$ rpki-client -vvf rpki-rsync.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/323430313a663938303a633030303a3a2f33362d3336203d3e203633383632.roa File: 323430313a663938303a633030303a3a2f33362d3336203d3e203633383632.roa (raw, json) Hash identifier: 9owZN+SGixSRv5paln4ebqIe0QfV06FiQxst/eJe3DU= Subject key identifier: 1D:95:90:29:87:C7:13:8D:C4:B2:74:CD:E7:C2:ED:A9:6B:35:33:C7 Certificate issuer: /CN=F2F6B05A5D9D56C47D1503911B2CC0F04ABFA55E Certificate serial: 3AC816E03317321A80CAC0EA543EC26A43E14030 Authority key identifier: F2:F6:B0:5A:5D:9D:56:C4:7D:15:03:91:1B:2C:C0:F0:4A:BF:A5:5E Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F2F6B05A5D9D56C47D1503911B2CC0F04ABFA55E.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/323430313a663938303a633030303a3a2f33362d3336203d3e203633383632.roa Signing time: Sun 03 May 2026 02:48:41 +0000 ROA not before: Sun 03 May 2026 02:43:41 +0000 ROA not after: Sun 02 May 2027 02:48:41 +0000 asID: 63862 IP address blocks: 2401:f980:c000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/F2F6B05A5D9D56C47D1503911B2CC0F04ABFA55E.crl rsync://rpki-rsync.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/F2F6B05A5D9D56C47D1503911B2CC0F04ABFA55E.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F2F6B05A5D9D56C47D1503911B2CC0F04ABFA55E.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 23:04:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:c8:16:e0:33:17:32:1a:80:ca:c0:ea:54:3e:c2:6a:43:e1:40:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F2F6B05A5D9D56C47D1503911B2CC0F04ABFA55E Validity Not Before: May 3 02:43:41 2026 GMT Not After : May 2 02:48:41 2027 GMT Subject: CN=1D95902987C7138DC4B274CDE7C2EDA96B3533C7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:e1:d3:3e:1b:a2:80:91:fa:0b:6a:8d:06:11: e2:95:50:bf:04:e1:8d:3b:ba:ff:e8:80:2c:b0:a6: f6:99:83:50:88:ba:d7:22:30:20:3a:6a:88:6f:9c: fe:54:07:88:23:d4:77:01:96:b1:81:91:90:64:e1: a2:33:56:1f:bf:cc:cb:84:4f:3d:5f:cf:e8:b7:2b: ce:14:df:67:51:b8:00:75:c1:4f:b9:78:9b:2c:b2: 64:05:b0:16:b4:eb:93:53:d6:56:de:3c:24:ac:9c: 4c:07:97:e1:1c:81:65:7b:db:7c:0c:9b:7b:93:95: 6b:c4:0a:4c:c4:27:a1:66:96:3a:74:04:f1:d3:16: b4:85:3f:b3:2b:70:e5:57:42:02:88:91:58:33:ce: 99:4e:e8:75:14:d0:d0:d0:58:c5:1a:13:06:6e:02: 0c:0a:9a:ab:67:ab:7b:d3:ed:97:5a:97:9f:1b:99: d6:c8:67:4d:01:1b:0c:4c:58:d4:e2:b9:48:aa:c7: 25:93:d5:db:d1:88:fe:65:da:04:46:ac:75:7a:51: 9f:bc:56:a8:96:d5:22:c9:0d:cc:b5:fc:90:7e:bc: 83:34:53:08:89:b2:92:4d:ef:52:ba:94:6c:c5:06: f1:61:47:37:60:93:71:8b:d8:c3:8b:e2:f3:28:e5: 25:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:95:90:29:87:C7:13:8D:C4:B2:74:CD:E7:C2:ED:A9:6B:35:33:C7 X509v3 Authority Key Identifier: keyid:F2:F6:B0:5A:5D:9D:56:C4:7D:15:03:91:1B:2C:C0:F0:4A:BF:A5:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/F2F6B05A5D9D56C47D1503911B2CC0F04ABFA55E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F2F6B05A5D9D56C47D1503911B2CC0F04ABFA55E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/323430313a663938303a633030303a3a2f33362d3336203d3e203633383632.