$ rpki-client -vvf rpki-rsync.idnic.net/repo/8dcf4067-a69d-4908-bee8-b4655bdc15f8/0/323430363a346563303a3a2f33322d3332203d3e20313430343735.roa File: 323430363a346563303a3a2f33322d3332203d3e20313430343735.roa (raw, json) Hash identifier: grkHY3zf57XsShC3GloC/Ysy8CRxkBA2HYvszXntAaM= Subject key identifier: 3C:7E:63:2B:FF:62:A3:C6:C0:2A:75:62:C3:07:AF:6E:F3:93:01:07 Certificate issuer: /CN=873409842DEE948D3DE05C618194C87A259E04BF Certificate serial: 08C6A3693B8CDE20C35C84EE1E2A2825FEF921E8 Authority key identifier: 87:34:09:84:2D:EE:94:8D:3D:E0:5C:61:81:94:C8:7A:25:9E:04:BF Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/873409842DEE948D3DE05C618194C87A259E04BF.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/8dcf4067-a69d-4908-bee8-b4655bdc15f8/0/323430363a346563303a3a2f33322d3332203d3e20313430343735.roa Signing time: Sun 03 May 2026 02:51:04 +0000 ROA not before: Sun 03 May 2026 02:46:04 +0000 ROA not after: Sun 02 May 2027 02:51:04 +0000 asID: 140475 IP address blocks: 2406:4ec0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/8dcf4067-a69d-4908-bee8-b4655bdc15f8/0/873409842DEE948D3DE05C618194C87A259E04BF.crl rsync://rpki-rsync.idnic.net/repo/8dcf4067-a69d-4908-bee8-b4655bdc15f8/0/873409842DEE948D3DE05C618194C87A259E04BF.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/873409842DEE948D3DE05C618194C87A259E04BF.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 16:54:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:c6:a3:69:3b:8c:de:20:c3:5c:84:ee:1e:2a:28:25:fe:f9:21:e8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=873409842DEE948D3DE05C618194C87A259E04BF Validity Not Before: May 3 02:46:04 2026 GMT Not After : May 2 02:51:04 2027 GMT Subject: CN=3C7E632BFF62A3C6C02A7562C307AF6EF3930107 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:22:15:94:78:8a:34:77:db:08:fd:a2:34:0a: 8b:5e:a0:7a:0c:5f:83:f8:b0:5f:53:58:e8:b5:73: 77:d8:75:13:24:98:01:67:b0:31:18:f0:29:09:7f: 1e:ac:e1:26:d3:df:a0:56:dc:57:7b:c1:e5:70:0e: 3a:bc:5c:20:75:eb:b7:7f:6b:01:d6:9f:04:ab:d1: f3:56:11:17:8a:2a:59:8d:6a:ba:1a:ee:d7:25:92: bf:fd:c0:6d:db:e2:07:be:ad:9f:c7:a1:94:d4:f1: 1d:1c:23:33:89:c4:87:54:0e:01:37:35:f1:aa:b7: 75:07:83:d0:e0:35:8e:26:2c:1f:70:b6:98:32:b1: 75:33:02:9d:5e:d7:dd:f9:91:47:37:ec:9d:5a:c1: 01:85:8a:35:87:fb:02:fd:db:8f:15:90:41:a8:d8: 3d:4b:ec:59:06:27:e0:0e:42:d7:e9:3e:3b:25:46: 32:e4:65:3d:a9:03:17:c8:5f:ec:b9:21:20:dd:69: cd:d2:a5:46:f6:6f:46:cb:63:73:b0:43:a7:dc:58: ca:fa:37:9e:de:05:52:63:d6:9e:0f:09:aa:c2:70: 0a:c1:52:89:76:19:5c:38:9c:e1:d6:c9:21:4d:be: 54:a0:7a:23:b7:aa:bc:da:79:a9:97:60:4e:c0:20: b4:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:7E:63:2B:FF:62:A3:C6:C0:2A:75:62:C3:07:AF:6E:F3:93:01:07 X509v3 Authority Key Identifier: keyid:87:34:09:84:2D:EE:94:8D:3D:E0:5C:61:81:94:C8:7A:25:9E:04:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/8dcf4067-a69d-4908-bee8-b4655bdc15f8/0/873409842DEE948D3DE05C618194C87A259E04BF.