$ rpki-client -vvf rpki-rsync.idnic.net/repo/925cda36-693a-4c1a-ba9e-e0e178112140/0/323430343a326363303a34343a3a2f34362d3436203d3e20313331373336.roa File: 323430343a326363303a34343a3a2f34362d3436203d3e20313331373336.roa (raw, json) Hash identifier: GR4L5FJqVS9TJ+dvaa8HynQA+y7YhiRBbKDogiUCsq4= Subject key identifier: 33:0C:4C:D1:94:4D:E1:4F:C2:8B:80:D2:E7:0F:67:55:B8:39:3C:72 Certificate issuer: /CN=2EAB22DEDA17C8633520C765C1BECE6852B8BD70 Certificate serial: 0399FE46E7C2E395C911DD3142A505FF8B445F70 Authority key identifier: 2E:AB:22:DE:DA:17:C8:63:35:20:C7:65:C1:BE:CE:68:52:B8:BD:70 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2EAB22DEDA17C8633520C765C1BECE6852B8BD70.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/925cda36-693a-4c1a-ba9e-e0e178112140/0/323430343a326363303a34343a3a2f34362d3436203d3e20313331373336.roa Signing time: Sun 03 May 2026 02:52:10 +0000 ROA not before: Sun 03 May 2026 02:47:10 +0000 ROA not after: Sun 02 May 2027 02:52:10 +0000 asID: 131736 IP address blocks: 2404:2cc0:44::/46 maxlen: 46 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/925cda36-693a-4c1a-ba9e-e0e178112140/0/2EAB22DEDA17C8633520C765C1BECE6852B8BD70.crl rsync://rpki-rsync.idnic.net/repo/925cda36-693a-4c1a-ba9e-e0e178112140/0/2EAB22DEDA17C8633520C765C1BECE6852B8BD70.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2EAB22DEDA17C8633520C765C1BECE6852B8BD70.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 19:00:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:99:fe:46:e7:c2:e3:95:c9:11:dd:31:42:a5:05:ff:8b:44:5f:70 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2EAB22DEDA17C8633520C765C1BECE6852B8BD70 Validity Not Before: May 3 02:47:10 2026 GMT Not After : May 2 02:52:10 2027 GMT Subject: CN=330C4CD1944DE14FC28B80D2E70F6755B8393C72 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:77:e3:6f:2b:79:5d:68:c5:b6:d9:b2:a3:24: be:9b:af:ce:2f:3d:a6:c7:03:b0:cd:79:59:06:48: b3:d1:fa:93:61:a2:94:2a:a1:06:dc:30:11:45:83: 37:18:f4:46:ca:59:d8:8f:7a:c5:70:73:0b:1e:e6: 13:42:e2:3b:96:ba:c9:e0:9f:0b:53:57:32:a7:62: 0e:c1:c2:fa:80:4d:ff:d5:91:eb:3d:e2:8f:bc:a1: ad:33:9f:ad:ca:dc:a8:ce:71:36:a7:c1:4a:55:8e: 04:fa:c4:2a:d8:b1:4b:75:e8:15:e0:c4:c0:2a:5f: 02:e9:bc:9f:d7:ee:43:1e:7f:2b:21:08:44:af:a2: a9:af:ae:54:a2:f1:fa:a8:06:4a:09:56:1c:2b:ce: e3:22:a3:14:f7:c1:8a:2b:d2:93:98:5a:3b:f8:78: 98:9e:95:d0:5a:8d:86:99:13:43:08:a5:1f:e6:b3: 9d:a4:bb:c0:75:aa:09:0f:11:a3:5a:6b:26:dc:26: 16:05:bd:17:a1:4a:63:b5:f6:27:ee:f3:96:72:b2: 6d:83:06:20:34:8d:ff:c9:2c:9f:e7:f4:a1:3c:b4: 6d:5c:09:6b:2d:5e:3a:1d:f9:69:0d:da:6e:d4:88: e2:b6:42:b5:25:d5:5c:f0:1c:09:73:76:99:78:65: 10:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:0C:4C:D1:94:4D:E1:4F:C2:8B:80:D2:E7:0F:67:55:B8:39:3C:72 X509v3 Authority Key Identifier: keyid:2E:AB:22:DE:DA:17:C8:63:35:20:C7:65:C1:BE:CE:68:52:B8:BD:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/925cda36-693a-4c1a-ba9e-e0e178112140/0/2EAB22DEDA17C8633520C765C1BECE6852B8BD70.