$ rpki-client -vvf rpki-rsync.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/323430353a633434303a393937323a3a2f34382d3438203d3e20313339393732.roa File: 323430353a633434303a393937323a3a2f34382d3438203d3e20313339393732.roa (raw, json) Hash identifier: 7Wb8fPONNSHduul65dwelIc5/5kXZaXJePQ0HGB2Z20= Subject key identifier: 66:20:47:CE:95:6A:48:BF:17:9E:CB:03:27:F4:4F:AD:FC:14:65:08 Certificate issuer: /CN=C1A4AB40726D4CEDD663D1C34EBBE817FA44C42C Certificate serial: 42A81F5D9193DE8C3C73149ADFC28448648FCBD2 Authority key identifier: C1:A4:AB:40:72:6D:4C:ED:D6:63:D1:C3:4E:BB:E8:17:FA:44:C4:2C Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C1A4AB40726D4CEDD663D1C34EBBE817FA44C42C.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/323430353a633434303a393937323a3a2f34382d3438203d3e20313339393732.roa Signing time: Sun 03 May 2026 02:54:02 +0000 ROA not before: Sun 03 May 2026 02:49:02 +0000 ROA not after: Sun 02 May 2027 02:54:02 +0000 asID: 139972 IP address blocks: 2405:c440:9972::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/C1A4AB40726D4CEDD663D1C34EBBE817FA44C42C.crl rsync://rpki-rsync.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/C1A4AB40726D4CEDD663D1C34EBBE817FA44C42C.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C1A4AB40726D4CEDD663D1C34EBBE817FA44C42C.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:a8:1f:5d:91:93:de:8c:3c:73:14:9a:df:c2:84:48:64:8f:cb:d2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C1A4AB40726D4CEDD663D1C34EBBE817FA44C42C Validity Not Before: May 3 02:49:02 2026 GMT Not After : May 2 02:54:02 2027 GMT Subject: CN=662047CE956A48BF179ECB0327F44FADFC146508 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:81:31:01:d1:69:0b:74:4c:a1:84:84:bc:59:d8: 2b:36:91:35:e0:f8:5a:29:98:f2:42:eb:c1:78:be: fd:b9:c7:e1:d9:b7:e5:f2:30:f1:55:87:a4:0d:b6: 8e:c9:28:02:f3:c1:a0:74:55:41:c1:1c:e8:2c:60: c9:3d:ab:66:08:06:9a:cb:e9:31:21:46:b6:56:f9: 4d:4b:5b:90:2c:50:8d:73:73:b6:ca:22:20:3e:87: dd:48:59:2f:f2:e6:02:cd:82:56:5f:ee:01:41:cc: 04:17:c9:8a:30:33:79:a4:2c:11:55:23:ca:24:f6: a3:b9:3d:f0:d2:8a:00:5e:64:b7:44:54:ac:52:70: da:f4:ec:3f:da:6d:42:d1:6e:b0:8c:e2:af:2d:aa: 87:a4:9d:f4:c0:34:f8:49:f4:5a:51:4f:1b:66:36: 95:50:77:47:46:55:8a:78:93:f8:45:17:15:4c:2b: 2f:51:e8:31:62:23:f6:06:3d:28:49:bf:31:40:3d: c3:3f:12:2a:3b:8d:1a:3c:7b:73:ff:7b:82:7a:c3: c7:13:95:ae:d9:26:8e:39:fa:70:86:31:d6:3f:17: 1f:95:5a:15:31:54:21:32:95:bf:a7:50:74:74:cc: 6e:22:d1:cc:d2:62:9d:f0:0a:04:52:67:d5:cc:58: 62:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:20:47:CE:95:6A:48:BF:17:9E:CB:03:27:F4:4F:AD:FC:14:65:08 X509v3 Authority Key Identifier: keyid:C1:A4:AB:40:72:6D:4C:ED:D6:63:D1:C3:4E:BB:E8:17:FA:44:C4:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/C1A4AB40726D4CEDD663D1C34EBBE817FA44C42C.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C1A4AB40726D4CEDD663D1C34EBBE817FA44C42C.