$ rpki-client -vvf rpki-rsync.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/323430313a663938303a613030303a3a2f33362d3336203d3e203633383632.roa File: 323430313a663938303a613030303a3a2f33362d3336203d3e203633383632.roa (raw, json) Hash identifier: zHdIBVS0XR/c8iQ3ecyXV97YNC4K/MzxZJeB0bWu9pM= Subject key identifier: 25:F7:F2:3E:39:44:4D:A7:94:EF:F5:70:F4:92:C2:C4:75:D5:5D:E9 Certificate issuer: /CN=F2F6B05A5D9D56C47D1503911B2CC0F04ABFA55E Certificate serial: 4336A0640D6054C7FD2FB9D28B37A10E24E5E99B Authority key identifier: F2:F6:B0:5A:5D:9D:56:C4:7D:15:03:91:1B:2C:C0:F0:4A:BF:A5:5E Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F2F6B05A5D9D56C47D1503911B2CC0F04ABFA55E.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/323430313a663938303a613030303a3a2f33362d3336203d3e203633383632.roa Signing time: Sun 03 May 2026 02:48:49 +0000 ROA not before: Sun 03 May 2026 02:43:49 +0000 ROA not after: Sun 02 May 2027 02:48:49 +0000 asID: 63862 IP address blocks: 2401:f980:a000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/F2F6B05A5D9D56C47D1503911B2CC0F04ABFA55E.crl rsync://rpki-rsync.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/F2F6B05A5D9D56C47D1503911B2CC0F04ABFA55E.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F2F6B05A5D9D56C47D1503911B2CC0F04ABFA55E.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 23:04:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:36:a0:64:0d:60:54:c7:fd:2f:b9:d2:8b:37:a1:0e:24:e5:e9:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F2F6B05A5D9D56C47D1503911B2CC0F04ABFA55E Validity Not Before: May 3 02:43:49 2026 GMT Not After : May 2 02:48:49 2027 GMT Subject: CN=25F7F23E39444DA794EFF570F492C2C475D55DE9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:ff:04:08:18:13:45:c3:bf:d6:36:73:58:79: a2:56:a1:f2:d0:1d:f6:42:a6:9d:19:0e:b3:8d:29: 43:8a:8f:b2:97:19:d6:96:84:62:51:00:d2:8b:ca: 74:29:7a:89:44:bd:84:32:9c:6f:d2:1d:70:19:39: 45:98:df:59:34:b9:aa:be:b0:08:de:48:cc:42:1a: 9e:c3:3d:36:08:be:b3:b9:9d:53:18:89:41:bc:97: 93:a4:ce:5d:a4:48:e0:8d:c5:38:3a:2c:5b:df:57: 06:8a:fa:a9:87:e1:db:14:6f:cd:c5:41:f7:e3:df: 91:11:64:71:08:22:df:d1:69:d1:e5:99:b5:c7:da: 95:cc:3a:b2:8e:c7:51:1a:ef:67:82:36:8e:bb:7d: f0:34:3c:10:d3:aa:90:c4:c5:8b:a8:c7:08:d9:bc: 34:be:0e:f1:1b:3e:d8:0a:9d:4d:89:ec:34:b3:6c: 51:94:28:6b:08:6d:30:b2:4a:19:cb:11:7b:e2:c6: 75:55:a6:d3:c4:89:b6:41:62:ac:fd:8d:8a:41:0f: e7:f3:a2:59:22:e4:1e:57:c2:91:4e:21:13:da:7e: 43:9c:fc:ef:59:2e:fe:22:31:f0:f2:f1:52:ca:07: ff:f9:4c:e2:31:84:b3:cc:75:e5:13:b5:94:cd:2d: d4:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:F7:F2:3E:39:44:4D:A7:94:EF:F5:70:F4:92:C2:C4:75:D5:5D:E9 X509v3 Authority Key Identifier: keyid:F2:F6:B0:5A:5D:9D:56:C4:7D:15:03:91:1B:2C:C0:F0:4A:BF:A5:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/F2F6B05A5D9D56C47D1503911B2CC0F04ABFA55E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F2F6B05A5D9D56C47D1503911B2CC0F04ABFA55E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/323430313a663938303a613030303a3a2f33362d3336203d3e203633383632.