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:f980:c000::/36 Signature Algorithm: sha256WithRSAEncryption 5a:ab:1b:93:89:c0:71:6b:21:7e:33:40:2d:5c:c5:14:d5:87: ef:19:b0:35:c3:77:f5:18:f6:95:4f:6d:19:86:cd:23:44:c5: 33:dc:f5:41:90:31:e5:94:06:de:5a:c5:46:bf:ca:13:3b:e4: 01:2a:7a:e6:80:be:82:93:74:5e:45:b6:6f:76:ff:c0:e8:62: f2:68:11:56:b8:eb:7b:81:14:66:ea:12:d7:bd:59:d3:d0:2a: f5:41:ce:50:5a:fa:81:c7:4f:39:54:c9:c0:d6:6b:86:fc:46: 33:c3:4c:10:55:05:23:f3:cf:4c:b2:4f:45:eb:42:b4:ef:59: c0:7b:92:37:d8:70:09:bb:60:9b:f9:72:b6:07:37:82:42:40: 7d:67:77:e3:ba:df:66:b1:34:38:2c:5e:de:5b:13:69:bc:67: 3d:b7:c0:bf:ba:02:93:a5:7a:05:f6:1b:13:aa:c1:48:0a:95: e6:27:6a:48:42:63:9e:a5:7c:4f:ef:4a:24:92:46:2a:e0:03: 0e:97:f3:43:58:fd:f5:a3:48:d8:59:56:52:70:16:82:df:72: c2:d3:15:e0:c2:1a:92:24:91:17:df:86:2d:f9:68:1a:69:fb: 35:35:bc:60:6a:29:51:36:99:44:8b:ce:61:c6:d7:69:1e:f1: 3f:94:8b:ca -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUOsgW4DMXMhqAysDqVD7CakPhQDAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjJGNkIwNUE1RDlENTZDNDdEMTUwMzkxMUIyQ0MwRjA0 QUJGQTU1RTAeFw0yNjA1MDMwMjQzNDFaFw0yNzA1MDIwMjQ4NDFaMDMxMTAvBgNV BAMTKDFEOTU5MDI5ODdDNzEzOERDNEIyNzRDREU3QzJFREE5NkIzNTMzQzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDg4dM+G6KAkfoLao0GEeKVUL8E 4Y07uv/ogCywpvaZg1CIutciMCA6aohvnP5UB4gj1HcBlrGBkZBk4aIzVh+/zMuE Tz1fz+i3K84U32dRuAB1wU+5eJsssmQFsBa065NT1lbePCSsnEwHl+EcgWV723wM m3uTlWvECkzEJ6Fmljp0BPHTFrSFP7MrcOVXQgKIkVgzzplO6HUU0NDQWMUaEwZu AgwKmqtnq3vT7Zdal58bmdbIZ00BGwxMWNTiuUiqxyWT1dvRiP5l2gRGrHV6UZ+8 VqiW1SLJDcy1/JB+vIM0UwiJspJN71K6lGzFBvFhRzdgk3GL2MOL4vMo5SWdAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUHZWQKYfHE43EsnTN58LtqWs1M8cwHwYDVR0j BBgwFoAU8vawWl2dVsR9FQORGyzA8Eq/pV4wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ODdlODMwYzgtZDU1OS00NTZhLTg4MzUtNGY2ZWI1NTI3YWEyLzAvRjJGNkIwNUE1 RDlENTZDNDdEMTUwMzkxMUIyQ0MwRjA0QUJGQTU1RS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9GMkY2QjA1QTVEOUQ1NkM0N0QxNTAzOTExQjJDQzBGMDRBQkZB NTVFLmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUFBzALhoGLcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzg3ZTgzMGM4LWQ1NTktNDU2YS04 ODM1LTRmNmViNTUyN2FhMi8wLzMyMzQzMDMxM2E2NjM5MzgzMDNhNjMzMDMwMzAz YTNhMmYzMzM2MmQzMzM2MjAzZDNlMjAzNjMzMzgzNjMyLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYEJAH5 gMAwDQYJKoZIhvcNAQELBQADggEBAFqrG5OJwHFrIX4zQC1cxRTVh+8ZsDXDd/UY 9pVPbRmGzSNExTPc9UGQMeWUBt5axUa/yhM75AEqeuaAvoKTdF5Ftm92/8DoYvJo EVa463uBFGbqEte9WdPQKvVBzlBa+oHHTzlUycDWa4b8RjPDTBBVBSPzz0yyT0Xr QrTvWcB7kjfYcAm7YJv5crYHN4JCQH1nd+O632axNDgsXt5bE2m8Zz23wL+6ApOl egX2GxOqwUgKleYnakhCY56lfE/vSiSSRirgAw6X80NY/fWjSNhZVlJwFoLfcsLT FeDCGpIkkRffhi35aBpp+zU1vGBqKVE2mUSLzmHG12ke8T+Ui8o= -----END CERTIFICATE-----Generated at Wed May 13 09:27:26 2026 by rpki-client