$ rpki-client -vvf rpki-rsync.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/323430353a633434303a363a3a2f34382d3438203d3e20313339393732.roa File: 323430353a633434303a363a3a2f34382d3438203d3e20313339393732.roa (raw, json) Hash identifier: 7F3WHLtEBntcrb4Ca+IwDZrHiakbSxJ9WK4RTWEn7q0= Subject key identifier: 5C:03:70:8A:7C:86:63:C6:38:F7:6E:97:B6:18:9B:80:BD:8C:60:68 Certificate issuer: /CN=C1A4AB40726D4CEDD663D1C34EBBE817FA44C42C Certificate serial: 7D89C4E9B9F3DB61BD012A517DC028DEFD9429EC Authority key identifier: C1:A4:AB:40:72:6D:4C:ED:D6:63:D1:C3:4E:BB:E8:17:FA:44:C4:2C Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C1A4AB40726D4CEDD663D1C34EBBE817FA44C42C.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/323430353a633434303a363a3a2f34382d3438203d3e20313339393732.roa Signing time: Sun 03 May 2026 02:53:58 +0000 ROA not before: Sun 03 May 2026 02:48:58 +0000 ROA not after: Sun 02 May 2027 02:53:58 +0000 asID: 139972 IP address blocks: 2405:c440:6::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/C1A4AB40726D4CEDD663D1C34EBBE817FA44C42C.crl rsync://rpki-rsync.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/C1A4AB40726D4CEDD663D1C34EBBE817FA44C42C.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C1A4AB40726D4CEDD663D1C34EBBE817FA44C42C.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:89:c4:e9:b9:f3:db:61:bd:01:2a:51:7d:c0:28:de:fd:94:29:ec Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C1A4AB40726D4CEDD663D1C34EBBE817FA44C42C Validity Not Before: May 3 02:48:58 2026 GMT Not After : May 2 02:53:58 2027 GMT Subject: CN=5C03708A7C8663C638F76E97B6189B80BD8C6068 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:11:cb:a9:12:5e:c4:85:b0:ee:18:72:68:9f: 05:6c:26:4f:c3:31:7e:a6:8f:d3:43:b8:dc:68:7a: 67:ce:d6:73:0b:7c:3d:13:85:d0:c7:77:1f:88:56: a4:84:54:72:b6:fc:df:9a:d7:25:e8:bf:7a:02:54: 24:0b:fc:3e:c1:fc:0e:5e:5a:d4:ff:e4:d9:28:b1: 41:6e:a8:2e:fd:81:18:bc:9b:d2:37:09:fb:47:64: c4:1c:02:e3:77:3e:0c:81:48:36:57:98:75:50:b3: 6e:9b:ec:8f:c9:d3:11:f4:f7:4e:73:a9:34:9c:38: d1:df:5b:a3:89:d0:ed:48:99:50:27:8d:cf:55:d7: d5:f5:ff:c0:0e:6a:63:0d:c2:df:78:68:43:1a:22: 02:b2:b7:21:96:f6:72:8a:ee:93:2f:18:27:84:e5: 34:17:ea:03:dd:ed:84:5b:8c:e7:c1:f5:d0:84:80: 93:52:78:f6:ad:e9:23:b9:a4:65:f5:1c:88:b5:36: be:f3:e2:7b:3d:6f:f5:4d:87:84:ac:68:25:e2:1b: 3e:92:96:b0:0b:8f:e4:d0:9a:bc:57:b3:84:ae:f0: a2:ec:43:d8:96:94:20:de:9d:be:35:79:5d:1d:02: 7c:07:20:30:98:40:3f:f3:99:0c:84:8d:cf:68:fd: e5:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:03:70:8A:7C:86:63:C6:38:F7:6E:97:B6:18:9B:80:BD:8C:60:68 X509v3 Authority Key Identifier: keyid:C1:A4:AB:40:72:6D:4C:ED:D6:63:D1:C3:4E:BB:E8:17:FA:44:C4:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/C1A4AB40726D4CEDD663D1C34EBBE817FA44C42C.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C1A4AB40726D4CEDD663D1C34EBBE817FA44C42C.