$ rpki-client -vvf rpki-rsync.idnic.net/repo/925cda36-693a-4c1a-ba9e-e0e178112140/0/323430343a326363303a34633a3a2f34362d3436203d3e20313331373336.roa File: 323430343a326363303a34633a3a2f34362d3436203d3e20313331373336.roa (raw, json) Hash identifier: cS+IrgZpY9aClZBoWCUDEv2Phmt7SwlOezLlcCoBSPI= Subject key identifier: 01:3B:88:90:DF:1F:79:E5:54:02:FE:24:36:30:03:83:B4:07:4C:4A Certificate issuer: /CN=2EAB22DEDA17C8633520C765C1BECE6852B8BD70 Certificate serial: 4A66F7227C4CB4F06AF95A08D526597E49EA4546 Authority key identifier: 2E:AB:22:DE:DA:17:C8:63:35:20:C7:65:C1:BE:CE:68:52:B8:BD:70 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2EAB22DEDA17C8633520C765C1BECE6852B8BD70.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/925cda36-693a-4c1a-ba9e-e0e178112140/0/323430343a326363303a34633a3a2f34362d3436203d3e20313331373336.roa Signing time: Sun 03 May 2026 02:52:13 +0000 ROA not before: Sun 03 May 2026 02:47:13 +0000 ROA not after: Sun 02 May 2027 02:52:13 +0000 asID: 131736 IP address blocks: 2404:2cc0:4c::/46 maxlen: 46 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/925cda36-693a-4c1a-ba9e-e0e178112140/0/2EAB22DEDA17C8633520C765C1BECE6852B8BD70.crl rsync://rpki-rsync.idnic.net/repo/925cda36-693a-4c1a-ba9e-e0e178112140/0/2EAB22DEDA17C8633520C765C1BECE6852B8BD70.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2EAB22DEDA17C8633520C765C1BECE6852B8BD70.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 19:00:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:66:f7:22:7c:4c:b4:f0:6a:f9:5a:08:d5:26:59:7e:49:ea:45:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2EAB22DEDA17C8633520C765C1BECE6852B8BD70 Validity Not Before: May 3 02:47:13 2026 GMT Not After : May 2 02:52:13 2027 GMT Subject: CN=013B8890DF1F79E55402FE2436300383B4074C4A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:ef:7b:68:97:09:a8:ab:e6:8b:66:62:d5:42: be:ed:a0:04:7e:7f:f3:8f:e0:84:cd:bf:40:78:49: 03:23:88:84:ff:33:ba:9d:4d:af:0f:d3:08:3c:20: 1e:f3:7f:86:2c:c5:15:f5:ea:4c:de:1e:bf:35:7f: a5:d2:dc:ca:34:67:0e:d0:6c:67:bc:e3:38:15:97: 38:70:cd:d9:bc:58:e1:7a:ae:55:d4:b3:4b:7d:e6: b3:a8:12:f0:51:e5:84:b2:d0:cd:2c:22:d9:27:9a: a2:52:b0:3e:4e:21:ab:07:66:a6:d9:8b:cb:93:8f: 2b:77:15:78:8e:2a:6a:d2:82:51:30:9b:d1:a9:73: 4a:a7:1e:52:4b:6b:a5:b7:4b:1e:0b:45:2b:09:b3: 07:a0:32:0e:a9:5b:1f:ac:9e:55:9b:4c:7d:1c:a6: 2a:a9:69:2e:a6:41:1b:a3:f0:cf:9f:ff:36:7f:0a: 83:4d:96:06:31:20:45:3d:83:ad:fd:f3:8a:b2:7c: 69:b0:c9:54:55:29:6a:87:27:85:c4:d6:8a:43:fc: 95:e1:9d:ee:07:15:e3:9d:9e:bc:e2:99:51:8f:3a: ad:86:50:42:d3:1a:ac:00:ac:ac:db:7a:92:45:87: e0:ad:fb:95:fa:30:a5:76:33:97:ae:0b:78:a7:a9: c0:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:3B:88:90:DF:1F:79:E5:54:02:FE:24:36:30:03:83:B4:07:4C:4A X509v3 Authority Key Identifier: keyid:2E:AB:22:DE:DA:17:C8:63:35:20:C7:65:C1:BE:CE:68:52:B8:BD:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/925cda36-693a-4c1a-ba9e-e0e178112140/0/2EAB22DEDA17C8633520C765C1BECE6852B8BD70.