$ rpki-client -vvf rpki-rsync.idnic.net/repo/925cda36-693a-4c1a-ba9e-e0e178112140/0/323430343a326363303a35343a3a2f34362d3436203d3e20313331373336.roa File: 323430343a326363303a35343a3a2f34362d3436203d3e20313331373336.roa (raw, json) Hash identifier: R7p8u3fUD9Q1PWm/nzBs05bZYIMNm4aJaBgF+3K7/6A= Subject key identifier: DE:C7:56:46:BF:22:C8:F9:2E:83:69:91:DD:1D:54:39:F6:69:87:E3 Certificate issuer: /CN=2EAB22DEDA17C8633520C765C1BECE6852B8BD70 Certificate serial: 0FC5E20A7F4E5E63785D490CAC3DE8F5B9E6CB22 Authority key identifier: 2E:AB:22:DE:DA:17:C8:63:35:20:C7:65:C1:BE:CE:68:52:B8:BD:70 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2EAB22DEDA17C8633520C765C1BECE6852B8BD70.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/925cda36-693a-4c1a-ba9e-e0e178112140/0/323430343a326363303a35343a3a2f34362d3436203d3e20313331373336.roa Signing time: Sun 03 May 2026 02:52:12 +0000 ROA not before: Sun 03 May 2026 02:47:12 +0000 ROA not after: Sun 02 May 2027 02:52:12 +0000 asID: 131736 IP address blocks: 2404:2cc0:54::/46 maxlen: 46 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/925cda36-693a-4c1a-ba9e-e0e178112140/0/2EAB22DEDA17C8633520C765C1BECE6852B8BD70.crl rsync://rpki-rsync.idnic.net/repo/925cda36-693a-4c1a-ba9e-e0e178112140/0/2EAB22DEDA17C8633520C765C1BECE6852B8BD70.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2EAB22DEDA17C8633520C765C1BECE6852B8BD70.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 19:00:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:c5:e2:0a:7f:4e:5e:63:78:5d:49:0c:ac:3d:e8:f5:b9:e6:cb:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2EAB22DEDA17C8633520C765C1BECE6852B8BD70 Validity Not Before: May 3 02:47:12 2026 GMT Not After : May 2 02:52:12 2027 GMT Subject: CN=DEC75646BF22C8F92E836991DD1D5439F66987E3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:b8:ac:bd:2d:78:6c:75:65:7a:02:ae:69:1d: e8:de:7f:fa:6b:d4:1b:c9:9a:ed:11:9d:9f:3b:56: 8b:0b:75:ed:53:d7:e0:bb:ec:8c:83:ee:7b:b6:42: 04:1a:8d:f4:7f:09:87:b3:c2:27:e4:59:2f:73:db: 83:7c:45:1d:c2:2d:b3:98:6e:d5:04:8e:39:e0:c3: 33:ed:3e:92:68:8b:91:0d:2d:d2:55:77:84:c9:01: 0c:3e:ca:6a:8c:ba:1c:63:39:9e:7b:b4:f9:9a:47: 55:64:e7:bb:2a:cb:a0:77:3a:a6:ad:c5:4f:ee:27: 5d:2d:01:02:01:3f:ed:be:77:c6:67:68:fe:16:d2: fe:9b:77:6e:03:0c:24:f5:d0:01:87:29:fa:92:b7: 1f:22:8b:30:64:94:55:9c:b0:56:40:8f:78:94:f6: 6e:94:3c:dc:68:43:80:26:7e:d5:50:44:7a:16:32: dc:ae:37:8a:fb:cf:c7:8c:e8:60:b3:1d:28:b6:d8: 92:50:ba:b2:b0:64:19:82:2f:bf:f8:20:89:67:47: 57:cf:be:58:5f:75:38:cb:17:59:4d:65:0e:5f:ec: 54:67:b2:c3:f4:9f:10:34:21:21:ea:96:9d:d7:d3: 4a:d0:ee:ad:7c:7d:aa:77:1f:66:ca:28:7e:1b:7e: bc:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:C7:56:46:BF:22:C8:F9:2E:83:69:91:DD:1D:54:39:F6:69:87:E3 X509v3 Authority Key Identifier: keyid:2E:AB:22:DE:DA:17:C8:63:35:20:C7:65:C1:BE:CE:68:52:B8:BD:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/925cda36-693a-4c1a-ba9e-e0e178112140/0/2EAB22DEDA17C8633520C765C1BECE6852B8BD70.