$ rpki-client -vvf rpki-rsync.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/323430353a633434303a393a3a2f34382d3438203d3e20313339393732.roa File: 323430353a633434303a393a3a2f34382d3438203d3e20313339393732.roa (raw, json) Hash identifier: F4qXlNeW0qMmxaj0GytT6W5hjXADsYd42e+bOrj63To= Subject key identifier: 71:1A:EF:98:71:77:06:B6:65:DC:89:39:7F:ED:46:71:F4:33:D9:F2 Certificate issuer: /CN=C1A4AB40726D4CEDD663D1C34EBBE817FA44C42C Certificate serial: 6794F8594021B12F857425BFEC65AC8B922913AB Authority key identifier: C1:A4:AB:40:72:6D:4C:ED:D6:63:D1:C3:4E:BB:E8:17:FA:44:C4:2C Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C1A4AB40726D4CEDD663D1C34EBBE817FA44C42C.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/323430353a633434303a393a3a2f34382d3438203d3e20313339393732.roa Signing time: Sun 03 May 2026 02:53:58 +0000 ROA not before: Sun 03 May 2026 02:48:58 +0000 ROA not after: Sun 02 May 2027 02:53:58 +0000 asID: 139972 IP address blocks: 2405:c440:9::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/C1A4AB40726D4CEDD663D1C34EBBE817FA44C42C.crl rsync://rpki-rsync.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/C1A4AB40726D4CEDD663D1C34EBBE817FA44C42C.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C1A4AB40726D4CEDD663D1C34EBBE817FA44C42C.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:94:f8:59:40:21:b1:2f:85:74:25:bf:ec:65:ac:8b:92:29:13:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C1A4AB40726D4CEDD663D1C34EBBE817FA44C42C Validity Not Before: May 3 02:48:58 2026 GMT Not After : May 2 02:53:58 2027 GMT Subject: CN=711AEF98717706B665DC89397FED4671F433D9F2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:1d:ef:a9:84:41:9d:d5:e1:9e:e7:ca:3a:3e: 45:cc:00:2b:a5:48:88:a5:f9:81:64:71:a9:11:36: 0c:11:3e:d1:db:c9:6c:f2:e8:28:68:d5:4b:24:87: a6:99:a1:7c:48:2b:0a:87:fb:0c:af:a7:72:95:d0: a0:f6:49:0f:c2:12:a1:dd:ed:8d:ee:7a:b0:a3:62: 79:87:3f:74:ac:20:0c:3a:b8:79:38:f9:18:5f:f0: c8:5e:20:61:34:6f:fc:74:96:e3:75:28:18:6d:b3: 82:15:a0:1b:94:0d:8f:da:cd:ee:b6:15:57:cb:6c: d1:d6:57:7d:16:59:28:19:17:b4:d9:f3:6a:7f:27: 3b:c4:4a:2d:00:2c:3a:5f:8b:c8:75:de:65:24:28: 31:f5:12:8d:ba:2c:cc:45:49:ef:1d:09:27:dd:4c: b9:07:46:fa:93:fd:2b:64:66:78:63:09:1f:1f:98: 7f:a8:ba:f6:6c:41:b5:da:2c:34:03:69:12:cd:64: 6f:ed:93:c1:ff:b3:a8:9d:a6:bc:b0:75:d5:bd:88: 23:04:f7:34:cd:cb:dc:ef:64:43:cc:5a:18:c5:0e: 75:62:3a:c7:46:c4:12:1d:cc:bd:07:b5:67:19:45: 82:30:8d:c1:31:7c:76:4c:07:ca:ab:eb:23:9e:67: 4d:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:1A:EF:98:71:77:06:B6:65:DC:89:39:7F:ED:46:71:F4:33:D9:F2 X509v3 Authority Key Identifier: keyid:C1:A4:AB:40:72:6D:4C:ED:D6:63:D1:C3:4E:BB:E8:17:FA:44:C4:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/C1A4AB40726D4CEDD663D1C34EBBE817FA44C42C.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C1A4AB40726D4CEDD663D1C34EBBE817FA44C42C.