$ rpki-client -vvf rpki-rsync.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/323430343a356434303a373a3a2f34382d3438203d3e20313338353938.roa File: 323430343a356434303a373a3a2f34382d3438203d3e20313338353938.roa (raw, json) Hash identifier: G3Odq6+liao9rSrnW9IxF+85mnGUPLT2G3zXCo+assU= Subject key identifier: EF:39:40:8D:AF:01:C1:6B:81:01:9D:C8:1C:01:3C:B6:05:43:17:0F Certificate issuer: /CN=3F62814044EDF8B5E77D2B82095BF6627E136F4B Certificate serial: 581EA6E7EC5EC8F98E74E3C58177ACD2DD3E9A17 Authority key identifier: 3F:62:81:40:44:ED:F8:B5:E7:7D:2B:82:09:5B:F6:62:7E:13:6F:4B Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/3F62814044EDF8B5E77D2B82095BF6627E136F4B.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/323430343a356434303a373a3a2f34382d3438203d3e20313338353938.roa Signing time: Sun 03 May 2026 02:54:36 +0000 ROA not before: Sun 03 May 2026 02:49:36 +0000 ROA not after: Sun 02 May 2027 02:54:36 +0000 asID: 138598 IP address blocks: 2404:5d40:7::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/3F62814044EDF8B5E77D2B82095BF6627E136F4B.crl rsync://rpki-rsync.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/3F62814044EDF8B5E77D2B82095BF6627E136F4B.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/3F62814044EDF8B5E77D2B82095BF6627E136F4B.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 21:18:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:1e:a6:e7:ec:5e:c8:f9:8e:74:e3:c5:81:77:ac:d2:dd:3e:9a:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3F62814044EDF8B5E77D2B82095BF6627E136F4B Validity Not Before: May 3 02:49:36 2026 GMT Not After : May 2 02:54:36 2027 GMT Subject: CN=EF39408DAF01C16B81019DC81C013CB60543170F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:6d:18:0f:59:77:8d:29:67:c8:bd:cd:54:64: b9:13:c5:d2:8a:c6:e7:b7:9d:d3:a7:cf:b3:c9:b5: af:19:f7:89:8d:32:b9:2c:16:21:0b:55:3c:9a:0e: bc:73:77:02:20:34:a4:d5:78:07:b3:11:37:df:80: 7b:84:6b:42:27:65:a0:5c:d0:2c:b3:49:d3:20:89: e1:5f:98:09:0f:ba:a7:b2:90:2f:be:20:c6:fd:e6: ac:74:45:1c:30:1a:a1:29:ec:de:e8:0f:10:c7:69: 83:02:47:b4:d7:58:f2:1c:bf:9e:31:74:dd:18:e7: 3b:79:ad:08:bd:da:89:8f:53:f0:51:ed:b5:33:26: 26:66:18:92:d6:a6:ff:2f:ec:b0:0f:bb:e3:be:bc: b0:b6:ef:cb:ce:d5:a1:1f:14:00:f7:cd:9c:33:df: 67:8f:75:d1:6d:76:fd:dc:06:59:2b:42:f4:17:b0: e4:17:29:3f:05:10:62:b2:c3:70:2f:62:4d:73:fb: 59:08:c2:2f:e8:b6:4e:e3:26:6e:b2:05:ba:2f:04: bb:f0:f8:4c:98:a8:a0:39:bb:96:6d:40:65:96:aa: f4:52:4a:0c:0a:82:9a:ed:52:89:71:ab:fa:ca:b8: c8:83:c1:7e:b8:7e:65:d2:34:e7:ea:7e:ea:4a:4c: 20:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:39:40:8D:AF:01:C1:6B:81:01:9D:C8:1C:01:3C:B6:05:43:17:0F X509v3 Authority Key Identifier: