$ rpki-client -vvf rpki-rsync.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/323430353a633434303a353a3a2f34382d3438203d3e20313339393732.roa File: 323430353a633434303a353a3a2f34382d3438203d3e20313339393732.roa (raw, json) Hash identifier: zxv50OB8eGnHw7wW65EFpQvLtNsIgME3y6GGTkZ9Hew= Subject key identifier: 81:F4:62:A1:43:10:FA:C1:F2:70:F0:98:5F:B7:D7:1C:67:FE:DE:07 Certificate issuer: /CN=C1A4AB40726D4CEDD663D1C34EBBE817FA44C42C Certificate serial: 4054E494C5F150F57AC39FC9B0F931FAC7D91664 Authority key identifier: C1:A4:AB:40:72:6D:4C:ED:D6:63:D1:C3:4E:BB:E8:17:FA:44:C4:2C Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C1A4AB40726D4CEDD663D1C34EBBE817FA44C42C.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/323430353a633434303a353a3a2f34382d3438203d3e20313339393732.roa Signing time: Sun 03 May 2026 02:54:01 +0000 ROA not before: Sun 03 May 2026 02:49:01 +0000 ROA not after: Sun 02 May 2027 02:54:01 +0000 asID: 139972 IP address blocks: 2405:c440:5::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/C1A4AB40726D4CEDD663D1C34EBBE817FA44C42C.crl rsync://rpki-rsync.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/C1A4AB40726D4CEDD663D1C34EBBE817FA44C42C.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C1A4AB40726D4CEDD663D1C34EBBE817FA44C42C.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:54:e4:94:c5:f1:50:f5:7a:c3:9f:c9:b0:f9:31:fa:c7:d9:16:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C1A4AB40726D4CEDD663D1C34EBBE817FA44C42C Validity Not Before: May 3 02:49:01 2026 GMT Not After : May 2 02:54:01 2027 GMT Subject: CN=81F462A14310FAC1F270F0985FB7D71C67FEDE07 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:2f:06:85:ba:84:f9:c6:d9:69:18:42:c8:e1: cf:c8:ed:fb:89:47:8d:82:fc:79:b7:e2:3d:ba:9c: a6:29:54:d3:e3:71:91:c2:2b:f7:5b:ce:09:56:eb: 6c:fc:be:fb:2a:2b:aa:48:23:99:5d:41:dc:0f:77: 8c:17:ce:9a:41:6b:79:70:03:f3:69:a9:58:b3:02: 92:1d:22:17:b5:92:ec:30:c1:4b:b0:e0:f5:4e:c3: a1:7a:d6:a5:48:a2:f3:c5:4c:82:fe:e9:dd:8d:1a: b8:5c:cd:ec:d1:e0:59:55:32:8a:3d:27:75:e9:67: 8e:c5:72:2b:92:c2:1e:29:03:60:f5:1f:2a:d7:ea: fe:83:ef:08:47:53:02:62:64:b2:db:98:e2:32:0a: bf:9c:60:f0:5a:2f:10:dd:d7:d2:ec:64:c7:32:38: aa:40:1e:20:a0:be:66:24:7a:1d:91:46:a9:32:e9: a1:0e:be:4a:26:d0:13:f7:c9:6a:2c:2e:af:12:28: 2a:59:9f:34:1c:2d:9b:0d:a2:96:da:a7:1a:c1:10: ef:f4:de:03:84:00:3f:0c:b3:d2:94:cb:8b:33:25: 3c:0a:f4:45:30:11:40:51:48:13:b1:fe:fa:b7:1b: e1:d5:f9:ab:73:0c:9d:ac:9e:e1:fa:9e:b5:8e:90: b7:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:F4:62:A1:43:10:FA:C1:F2:70:F0:98:5F:B7:D7:1C:67:FE:DE:07 X509v3 Authority Key Identifier: keyid:C1:A4:AB:40:72:6D:4C:ED:D6:63:D1:C3:4E:BB:E8:17:FA:44:C4:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/C1A4AB40726D4CEDD663D1C34EBBE817FA44C42C.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C1A4AB40726D4CEDD663D1C34EBBE817FA44C42C.