$ rpki-client -vvf rpki-rsync.idnic.net/repo/925cda36-693a-4c1a-ba9e-e0e178112140/0/323430343a326363303a34303a3a2f34362d3436203d3e20313331373336.roa File: 323430343a326363303a34303a3a2f34362d3436203d3e20313331373336.roa (raw, json) Hash identifier: xUpoxjFUHIIvNkT92mjiWI0plg15apjL+jPNvQQ2Uk8= Subject key identifier: 6B:74:50:EB:0E:92:E0:C1:F1:B2:64:90:73:8B:DC:AC:DE:9F:DE:58 Certificate issuer: /CN=2EAB22DEDA17C8633520C765C1BECE6852B8BD70 Certificate serial: 62B87BB0F0FFA63B8B97B600D5F62E72815AC05A Authority key identifier: 2E:AB:22:DE:DA:17:C8:63:35:20:C7:65:C1:BE:CE:68:52:B8:BD:70 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2EAB22DEDA17C8633520C765C1BECE6852B8BD70.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/925cda36-693a-4c1a-ba9e-e0e178112140/0/323430343a326363303a34303a3a2f34362d3436203d3e20313331373336.roa Signing time: Sun 03 May 2026 02:52:10 +0000 ROA not before: Sun 03 May 2026 02:47:10 +0000 ROA not after: Sun 02 May 2027 02:52:10 +0000 asID: 131736 IP address blocks: 2404:2cc0:40::/46 maxlen: 46 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/925cda36-693a-4c1a-ba9e-e0e178112140/0/2EAB22DEDA17C8633520C765C1BECE6852B8BD70.crl rsync://rpki-rsync.idnic.net/repo/925cda36-693a-4c1a-ba9e-e0e178112140/0/2EAB22DEDA17C8633520C765C1BECE6852B8BD70.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2EAB22DEDA17C8633520C765C1BECE6852B8BD70.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 19:00:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:b8:7b:b0:f0:ff:a6:3b:8b:97:b6:00:d5:f6:2e:72:81:5a:c0:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2EAB22DEDA17C8633520C765C1BECE6852B8BD70 Validity Not Before: May 3 02:47:10 2026 GMT Not After : May 2 02:52:10 2027 GMT Subject: CN=6B7450EB0E92E0C1F1B26490738BDCACDE9FDE58 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:52:b5:ca:c9:b8:29:81:3a:e2:9e:2b:46:cb: c2:5b:1f:32:aa:48:08:ab:96:8f:a6:a3:6c:4f:60: 4b:fb:8f:87:12:a5:15:6d:32:a0:c0:68:d8:49:e9: cc:a4:81:a5:c5:ef:51:d2:8d:b7:89:7b:d0:2d:76: 26:00:4e:09:1f:4e:a2:8f:09:fa:0d:88:4a:a2:ce: 31:67:0e:dd:25:4e:6e:31:03:dd:51:f8:4e:90:a7: b3:6c:d6:cd:9c:43:b1:45:27:af:22:a9:ee:bc:46: bb:d1:39:0a:1f:99:2c:33:7a:a2:a0:92:10:b7:bb: 0a:5c:4e:e3:fa:99:39:8c:bf:f6:69:5e:6c:cc:44: 36:4c:11:3a:45:2a:f2:cf:f0:67:c8:dc:d9:5a:7c: 7a:f5:cb:cb:b8:dc:b6:18:9e:cb:ab:f5:f1:bb:0c: 1e:9a:72:f2:aa:f6:b9:45:d9:fb:00:d4:a5:74:26: c6:8d:9d:22:f2:0c:ce:ea:a0:57:76:a8:d9:3e:c0: 55:5f:f5:96:a3:bc:6d:6f:36:a9:ec:29:49:eb:f5: 95:ec:ef:44:d0:6a:05:25:86:be:1e:6f:2c:1d:de: 48:a2:43:71:3c:d3:8e:af:b3:c5:2c:24:8b:1e:f4: fa:c7:aa:f0:b9:bb:7e:eb:a1:c5:1e:70:70:20:74: f0:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:74:50:EB:0E:92:E0:C1:F1:B2:64:90:73:8B:DC:AC:DE:9F:DE:58 X509v3 Authority Key Identifier: keyid:2E:AB:22:DE:DA:17:C8:63:35:20:C7:65:C1:BE:CE:68:52:B8:BD:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/925cda36-693a-4c1a-ba9e-e0e178112140/0/2EAB22DEDA17C8633520C765C1BECE6852B8BD70.