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2EAB22DEDA17C8633520C765C1BECE6852B8BD70.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/925cda36-693a-4c1a-ba9e-e0e178112140/0/323430343a326363303a34633a3a2f34362d3436203d3e20313331373336.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:2cc0:4c::/46 Signature Algorithm: sha256WithRSAEncryption b4:72:fc:84:cf:31:c9:05:61:00:36:ab:20:13:04:f5:70:99: a5:7a:3b:7a:4a:d1:e1:f2:2b:69:0a:21:e8:0d:fd:26:c8:d0: 99:47:54:8b:53:d6:aa:53:4b:c2:15:0c:ee:6f:50:1e:de:e5: 22:c9:95:be:45:c7:81:b8:3a:45:ac:5f:d8:2d:60:3b:95:b0: 2d:bb:24:66:cb:9d:df:e6:f8:07:89:7d:00:9e:47:85:4d:bb: bd:d6:d3:03:17:be:15:76:c8:5c:a2:a4:c6:60:cb:0c:5e:b4: f0:4b:76:32:b8:3b:72:25:f9:40:44:a7:bf:f4:7d:d1:41:d6: 16:36:f6:a1:13:8a:9d:b8:b3:af:b3:76:7c:32:8f:d0:d8:cd: ba:cc:e1:d4:58:c8:bd:b2:c0:b3:6f:87:d4:f3:d1:69:32:2a: e9:e0:e7:79:08:20:7c:ac:6c:8f:10:a0:0f:76:7b:7a:76:3b: 99:4c:f3:f0:66:07:1a:02:7c:9f:fb:91:d6:11:07:86:9d:ff: 8d:9c:43:35:1b:05:66:40:c7:be:c1:d4:7b:c1:a3:35:0e:02: a7:b9:8b:de:7c:bf:5c:73:4f:69:62:de:63:00:28:13:bf:23: 21:56:66:cd:9a:4e:8d:c5:0a:51:29:42:cd:9e:b0:6a:27:b6: 06:ed:48:d3 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUSmb3InxMtPBq+VoI1SZZfknqRUYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkVBQjIyREVEQTE3Qzg2MzM1MjBDNzY1QzFCRUNFNjg1 MkI4QkQ3MDAeFw0yNjA1MDMwMjQ3MTNaFw0yNzA1MDIwMjUyMTNaMDMxMTAvBgNV BAMTKDAxM0I4ODkwREYxRjc5RTU1NDAyRkUyNDM2MzAwMzgzQjQwNzRDNEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDL73tolwmoq+aLZmLVQr7toAR+ f/OP4ITNv0B4SQMjiIT/M7qdTa8P0wg8IB7zf4YsxRX16kzeHr81f6XS3Mo0Zw7Q bGe84zgVlzhwzdm8WOF6rlXUs0t95rOoEvBR5YSy0M0sItknmqJSsD5OIasHZqbZ i8uTjyt3FXiOKmrSglEwm9Gpc0qnHlJLa6W3Sx4LRSsJswegMg6pWx+snlWbTH0c piqpaS6mQRuj8M+f/zZ/CoNNlgYxIEU9g63984qyfGmwyVRVKWqHJ4XE1opD/JXh ne4HFeOdnrzimVGPOq2GUELTGqwArKzbepJFh+Ct+5X6MKV2M5euC3inqcDTAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUATuIkN8feeVUAv4kNjADg7QHTEowHwYDVR0j BBgwFoAULqsi3toXyGM1IMdlwb7OaFK4vXAwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v OTI1Y2RhMzYtNjkzYS00YzFhLWJhOWUtZTBlMTc4MTEyMTQwLzAvMkVBQjIyREVE QTE3Qzg2MzM1MjBDNzY1QzFCRUNFNjg1MkI4QkQ3MC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8yRUFCMjJERURBMTdDODYzMzUyMEM3NjVDMUJFQ0U2ODUyQjhC RDcwLmNlcjCBqQYIKwYBBQUHAQsEgZwwgZkwgZYGCCsGAQUFBzALhoGJcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzkyNWNkYTM2LTY5M2EtNGMxYS1i YTllLWUwZTE3ODExMjE0MC8wLzMyMzQzMDM0M2EzMjYzNjMzMDNhMzQ2MzNhM2Ey ZjM0MzYyZDM0MzYyMDNkM2UyMDMxMzMzMTM3MzMzNi5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHAiQELMAA TDANBgkqhkiG9w0BAQsFAAOCAQEAtHL8hM8xyQVhADarIBME9XCZpXo7ekrR4fIr aQoh6A39JsjQmUdUi1PWqlNLwhUM7m9QHt7lIsmVvkXHgbg6Raxf2C1gO5WwLbsk Zsud3+b4B4l9AJ5HhU27vdbTAxe+FXbIXKKkxmDLDF608Et2Mrg7ciX5QESnv/R9 0UHWFjb2oROKnbizr7N2fDKP0NjNuszh1FjIvbLAs2+H1PPRaTIq6eDneQggfKxs jxCgD3Z7enY7mUzz8GYHGgJ8n/uR1hEHhp3/jZxDNRsFZkDHvsHUe8GjNQ4Cp7mL 3ny/XHNPaWLeYwAoE78jIVZmzZpOjcUKUSlCzZ6waie2Bu1I0w== -----END CERTIFICATE-----Generated at Wed May 13 08:35:02 2026 by rpki-client