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2EAB22DEDA17C8633520C765C1BECE6852B8BD70.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/925cda36-693a-4c1a-ba9e-e0e178112140/0/323430343a326363303a34343a3a2f34362d3436203d3e20313331373336.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:2cc0:44::/46 Signature Algorithm: sha256WithRSAEncryption 0c:ca:e5:b2:84:9a:48:40:14:ed:2d:96:1d:a5:61:be:d5:ff: 8f:7e:d5:83:00:29:60:eb:0c:ec:3b:19:85:e5:aa:e4:14:b4: 9b:9f:d5:a8:74:9d:f7:d0:00:9e:2c:d3:75:02:ae:4d:c3:ed: aa:4f:f8:e2:d7:4b:44:1b:1a:4e:84:af:ff:dd:79:7f:01:b4: 65:c2:c3:2d:d4:7c:f3:b2:0a:68:bf:9b:ea:b3:84:fc:1d:d1: 11:a7:23:09:57:5d:59:4f:6d:0f:a9:b5:43:e5:fd:42:e1:31: af:3e:6d:1b:f0:f7:58:d8:72:c3:dd:54:89:89:10:a3:c3:3d: 2e:18:dd:25:08:af:ce:c0:4e:e3:1c:14:12:de:aa:ab:c2:e1: b2:97:dd:5b:35:2f:5d:5e:66:29:8e:49:2e:de:13:14:9e:40: b9:ec:88:86:a7:79:cc:93:6c:b2:f3:1d:ba:3c:58:7d:e4:fc: c0:73:d6:50:16:d5:ea:e7:48:a4:40:99:fb:66:3c:03:14:3e: 59:19:a6:4b:30:2b:a8:99:bf:41:3c:09:3b:fc:cb:cf:f2:23: ab:5a:60:ab:da:93:92:48:62:81:e6:1f:cd:6a:ce:91:39:20: 01:b9:6f:c4:2b:a7:30:b0:e9:92:43:3f:6c:93:14:86:9f:2f: 3c:49:73:43 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUA5n+RufC45XJEd0xQqUF/4tEX3AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkVBQjIyREVEQTE3Qzg2MzM1MjBDNzY1QzFCRUNFNjg1 MkI4QkQ3MDAeFw0yNjA1MDMwMjQ3MTBaFw0yNzA1MDIwMjUyMTBaMDMxMTAvBgNV BAMTKDMzMEM0Q0QxOTQ0REUxNEZDMjhCODBEMkU3MEY2NzU1QjgzOTNDNzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOd+NvK3ldaMW22bKjJL6br84v PabHA7DNeVkGSLPR+pNhopQqoQbcMBFFgzcY9EbKWdiPesVwcwse5hNC4juWusng nwtTVzKnYg7BwvqATf/Vkes94o+8oa0zn63K3KjOcTanwUpVjgT6xCrYsUt16BXg xMAqXwLpvJ/X7kMefyshCESvoqmvrlSi8fqoBkoJVhwrzuMioxT3wYor0pOYWjv4 eJieldBajYaZE0MIpR/ms52ku8B1qgkPEaNaaybcJhYFvRehSmO19ifu85Zysm2D BiA0jf/JLJ/n9KE8tG1cCWstXjod+WkN2m7UiOK2QrUl1VzwHAlzdpl4ZRBJAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUMwxM0ZRN4U/Ci4DS5w9nVbg5PHIwHwYDVR0j BBgwFoAULqsi3toXyGM1IMdlwb7OaFK4vXAwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v OTI1Y2RhMzYtNjkzYS00YzFhLWJhOWUtZTBlMTc4MTEyMTQwLzAvMkVBQjIyREVE QTE3Qzg2MzM1MjBDNzY1QzFCRUNFNjg1MkI4QkQ3MC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8yRUFCMjJERURBMTdDODYzMzUyMEM3NjVDMUJFQ0U2ODUyQjhC RDcwLmNlcjCBqQYIKwYBBQUHAQsEgZwwgZkwgZYGCCsGAQUFBzALhoGJcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzkyNWNkYTM2LTY5M2EtNGMxYS1i YTllLWUwZTE3ODExMjE0MC8wLzMyMzQzMDM0M2EzMjYzNjMzMDNhMzQzNDNhM2Ey ZjM0MzYyZDM0MzYyMDNkM2UyMDMxMzMzMTM3MzMzNi5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHAiQELMAA RDANBgkqhkiG9w0BAQsFAAOCAQEADMrlsoSaSEAU7S2WHaVhvtX/j37VgwApYOsM 7DsZheWq5BS0m5/VqHSd99AAnizTdQKuTcPtqk/44tdLRBsaToSv/915fwG0ZcLD LdR887IKaL+b6rOE/B3REacjCVddWU9tD6m1Q+X9QuExrz5tG/D3WNhyw91UiYkQ o8M9LhjdJQivzsBO4xwUEt6qq8LhspfdWzUvXV5mKY5JLt4TFJ5AueyIhqd5zJNs svMdujxYfeT8wHPWUBbV6udIpECZ+2Y8AxQ+WRmmSzArqJm/QTwJO/zLz/Ijq1pg q9qTkkhigeYfzWrOkTkgAblvxCunMLDpkkM/bJMUhp8vPElzQw== -----END CERTIFICATE-----Generated at Wed May 13 09:09:10 2026 by rpki-client