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/323430353a633434303a393a3a2f34382d3438203d3e20313339393732.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:c440:9::/48 Signature Algorithm: sha256WithRSAEncryption 4c:31:f8:e6:45:ff:f2:c2:03:a0:e3:3f:6e:f1:2f:a1:4b:e7: 58:29:15:9c:11:1a:4e:5f:5b:e4:b0:9c:c7:10:72:1b:e7:80: 1d:4a:d8:9d:c3:5c:eb:93:5b:a2:0c:6a:d7:6a:c8:e5:da:74: ed:e2:3b:9b:b0:9f:06:b5:80:28:aa:25:0d:c7:78:24:44:c9: d0:54:73:0c:ec:c0:b8:b0:d5:ba:55:12:50:af:7f:d9:07:9d: 57:1c:b9:63:dd:8b:c6:9a:60:e8:b4:a7:3e:63:38:f1:50:fe: f0:4b:25:aa:22:8f:79:66:0a:9f:28:16:66:f5:70:8d:a4:62: 50:34:33:5c:de:7b:68:c7:99:0e:35:55:e3:b2:4f:74:9d:75: 45:14:91:1c:8b:7d:63:81:fc:68:93:98:8e:63:0e:2d:04:a0: 93:c4:1f:e4:dc:25:6e:c5:e0:af:9d:38:76:9b:15:a2:9f:c3: bf:ae:bb:12:5d:9e:62:e2:ff:1a:6c:3a:92:c1:1f:a8:84:84: 81:e5:83:d8:85:7f:e5:08:d3:19:00:04:8f:bb:ec:32:8f:59: e8:c3:6b:9e:80:d4:14:3c:44:38:21:12:34:e1:6e:d8:ac:3f: 25:91:3f:8b:df:e6:63:23:8c:4b:57:eb:4e:96:98:55:05:a5: ce:94:cb:21 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUZ5T4WUAhsS+FdCW/7GWsi5IpE6swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzFBNEFCNDA3MjZENENFREQ2NjNEMUMzNEVCQkU4MTdG QTQ0QzQyQzAeFw0yNjA1MDMwMjQ4NThaFw0yNzA1MDIwMjUzNThaMDMxMTAvBgNV BAMTKDcxMUFFRjk4NzE3NzA2QjY2NURDODkzOTdGRUQ0NjcxRjQzM0Q5RjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCmHe+phEGd1eGe58o6PkXMACul SIil+YFkcakRNgwRPtHbyWzy6Cho1Uskh6aZoXxIKwqH+wyvp3KV0KD2SQ/CEqHd 7Y3uerCjYnmHP3SsIAw6uHk4+Rhf8MheIGE0b/x0luN1KBhts4IVoBuUDY/aze62 FVfLbNHWV30WWSgZF7TZ82p/JzvESi0ALDpfi8h13mUkKDH1Eo26LMxFSe8dCSfd TLkHRvqT/StkZnhjCR8fmH+ouvZsQbXaLDQDaRLNZG/tk8H/s6idprywddW9iCME 9zTNy9zvZEPMWhjFDnViOsdGxBIdzL0HtWcZRYIwjcExfHZMB8qr6yOeZ01dAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUcRrvmHF3BrZl3Ik5f+1GcfQz2fIwHwYDVR0j BBgwFoAUwaSrQHJtTO3WY9HDTrvoF/pExCwwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v OTllZWJmN2MtZmUzOC00NmE5LTgzMTEtZTA1M2ZjYTUwZGZkLzAvQzFBNEFCNDA3 MjZENENFREQ2NjNEMUMzNEVCQkU4MTdGQTQ0QzQyQy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9DMUE0QUI0MDcyNkQ0Q0VERDY2M0QxQzM0RUJCRTgxN0ZBNDRD NDJDLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzk5ZWViZjdjLWZlMzgtNDZhOS04 MzExLWUwNTNmY2E1MGRmZC8wLzMyMzQzMDM1M2E2MzM0MzQzMDNhMzkzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTMzMzkzOTM3MzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBcRAAAkw DQYJKoZIhvcNAQELBQADggEBAEwx+OZF//LCA6DjP27xL6FL51gpFZwRGk5fW+Sw nMcQchvngB1K2J3DXOuTW6IMatdqyOXadO3iO5uwnwa1gCiqJQ3HeCREydBUcwzs wLiw1bpVElCvf9kHnVccuWPdi8aaYOi0pz5jOPFQ/vBLJaoij3lmCp8oFmb1cI2k YlA0M1zee2jHmQ41VeOyT3SddUUUkRyLfWOB/GiTmI5jDi0EoJPEH+TcJW7F4K+d OHabFaKfw7+uuxJdnmLi/xpsOpLBH6iEhIHlg9iFf+UI0xkABI+77DKPWejDa56A 1BQ8RDghEjThbtisPyWRP4vf5mMjjEtX606WmFUFpc6UyyE= -----END CERTIFICATE-----Generated at Wed May 13 00:13:44 2026 by rpki-client