$ rpki-client -vvf rpki-rsync.idnic.net/repo/925cda36-693a-4c1a-ba9e-e0e178112140/0/323430343a326363303a32303a3a2f34332d3433203d3e20313331373336.roa File: 323430343a326363303a32303a3a2f34332d3433203d3e20313331373336.roa (raw, json) Hash identifier: fToGnwAHAJ5VtIANKumAt4uzlSvc7R1/Zv4oJQS4kF0= Subject key identifier: C4:5C:92:03:5A:A1:35:01:5F:FD:F4:48:A0:7E:C4:52:85:EB:79:03 Certificate issuer: /CN=2EAB22DEDA17C8633520C765C1BECE6852B8BD70 Certificate serial: 0948F6F035202542EA7AE44A7E8DEC0548FCEDEB Authority key identifier: 2E:AB:22:DE:DA:17:C8:63:35:20:C7:65:C1:BE:CE:68:52:B8:BD:70 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2EAB22DEDA17C8633520C765C1BECE6852B8BD70.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/925cda36-693a-4c1a-ba9e-e0e178112140/0/323430343a326363303a32303a3a2f34332d3433203d3e20313331373336.roa Signing time: Sun 03 May 2026 02:52:11 +0000 ROA not before: Sun 03 May 2026 02:47:11 +0000 ROA not after: Sun 02 May 2027 02:52:11 +0000 asID: 131736 IP address blocks: 2404:2cc0:20::/43 maxlen: 43 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/925cda36-693a-4c1a-ba9e-e0e178112140/0/2EAB22DEDA17C8633520C765C1BECE6852B8BD70.crl rsync://rpki-rsync.idnic.net/repo/925cda36-693a-4c1a-ba9e-e0e178112140/0/2EAB22DEDA17C8633520C765C1BECE6852B8BD70.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2EAB22DEDA17C8633520C765C1BECE6852B8BD70.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 19:00:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:48:f6:f0:35:20:25:42:ea:7a:e4:4a:7e:8d:ec:05:48:fc:ed:eb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2EAB22DEDA17C8633520C765C1BECE6852B8BD70 Validity Not Before: May 3 02:47:11 2026 GMT Not After : May 2 02:52:11 2027 GMT Subject: CN=C45C92035AA135015FFDF448A07EC45285EB7903 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:02:dd:c3:a3:a8:50:01:00:69:05:c6:73:64: c8:22:b3:27:a2:cc:1c:fd:5d:26:25:9f:4c:aa:ba: fd:43:27:12:51:be:4d:1a:58:b6:d8:82:8f:96:97: 76:01:ac:a8:55:45:ec:2c:3c:60:76:9b:42:a2:cb: b9:45:4c:d6:41:20:a8:5a:3a:c3:8b:91:06:65:c7: 2e:06:93:b5:48:b0:2c:36:36:c2:c4:13:97:2e:ac: cb:25:59:06:f5:23:b8:97:91:aa:f0:33:c7:d7:36: ea:e8:0e:5b:0f:91:ef:3b:3f:d6:ea:2a:3b:5a:72: e8:d7:93:9b:33:da:db:9f:af:2b:fb:59:04:6f:85: 35:68:46:11:58:f1:eb:ee:d6:d0:e7:aa:de:54:88: ea:91:50:42:60:30:bd:cb:27:79:6f:0a:12:5a:02: a9:9e:8a:59:96:4b:ac:78:bb:d0:89:1c:89:8b:38: bd:58:4b:0f:7d:b1:76:6d:35:d6:54:ba:8f:23:33: c8:1f:94:62:42:44:cc:d3:c3:ed:40:d3:60:c2:87: 00:8a:7f:92:2a:b6:39:9a:22:ee:f6:ca:a9:df:1b: b9:7d:06:1a:38:b4:2b:ef:89:3c:94:5d:0c:55:5b: 77:ef:39:13:28:d9:c7:01:f8:08:23:43:db:8e:ee: b3:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:5C:92:03:5A:A1:35:01:5F:FD:F4:48:A0:7E:C4:52:85:EB:79:03 X509v3 Authority Key Identifier: keyid:2E:AB:22:DE:DA:17:C8:63:35:20:C7:65:C1:BE:CE:68:52:B8:BD:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/925cda36-693a-4c1a-ba9e-e0e178112140/0/2EAB22DEDA17C8633520C765C1BECE6852B8BD70.