$ rpki-client -vvf rpki-rsync.idnic.net/repo/943e2e67-a171-4d9e-a935-406902b1e13b/0/323430333a326530303a3a2f33322d3438203d3e203234353332.roa File: 323430333a326530303a3a2f33322d3438203d3e203234353332.roa (raw, json) Hash identifier: 9DAVKa81esoccLZerAJimBEYho7HzR8tvV6sLPxdUYg= Subject key identifier: 74:22:5A:5B:A0:A6:12:77:84:0B:F8:77:B8:2C:A6:C7:85:9E:FB:E7 Certificate issuer: /CN=EFA0A80DF71CA377A289711EA4310F3117358BDA Certificate serial: 1FB67C12D5589F57637550F479400DB00EAAABD0 Authority key identifier: EF:A0:A8:0D:F7:1C:A3:77:A2:89:71:1E:A4:31:0F:31:17:35:8B:DA Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/EFA0A80DF71CA377A289711EA4310F3117358BDA.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/943e2e67-a171-4d9e-a935-406902b1e13b/0/323430333a326530303a3a2f33322d3438203d3e203234353332.roa Signing time: Sun 03 May 2026 02:52:39 +0000 ROA not before: Sun 03 May 2026 02:47:39 +0000 ROA not after: Sun 02 May 2027 02:52:39 +0000 asID: 24532 IP address blocks: 2403:2e00::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/943e2e67-a171-4d9e-a935-406902b1e13b/0/EFA0A80DF71CA377A289711EA4310F3117358BDA.crl rsync://rpki-rsync.idnic.net/repo/943e2e67-a171-4d9e-a935-406902b1e13b/0/EFA0A80DF71CA377A289711EA4310F3117358BDA.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/EFA0A80DF71CA377A289711EA4310F3117358BDA.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 18:51:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:b6:7c:12:d5:58:9f:57:63:75:50:f4:79:40:0d:b0:0e:aa:ab:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EFA0A80DF71CA377A289711EA4310F3117358BDA Validity Not Before: May 3 02:47:39 2026 GMT Not After : May 2 02:52:39 2027 GMT Subject: CN=74225A5BA0A61277840BF877B82CA6C7859EFBE7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:05:cb:97:2a:37:13:43:5d:fb:b3:2b:77:a6: 2a:a6:f5:d1:00:93:61:08:93:e5:c4:84:af:b6:4d: 6d:7b:3c:4c:1a:98:cf:00:84:d4:b4:db:9d:63:0a: 66:61:04:e8:88:78:2b:41:76:d1:8b:e2:9f:31:0f: f5:31:19:9a:83:b0:0b:be:3e:f7:e9:95:e0:c1:f1: fd:c5:75:f5:1c:59:d9:a7:cd:ac:41:1a:6a:ea:c2: db:b7:a8:03:69:ba:4a:e7:5c:b8:00:7a:fc:85:1b: 07:46:22:c3:9f:3c:fc:0e:03:8d:09:40:b6:82:48: 21:73:c7:02:84:9e:16:e8:ec:b3:d1:c3:92:be:9d: a5:54:40:b4:42:e9:15:df:0d:03:86:90:74:70:09: 89:55:c9:e5:a6:ab:b9:72:00:33:ad:b0:f0:f6:66: 05:06:d8:a7:db:a9:87:6d:38:81:63:7b:85:81:17: 9d:25:e5:41:ff:35:2e:62:7e:83:cc:57:b6:dd:ae: f7:76:25:ca:88:39:9b:8f:77:58:2c:97:0d:96:78: 56:07:e2:b2:c7:4a:eb:42:1b:64:c3:7e:7d:2b:13: 5c:f9:68:5c:14:f7:03:ba:4b:68:2a:6d:1b:80:c3: 97:16:4f:63:5d:92:ae:64:e4:6a:dc:9f:bc:fe:6d: c4:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:22:5A:5B:A0:A6:12:77:84:0B:F8:77:B8:2C:A6:C7:85:9E:FB:E7 X509v3 Authority Key Identifier: keyid:EF:A0:A8:0D:F7:1C:A3:77:A2:89:71:1E:A4:31:0F:31:17:35:8B:DA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/943e2e67-a171-4d9e-a935-406902b1e13b/0/EFA0A80DF71CA377A289711EA4310F3117358BDA.