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:f980:a000::/36 Signature Algorithm: sha256WithRSAEncryption 67:26:69:4a:7d:81:cd:d8:03:ce:17:4d:85:92:9d:8d:d1:6c: 3e:4a:5a:82:6c:07:38:f8:af:73:0f:c1:75:bb:15:5f:59:4b: 2e:56:48:da:99:74:d5:94:18:5e:f1:42:ad:cc:a8:42:d6:ee: b4:b4:86:61:89:64:a0:a9:53:5a:2b:20:64:78:38:b9:77:f6: 37:c3:84:ab:73:75:4c:47:33:e9:ce:02:3a:d0:90:81:25:16: 31:61:e7:ff:29:dc:1b:14:6e:42:69:92:85:c4:5a:92:48:f5: 3e:bf:3b:a4:ce:99:32:96:13:fc:a8:aa:e5:67:07:c9:b0:5b: e7:4c:81:6f:21:c8:54:d7:de:50:12:36:eb:60:7a:1f:4b:b3: e1:0b:5d:49:c4:cb:57:40:02:ed:d6:de:96:a7:da:39:6f:81: db:42:ae:bf:3a:82:e7:3c:4c:2b:92:40:10:ce:c0:80:9c:ed: fc:d1:4d:82:39:d7:b6:ac:db:c7:89:aa:47:82:9d:71:a9:ed: bf:26:b1:8e:49:31:fd:a4:cd:df:a1:5d:0c:ec:1a:b5:65:3e: 78:6b:41:7f:b1:3a:2b:14:05:c9:67:ea:18:f9:11:be:b3:83: 5b:39:01:d3:75:17:e1:b2:e5:fe:4f:79:95:a6:ce:54:48:ad: 29:ef:60:07 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUQzagZA1gVMf9L7nSizehDiTl6ZswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjJGNkIwNUE1RDlENTZDNDdEMTUwMzkxMUIyQ0MwRjA0 QUJGQTU1RTAeFw0yNjA1MDMwMjQzNDlaFw0yNzA1MDIwMjQ4NDlaMDMxMTAvBgNV BAMTKDI1RjdGMjNFMzk0NDREQTc5NEVGRjU3MEY0OTJDMkM0NzVENTVERTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDO/wQIGBNFw7/WNnNYeaJWofLQ HfZCpp0ZDrONKUOKj7KXGdaWhGJRANKLynQpeolEvYQynG/SHXAZOUWY31k0uaq+ sAjeSMxCGp7DPTYIvrO5nVMYiUG8l5Okzl2kSOCNxTg6LFvfVwaK+qmH4dsUb83F Qffj35ERZHEIIt/RadHlmbXH2pXMOrKOx1Ea72eCNo67ffA0PBDTqpDExYuoxwjZ vDS+DvEbPtgKnU2J7DSzbFGUKGsIbTCyShnLEXvixnVVptPEibZBYqz9jYpBD+fz olki5B5XwpFOIRPafkOc/O9ZLv4iMfDy8VLKB//5TOIxhLPMdeUTtZTNLdRNAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUJffyPjlETaeU7/Vw9JLCxHXVXekwHwYDVR0j BBgwFoAU8vawWl2dVsR9FQORGyzA8Eq/pV4wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ODdlODMwYzgtZDU1OS00NTZhLTg4MzUtNGY2ZWI1NTI3YWEyLzAvRjJGNkIwNUE1 RDlENTZDNDdEMTUwMzkxMUIyQ0MwRjA0QUJGQTU1RS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9GMkY2QjA1QTVEOUQ1NkM0N0QxNTAzOTExQjJDQzBGMDRBQkZB NTVFLmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUFBzALhoGLcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzg3ZTgzMGM4LWQ1NTktNDU2YS04 ODM1LTRmNmViNTUyN2FhMi8wLzMyMzQzMDMxM2E2NjM5MzgzMDNhNjEzMDMwMzAz YTNhMmYzMzM2MmQzMzM2MjAzZDNlMjAzNjMzMzgzNjMyLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYEJAH5 gKAwDQYJKoZIhvcNAQELBQADggEBAGcmaUp9gc3YA84XTYWSnY3RbD5KWoJsBzj4 r3MPwXW7FV9ZSy5WSNqZdNWUGF7xQq3MqELW7rS0hmGJZKCpU1orIGR4OLl39jfD hKtzdUxHM+nOAjrQkIElFjFh5/8p3BsUbkJpkoXEWpJI9T6/O6TOmTKWE/yoquVn B8mwW+dMgW8hyFTX3lASNutgeh9Ls+ELXUnEy1dAAu3W3pan2jlvgdtCrr86guc8 TCuSQBDOwICc7fzRTYI517as28eJqkeCnXGp7b8msY5JMf2kzd+hXQzsGrVlPnhr QX+xOisUBcln6hj5Eb6zg1s5AdN1F+Gy5f5PeZWmzlRIrSnvYAc= -----END CERTIFICATE-----Generated at Wed May 13 09:24:01 2026 by rpki-client