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/323430353a633434303a393937323a3a2f34382d3438203d3e20313339393732.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:c440:9972::/48 Signature Algorithm: sha256WithRSAEncryption 78:6b:b6:46:da:05:5c:7c:d1:fd:81:3a:89:4c:0e:67:5b:43: 0b:0a:0e:3f:a3:b7:b6:83:7b:a4:e0:ee:3a:d4:63:68:dd:af: 35:83:65:b9:c2:7a:93:07:9a:80:ff:43:5b:3b:10:08:d2:30: 27:de:90:a9:b2:66:df:19:70:45:d8:86:07:74:1e:5a:d5:eb: b8:44:d9:3a:52:d7:18:97:fa:48:54:9f:de:11:fa:b5:9e:48: ba:45:a8:e5:9a:5f:48:8c:a2:be:c0:b5:8c:e7:9b:b8:5c:f6: 3e:d8:2a:21:98:06:5c:e6:a9:de:ae:e1:d7:c0:cd:04:1b:88: f9:f1:64:05:8c:c2:69:b4:91:f2:18:02:1d:fe:fd:ac:ad:23: 4a:67:45:22:96:48:b2:9b:93:1b:46:25:39:66:b6:47:39:59: 6f:e0:fc:9e:bb:9c:be:48:5d:b4:0a:be:01:5d:1e:2f:3a:76: af:77:f5:39:15:dd:7c:93:a0:83:54:c5:3c:64:c3:4e:4a:8b: 80:1b:5e:95:b1:16:55:ee:5f:dc:5c:2e:cb:6f:69:1b:a5:39: d8:0d:1e:39:83:20:04:1d:fd:ea:28:5a:94:65:84:03:b9:8f: a8:16:b0:15:5f:a1:63:55:16:3a:b9:c2:d8:b0:25:5f:da:7e: dd:75:15:ce -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUQqgfXZGT3ow8cxSa38KESGSPy9IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzFBNEFCNDA3MjZENENFREQ2NjNEMUMzNEVCQkU4MTdG QTQ0QzQyQzAeFw0yNjA1MDMwMjQ5MDJaFw0yNzA1MDIwMjU0MDJaMDMxMTAvBgNV BAMTKDY2MjA0N0NFOTU2QTQ4QkYxNzlFQ0IwMzI3RjQ0RkFERkMxNDY1MDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCBMQHRaQt0TKGEhLxZ2Cs2kTXg +FopmPJC68F4vv25x+HZt+XyMPFVh6QNto7JKALzwaB0VUHBHOgsYMk9q2YIBprL 6TEhRrZW+U1LW5AsUI1zc7bKIiA+h91IWS/y5gLNglZf7gFBzAQXyYowM3mkLBFV I8ok9qO5PfDSigBeZLdEVKxScNr07D/abULRbrCM4q8tqoeknfTANPhJ9FpRTxtm NpVQd0dGVYp4k/hFFxVMKy9R6DFiI/YGPShJvzFAPcM/Eio7jRo8e3P/e4J6w8cT la7ZJo45+nCGMdY/Fx+VWhUxVCEylb+nUHR0zG4i0czSYp3wCgRSZ9XMWGJ9AgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUZiBHzpVqSL8XnssDJ/RPrfwUZQgwHwYDVR0j BBgwFoAUwaSrQHJtTO3WY9HDTrvoF/pExCwwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v OTllZWJmN2MtZmUzOC00NmE5LTgzMTEtZTA1M2ZjYTUwZGZkLzAvQzFBNEFCNDA3 MjZENENFREQ2NjNEMUMzNEVCQkU4MTdGQTQ0QzQyQy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9DMUE0QUI0MDcyNkQ0Q0VERDY2M0QxQzM0RUJCRTgxN0ZBNDRD NDJDLmNlcjCBrQYIKwYBBQUHAQsEgaAwgZ0wgZoGCCsGAQUFBzALhoGNcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzk5ZWViZjdjLWZlMzgtNDZhOS04 MzExLWUwNTNmY2E1MGRmZC8wLzMyMzQzMDM1M2E2MzM0MzQzMDNhMzkzOTM3MzIz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTMzMzkzOTM3MzIucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk BcRAmXIwDQYJKoZIhvcNAQELBQADggEBAHhrtkbaBVx80f2BOolMDmdbQwsKDj+j t7aDe6Tg7jrUY2jdrzWDZbnCepMHmoD/Q1s7EAjSMCfekKmyZt8ZcEXYhgd0HlrV 67hE2TpS1xiX+khUn94R+rWeSLpFqOWaX0iMor7AtYznm7hc9j7YKiGYBlzmqd6u 4dfAzQQbiPnxZAWMwmm0kfIYAh3+/aytI0pnRSKWSLKbkxtGJTlmtkc5WW/g/J67 nL5IXbQKvgFdHi86dq939TkV3XyToINUxTxkw05Ki4AbXpWxFlXuX9xcLstvaRul OdgNHjmDIAQd/eooWpRlhAO5j6gWsBVfoWNVFjq5wtiwJV/aft11Fc4= -----END CERTIFICATE-----Generated at Wed May 13 03:16:43 2026 by rpki-client