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/323430353a633434303a363a3a2f34382d3438203d3e20313339393732.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:c440:6::/48 Signature Algorithm: sha256WithRSAEncryption 3e:80:8d:f1:cb:b5:29:88:ea:05:dd:7b:11:b0:ca:8f:28:df: af:6a:33:93:05:4a:aa:c6:ab:40:2f:8e:a6:c6:15:ea:d7:c7: 42:0e:7a:78:7b:3b:39:ca:a4:24:52:a7:c5:45:29:b6:9a:6e: 9a:8e:e8:c9:08:ec:df:df:df:23:a3:db:61:ef:73:5c:d5:8e: 34:32:98:1d:87:cb:b6:e9:64:2e:42:3b:36:60:0d:6e:60:67: 43:7d:dd:41:82:00:5d:a5:3f:29:5a:3a:82:f0:b2:46:ad:6c: c6:5c:d5:43:0a:0b:6f:53:79:d8:14:46:11:fd:a5:17:48:4c: ce:10:aa:a0:f1:2c:80:68:69:13:81:28:54:1c:a1:83:9f:e7: 00:ea:45:11:63:09:e9:a1:e4:43:20:6e:5e:d2:4f:36:92:2a: dd:54:54:57:f7:f5:ee:fc:66:d1:d0:3b:b3:d7:f9:38:a0:3a: f4:49:a4:90:0d:c6:4c:9f:2c:46:7b:c7:dd:2e:7d:35:36:fd: 26:d6:73:3b:e2:c2:ea:04:ac:a1:42:46:ad:5a:63:11:41:9a: 96:35:c8:80:da:50:ea:1d:66:a5:b7:6a:c8:3c:e1:13:39:7d: a1:e8:55:50:6f:c8:ae:a5:32:a7:d8:73:95:d7:38:e8:61:05: 4e:df:9f:a9 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUfYnE6bnz22G9ASpRfcAo3v2UKewwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzFBNEFCNDA3MjZENENFREQ2NjNEMUMzNEVCQkU4MTdG QTQ0QzQyQzAeFw0yNjA1MDMwMjQ4NThaFw0yNzA1MDIwMjUzNThaMDMxMTAvBgNV BAMTKDVDMDM3MDhBN0M4NjYzQzYzOEY3NkU5N0I2MTg5QjgwQkQ4QzYwNjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5EcupEl7EhbDuGHJonwVsJk/D MX6mj9NDuNxoemfO1nMLfD0ThdDHdx+IVqSEVHK2/N+a1yXov3oCVCQL/D7B/A5e WtT/5NkosUFuqC79gRi8m9I3CftHZMQcAuN3PgyBSDZXmHVQs26b7I/J0xH0905z qTScONHfW6OJ0O1ImVAnjc9V19X1/8AOamMNwt94aEMaIgKytyGW9nKK7pMvGCeE 5TQX6gPd7YRbjOfB9dCEgJNSePat6SO5pGX1HIi1Nr7z4ns9b/VNh4SsaCXiGz6S lrALj+TQmrxXs4Su8KLsQ9iWlCDenb41eV0dAnwHIDCYQD/zmQyEjc9o/eXHAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUXANwinyGY8Y4926XthibgL2MYGgwHwYDVR0j BBgwFoAUwaSrQHJtTO3WY9HDTrvoF/pExCwwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v OTllZWJmN2MtZmUzOC00NmE5LTgzMTEtZTA1M2ZjYTUwZGZkLzAvQzFBNEFCNDA3 MjZENENFREQ2NjNEMUMzNEVCQkU4MTdGQTQ0QzQyQy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9DMUE0QUI0MDcyNkQ0Q0VERDY2M0QxQzM0RUJCRTgxN0ZBNDRD NDJDLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzk5ZWViZjdjLWZlMzgtNDZhOS04 MzExLWUwNTNmY2E1MGRmZC8wLzMyMzQzMDM1M2E2MzM0MzQzMDNhMzYzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTMzMzkzOTM3MzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBcRAAAYw DQYJKoZIhvcNAQELBQADggEBAD6AjfHLtSmI6gXdexGwyo8o369qM5MFSqrGq0Av jqbGFerXx0IOenh7OznKpCRSp8VFKbaabpqO6MkI7N/f3yOj22Hvc1zVjjQymB2H y7bpZC5COzZgDW5gZ0N93UGCAF2lPylaOoLwskatbMZc1UMKC29TedgURhH9pRdI TM4QqqDxLIBoaROBKFQcoYOf5wDqRRFjCemh5EMgbl7STzaSKt1UVFf39e78ZtHQ O7PX+TigOvRJpJANxkyfLEZ7x90ufTU2/SbWczviwuoErKFCRq1aYxFBmpY1yIDa UOodZqW3asg84RM5faHoVVBvyK6lMqfYc5XXOOhhBU7fn6k= -----END CERTIFICATE-----Generated at Wed May 13 00:20:47 2026 by rpki-client