$ rpki-client -vvf rpki-rsync.idnic.net/repo/907608ce-c3f8-44eb-aee7-b784ae20c9c7/0/323430363a363263303a3a2f33322d3332203d3e20313431303734.roa File: 323430363a363263303a3a2f33322d3332203d3e20313431303734.roa (raw, json) Hash identifier: JHt7Y4sfZDXhljzVs+do4tcZibHDOYboGApg1o5d8oY= Subject key identifier: 4B:3D:EF:59:09:4B:B9:E8:21:40:22:F3:F7:E9:64:05:56:9D:FC:94 Certificate issuer: /CN=3114FEA2820614B6E8BFE30FB3E0E4E12FEE3FA2 Certificate serial: 0E4CBBF79A262938695E0A9C0F8DFFA3A49E23F9 Authority key identifier: 31:14:FE:A2:82:06:14:B6:E8:BF:E3:0F:B3:E0:E4:E1:2F:EE:3F:A2 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/3114FEA2820614B6E8BFE30FB3E0E4E12FEE3FA2.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/907608ce-c3f8-44eb-aee7-b784ae20c9c7/0/323430363a363263303a3a2f33322d3332203d3e20313431303734.roa Signing time: Sun 03 May 2026 02:51:34 +0000 ROA not before: Sun 03 May 2026 02:46:34 +0000 ROA not after: Sun 02 May 2027 02:51:34 +0000 asID: 141074 IP address blocks: 2406:62c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/907608ce-c3f8-44eb-aee7-b784ae20c9c7/0/3114FEA2820614B6E8BFE30FB3E0E4E12FEE3FA2.crl rsync://rpki-rsync.idnic.net/repo/907608ce-c3f8-44eb-aee7-b784ae20c9c7/0/3114FEA2820614B6E8BFE30FB3E0E4E12FEE3FA2.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/3114FEA2820614B6E8BFE30FB3E0E4E12FEE3FA2.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 02:55:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:4c:bb:f7:9a:26:29:38:69:5e:0a:9c:0f:8d:ff:a3:a4:9e:23:f9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3114FEA2820614B6E8BFE30FB3E0E4E12FEE3FA2 Validity Not Before: May 3 02:46:34 2026 GMT Not After : May 2 02:51:34 2027 GMT Subject: CN=4B3DEF59094BB9E8214022F3F7E96405569DFC94 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:58:35:05:bb:17:93:b3:0d:18:48:66:b6:48: 95:40:8b:d7:41:28:76:1b:4d:64:bf:59:50:47:20: 28:1a:71:b0:97:8d:18:b0:04:2a:33:5c:7c:90:d7: 7a:15:ed:58:14:01:8f:79:1d:5f:2b:de:b6:6c:ba: 77:05:7d:ed:1d:e6:df:c8:bf:39:16:ef:b6:65:5a: 2a:de:62:30:3e:82:f7:93:d7:ba:e3:78:13:c0:60: 3a:ef:b8:c3:96:10:e5:75:63:7f:d5:65:77:c3:32: 88:cc:85:3d:f8:6c:75:84:1a:05:ba:48:7e:c9:27: 90:4b:ca:a8:e0:0d:79:26:b2:89:1b:5a:aa:24:00: c0:91:af:a3:e9:76:e6:d9:d3:0d:c6:b9:01:17:05: bb:c1:75:80:5c:d2:4c:cd:a3:a3:2b:be:79:e6:d0: 48:37:d4:2e:00:27:19:e7:a8:57:04:b8:a2:6d:69: 34:d9:e8:ba:33:90:9d:b5:b4:5b:ea:f1:bb:34:58: a5:6e:48:40:e6:66:8a:25:cc:e6:cf:91:dd:ba:f4: e0:89:6c:85:37:95:fd:f1:e2:38:e2:31:29:66:ca: e0:03:36:43:7d:11:c3:bf:7a:c8:85:0c:cf:71:c5: 1c:bf:67:d9:a4:25:b5:f4:c2:9d:9e:7f:b5:84:6d: 47:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:3D:EF:59:09:4B:B9:E8:21:40:22:F3:F7:E9:64:05:56:9D:FC:94 X509v3 Authority Key Identifier: keyid:31:14:FE:A2:82:06:14:B6:E8:BF:E3:0F:B3:E0:E4:E1:2F:EE:3F:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/907608ce-c3f8-44eb-aee7-b784ae20c9c7/0/3114FEA2820614B6E8BFE30FB3E0E4E12FEE3FA2.