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/873409842DEE948D3DE05C618194C87A259E04BF.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/8dcf4067-a69d-4908-bee8-b4655bdc15f8/0/323430363a346563303a3a2f33322d3332203d3e20313430343735.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:4ec0::/32 Signature Algorithm: sha256WithRSAEncryption f1:cf:82:7f:4d:7c:df:8c:cd:35:39:f7:68:30:8b:20:68:6a: 5f:92:33:fb:3c:54:fc:b1:5f:63:db:9f:a7:af:6d:27:ae:f2: 5f:1d:4e:f5:ff:13:e8:05:60:59:11:29:e2:8b:08:8d:7f:57: 4b:08:78:19:6d:4b:dd:17:ea:73:be:33:9b:b8:07:4b:48:e3: 24:4d:b3:b8:08:39:6e:b5:b8:a3:1e:df:dd:e2:5d:32:aa:8d: d2:77:42:98:3b:bf:8c:ef:a2:d6:5d:6b:f5:9b:4c:f0:f0:65: 8f:fe:c1:48:ac:4f:32:5f:17:ab:44:60:97:41:95:5c:df:57: c3:35:1c:5b:b6:3b:ee:6e:4f:7b:24:79:d6:d8:f1:77:53:3b: 0c:6a:bc:e1:d7:44:d8:50:2d:5c:87:60:95:5f:40:fe:64:cf: 41:90:2d:5b:b6:e7:52:50:2d:d4:03:a2:e4:b3:c5:ee:d4:1d: 71:fc:0d:a0:2d:69:79:d5:96:e0:46:70:54:5e:67:14:84:0e: 5e:bf:6a:09:7a:2e:f2:3f:97:d4:ac:16:6d:50:04:5f:91:55: 3f:2c:b8:21:5d:48:d5:e1:bf:e0:46:ce:1a:18:6e:6a:6a:fa: d7:89:75:04:dd:0a:7b:f0:83:78:8f:8e:b5:e7:02:7e:d2:68: 95:f3:46:ab -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUCMajaTuM3iDDXITuHiooJf75IegwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODczNDA5ODQyREVFOTQ4RDNERTA1QzYxODE5NEM4N0Ey NTlFMDRCRjAeFw0yNjA1MDMwMjQ2MDRaFw0yNzA1MDIwMjUxMDRaMDMxMTAvBgNV BAMTKDNDN0U2MzJCRkY2MkEzQzZDMDJBNzU2MkMzMDdBRjZFRjM5MzAxMDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCUIhWUeIo0d9sI/aI0CoteoHoM X4P4sF9TWOi1c3fYdRMkmAFnsDEY8CkJfx6s4SbT36BW3Fd7weVwDjq8XCB167d/ awHWnwSr0fNWEReKKlmNaroa7tclkr/9wG3b4ge+rZ/HoZTU8R0cIzOJxIdUDgE3 NfGqt3UHg9DgNY4mLB9wtpgysXUzAp1e1935kUc37J1awQGFijWH+wL9248VkEGo 2D1L7FkGJ+AOQtfpPjslRjLkZT2pAxfIX+y5ISDdac3SpUb2b0bLY3OwQ6fcWMr6 N57eBVJj1p4PCarCcArBUol2GVw4nOHWySFNvlSgeiO3qrzaeamXYE7AILSrAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUPH5jK/9io8bAKnViwwevbvOTAQcwHwYDVR0j BBgwFoAUhzQJhC3ulI094FxhgZTIeiWeBL8wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v OGRjZjQwNjctYTY5ZC00OTA4LWJlZTgtYjQ2NTViZGMxNWY4LzAvODczNDA5ODQy REVFOTQ4RDNERTA1QzYxODE5NEM4N0EyNTlFMDRCRi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS84NzM0MDk4NDJERUU5NDhEM0RFMDVDNjE4MTk0Qzg3QTI1OUUw NEJGLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzhkY2Y0MDY3LWE2OWQtNDkwOC1i ZWU4LWI0NjU1YmRjMTVmOC8wLzMyMzQzMDM2M2EzNDY1NjMzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzQzMDM0MzczNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQGTsAwDQYJKoZI hvcNAQELBQADggEBAPHPgn9NfN+MzTU592gwiyBoal+SM/s8VPyxX2Pbn6evbSeu 8l8dTvX/E+gFYFkRKeKLCI1/V0sIeBltS90X6nO+M5u4B0tI4yRNs7gIOW61uKMe 393iXTKqjdJ3Qpg7v4zvotZda/WbTPDwZY/+wUisTzJfF6tEYJdBlVzfV8M1HFu2 O+5uT3skedbY8XdTOwxqvOHXRNhQLVyHYJVfQP5kz0GQLVu251JQLdQDouSzxe7U HXH8DaAtaXnVluBGcFReZxSEDl6/agl6LvI/l9SsFm1QBF+RVT8suCFdSNXhv+BG zhoYbmpq+teJdQTdCnvwg3iPjrXnAn7SaJXzRqs= -----END CERTIFICATE-----Generated at Wed May 13 07:01:41 2026 by rpki-client