keyid:3F:62:81:40:44:ED:F8:B5:E7:7D:2B:82:09:5B:F6:62:7E:13:6F:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/3F62814044EDF8B5E77D2B82095BF6627E136F4B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/3F62814044EDF8B5E77D2B82095BF6627E136F4B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/323430343a356434303a373a3a2f34382d3438203d3e20313338353938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:5d40:7::/48 Signature Algorithm: sha256WithRSAEncryption 38:e0:56:32:d0:df:84:fe:15:ab:e9:0b:f6:02:52:92:13:95: b9:1c:9e:df:7d:4f:13:f4:d9:5b:49:37:2a:6d:42:58:28:8c: 01:14:9e:e4:a1:75:b9:2a:81:ef:a1:0e:3f:4c:30:48:b7:84: 82:92:97:0b:7b:9b:dd:ef:fc:5e:f2:9f:80:f1:37:e6:10:c0: a7:7b:45:ed:61:06:4f:74:af:00:c2:59:a9:c0:c8:51:b5:55: 61:e6:a4:9f:98:01:bc:18:e3:77:c4:e0:a2:a8:92:06:4b:74: 78:32:3f:5f:ba:39:8a:63:2e:b6:c1:ab:fc:ef:e4:f3:9f:ed: 74:f3:6d:54:99:70:11:bd:31:79:b4:3d:95:89:90:29:7a:bc: cf:13:a5:80:73:25:9d:e6:7f:b2:84:f6:a1:76:74:e1:72:10: e1:04:6d:20:41:99:ca:04:0f:b1:cf:a1:1e:aa:b3:75:4b:9a: 94:5d:ee:ac:5d:50:ef:49:17:94:be:d0:7a:fb:01:49:6c:e1: 9d:d1:63:15:0b:37:0e:47:b3:dd:98:ef:9e:20:aa:18:b0:b6: b1:bf:51:d9:30:c1:99:9d:f6:75:97:fe:42:60:d5:71:a9:c7: 3e:e1:e3:4a:f5:b2:17:05:2a:f4:6c:08:51:f1:7a:70:8a:74: 7e:4d:a5:d8 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUWB6m5+xeyPmOdOPFgXes0t0+mhcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0Y2MjgxNDA0NEVERjhCNUU3N0QyQjgyMDk1QkY2NjI3 RTEzNkY0QjAeFw0yNjA1MDMwMjQ5MzZaFw0yNzA1MDIwMjU0MzZaMDMxMTAvBgNV BAMTKEVGMzk0MDhEQUYwMUMxNkI4MTAxOURDODFDMDEzQ0I2MDU0MzE3MEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1bRgPWXeNKWfIvc1UZLkTxdKK xue3ndOnz7PJta8Z94mNMrksFiELVTyaDrxzdwIgNKTVeAezETffgHuEa0InZaBc 0CyzSdMgieFfmAkPuqeykC++IMb95qx0RRwwGqEp7N7oDxDHaYMCR7TXWPIcv54x dN0Y5zt5rQi92omPU/BR7bUzJiZmGJLWpv8v7LAPu+O+vLC278vO1aEfFAD3zZwz 32ePddFtdv3cBlkrQvQXsOQXKT8FEGKyw3AvYk1z+1kIwi/otk7jJm6yBbovBLvw +EyYqKA5u5ZtQGWWqvRSSgwKgprtUolxq/rKuMiDwX64fmXSNOfqfupKTCCtAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQU7zlAja8BwWuBAZ3IHAE8tgVDFw8wHwYDVR0j BBgwFoAUP2KBQETt+LXnfSuCCVv2Yn4Tb0swDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v OWM4NWM2YjktMzRmOS00YTg1LTljZWEtYzE2ZTk4YThiNWUwLzAvM0Y2MjgxNDA0 NEVERjhCNUU3N0QyQjgyMDk1QkY2NjI3RTEzNkY0Qi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8zRjYyODE0MDQ0RURGOEI1RTc3RDJCODIwOTVCRjY2MjdFMTM2 RjRCLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzljODVjNmI5LTM0ZjktNGE4NS05 Y2VhLWMxNmU5OGE4YjVlMC8wLzMyMzQzMDM0M2EzNTY0MzQzMDNhMzczYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTMzMzgzNTM5Mzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBF1AAAcw DQYJKoZIhvcNAQELBQADggEBADjgVjLQ34T+FavpC/YCUpITlbkcnt99TxP02VtJ NyptQlgojAEUnuShdbkqge+hDj9MMEi3hIKSlwt7m93v/F7yn4DxN+YQwKd7Re1h Bk90rwDCWanAyFG1VWHmpJ+YAbwY43fE4KKokgZLdHgyP1+6OYpjLrbBq/zv5POf 7XTzbVSZcBG9MXm0PZWJkCl6vM8TpYBzJZ3mf7KE9qF2dOFyEOEEbSBBmcoED7HP oR6qs3VLmpRd7qxdUO9JF5S+0Hr7AUls4Z3RYxULNw5Hs92Y754gqhiwtrG/Udkw wZmd9nWX/kJg1XGpxz7h40r1shcFKvRsCFHxenCKdH5Npdg= -----END CERTIFICATE-----Generated at Wed May 13 08:35:33 2026 by rpki-client