$ rpki-client -vvf rpki-rsync.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/323430313a663938303a383030303a3a2f33362d3336203d3e203633383632.roa File: 323430313a663938303a383030303a3a2f33362d3336203d3e203633383632.roa (raw, json) Hash identifier: xBuVDFknIKocW5PCReZ6kwYrsbAP9yAUXV608PwI7kc= Subject key identifier: 5C:F0:23:BC:55:12:91:89:67:1F:B5:79:8D:5B:D9:BB:C2:38:7A:B2 Certificate issuer: /CN=F2F6B05A5D9D56C47D1503911B2CC0F04ABFA55E Certificate serial: 7D8DDC0509F657B6419866639E8AA9AE9D216847 Authority key identifier: F2:F6:B0:5A:5D:9D:56:C4:7D:15:03:91:1B:2C:C0:F0:4A:BF:A5:5E Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F2F6B05A5D9D56C47D1503911B2CC0F04ABFA55E.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/323430313a663938303a383030303a3a2f33362d3336203d3e203633383632.roa Signing time: Sun 03 May 2026 02:48:43 +0000 ROA not before: Sun 03 May 2026 02:43:43 +0000 ROA not after: Sun 02 May 2027 02:48:43 +0000 asID: 63862 IP address blocks: 2401:f980:8000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/F2F6B05A5D9D56C47D1503911B2CC0F04ABFA55E.crl rsync://rpki-rsync.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/F2F6B05A5D9D56C47D1503911B2CC0F04ABFA55E.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F2F6B05A5D9D56C47D1503911B2CC0F04ABFA55E.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 23:04:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:8d:dc:05:09:f6:57:b6:41:98:66:63:9e:8a:a9:ae:9d:21:68:47 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F2F6B05A5D9D56C47D1503911B2CC0F04ABFA55E Validity Not Before: May 3 02:43:43 2026 GMT Not After : May 2 02:48:43 2027 GMT Subject: CN=5CF023BC55129189671FB5798D5BD9BBC2387AB2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:01:94:81:43:cc:57:2a:f4:78:a8:78:e7:a2: f1:06:66:4e:c8:96:66:b7:fa:9d:a9:86:70:0d:97: 6c:10:92:9b:5b:2e:07:c4:c4:5a:c5:f7:ca:67:8c: 21:9b:a0:84:bc:57:e2:9d:3a:5e:26:46:44:b0:04: a8:c4:ef:07:ee:df:64:50:a0:22:0e:fd:98:c1:9c: a8:fa:4a:c0:51:93:bd:22:81:47:55:06:46:59:85: 76:7d:81:37:28:c7:02:d4:53:90:22:4b:15:75:0c: 1d:03:92:c9:44:67:9d:b5:92:b6:b3:6f:79:7e:de: 17:e3:ac:9e:ee:cb:83:f7:05:96:31:3d:a1:07:85: fb:73:c0:05:22:33:f3:33:dd:bc:07:e1:9a:6b:17: 0d:58:be:07:b1:2a:0f:3d:cd:28:cd:92:71:9f:7d: 9f:e1:4e:7f:82:37:b5:8b:51:d0:59:07:7c:a0:68: f3:f9:fc:85:02:92:2f:c8:ea:18:2a:95:b6:b9:84: f8:54:51:25:6f:85:c4:a4:b0:da:3d:c4:77:25:d4: 46:09:d1:61:d9:66:3b:cd:77:7c:ec:34:7f:62:2c: bc:70:66:c2:ce:ef:62:b5:13:d5:c8:e8:90:e6:6e: 4a:c7:04:e1:6a:d9:e8:e3:31:d1:00:40:2a:91:6b: bf:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:F0:23:BC:55:12:91:89:67:1F:B5:79:8D:5B:D9:BB:C2:38:7A:B2 X509v3 Authority Key Identifier: keyid:F2:F6:B0:5A:5D:9D:56:C4:7D:15:03:91:1B:2C:C0:F0:4A:BF:A5:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/F2F6B05A5D9D56C47D1503911B2CC0F04ABFA55E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F2F6B05A5D9D56C47D1503911B2CC0F04ABFA55E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/323430313a663938303a383030303a3a2f33362d3336203d3e203633383632.