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/EFA0A80DF71CA377A289711EA4310F3117358BDA.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/943e2e67-a171-4d9e-a935-406902b1e13b/0/323430333a326530303a3a2f33322d3438203d3e203234353332.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:2e00::/32 Signature Algorithm: sha256WithRSAEncryption a9:f3:ae:f7:d0:fb:36:8e:e9:e8:b7:10:e4:a8:1a:13:c8:0a: cc:0b:cd:21:16:57:70:69:b9:31:d2:dd:dc:1b:18:62:7a:8d: c5:c3:31:8b:ab:51:4c:68:f1:f4:18:a7:50:2e:68:d1:d7:bc: 48:66:ba:ed:e4:8d:85:02:f2:08:99:89:77:35:7c:b7:eb:02: 79:1a:f4:10:ed:c0:1d:8d:bd:f4:99:10:e4:a6:7d:39:97:c7: 02:37:ea:87:a3:9a:a2:31:e9:8a:0e:1c:2b:ae:3a:eb:1f:09: 61:f3:0b:4e:4d:36:b9:6e:02:9e:a0:aa:95:71:da:4d:40:7e: be:ab:33:60:55:6d:ea:5a:47:23:02:c9:35:04:42:59:3f:d2: 35:01:8f:ea:e4:ea:d6:b7:c3:ea:ef:9e:ef:9d:5b:6d:87:b7: 0e:8b:a1:6a:38:45:ba:d4:79:13:aa:d0:31:d2:30:8a:9d:e2: eb:97:c0:05:ee:87:fe:7d:98:ca:25:c3:00:35:30:a6:6e:10: e7:25:df:b9:b2:c1:b1:1b:c7:07:1d:f4:ec:58:a1:ce:ae:ac: c6:d3:fe:6e:08:15:12:5e:fe:f4:61:a1:82:45:f3:18:99:32: ad:2a:08:5a:f8:04:09:6a:a7:d4:53:33:63:cb:2e:e6:6f:8f: 4a:ba:31:9d -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUH7Z8EtVYn1djdVD0eUANsA6qq9AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRUZBMEE4MERGNzFDQTM3N0EyODk3MTFFQTQzMTBGMzEx NzM1OEJEQTAeFw0yNjA1MDMwMjQ3MzlaFw0yNzA1MDIwMjUyMzlaMDMxMTAvBgNV BAMTKDc0MjI1QTVCQTBBNjEyNzc4NDBCRjg3N0I4MkNBNkM3ODU5RUZCRTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzBcuXKjcTQ137syt3piqm9dEA k2EIk+XEhK+2TW17PEwamM8AhNS0251jCmZhBOiIeCtBdtGL4p8xD/UxGZqDsAu+ PvfpleDB8f3FdfUcWdmnzaxBGmrqwtu3qANpukrnXLgAevyFGwdGIsOfPPwOA40J QLaCSCFzxwKEnhbo7LPRw5K+naVUQLRC6RXfDQOGkHRwCYlVyeWmq7lyADOtsPD2 ZgUG2KfbqYdtOIFje4WBF50l5UH/NS5ifoPMV7bdrvd2JcqIOZuPd1gslw2WeFYH 4rLHSutCG2TDfn0rE1z5aFwU9wO6S2gqbRuAw5cWT2Ndkq5k5Grcn7z+bcSJAgMB AAGjggIxMIICLTAdBgNVHQ4EFgQUdCJaW6CmEneEC/h3uCymx4We++cwHwYDVR0j BBgwFoAU76CoDfcco3eiiXEepDEPMRc1i9owDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v OTQzZTJlNjctYTE3MS00ZDllLWE5MzUtNDA2OTAyYjFlMTNiLzAvRUZBMEE4MERG NzFDQTM3N0EyODk3MTFFQTQzMTBGMzExNzM1OEJEQS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9FRkEwQTgwREY3MUNBMzc3QTI4OTcxMUVBNDMxMEYzMTE3MzU4 QkRBLmNlcjCBoQYIKwYBBQUHAQsEgZQwgZEwgY4GCCsGAQUFBzALhoGBcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzk0M2UyZTY3LWExNzEtNGQ5ZS1h OTM1LTQwNjkwMmIxZTEzYi8wLzMyMzQzMDMzM2EzMjY1MzAzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMyMzQzNTMzMzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkAy4AMA0GCSqGSIb3 DQEBCwUAA4IBAQCp86730Ps2junotxDkqBoTyArMC80hFldwabkx0t3cGxhieo3F wzGLq1FMaPH0GKdQLmjR17xIZrrt5I2FAvIImYl3NXy36wJ5GvQQ7cAdjb30mRDk pn05l8cCN+qHo5qiMemKDhwrrjrrHwlh8wtOTTa5bgKeoKqVcdpNQH6+qzNgVW3q WkcjAsk1BEJZP9I1AY/q5OrWt8Pq757vnVtth7cOi6FqOEW61HkTqtAx0jCKneLr l8AF7of+fZjKJcMANTCmbhDnJd+5ssGxG8cHHfTsWKHOrqzG0/5uCBUSXv70YaGC RfMYmTKtKgha+AQJaqfUUzNjyy7mb49KujGd -----END CERTIFICATE-----Generated at Wed May 13 09:12:53 2026 by rpki-client