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/3114FEA2820614B6E8BFE30FB3E0E4E12FEE3FA2.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/907608ce-c3f8-44eb-aee7-b784ae20c9c7/0/323430363a363263303a3a2f33322d3332203d3e20313431303734.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:62c0::/32 Signature Algorithm: sha256WithRSAEncryption 3d:69:61:d7:be:8a:d6:9e:54:ee:ab:a0:73:e6:f0:a0:2e:9a: 98:e0:e3:6b:2e:56:de:2d:5f:f1:aa:82:94:2e:85:96:2a:e7: 42:09:7d:99:09:af:cb:ad:db:12:b3:20:48:b8:84:fd:31:92: dd:53:a0:aa:f8:97:33:fe:ee:2c:6e:b9:70:94:8b:9e:9d:7f: b3:2e:24:68:90:a7:f1:ea:73:30:c0:ca:d3:30:25:83:c0:ac: 3d:34:50:88:2e:fa:0d:5b:5d:27:17:19:fd:39:c3:71:89:36: 60:3e:45:e7:1b:de:8d:7d:47:b5:d0:8a:59:f1:39:75:ba:a3: 45:e7:77:b2:f7:c1:36:90:41:f5:2b:e2:0f:7b:35:56:5e:45: 83:37:88:03:ce:12:a3:f9:d3:aa:b5:4a:ab:2b:a3:41:8c:29: f5:78:d4:e8:d5:cf:97:6f:49:c1:3f:e0:d0:72:f0:2f:99:5e: 2c:3c:72:a2:58:81:9d:74:df:27:59:8f:6b:ce:aa:2e:a2:26: 63:bd:ec:22:ec:6c:b7:5c:18:af:0f:fb:ec:62:3d:12:f1:66: b5:2f:15:ff:52:13:39:5c:40:22:10:5b:eb:25:4e:02:75:44: 82:e5:bd:a7:32:81:49:af:bb:d1:ba:97:da:16:9f:f9:7b:83: 93:03:9c:53 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUDky795omKThpXgqcD43/o6SeI/kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzExNEZFQTI4MjA2MTRCNkU4QkZFMzBGQjNFMEU0RTEy RkVFM0ZBMjAeFw0yNjA1MDMwMjQ2MzRaFw0yNzA1MDIwMjUxMzRaMDMxMTAvBgNV BAMTKDRCM0RFRjU5MDk0QkI5RTgyMTQwMjJGM0Y3RTk2NDA1NTY5REZDOTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDyWDUFuxeTsw0YSGa2SJVAi9dB KHYbTWS/WVBHICgacbCXjRiwBCozXHyQ13oV7VgUAY95HV8r3rZsuncFfe0d5t/I vzkW77ZlWireYjA+gveT17rjeBPAYDrvuMOWEOV1Y3/VZXfDMojMhT34bHWEGgW6 SH7JJ5BLyqjgDXkmsokbWqokAMCRr6PpdubZ0w3GuQEXBbvBdYBc0kzNo6Mrvnnm 0Eg31C4AJxnnqFcEuKJtaTTZ6LozkJ21tFvq8bs0WKVuSEDmZoolzObPkd269OCJ bIU3lf3x4jjiMSlmyuADNkN9EcO/esiFDM9xxRy/Z9mkJbX0wp2ef7WEbUdpAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUSz3vWQlLueghQCLz9+lkBVad/JQwHwYDVR0j BBgwFoAUMRT+ooIGFLbov+MPs+Dk4S/uP6IwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v OTA3NjA4Y2UtYzNmOC00NGViLWFlZTctYjc4NGFlMjBjOWM3LzAvMzExNEZFQTI4 MjA2MTRCNkU4QkZFMzBGQjNFMEU0RTEyRkVFM0ZBMi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8zMTE0RkVBMjgyMDYxNEI2RThCRkUzMEZCM0UwRTRFMTJGRUUz RkEyLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzkwNzYwOGNlLWMzZjgtNDRlYi1h ZWU3LWI3ODRhZTIwYzljNy8wLzMyMzQzMDM2M2EzNjMyNjMzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzQzMTMwMzczNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQGYsAwDQYJKoZI hvcNAQELBQADggEBAD1pYde+itaeVO6roHPm8KAumpjg42suVt4tX/GqgpQuhZYq 50IJfZkJr8ut2xKzIEi4hP0xkt1ToKr4lzP+7ixuuXCUi56df7MuJGiQp/HqczDA ytMwJYPArD00UIgu+g1bXScXGf05w3GJNmA+Recb3o19R7XQilnxOXW6o0Xnd7L3 wTaQQfUr4g97NVZeRYM3iAPOEqP506q1Sqsro0GMKfV41OjVz5dvScE/4NBy8C+Z Xiw8cqJYgZ103ydZj2vOqi6iJmO97CLsbLdcGK8P++xiPRLxZrUvFf9SEzlcQCIQ W+slTgJ1RILlvacygUmvu9G6l9oWn/l7g5MDnFM= -----END CERTIFICATE-----Generated at Wed May 13 12:39:37 2026 by rpki-client