$ rpki-client -vvf rpki-rsync.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/323430343a356434303a333a3a2f34382d3438203d3e20313338353938.roa File: 323430343a356434303a333a3a2f34382d3438203d3e20313338353938.roa (raw, json) Hash identifier: D8aPDTHmr90xwp8tUHm7tBo97fD9LXY+RgJPgopJ/xY= Subject key identifier: 63:58:11:75:8D:22:F7:95:5B:4E:2E:AC:18:B0:40:C0:25:4E:90:55 Certificate issuer: /CN=3F62814044EDF8B5E77D2B82095BF6627E136F4B Certificate serial: 7F072F940852331C70EF7121EAAD422DE2015DFD Authority key identifier: 3F:62:81:40:44:ED:F8:B5:E7:7D:2B:82:09:5B:F6:62:7E:13:6F:4B Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/3F62814044EDF8B5E77D2B82095BF6627E136F4B.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/323430343a356434303a333a3a2f34382d3438203d3e20313338353938.roa Signing time: Sun 03 May 2026 02:54:35 +0000 ROA not before: Sun 03 May 2026 02:49:35 +0000 ROA not after: Sun 02 May 2027 02:54:35 +0000 asID: 138598 IP address blocks: 2404:5d40:3::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/3F62814044EDF8B5E77D2B82095BF6627E136F4B.crl rsync://rpki-rsync.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/3F62814044EDF8B5E77D2B82095BF6627E136F4B.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/3F62814044EDF8B5E77D2B82095BF6627E136F4B.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 21:18:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:07:2f:94:08:52:33:1c:70:ef:71:21:ea:ad:42:2d:e2:01:5d:fd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3F62814044EDF8B5E77D2B82095BF6627E136F4B Validity Not Before: May 3 02:49:35 2026 GMT Not After : May 2 02:54:35 2027 GMT Subject: CN=635811758D22F7955B4E2EAC18B040C0254E9055 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:82:d2:62:1a:bc:e3:cc:11:a5:de:ac:6b:c5:14: 5d:1e:16:42:f4:fb:da:22:5c:29:1f:b1:1a:50:e8: 1b:65:e3:45:80:bf:af:a7:7a:11:7b:f6:12:c4:2c: 95:fc:42:04:47:de:05:6e:88:02:e4:04:27:59:de: 18:e5:b0:a1:d7:af:22:85:60:31:02:de:99:78:13: ba:1b:a6:f4:2b:56:21:69:a9:41:f3:75:aa:44:c4: a1:2f:23:8f:8f:91:47:50:a4:ed:f1:32:9b:2f:43: 9f:d3:be:51:2a:df:0b:35:c4:3b:e2:16:10:e1:93: 5d:7d:24:67:2c:74:d0:f4:06:2e:dd:ce:78:fb:60: 63:82:03:a9:e7:b1:51:3c:97:e3:4d:d4:2f:66:60: 74:4d:c5:73:95:c1:6a:12:5a:8a:73:12:f1:0d:97: 08:2b:e9:62:f1:da:97:9c:34:c5:3d:3e:29:28:28: d2:4b:81:3c:b8:8f:1f:a0:a3:bd:28:e4:25:3b:eb: c8:a9:b0:fc:85:c6:4f:24:04:af:ce:0a:ff:18:47: 90:90:47:cc:34:4c:76:bb:7a:8b:9b:cf:f5:87:44: 39:ea:91:3b:c9:b0:0d:4f:b8:b6:2b:5f:54:42:c2: 54:ff:14:91:52:03:6e:c4:57:26:b5:01:20:f5:8d: 78:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:58:11:75:8D:22:F7:95:5B:4E:2E:AC:18:B0:40:C0:25:4E:90:55 X509v3 Authority Key Identifier: