$ rpki-client -vvf rpki-rsync.idnic.net/repo/957b0d7e-eade-4318-ab20-8c7f2d5be69f/0/323430313a383434303a33313a3a2f34382d3438203d3e20313336313331.roa File: 323430313a383434303a33313a3a2f34382d3438203d3e20313336313331.roa (raw, json) Hash identifier: JVzJjBAyxQLaPhKhqz1LXrJdrQUjLBthYVZyc/xVxg0= Subject key identifier: 59:41:F2:61:02:D9:FC:E8:2E:07:3C:2E:35:9B:59:61:DA:AE:CB:F1 Certificate issuer: /CN=F07DE2A6041C4CCDF424D4FE299B586DABA22CAF Certificate serial: 69C5645BA5D30C64DABD4B717A3408313E9BE19F Authority key identifier: F0:7D:E2:A6:04:1C:4C:CD:F4:24:D4:FE:29:9B:58:6D:AB:A2:2C:AF Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F07DE2A6041C4CCDF424D4FE299B586DABA22CAF.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/957b0d7e-eade-4318-ab20-8c7f2d5be69f/0/323430313a383434303a33313a3a2f34382d3438203d3e20313336313331.roa Signing time: Sun 03 May 2026 02:52:59 +0000 ROA not before: Sun 03 May 2026 02:47:59 +0000 ROA not after: Sun 02 May 2027 02:52:59 +0000 asID: 136131 IP address blocks: 2401:8440:31::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/957b0d7e-eade-4318-ab20-8c7f2d5be69f/0/F07DE2A6041C4CCDF424D4FE299B586DABA22CAF.crl rsync://rpki-rsync.idnic.net/repo/957b0d7e-eade-4318-ab20-8c7f2d5be69f/0/F07DE2A6041C4CCDF424D4FE299B586DABA22CAF.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F07DE2A6041C4CCDF424D4FE299B586DABA22CAF.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 20:06:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:c5:64:5b:a5:d3:0c:64:da:bd:4b:71:7a:34:08:31:3e:9b:e1:9f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F07DE2A6041C4CCDF424D4FE299B586DABA22CAF Validity Not Before: May 3 02:47:59 2026 GMT Not After : May 2 02:52:59 2027 GMT Subject: CN=5941F26102D9FCE82E073C2E359B5961DAAECBF1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:6c:2b:71:b1:f2:90:36:56:6d:f3:87:de:60: 82:e8:25:42:b9:c3:cb:d0:85:b0:2f:c2:25:bd:c4: cb:e8:0d:04:e4:45:3e:fc:6d:87:29:94:7a:b2:76: 94:a6:d5:b8:ee:58:81:3e:d6:45:b2:11:d5:e9:70: 0d:66:81:1c:53:18:67:08:88:ac:0f:1d:00:af:81: 72:64:d6:56:02:24:be:d7:f3:93:ed:c0:53:1f:e4: 32:69:e7:02:5c:dd:12:6b:19:78:b3:eb:06:9b:f8: 65:52:3e:8b:55:e8:86:a3:71:8c:04:79:d7:51:9c: 60:d2:f2:75:19:04:1f:a5:8c:03:28:ce:06:51:81: 27:51:fd:40:82:6c:80:d6:20:f8:1c:11:f5:cc:3f: e3:e8:72:08:f5:17:0e:d8:8b:6f:ee:e7:4a:c3:34: 11:fb:68:64:47:9d:ef:6a:de:04:1d:0d:03:31:d7: 82:c5:00:94:61:37:52:b1:f1:a9:21:69:82:92:d3: e9:06:7c:d3:1a:47:ef:d9:fe:a1:e3:61:44:60:2d: 4c:65:58:60:04:7e:ef:9f:05:a8:d1:a2:60:69:ff: bf:a6:9f:26:a1:bb:e5:28:be:d7:dc:64:46:16:24: 91:18:3a:2e:5e:34:67:e5:ea:0b:c5:d7:a8:f4:63: 1b:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:41:F2:61:02:D9:FC:E8:2E:07:3C:2E:35:9B:59:61:DA:AE:CB:F1 X509v3 Authority Key Identifier: keyid:F0:7D:E2:A6:04:1C:4C:CD:F4:24:D4:FE:29:9B:58:6D:AB:A2:2C:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/957b0d7e-eade-4318-ab20-8c7f2d5be69f/0/F07DE2A6041C4CCDF424D4FE299B586DABA22CAF.