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2EAB22DEDA17C8633520C765C1BECE6852B8BD70.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/925cda36-693a-4c1a-ba9e-e0e178112140/0/323430343a326363303a35343a3a2f34362d3436203d3e20313331373336.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:2cc0:54::/46 Signature Algorithm: sha256WithRSAEncryption 50:7d:6b:ec:c8:bd:a5:68:95:3c:b4:6c:7d:01:83:06:4d:4e: 01:e4:e5:fb:31:39:d2:bc:04:01:7b:6c:67:67:b3:6d:eb:43: 7b:c5:68:9b:f2:11:ff:59:fe:0e:68:68:ea:18:a4:67:b4:c4: 60:5a:0a:72:0e:e4:ea:70:cd:6c:0e:ef:af:4c:8d:79:40:f7: de:26:e4:bc:f5:c3:32:f9:b7:f6:b0:a0:ab:d0:00:b7:f4:14: 3c:d5:38:e1:18:54:e6:ad:37:0f:b5:9b:d4:d4:79:93:53:8d: b3:d9:2d:0a:f4:ce:63:a6:cc:01:f3:8e:34:82:29:87:c2:a3: 21:c6:f6:cc:50:f1:a9:94:85:ba:d5:17:a2:a6:a5:f5:93:1e: 67:26:2d:1f:f3:31:de:a2:1e:be:cd:6f:ac:72:54:db:2e:54: dd:19:be:ec:a4:5b:31:9d:27:ac:6a:02:ef:a0:79:a8:fc:29: 69:c3:3b:f7:a4:6e:82:f3:8b:b4:e8:70:90:f6:ce:25:1d:fe: b1:d1:d4:f7:df:47:8b:3b:b3:e0:8e:2d:46:de:c8:16:9b:2a: e0:77:1d:f4:79:9e:78:f7:af:6c:ca:ac:a3:a3:c6:87:59:7f: f0:f3:54:85:ba:91:48:57:12:06:60:59:ac:9f:0f:d3:89:69: 00:57:52:fd -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUD8XiCn9OXmN4XUkMrD3o9bnmyyIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkVBQjIyREVEQTE3Qzg2MzM1MjBDNzY1QzFCRUNFNjg1 MkI4QkQ3MDAeFw0yNjA1MDMwMjQ3MTJaFw0yNzA1MDIwMjUyMTJaMDMxMTAvBgNV BAMTKERFQzc1NjQ2QkYyMkM4RjkyRTgzNjk5MUREMUQ1NDM5RjY2OTg3RTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBuKy9LXhsdWV6Aq5pHejef/pr 1BvJmu0RnZ87VosLde1T1+C77IyD7nu2QgQajfR/CYezwifkWS9z24N8RR3CLbOY btUEjjngwzPtPpJoi5ENLdJVd4TJAQw+ymqMuhxjOZ57tPmaR1Vk57sqy6B3Oqat xU/uJ10tAQIBP+2+d8ZnaP4W0v6bd24DDCT10AGHKfqStx8iizBklFWcsFZAj3iU 9m6UPNxoQ4AmftVQRHoWMtyuN4r7z8eM6GCzHSi22JJQurKwZBmCL7/4IIlnR1fP vlhfdTjLF1lNZQ5f7FRnssP0nxA0ISHqlp3X00rQ7q18fap3H2bKKH4bfrxdAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQU3sdWRr8iyPkug2mR3R1UOfZph+MwHwYDVR0j BBgwFoAULqsi3toXyGM1IMdlwb7OaFK4vXAwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v OTI1Y2RhMzYtNjkzYS00YzFhLWJhOWUtZTBlMTc4MTEyMTQwLzAvMkVBQjIyREVE QTE3Qzg2MzM1MjBDNzY1QzFCRUNFNjg1MkI4QkQ3MC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8yRUFCMjJERURBMTdDODYzMzUyMEM3NjVDMUJFQ0U2ODUyQjhC RDcwLmNlcjCBqQYIKwYBBQUHAQsEgZwwgZkwgZYGCCsGAQUFBzALhoGJcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzkyNWNkYTM2LTY5M2EtNGMxYS1i YTllLWUwZTE3ODExMjE0MC8wLzMyMzQzMDM0M2EzMjYzNjMzMDNhMzUzNDNhM2Ey ZjM0MzYyZDM0MzYyMDNkM2UyMDMxMzMzMTM3MzMzNi5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHAiQELMAA VDANBgkqhkiG9w0BAQsFAAOCAQEAUH1r7Mi9pWiVPLRsfQGDBk1OAeTl+zE50rwE AXtsZ2ezbetDe8Vom/IR/1n+Dmho6hikZ7TEYFoKcg7k6nDNbA7vr0yNeUD33ibk vPXDMvm39rCgq9AAt/QUPNU44RhU5q03D7Wb1NR5k1ONs9ktCvTOY6bMAfOONIIp h8KjIcb2zFDxqZSFutUXoqal9ZMeZyYtH/Mx3qIevs1vrHJU2y5U3Rm+7KRbMZ0n rGoC76B5qPwpacM796RugvOLtOhwkPbOJR3+sdHU999Hizuz4I4tRt7IFpsq4Hcd 9HmeePevbMqso6PGh1l/8PNUhbqRSFcSBmBZrJ8P04lpAFdS/Q== -----END CERTIFICATE-----Generated at Wed May 13 08:27:47 2026 by rpki-client