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/323430353a633434303a353a3a2f34382d3438203d3e20313339393732.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:c440:5::/48 Signature Algorithm: sha256WithRSAEncryption 46:f1:53:00:b6:f3:d7:02:c4:13:4b:8b:66:69:bf:7e:2d:ab: be:41:6e:f8:55:6d:9f:8d:0b:ae:8a:d5:8a:6b:07:56:d7:67: ef:1a:f2:00:9c:61:82:ba:89:2d:14:7a:38:41:01:55:ce:e3: 6a:aa:44:76:dc:f7:17:d2:ae:16:f5:3d:ce:85:0a:61:e6:01: 96:0f:af:cb:76:45:ff:0e:e8:b8:cb:c2:3a:db:2d:6d:04:fd: 71:a8:9b:af:58:26:9b:03:69:97:2e:4e:0d:88:3c:c4:43:aa: cc:ca:99:7d:e1:c1:4f:37:d2:15:f4:b9:56:7a:06:3f:72:59: 93:70:c7:f5:97:ad:62:ca:69:db:ac:ae:d0:63:0b:d0:e5:9e: 91:b4:a9:4d:a5:69:95:6e:2c:62:c9:f7:f2:9c:3b:22:31:36: b1:96:76:dc:b8:7b:b1:d6:26:33:9f:3d:40:ec:b6:73:d0:b6: ea:b3:d9:85:a1:29:53:c4:b6:c1:58:f6:14:66:34:2a:66:66: ef:c7:c6:27:b2:44:e5:b0:ed:f4:63:af:df:ee:80:00:2d:00: ea:79:16:c1:0f:fa:ab:cd:25:ad:10:2e:65:ab:13:7c:6c:79: b0:22:43:22:d0:73:c9:c8:9d:65:83:1f:b2:97:9e:b4:86:06: 62:86:87:33 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUQFTklMXxUPV6w5/JsPkx+sfZFmQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzFBNEFCNDA3MjZENENFREQ2NjNEMUMzNEVCQkU4MTdG QTQ0QzQyQzAeFw0yNjA1MDMwMjQ5MDFaFw0yNzA1MDIwMjU0MDFaMDMxMTAvBgNV BAMTKDgxRjQ2MkExNDMxMEZBQzFGMjcwRjA5ODVGQjdENzFDNjdGRURFMDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNLwaFuoT5xtlpGELI4c/I7fuJ R42C/Hm34j26nKYpVNPjcZHCK/dbzglW62z8vvsqK6pII5ldQdwPd4wXzppBa3lw A/NpqVizApIdIhe1kuwwwUuw4PVOw6F61qVIovPFTIL+6d2NGrhczezR4FlVMoo9 J3XpZ47FciuSwh4pA2D1HyrX6v6D7whHUwJiZLLbmOIyCr+cYPBaLxDd19LsZMcy OKpAHiCgvmYkeh2RRqky6aEOvkom0BP3yWosLq8SKCpZnzQcLZsNopbapxrBEO/0 3gOEAD8Ms9KUy4szJTwK9EUwEUBRSBOx/vq3G+HV+atzDJ2snuH6nrWOkLcpAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUgfRioUMQ+sHycPCYX7fXHGf+3gcwHwYDVR0j BBgwFoAUwaSrQHJtTO3WY9HDTrvoF/pExCwwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v OTllZWJmN2MtZmUzOC00NmE5LTgzMTEtZTA1M2ZjYTUwZGZkLzAvQzFBNEFCNDA3 MjZENENFREQ2NjNEMUMzNEVCQkU4MTdGQTQ0QzQyQy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9DMUE0QUI0MDcyNkQ0Q0VERDY2M0QxQzM0RUJCRTgxN0ZBNDRD NDJDLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzk5ZWViZjdjLWZlMzgtNDZhOS04 MzExLWUwNTNmY2E1MGRmZC8wLzMyMzQzMDM1M2E2MzM0MzQzMDNhMzUzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTMzMzkzOTM3MzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBcRAAAUw DQYJKoZIhvcNAQELBQADggEBAEbxUwC289cCxBNLi2Zpv34tq75BbvhVbZ+NC66K 1YprB1bXZ+8a8gCcYYK6iS0UejhBAVXO42qqRHbc9xfSrhb1Pc6FCmHmAZYPr8t2 Rf8O6LjLwjrbLW0E/XGom69YJpsDaZcuTg2IPMRDqszKmX3hwU830hX0uVZ6Bj9y WZNwx/WXrWLKadusrtBjC9DlnpG0qU2laZVuLGLJ9/KcOyIxNrGWdty4e7HWJjOf PUDstnPQtuqz2YWhKVPEtsFY9hRmNCpmZu/HxieyROWw7fRjr9/ugAAtAOp5FsEP +qvNJa0QLmWrE3xsebAiQyLQc8nInWWDH7KXnrSGBmKGhzM= -----END CERTIFICATE-----Generated at Wed May 13 00:13:59 2026 by rpki-client