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F07DE2A6041C4CCDF424D4FE299B586DABA22CAF.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/957b0d7e-eade-4318-ab20-8c7f2d5be69f/0/323430313a383434303a33313a3a2f34382d3438203d3e20313336313331.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:8440:31::/48 Signature Algorithm: sha256WithRSAEncryption 1a:8a:16:41:52:9c:3f:07:6c:6b:62:64:46:7f:e5:2c:58:03: ea:73:2d:3c:51:3d:1e:a2:1d:13:85:30:26:e2:00:8e:16:7f: 1b:07:ca:82:0a:16:79:8a:ee:3b:59:b5:01:5b:c0:23:4d:45: 7f:d9:83:31:89:3c:df:f1:a8:12:59:ac:db:41:cb:39:3e:e1: 4c:a4:15:90:7f:8d:dc:3f:7a:fb:da:a0:9b:9f:24:91:d5:83: f1:ae:5b:47:a2:e5:38:ee:4c:e4:c5:08:93:1c:b2:95:2a:4d: 55:1c:d5:bc:ff:9f:31:80:9e:54:ab:d5:56:03:60:48:32:70: c2:45:6d:6e:36:cf:e8:30:23:06:54:14:8c:0f:9e:9a:11:22: 1a:07:67:d7:c8:92:c2:1b:ea:e0:24:86:61:b7:0a:0a:bb:fa: 75:c9:50:f8:15:eb:15:4c:bb:72:7a:68:2a:e9:eb:78:09:4c: 1b:b5:65:67:fb:02:d1:31:a1:da:f7:d5:0c:b7:97:f5:bd:78: 2b:8a:5f:32:6a:0b:c9:40:4c:24:91:1d:a0:53:a6:6d:3d:d2: 89:91:de:b2:0f:6f:d7:36:fe:08:33:7c:a9:26:2f:70:cd:ec: 5b:40:0a:c0:3a:91:a2:ac:eb:00:81:23:37:8e:43:74:b7:72: 0d:3b:9c:8d -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUacVkW6XTDGTavUtxejQIMT6b4Z8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjA3REUyQTYwNDFDNENDREY0MjRENEZFMjk5QjU4NkRB QkEyMkNBRjAeFw0yNjA1MDMwMjQ3NTlaFw0yNzA1MDIwMjUyNTlaMDMxMTAvBgNV BAMTKDU5NDFGMjYxMDJEOUZDRTgyRTA3M0MyRTM1OUI1OTYxREFBRUNCRjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBbCtxsfKQNlZt84feYILoJUK5 w8vQhbAvwiW9xMvoDQTkRT78bYcplHqydpSm1bjuWIE+1kWyEdXpcA1mgRxTGGcI iKwPHQCvgXJk1lYCJL7X85PtwFMf5DJp5wJc3RJrGXiz6wab+GVSPotV6IajcYwE eddRnGDS8nUZBB+ljAMozgZRgSdR/UCCbIDWIPgcEfXMP+Pocgj1Fw7Yi2/u50rD NBH7aGRHne9q3gQdDQMx14LFAJRhN1Kx8akhaYKS0+kGfNMaR+/Z/qHjYURgLUxl WGAEfu+fBajRomBp/7+mnyahu+UovtfcZEYWJJEYOi5eNGfl6gvF16j0YxsxAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUWUHyYQLZ/OguBzwuNZtZYdquy/EwHwYDVR0j BBgwFoAU8H3ipgQcTM30JNT+KZtYbauiLK8wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v OTU3YjBkN2UtZWFkZS00MzE4LWFiMjAtOGM3ZjJkNWJlNjlmLzAvRjA3REUyQTYw NDFDNENDREY0MjRENEZFMjk5QjU4NkRBQkEyMkNBRi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9GMDdERTJBNjA0MUM0Q0NERjQyNEQ0RkUyOTlCNTg2REFCQTIy Q0FGLmNlcjCBqQYIKwYBBQUHAQsEgZwwgZkwgZYGCCsGAQUFBzALhoGJcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzk1N2IwZDdlLWVhZGUtNDMxOC1h YjIwLThjN2YyZDViZTY5Zi8wLzMyMzQzMDMxM2EzODM0MzQzMDNhMzMzMTNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzMzNjMxMzMzMS5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQBhEAA MTANBgkqhkiG9w0BAQsFAAOCAQEAGooWQVKcPwdsa2JkRn/lLFgD6nMtPFE9HqId E4UwJuIAjhZ/GwfKggoWeYruO1m1AVvAI01Ff9mDMYk83/GoElms20HLOT7hTKQV kH+N3D96+9qgm58kkdWD8a5bR6LlOO5M5MUIkxyylSpNVRzVvP+fMYCeVKvVVgNg SDJwwkVtbjbP6DAjBlQUjA+emhEiGgdn18iSwhvq4CSGYbcKCrv6dclQ+BXrFUy7 cnpoKunreAlMG7VlZ/sC0TGh2vfVDLeX9b14K4pfMmoLyUBMJJEdoFOmbT3SiZHe sg9v1zb+CDN8qSYvcM3sW0AKwDqRoqzrAIEjN45DdLdyDTucjQ== -----END CERTIFICATE-----Generated at Wed May 13 04:51:00 2026 by rpki-client