$ rpki-client -vvf rpki-rsync.idnic.net/repo/89f26fb8-72c4-49d9-9cbe-8226397271a2/0/323430353a636163303a3a2f33322d3332203d3e20313339393832.roa File: 323430353a636163303a3a2f33322d3332203d3e20313339393832.roa (raw, json) Hash identifier: HJdyg1CH1wYNkX3IJPS7n0ig1ABVkAurwagIizZ3YJY= Subject key identifier: 2F:4A:41:5E:E6:F6:75:1C:EF:F0:C0:95:28:1B:EF:62:1A:CB:6B:3A Certificate issuer: /CN=B82FDFC626E73CB2268F5B1EFEF576715FE5A570 Certificate serial: 1E9A43FFDDBCF73EF9544F706EF80102810BC62D Authority key identifier: B8:2F:DF:C6:26:E7:3C:B2:26:8F:5B:1E:FE:F5:76:71:5F:E5:A5:70 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B82FDFC626E73CB2268F5B1EFEF576715FE5A570.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/89f26fb8-72c4-49d9-9cbe-8226397271a2/0/323430353a636163303a3a2f33322d3332203d3e20313339393832.roa Signing time: Sun 03 May 2026 02:49:15 +0000 ROA not before: Sun 03 May 2026 02:44:15 +0000 ROA not after: Sun 02 May 2027 02:49:15 +0000 asID: 139982 IP address blocks: 2405:cac0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/89f26fb8-72c4-49d9-9cbe-8226397271a2/0/B82FDFC626E73CB2268F5B1EFEF576715FE5A570.crl rsync://rpki-rsync.idnic.net/repo/89f26fb8-72c4-49d9-9cbe-8226397271a2/0/B82FDFC626E73CB2268F5B1EFEF576715FE5A570.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B82FDFC626E73CB2268F5B1EFEF576715FE5A570.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 10:27:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:9a:43:ff:dd:bc:f7:3e:f9:54:4f:70:6e:f8:01:02:81:0b:c6:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B82FDFC626E73CB2268F5B1EFEF576715FE5A570 Validity Not Before: May 3 02:44:15 2026 GMT Not After : May 2 02:49:15 2027 GMT Subject: CN=2F4A415EE6F6751CEFF0C095281BEF621ACB6B3A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:d4:02:86:b8:ec:ca:06:3f:d8:02:ec:7b:d9: ab:08:05:a7:76:a5:f3:81:18:29:c3:89:40:e4:01: 01:08:71:6f:a6:00:0b:a4:73:f8:46:8b:24:70:a5: 6e:d4:54:9b:0f:88:92:5b:67:4c:b3:19:aa:bd:02: b1:2b:fe:3a:d5:0b:78:ba:4c:c2:23:3e:80:3d:3a: a2:36:d2:8a:49:84:98:57:2f:d7:de:16:b1:fa:2a: 2f:ac:95:52:c7:4b:8f:19:f0:28:a8:71:f8:4c:e6: 35:ca:ff:e7:9f:0b:70:a9:32:f4:36:2c:8a:33:54: 17:17:7b:b5:5b:4d:99:79:66:a6:13:fb:5d:79:53: d3:66:a2:c6:99:0f:58:8f:37:60:8e:ce:08:0d:bf: 16:3d:ec:65:a7:2a:06:c4:05:77:36:24:31:05:a8: 8f:be:f8:00:58:0a:ac:16:1d:4b:51:e2:4e:c3:a5: 28:ea:ea:54:5d:34:7b:c3:eb:15:d7:9d:34:74:d7: d0:a8:b4:f5:d7:d4:e9:b5:cb:e7:81:4f:cc:73:8c: 1c:cb:0d:ea:c4:cb:60:e8:38:9d:47:d0:c7:a1:73: dd:d7:1a:b9:89:d4:43:71:df:35:48:b9:94:52:8f: cb:4a:4d:d5:14:c5:b2:f6:f1:73:f3:0c:e1:5d:f6: 99:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:4A:41:5E:E6:F6:75:1C:EF:F0:C0:95:28:1B:EF:62:1A:CB:6B:3A X509v3 Authority Key Identifier: keyid:B8:2F:DF:C6:26:E7:3C:B2:26:8F:5B:1E:FE:F5:76:71:5F:E5:A5:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/89f26fb8-72c4-49d9-9cbe-8226397271a2/0/B82FDFC626E73CB2268F5B1EFEF576715FE5A570.