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2EAB22DEDA17C8633520C765C1BECE6852B8BD70.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/925cda36-693a-4c1a-ba9e-e0e178112140/0/323430343a326363303a32303a3a2f34332d3433203d3e20313331373336.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:2cc0:20::/43 Signature Algorithm: sha256WithRSAEncryption a6:0f:19:26:48:c2:78:3b:33:12:d5:c9:eb:3f:f5:da:7e:c0: 5e:6a:73:a7:29:01:d0:e8:54:8c:b9:74:66:2c:47:50:0c:3d: 44:14:c5:a1:3d:6e:27:c4:7f:2a:ca:cd:59:20:1c:07:09:fa: b7:90:32:03:61:77:34:6f:e3:38:3e:52:bf:7f:cc:15:57:47: 98:31:93:7c:5a:30:35:d7:72:9c:ee:84:89:3d:c0:85:d2:45: f2:a6:3f:83:df:e8:f1:5a:af:89:2e:e6:8a:06:80:0e:30:85: 12:ef:6d:69:99:1c:56:05:c0:bb:b8:1d:fc:da:42:b1:bf:58: 8d:a9:bf:ee:ed:f5:4e:51:9e:cb:41:60:7f:14:a9:e5:0e:34: c2:4a:38:37:f2:cb:8f:d5:3c:95:d3:60:5d:65:44:18:a8:b1: 89:77:21:48:cb:95:4e:a6:d2:a9:3b:0a:3c:75:05:56:09:a6: 03:0a:1b:e3:19:a7:92:dd:49:9f:05:a4:6d:c9:e2:9b:ab:27: 02:89:e7:2f:6f:29:00:97:a2:62:c9:96:1d:bf:a6:f5:bf:cf: f3:cf:e2:34:f5:f5:65:8d:6b:c7:96:4a:9b:7a:cf:d0:f8:3e: b3:a7:77:4a:14:fc:e2:4c:f4:d3:c9:b3:b6:32:53:1f:ce:4e: 41:d4:f1:3d -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUCUj28DUgJULqeuRKfo3sBUj87eswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkVBQjIyREVEQTE3Qzg2MzM1MjBDNzY1QzFCRUNFNjg1 MkI4QkQ3MDAeFw0yNjA1MDMwMjQ3MTFaFw0yNzA1MDIwMjUyMTFaMDMxMTAvBgNV BAMTKEM0NUM5MjAzNUFBMTM1MDE1RkZERjQ0OEEwN0VDNDUyODVFQjc5MDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDbAt3Do6hQAQBpBcZzZMgisyei zBz9XSYln0yquv1DJxJRvk0aWLbYgo+Wl3YBrKhVRewsPGB2m0Kiy7lFTNZBIKha OsOLkQZlxy4Gk7VIsCw2NsLEE5curMslWQb1I7iXkarwM8fXNuroDlsPke87P9bq KjtacujXk5sz2tufryv7WQRvhTVoRhFY8evu1tDnqt5UiOqRUEJgML3LJ3lvChJa AqmeilmWS6x4u9CJHImLOL1YSw99sXZtNdZUuo8jM8gflGJCRMzTw+1A02DChwCK f5IqtjmaIu72yqnfG7l9Bho4tCvviTyUXQxVW3fvORMo2ccB+AgjQ9uO7rMbAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUxFySA1qhNQFf/fRIoH7EUoXreQMwHwYDVR0j BBgwFoAULqsi3toXyGM1IMdlwb7OaFK4vXAwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v OTI1Y2RhMzYtNjkzYS00YzFhLWJhOWUtZTBlMTc4MTEyMTQwLzAvMkVBQjIyREVE QTE3Qzg2MzM1MjBDNzY1QzFCRUNFNjg1MkI4QkQ3MC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8yRUFCMjJERURBMTdDODYzMzUyMEM3NjVDMUJFQ0U2ODUyQjhC RDcwLmNlcjCBqQYIKwYBBQUHAQsEgZwwgZkwgZYGCCsGAQUFBzALhoGJcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzkyNWNkYTM2LTY5M2EtNGMxYS1i YTllLWUwZTE3ODExMjE0MC8wLzMyMzQzMDM0M2EzMjYzNjMzMDNhMzIzMDNhM2Ey ZjM0MzMyZDM0MzMyMDNkM2UyMDMxMzMzMTM3MzMzNi5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHBSQELMAA IDANBgkqhkiG9w0BAQsFAAOCAQEApg8ZJkjCeDszEtXJ6z/12n7AXmpzpykB0OhU jLl0ZixHUAw9RBTFoT1uJ8R/KsrNWSAcBwn6t5AyA2F3NG/jOD5Sv3/MFVdHmDGT fFowNddynO6EiT3AhdJF8qY/g9/o8VqviS7migaADjCFEu9taZkcVgXAu7gd/NpC sb9Yjam/7u31TlGey0FgfxSp5Q40wko4N/LLj9U8ldNgXWVEGKixiXchSMuVTqbS qTsKPHUFVgmmAwob4xmnkt1JnwWkbcnim6snAonnL28pAJeiYsmWHb+m9b/P88/i NPX1ZY1rx5ZKm3rP0Pg+s6d3ShT84kz008mztjJTH85OQdTxPQ== -----END CERTIFICATE-----Generated at Wed May 13 09:27:33 2026 by rpki-client