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:f980:8000::/36 Signature Algorithm: sha256WithRSAEncryption 07:3a:df:6c:97:72:89:fa:eb:35:10:0d:8e:26:b6:47:0d:e7: 87:2f:0e:87:e2:32:92:d2:2e:73:d5:dd:98:7d:61:55:86:47: ad:b1:fd:dc:c6:19:df:ac:88:52:37:0b:8f:89:09:03:2a:ad: fa:9b:20:f6:4e:df:80:12:13:a3:70:25:66:13:3a:4b:5a:4a: a6:55:34:47:fd:27:97:89:06:03:ae:68:11:65:1e:72:a0:5f: e9:e6:73:10:8e:79:8a:71:b8:7c:c8:5c:2e:25:5e:9c:ba:ec: e8:17:78:c8:b4:94:f2:83:5b:e1:2e:4d:26:4e:44:72:34:b3: 6b:13:b8:99:91:5a:d0:09:41:19:82:be:17:ab:ad:0a:01:f8: b5:4e:67:a0:36:1f:13:8f:77:0b:bd:a8:03:41:38:60:d5:7e: b1:f4:df:ed:9d:11:5b:6e:80:65:ce:48:04:ff:3e:48:f8:5e: 71:fb:ad:e2:f7:32:e1:30:e6:1e:91:80:99:40:91:11:18:a3: 1c:f1:2b:b5:59:ce:b1:b8:b2:5b:fb:e3:0a:d2:f2:21:9f:b4: 56:c1:dd:bf:a7:5e:9f:0b:90:96:26:dd:3b:1a:b3:9b:79:f5: e6:42:89:ea:ef:67:3f:0a:d2:31:be:dd:cf:d2:8f:8c:d1:ee: 55:25:27:d6 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUfY3cBQn2V7ZBmGZjnoqprp0haEcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjJGNkIwNUE1RDlENTZDNDdEMTUwMzkxMUIyQ0MwRjA0 QUJGQTU1RTAeFw0yNjA1MDMwMjQzNDNaFw0yNzA1MDIwMjQ4NDNaMDMxMTAvBgNV BAMTKDVDRjAyM0JDNTUxMjkxODk2NzFGQjU3OThENUJEOUJCQzIzODdBQjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCcAZSBQ8xXKvR4qHjnovEGZk7I lma3+p2phnANl2wQkptbLgfExFrF98pnjCGboIS8V+KdOl4mRkSwBKjE7wfu32RQ oCIO/ZjBnKj6SsBRk70igUdVBkZZhXZ9gTcoxwLUU5AiSxV1DB0DkslEZ521kraz b3l+3hfjrJ7uy4P3BZYxPaEHhftzwAUiM/Mz3bwH4ZprFw1YvgexKg89zSjNknGf fZ/hTn+CN7WLUdBZB3ygaPP5/IUCki/I6hgqlba5hPhUUSVvhcSksNo9xHcl1EYJ 0WHZZjvNd3zsNH9iLLxwZsLO72K1E9XI6JDmbkrHBOFq2ejjMdEAQCqRa7+VAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUXPAjvFUSkYlnH7V5jVvZu8I4erIwHwYDVR0j BBgwFoAU8vawWl2dVsR9FQORGyzA8Eq/pV4wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ODdlODMwYzgtZDU1OS00NTZhLTg4MzUtNGY2ZWI1NTI3YWEyLzAvRjJGNkIwNUE1 RDlENTZDNDdEMTUwMzkxMUIyQ0MwRjA0QUJGQTU1RS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9GMkY2QjA1QTVEOUQ1NkM0N0QxNTAzOTExQjJDQzBGMDRBQkZB NTVFLmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUFBzALhoGLcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzg3ZTgzMGM4LWQ1NTktNDU2YS04 ODM1LTRmNmViNTUyN2FhMi8wLzMyMzQzMDMxM2E2NjM5MzgzMDNhMzgzMDMwMzAz YTNhMmYzMzM2MmQzMzM2MjAzZDNlMjAzNjMzMzgzNjMyLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYEJAH5 gIAwDQYJKoZIhvcNAQELBQADggEBAAc632yXcon66zUQDY4mtkcN54cvDofiMpLS LnPV3Zh9YVWGR62x/dzGGd+siFI3C4+JCQMqrfqbIPZO34ASE6NwJWYTOktaSqZV NEf9J5eJBgOuaBFlHnKgX+nmcxCOeYpxuHzIXC4lXpy67OgXeMi0lPKDW+EuTSZO RHI0s2sTuJmRWtAJQRmCvherrQoB+LVOZ6A2HxOPdwu9qANBOGDVfrH03+2dEVtu gGXOSAT/Pkj4XnH7reL3MuEw5h6RgJlAkREYoxzxK7VZzrG4slv74wrS8iGftFbB 3b+nXp8LkJYm3Tsas5t59eZCiervZz8K0jG+3c/Sj4zR7lUlJ9Y= -----END CERTIFICATE-----Generated at Wed May 13 10:33:18 2026 by rpki-client