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B82FDFC626E73CB2268F5B1EFEF576715FE5A570.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/89f26fb8-72c4-49d9-9cbe-8226397271a2/0/323430353a636163303a3a2f33322d3332203d3e20313339393832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:cac0::/32 Signature Algorithm: sha256WithRSAEncryption 32:ad:eb:8e:24:aa:f9:78:0d:8c:19:69:0d:44:d8:53:62:23: 8e:2c:b6:32:80:e6:46:0c:d1:90:1f:d6:96:fa:a3:f4:ef:55: 50:4b:e5:df:df:a5:e4:90:25:d9:f4:18:ba:ee:77:22:46:ca: fe:05:99:c9:02:ec:7f:a4:81:60:fe:c4:14:26:a4:83:64:e0: 4a:1f:bc:0c:15:b1:3e:a9:98:cf:23:a0:6a:30:f6:a5:0d:16: 11:80:d2:10:d4:a4:47:0b:25:39:eb:4b:d0:bf:56:7e:6f:40: 80:89:b2:e2:de:1a:d7:6a:b7:e8:2e:57:e2:20:60:cd:62:6d: b3:ac:55:d3:bc:4f:20:1e:5a:16:54:73:bf:0c:15:e5:3f:b4: b3:10:80:38:3f:5d:30:7f:91:ca:1a:3e:89:99:b1:e4:8e:3e: 49:6b:a8:55:3e:23:ec:a0:43:45:6a:e9:6e:11:78:fe:19:7a: 31:5a:0c:a4:b0:60:5c:a9:2d:c6:d3:07:fe:bf:34:af:7a:07: eb:d8:ec:75:a4:dd:1d:d8:ec:89:2a:02:ae:e9:69:4a:58:02: 26:f6:f9:2c:47:56:f2:b5:60:9a:b6:98:54:73:1d:3e:14:71: 37:f8:74:5d:8b:05:5b:1d:1d:fc:bd:6d:78:60:13:e9:a1:44: 17:eb:d6:c2 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUHppD/9289z75VE9wbvgBAoELxi0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjgyRkRGQzYyNkU3M0NCMjI2OEY1QjFFRkVGNTc2NzE1 RkU1QTU3MDAeFw0yNjA1MDMwMjQ0MTVaFw0yNzA1MDIwMjQ5MTVaMDMxMTAvBgNV BAMTKDJGNEE0MTVFRTZGNjc1MUNFRkYwQzA5NTI4MUJFRjYyMUFDQjZCM0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDC1AKGuOzKBj/YAux72asIBad2 pfOBGCnDiUDkAQEIcW+mAAukc/hGiyRwpW7UVJsPiJJbZ0yzGaq9ArEr/jrVC3i6 TMIjPoA9OqI20opJhJhXL9feFrH6Ki+slVLHS48Z8CiocfhM5jXK/+efC3CpMvQ2 LIozVBcXe7VbTZl5ZqYT+115U9NmosaZD1iPN2COzggNvxY97GWnKgbEBXc2JDEF qI+++ABYCqwWHUtR4k7DpSjq6lRdNHvD6xXXnTR019CotPXX1Om1y+eBT8xzjBzL DerEy2DoOJ1H0Mehc93XGrmJ1ENx3zVIuZRSj8tKTdUUxbL28XPzDOFd9plTAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUL0pBXub2dRzv8MCVKBvvYhrLazowHwYDVR0j BBgwFoAUuC/fxibnPLImj1se/vV2cV/lpXAwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ODlmMjZmYjgtNzJjNC00OWQ5LTljYmUtODIyNjM5NzI3MWEyLzAvQjgyRkRGQzYy NkU3M0NCMjI2OEY1QjFFRkVGNTc2NzE1RkU1QTU3MC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9CODJGREZDNjI2RTczQ0IyMjY4RjVCMUVGRUY1NzY3MTVGRTVB NTcwLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzg5ZjI2ZmI4LTcyYzQtNDlkOS05 Y2JlLTgyMjYzOTcyNzFhMi8wLzMyMzQzMDM1M2E2MzYxNjMzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzMzOTM5MzgzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQFysAwDQYJKoZI hvcNAQELBQADggEBADKt644kqvl4DYwZaQ1E2FNiI44stjKA5kYM0ZAf1pb6o/Tv VVBL5d/fpeSQJdn0GLrudyJGyv4FmckC7H+kgWD+xBQmpINk4EofvAwVsT6pmM8j oGow9qUNFhGA0hDUpEcLJTnrS9C/Vn5vQICJsuLeGtdqt+guV+IgYM1ibbOsVdO8 TyAeWhZUc78MFeU/tLMQgDg/XTB/kcoaPomZseSOPklrqFU+I+ygQ0Vq6W4ReP4Z ejFaDKSwYFypLcbTB/6/NK96B+vY7HWk3R3Y7IkqAq7paUpYAib2+SxHVvK1YJq2 mFRzHT4UcTf4dF2LBVsdHfy9bXhgE+mhRBfr1sI= -----END CERTIFICATE-----Generated at Wed May 13 14:10:33 2026 by rpki-client