$ rpki-client -vvf rpki-rsync.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/323430343a356434303a323a3a2f34382d3438203d3e20313338353938.roa File: 323430343a356434303a323a3a2f34382d3438203d3e20313338353938.roa (raw, json) Hash identifier: 1BvT4+B6DoXD7bSTfJFF0kIFzIyR+ygmXkzol5Y0Vog= Subject key identifier: 84:A7:FD:0E:38:82:2E:D2:B0:22:03:C4:26:8E:4A:95:73:58:CA:54 Certificate issuer: /CN=3F62814044EDF8B5E77D2B82095BF6627E136F4B Certificate serial: 095442884905403D17DFA6E4EE4FE74FC9EB6A2D Authority key identifier: 3F:62:81:40:44:ED:F8:B5:E7:7D:2B:82:09:5B:F6:62:7E:13:6F:4B Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/3F62814044EDF8B5E77D2B82095BF6627E136F4B.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/323430343a356434303a323a3a2f34382d3438203d3e20313338353938.roa Signing time: Sun 03 May 2026 02:54:35 +0000 ROA not before: Sun 03 May 2026 02:49:35 +0000 ROA not after: Sun 02 May 2027 02:54:35 +0000 asID: 138598 IP address blocks: 2404:5d40:2::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/3F62814044EDF8B5E77D2B82095BF6627E136F4B.crl rsync://rpki-rsync.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/3F62814044EDF8B5E77D2B82095BF6627E136F4B.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/3F62814044EDF8B5E77D2B82095BF6627E136F4B.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 21:18:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:54:42:88:49:05:40:3d:17:df:a6:e4:ee:4f:e7:4f:c9:eb:6a:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3F62814044EDF8B5E77D2B82095BF6627E136F4B Validity Not Before: May 3 02:49:35 2026 GMT Not After : May 2 02:54:35 2027 GMT Subject: CN=84A7FD0E38822ED2B02203C4268E4A957358CA54 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:b1:cb:f5:aa:a7:46:aa:bf:0d:23:d2:7d:12: 90:f6:68:de:48:a3:7b:34:12:9f:1e:ac:ae:0e:11: 9f:56:d7:e0:89:fb:09:84:bc:7f:2e:c5:f6:8e:e3: f8:33:ad:0b:13:3b:ab:99:ed:d9:ba:5f:43:ca:cb: 1b:e8:f6:37:28:90:1c:ad:df:ce:a1:4b:c2:42:64: eb:06:6f:5a:5f:e6:45:7b:3c:ab:21:45:c6:b9:54: 8b:de:00:57:06:41:c0:4f:be:89:2a:72:6a:94:c9: 26:86:71:38:b5:f3:d1:01:5f:94:a7:1f:64:e5:69: 82:93:09:b0:a8:92:5c:60:56:fc:87:9c:ba:0f:01: b9:61:67:1e:92:ea:c0:ca:9d:47:0a:dd:b9:62:4c: 5a:6b:c6:ce:8f:57:64:71:e8:02:8f:d2:4a:aa:a3: c2:bb:52:6d:ae:2a:fe:02:5c:68:39:fd:27:db:1f: bf:c8:73:96:04:9a:7a:0c:e5:12:eb:f0:e8:fb:c6: d7:38:42:b0:b2:b8:ff:0e:82:ea:d7:cc:72:47:aa: 48:a1:08:5d:dc:ac:e6:1a:cd:c4:ac:2b:15:4b:dd: ec:93:4a:56:95:05:23:7d:81:ae:75:ad:30:0f:73: 21:e7:ae:d9:72:9e:b6:fb:47:c1:8f:c0:0e:c0:06: b6:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:A7:FD:0E:38:82:2E:D2:B0:22:03:C4:26:8E:4A:95:73:58:CA:54 X509v3 Authority Key Identifier: