cd-dbac-43ac-8060-2e8d42eae655/0/FB3286A3734F366E27845180AD985879147BEA5E.crl rsync://rpki-rsync.idnic.net/repo/8792a4cd-dbac-43ac-8060-2e8d42eae655/0/FB3286A3734F366E27845180AD985879147BEA5E.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/FB3286A3734F366E27845180AD985879147BEA5E.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:57:68:86:f3:3c:5b:53:2c:bd:84:ff:db:ba:21:53:cc:d2:08:52 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FB3286A3734F366E27845180AD985879147BEA5E Validity Not Before: May 3 02:43:36 2026 GMT Not After : May 2 02:48:36 2027 GMT Subject: CN=D92716DD8993DBB394F5A6BE93EAD2AFF415FE84 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:33:bc:57:87:9b:a5:47:07:67:f4:19:30:bf: ce:d9:b1:9e:28:53:a2:ff:5e:e3:25:9d:4e:8f:15: 87:0f:bd:58:03:df:47:9e:ed:60:15:b8:9f:44:a8: 92:a1:d5:f0:ab:ce:4e:6b:58:3c:5d:67:3f:b2:eb: f4:c4:8b:57:df:95:9d:9f:a5:70:d1:95:18:c6:d7: 93:cc:5c:fd:11:48:ef:17:51:05:79:a0:f5:36:4a: 33:61:d4:42:ed:11:73:34:b4:63:31:60:3b:2c:e7: 15:ee:ba:85:e4:a3:88:2c:c7:54:a7:1b:21:00:3c: 0f:55:15:62:33:ae:45:a3:87:f3:1b:60:ce:46:da: af:7c:f8:a5:47:5b:83:39:3a:70:a7:22:e3:a4:a7: 42:b4:1f:2c:c7:cc:6b:af:6d:01:cc:8f:c7:e6:03: b5:6f:09:10:a1:ea:a4:56:41:26:39:bb:5f:a8:9d: 31:1f:7c:cd:b6:9b:96:ca:e9:d5:0c:06:6d:c4:d0: de:a0:28:98:67:a5:27:17:f3:95:aa:21:53:b7:bf: cc:47:31:9e:06:8a:17:67:49:61:0b:ca:5a:7d:49: ff:f3:7c:48:39:26:51:c9:4a:61:8b:a9:1e:85:83: 95:57:8c:9a:6b:99:ec:8f:16:3b:fe:c1:06:c7:4e: 4d:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:27:16:DD:89:93:DB:B3:94:F5:A6:BE:93:EA:D2:AF:F4:15:FE:84 X509v3 Authority Key Identifier: keyid:FB:32:86:A3:73:4F:36:6E:27:84:51:80:AD:98:58:79:14:7B:EA:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/8792a4cd-dbac-43ac-8060-2e8d42eae655/0/FB3286A3734F366E27845180AD985879147BEA5E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/FB3286A3734F366E27845180AD985879147BEA5E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/8792a4cd-dbac-43ac-8060-2e8d42eae655/0/323430313a343230303a3a2f33322d3438203d3e203234313935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:4200::/32 Signature Algorithm: sha256WithRSAEncryption 28:e6:ba:70:24:6c:4b:2e:d3:11:8a:5b:1e:08:e9:70:96:53: a9:e0:51:88:71:d2:c7:aa:57:79:ec:3a:22:5e:55:71:17:c7: a7:21:3a:74:57:a8:33:fd:28:6d:36:93:64:cb:dc:c6:32:11: 6b:d4:bc:46:84:94:27:76:89:67:3e:ae:91:de:3f:de:c2:79: 