keyid:3F:62:81:40:44:ED:F8:B5:E7:7D:2B:82:09:5B:F6:62:7E:13:6F:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/3F62814044EDF8B5E77D2B82095BF6627E136F4B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/3F62814044EDF8B5E77D2B82095BF6627E136F4B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/323430343a356434303a333a3a2f34382d3438203d3e20313338353938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:5d40:3::/48 Signature Algorithm: sha256WithRSAEncryption 22:8c:68:2e:3c:6c:9f:b9:27:33:03:e0:fc:c2:8f:ec:fe:47: 72:df:2a:fd:0d:42:a3:35:7d:5e:67:b3:e5:09:6b:58:37:ae: bc:f1:b4:d5:a0:b0:ee:d4:7d:b6:4b:3e:83:98:a0:a5:32:c3: e1:87:f8:39:af:b8:0c:72:9a:4d:84:e6:a8:8c:08:33:0f:41: 7d:ec:b4:55:7b:17:a9:73:7c:c6:97:b0:04:4c:05:93:1a:e7: 61:13:e1:70:4b:c8:6f:d7:e9:6f:1e:de:54:d8:20:71:33:d4: e6:86:32:b8:4e:83:f9:5f:ae:ec:02:b7:75:ea:0d:d5:6f:ea: 93:a7:21:7b:fb:20:c3:4f:8e:ba:80:5e:5c:b2:33:b1:45:96: 6e:af:ae:b5:46:0f:bb:ab:99:61:53:78:da:83:d7:ba:6b:f4: 80:e4:b5:46:2a:49:d6:50:45:57:ce:06:d7:74:d1:d3:32:99: a4:6a:04:24:15:c9:39:68:9e:9b:ce:53:c1:b6:e7:1d:c3:53: fe:65:1a:bd:d9:e3:55:9b:9a:c5:e6:1b:f1:31:b9:d8:9d:2d: e8:56:dc:63:a3:4b:57:72:ee:0c:25:15:af:fa:ac:25:74:2b: 33:35:e0:54:ce:fd:7f:1f:b0:ea:46:6b:38:8a:4e:04:7a:70: 7d:20:6c:5f -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUfwcvlAhSMxxw73Eh6q1CLeIBXf0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0Y2MjgxNDA0NEVERjhCNUU3N0QyQjgyMDk1QkY2NjI3 RTEzNkY0QjAeFw0yNjA1MDMwMjQ5MzVaFw0yNzA1MDIwMjU0MzVaMDMxMTAvBgNV BAMTKDYzNTgxMTc1OEQyMkY3OTU1QjRFMkVBQzE4QjA0MEMwMjU0RTkwNTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCC0mIavOPMEaXerGvFFF0eFkL0 +9oiXCkfsRpQ6Btl40WAv6+nehF79hLELJX8QgRH3gVuiALkBCdZ3hjlsKHXryKF YDEC3pl4E7obpvQrViFpqUHzdapExKEvI4+PkUdQpO3xMpsvQ5/TvlEq3ws1xDvi FhDhk119JGcsdND0Bi7dznj7YGOCA6nnsVE8l+NN1C9mYHRNxXOVwWoSWopzEvEN lwgr6WLx2pecNMU9PikoKNJLgTy4jx+go70o5CU768ipsPyFxk8kBK/OCv8YR5CQ R8w0THa7eoubz/WHRDnqkTvJsA1PuLYrX1RCwlT/FJFSA27EVya1ASD1jXgXAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUY1gRdY0i95VbTi6sGLBAwCVOkFUwHwYDVR0j BBgwFoAUP2KBQETt+LXnfSuCCVv2Yn4Tb0swDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v OWM4NWM2YjktMzRmOS00YTg1LTljZWEtYzE2ZTk4YThiNWUwLzAvM0Y2MjgxNDA0 NEVERjhCNUU3N0QyQjgyMDk1QkY2NjI3RTEzNkY0Qi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8zRjYyODE0MDQ0RURGOEI1RTc3RDJCODIwOTVCRjY2MjdFMTM2 RjRCLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzljODVjNmI5LTM0ZjktNGE4NS05 Y2VhLWMxNmU5OGE4YjVlMC8wLzMyMzQzMDM0M2EzNTY0MzQzMDNhMzMzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTMzMzgzNTM5Mzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBF1AAAMw DQYJKoZIhvcNAQELBQADggEBACKMaC48bJ+5JzMD4PzCj+z+R3LfKv0NQqM1fV5n s+UJa1g3rrzxtNWgsO7UfbZLPoOYoKUyw+GH+DmvuAxymk2E5qiMCDMPQX3stFV7 F6lzfMaXsARMBZMa52ET4XBLyG/X6W8e3lTYIHEz1OaGMrhOg/lfruwCt3XqDdVv 6pOnIXv7IMNPjrqAXlyyM7FFlm6vrrVGD7urmWFTeNqD17pr9IDktUYqSdZQRVfO Btd00dMymaRqBCQVyTlonpvOU8G25x3DU/5lGr3Z41WbmsXmG/ExudidLehW3GOj S1dy7gwlFa/6rCV0KzM14FTO/X8fsOpGaziKTgR6cH0gbF8= -----END CERTIFICATE-----Generated at Wed May 13 08:49:03 2026 by rpki-client