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2EAB22DEDA17C8633520C765C1BECE6852B8BD70.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/925cda36-693a-4c1a-ba9e-e0e178112140/0/323430343a326363303a34303a3a2f34362d3436203d3e20313331373336.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:2cc0:40::/46 Signature Algorithm: sha256WithRSAEncryption 49:75:f2:8e:7e:62:3b:74:d2:74:2a:c7:bb:7c:be:cf:e3:4f: ca:3e:fe:32:1f:fe:08:16:1c:6a:da:93:98:e6:18:d7:3e:14: 0c:ad:65:68:30:fa:d3:6c:60:d2:04:30:e6:c7:27:33:fa:3d: e4:0c:01:2e:d0:ab:43:57:cf:ed:64:b1:6f:8d:20:45:ef:4f: 33:bf:81:f2:8d:0c:c6:db:69:1c:6b:af:01:b5:59:ae:5f:b8: f2:e9:e5:bb:a5:d6:8e:5e:f5:d8:c4:8a:8e:b2:ce:92:56:5e: f9:17:de:3e:3a:5c:fe:2f:13:ce:f3:47:4e:03:06:49:2c:b8: 7c:b3:a6:84:f5:83:55:54:09:88:97:f8:d8:6e:8f:31:b5:06: 0f:5b:f8:b3:63:25:8c:b5:11:f3:db:27:ad:e1:ca:e8:c2:f2: 6c:0e:d0:31:55:cf:42:68:2a:dd:8b:d7:de:34:c6:76:f0:91: 82:a4:10:70:56:9e:36:77:57:a5:53:a0:66:fc:df:8d:7c:a7: ca:0b:3f:d7:c2:0f:ef:78:6b:eb:96:cc:24:50:5b:f4:ee:aa: 64:89:a7:6c:5f:40:a5:b9:b2:d5:d8:97:6c:e0:2c:88:fc:1c: 08:67:94:36:07:b8:6c:fa:c2:df:6d:d5:93:33:bf:a1:a5:02: 99:f0:51:71 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUYrh7sPD/pjuLl7YA1fYucoFawFowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkVBQjIyREVEQTE3Qzg2MzM1MjBDNzY1QzFCRUNFNjg1 MkI4QkQ3MDAeFw0yNjA1MDMwMjQ3MTBaFw0yNzA1MDIwMjUyMTBaMDMxMTAvBgNV BAMTKDZCNzQ1MEVCMEU5MkUwQzFGMUIyNjQ5MDczOEJEQ0FDREU5RkRFNTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+UrXKybgpgTrinitGy8JbHzKq SAirlo+mo2xPYEv7j4cSpRVtMqDAaNhJ6cykgaXF71HSjbeJe9AtdiYATgkfTqKP CfoNiEqizjFnDt0lTm4xA91R+E6Qp7Ns1s2cQ7FFJ68iqe68RrvROQofmSwzeqKg khC3uwpcTuP6mTmMv/ZpXmzMRDZMETpFKvLP8GfI3NlafHr1y8u43LYYnsur9fG7 DB6acvKq9rlF2fsA1KV0JsaNnSLyDM7qoFd2qNk+wFVf9ZajvG1vNqnsKUnr9ZXs 70TQagUlhr4ebywd3kiiQ3E8046vs8UsJIse9PrHqvC5u37rocUecHAgdPAXAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUa3RQ6w6S4MHxsmSQc4vcrN6f3lgwHwYDVR0j BBgwFoAULqsi3toXyGM1IMdlwb7OaFK4vXAwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v OTI1Y2RhMzYtNjkzYS00YzFhLWJhOWUtZTBlMTc4MTEyMTQwLzAvMkVBQjIyREVE QTE3Qzg2MzM1MjBDNzY1QzFCRUNFNjg1MkI4QkQ3MC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8yRUFCMjJERURBMTdDODYzMzUyMEM3NjVDMUJFQ0U2ODUyQjhC RDcwLmNlcjCBqQYIKwYBBQUHAQsEgZwwgZkwgZYGCCsGAQUFBzALhoGJcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzkyNWNkYTM2LTY5M2EtNGMxYS1i YTllLWUwZTE3ODExMjE0MC8wLzMyMzQzMDM0M2EzMjYzNjMzMDNhMzQzMDNhM2Ey ZjM0MzYyZDM0MzYyMDNkM2UyMDMxMzMzMTM3MzMzNi5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHAiQELMAA QDANBgkqhkiG9w0BAQsFAAOCAQEASXXyjn5iO3TSdCrHu3y+z+NPyj7+Mh/+CBYc atqTmOYY1z4UDK1laDD602xg0gQw5scnM/o95AwBLtCrQ1fP7WSxb40gRe9PM7+B 8o0MxttpHGuvAbVZrl+48unlu6XWjl712MSKjrLOklZe+RfePjpc/i8TzvNHTgMG SSy4fLOmhPWDVVQJiJf42G6PMbUGD1v4s2MljLUR89snreHK6MLybA7QMVXPQmgq 3YvX3jTGdvCRgqQQcFaeNndXpVOgZvzfjXynygs/18IP73hr65bMJFBb9O6qZImn bF9Apbmy1diXbOAsiPwcCGeUNge4bPrC323VkzO/oaUCmfBRcQ== -----END CERTIFICATE-----Generated at Wed May 13 10:26:14 2026 by rpki-client