keyid:3F:62:81:40:44:ED:F8:B5:E7:7D:2B:82:09:5B:F6:62:7E:13:6F:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/3F62814044EDF8B5E77D2B82095BF6627E136F4B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/3F62814044EDF8B5E77D2B82095BF6627E136F4B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/323430343a356434303a323a3a2f34382d3438203d3e20313338353938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:5d40:2::/48 Signature Algorithm: sha256WithRSAEncryption b0:b2:e4:3a:d7:79:d7:2c:a7:3c:c3:5d:75:b0:d8:89:c9:fc: 8b:62:7d:83:d4:b7:9a:57:96:0b:e3:b3:29:51:e7:f8:a9:3d: 8f:f0:1b:48:06:ff:f2:26:69:e3:f2:6c:34:90:95:dc:ba:30: 4f:ca:36:a3:16:db:ac:24:bf:fb:ce:99:9c:89:73:e8:ed:94: 45:09:8a:45:07:11:71:a5:0b:6d:ed:55:18:c8:c6:41:5b:07: 9f:d3:8a:27:9b:f9:e1:5b:6a:94:2c:73:f9:25:93:c9:ff:32: 75:1e:7c:71:b0:18:ed:c9:a6:81:b2:cb:05:30:0d:50:0f:e6: 20:eb:29:6d:14:38:e8:e4:c6:76:10:6c:2f:3f:84:64:44:3a: 7e:71:ad:8c:98:c0:04:e6:96:42:bf:25:ee:9d:2e:93:cf:5a: 6f:04:39:69:31:d2:85:75:4c:fb:86:98:58:59:b9:cf:ad:8c: 2f:44:31:65:a6:38:b8:ca:f9:a7:e1:e8:8b:4c:66:d1:f0:d1: 91:61:80:97:60:36:7f:03:2b:4a:1a:13:9d:ff:bd:50:f8:cd: 79:b7:e9:43:e0:d3:6d:e2:8e:01:60:5a:5f:58:4c:41:68:f3: 60:55:4d:ce:b3:c5:dc:6c:26:ac:0b:2e:6a:d4:44:b6:79:38: fc:7a:ff:72 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUCVRCiEkFQD0X36bk7k/nT8nrai0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0Y2MjgxNDA0NEVERjhCNUU3N0QyQjgyMDk1QkY2NjI3 RTEzNkY0QjAeFw0yNjA1MDMwMjQ5MzVaFw0yNzA1MDIwMjU0MzVaMDMxMTAvBgNV BAMTKDg0QTdGRDBFMzg4MjJFRDJCMDIyMDNDNDI2OEU0QTk1NzM1OENBNTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzscv1qqdGqr8NI9J9EpD2aN5I o3s0Ep8erK4OEZ9W1+CJ+wmEvH8uxfaO4/gzrQsTO6uZ7dm6X0PKyxvo9jcokByt 386hS8JCZOsGb1pf5kV7PKshRca5VIveAFcGQcBPvokqcmqUySaGcTi189EBX5Sn H2TlaYKTCbCoklxgVvyHnLoPAblhZx6S6sDKnUcK3bliTFprxs6PV2Rx6AKP0kqq o8K7Um2uKv4CXGg5/SfbH7/Ic5YEmnoM5RLr8Oj7xtc4QrCyuP8OgurXzHJHqkih CF3crOYazcSsKxVL3eyTSlaVBSN9ga51rTAPcyHnrtlynrb7R8GPwA7ABrajAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUhKf9DjiCLtKwIgPEJo5KlXNYylQwHwYDVR0j BBgwFoAUP2KBQETt+LXnfSuCCVv2Yn4Tb0swDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v OWM4NWM2YjktMzRmOS00YTg1LTljZWEtYzE2ZTk4YThiNWUwLzAvM0Y2MjgxNDA0 NEVERjhCNUU3N0QyQjgyMDk1QkY2NjI3RTEzNkY0Qi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8zRjYyODE0MDQ0RURGOEI1RTc3RDJCODIwOTVCRjY2MjdFMTM2 RjRCLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzljODVjNmI5LTM0ZjktNGE4NS05 Y2VhLWMxNmU5OGE4YjVlMC8wLzMyMzQzMDM0M2EzNTY0MzQzMDNhMzIzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTMzMzgzNTM5Mzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBF1AAAIw DQYJKoZIhvcNAQELBQADggEBALCy5DrXedcspzzDXXWw2InJ/ItifYPUt5pXlgvj sylR5/ipPY/wG0gG//ImaePybDSQldy6ME/KNqMW26wkv/vOmZyJc+jtlEUJikUH EXGlC23tVRjIxkFbB5/Tiieb+eFbapQsc/klk8n/MnUefHGwGO3JpoGyywUwDVAP 5iDrKW0UOOjkxnYQbC8/hGREOn5xrYyYwATmlkK/Je6dLpPPWm8EOWkx0oV1TPuG mFhZuc+tjC9EMWWmOLjK+afh6ItMZtHw0ZFhgJdgNn8DK0oaE53/vVD4zXm36UPg 023ijgFgWl9YTEFo82BVTc6zxdxsJqwLLmrURLZ5OPx6/3I= -----END CERTIFICATE-----Generated at Wed May 13 08:02:48 2026 by rpki-client