99:d9:78:8a:f7:88:b0:e4:9a:85:f3:9d:0f:b1:46:54:fc:15: b8:89:ae:fa:e5:fc:b6:f4:7a:43:53:9d:76:b0:7b:40:5d:b6: 28:65:7d:eb:53:36:0c:29:4c:23:ec:0f:1c:3e:b7:ff:56:f9: b2:4c:c5:f8:c9:d0:58:33:23:ac:fd:f6:43:3d:58:f5:52:d0: 66:cd:8a:2e:54:0e:cf:cb:df:32:5f:16:04:ab:a6:fd:76:93: d6:ed:6d:1d:1e:2b:c9:11:e9:f3:55:e3:20:25:60:64:15:76: a7:36:9b:e5:e1:65:13:f8:65:9f:06:f0:e1:6b:05:ec:a8:d9: 4b:e1:29:23:2e:89:c4:db:b6:93:1f:44:65:bb:17:69:a1:4c: a3:72:61:3f:08:b0:12:9d:3f:5a:27:28:53:f2:e5:b9:fe:fe: ca:cb:b9:24:83:c0:20:d7:28:48:e1:fa:a5:67:2d:2d:2c:7a: 48:e2:2d:86 -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUIldohvM8W1MsvYT/27ohU8zSCFIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkIzMjg2QTM3MzRGMzY2RTI3ODQ1MTgwQUQ5ODU4Nzkx NDdCRUE1RTAeFw0yNjA1MDMwMjQzMzZaFw0yNzA1MDIwMjQ4MzZaMDMxMTAvBgNV BAMTKEQ5MjcxNkREODk5M0RCQjM5NEY1QTZCRTkzRUFEMkFGRjQxNUZFODQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEM7xXh5ulRwdn9Bkwv87ZsZ4o U6L/XuMlnU6PFYcPvVgD30ee7WAVuJ9EqJKh1fCrzk5rWDxdZz+y6/TEi1fflZ2f pXDRlRjG15PMXP0RSO8XUQV5oPU2SjNh1ELtEXM0tGMxYDss5xXuuoXko4gsx1Sn GyEAPA9VFWIzrkWjh/MbYM5G2q98+KVHW4M5OnCnIuOkp0K0HyzHzGuvbQHMj8fm A7VvCRCh6qRWQSY5u1+onTEffM22m5bK6dUMBm3E0N6gKJhnpScX85WqIVO3v8xH MZ4GihdnSWELylp9Sf/zfEg5JlHJSmGLqR6Fg5VXjJprmeyPFjv+wQbHTk3VAgMB AAGjggIxMIICLTAdBgNVHQ4EFgQU2ScW3YmT27OU9aa+k+rSr/QV/oQwHwYDVR0j BBgwFoAU+zKGo3NPNm4nhFGArZhYeRR76l4wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ODc5MmE0Y2QtZGJhYy00M2FjLTgwNjAtMmU4ZDQyZWFlNjU1LzAvRkIzMjg2QTM3 MzRGMzY2RTI3ODQ1MTgwQUQ5ODU4NzkxNDdCRUE1RS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9GQjMyODZBMzczNEYzNjZFMjc4NDUxODBBRDk4NTg3OTE0N0JF QTVFLmNlcjCBoQYIKwYBBQUHAQsEgZQwgZEwgY4GCCsGAQUFBzALhoGBcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzg3OTJhNGNkLWRiYWMtNDNhYy04 MDYwLTJlOGQ0MmVhZTY1NS8wLzMyMzQzMDMxM2EzNDMyMzAzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMyMzQzMTM5MzUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkAUIAMA0GCSqGSIb3 DQEBCwUAA4IBAQAo5rpwJGxLLtMRilseCOlwllOp4FGIcdLHqld57DoiXlVxF8en ITp0V6gz/ShtNpNky9zGMhFr1LxGhJQndolnPq6R3j/ewnmZ2XiK94iw5JqF850P sUZU/BW4ia765fy29HpDU512sHtAXbYoZX3rUzYMKUwj7A8cPrf/VvmyTMX4ydBY MyOs/fZDPVj1UtBmzYouVA7Py98yXxYEq6b9dpPW7W0dHivJEenzVeMgJWBkFXan Npvl4WUT+GWfBvDhawXsqNlL4SkjLonE27aTH0RluxdpoUyjcmE/CLASnT9aJyhT 8uW5/v7Ky7kkg8Ag1yhI4fqlZy0tLHpI4i2G -----END CERTIFICATE-----Generated at Wed May 13 02:25:34 2026 by rpki-client