$ rpki-client -vvf rpki-rsync.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/323430343a356434303a393a3a2f34382d3438203d3e20313338353938.roa File: 323430343a356434303a393a3a2f34382d3438203d3e20313338353938.roa (raw, json) Hash identifier: pqOcy+Dvk6BhoIQ43O+Qcsi/T4kyh+JKJwaWCHlsOWU= Subject key identifier: DE:2F:E2:E5:70:66:61:7D:98:31:A7:2C:95:A3:6C:53:0D:E0:11:2E Certificate issuer: /CN=3F62814044EDF8B5E77D2B82095BF6627E136F4B Certificate serial: 1AB8413CEAB3700E1218C64C9289909272DED48F Authority key identifier: 3F:62:81:40:44:ED:F8:B5:E7:7D:2B:82:09:5B:F6:62:7E:13:6F:4B Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/3F62814044EDF8B5E77D2B82095BF6627E136F4B.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/323430343a356434303a393a3a2f34382d3438203d3e20313338353938.roa Signing time: Sun 03 May 2026 02:54:37 +0000 ROA not before: Sun 03 May 2026 02:49:37 +0000 ROA not after: Sun 02 May 2027 02:54:37 +0000 asID: 138598 IP address blocks: 2404:5d40:9::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/3F62814044EDF8B5E77D2B82095BF6627E136F4B.crl rsync://rpki-rsync.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/3F62814044EDF8B5E77D2B82095BF6627E136F4B.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/3F62814044EDF8B5E77D2B82095BF6627E136F4B.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 21:18:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:b8:41:3c:ea:b3:70:0e:12:18:c6:4c:92:89:90:92:72:de:d4:8f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3F62814044EDF8B5E77D2B82095BF6627E136F4B Validity Not Before: May 3 02:49:37 2026 GMT Not After : May 2 02:54:37 2027 GMT Subject: CN=DE2FE2E57066617D9831A72C95A36C530DE0112E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:84:db:64:84:58:0d:58:9c:eb:9e:97:2d:25: 43:66:01:25:03:b0:5e:2d:e5:bc:9d:71:d2:6f:f3: e6:4f:14:80:70:1b:90:00:37:ac:2d:ab:df:1c:26: 34:0f:36:a4:e7:8f:82:18:d0:b3:6e:8b:38:27:7f: c8:e0:f4:e8:ea:94:e6:61:75:9d:1c:06:20:d7:d6: c3:02:74:f4:34:87:07:51:a2:2e:f4:d6:f8:10:e2: 4b:ea:b7:b5:25:3e:5b:d3:c3:83:86:52:61:50:be: 75:58:4e:65:7b:44:2f:9e:25:dd:4e:5a:c6:27:78: db:f1:b6:ce:64:5c:3f:c0:3a:fd:d2:e5:b0:a9:90: 11:a6:b9:20:c9:fb:74:d6:56:6c:d9:f4:16:0a:ef: f3:38:f0:a0:26:0b:9c:39:9a:c7:7c:0a:62:84:88: 33:68:ef:49:b7:14:47:24:1d:32:a7:a9:c0:a3:7d: 13:7b:58:e3:a0:4f:43:40:c6:f6:96:0f:0e:a6:78: b1:4a:05:96:26:af:25:34:16:2a:72:0c:eb:47:7b: 66:e1:f0:10:cb:ea:0c:b7:fe:47:52:57:48:44:0e: bf:d4:2f:6e:24:98:bc:63:72:f3:99:ca:f3:cf:09: 3e:64:fb:6d:0a:30:f5:58:03:39:ad:e6:59:4e:28: cb:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:2F:E2:E5:70:66:61:7D:98:31:A7:2C:95:A3:6C:53:0D:E0:11:2E X509v3 Authority Key Identifier: keyid:3F:62:81:40:44:ED:F8:B5:E7:7D:2B:82:09:5B:F6:62:7E:13:6F:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/3F62814044EDF8B5E77D2B82095BF6627E136F4B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/3F62814044EDF8B5E77D2B82095BF6627E136F4B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/323430343a356434303a393a3a2f34382d3438203d3e20313338353938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:5d40:9::/48 Signature Algorithm: sha256WithRSAEncryption f5:63:ef:5c:f2:41:90:1e:6d:8e:0b:f6:f8:98:a6:06:92:84: 35:93:e7:91:ba:04:e3:e5:5d:bd:c1:ed:0c:b0:2f:fd:ad:ac: d1:a5:59:ea:80:79:8a:df:a6:a9:b2:6d:5a:f1:ab:14:09:cc: 7d:d1:19:ba:9c:36:f5:35:cf:04:0f:75:e8:7d:ad:11:4b:8b: 97:46:47:22:f1:60:49:df:01:21:37:8d:37:70:27:42:8f:ea: 04:27:37:f3:ba:67:cb:23:5c:00:72:e5:ca:f1:33:0c:e3:a7: b3:d9:39:a4:63:77:f4:5d:e6:55:25:ec:3d:81:7e:f0:ea:06: 52:60:9d:31:dc:1c:64:66:33:04:84:36:83:fc:a9:30:9a:6c: 15:37:d4:e1:cc:e0:9b:96:98:e4:99:db:50:5b:96:a5:12:c5: 75:e7:db:84:a4:84:2a:75:87:cb:6b:15:db:f7:5d:3c:e0:7c: d7:08:94:7b:1b:78:57:1f:d7:64:31:a7:38:a6:1a:19:a8:21: fc:79:80:50:a2:55:be:27:56:a8:af:10:b6:03:87:58:38:0a: f9:41:d5:d0:f0:7a:fb:f5:ca:cf:59:db:ab:28:6a:20:e0:1d: 28:f8:28:a8:3a:74:89:81:f4:62:19:ff:f0:f7:3f:38:35:cb: f5:1d:f8:4b -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUGrhBPOqzcA4SGMZMkomQknLe1I8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0Y2MjgxNDA0NEVERjhCNUU3N0QyQjgyMDk1QkY2NjI3 RTEzNkY0QjAeFw0yNjA1MDMwMjQ5MzdaFw0yNzA1MDIwMjU0MzdaMDMxMTAvBgNV BAMTKERFMkZFMkU1NzA2NjYxN0Q5ODMxQTcyQzk1QTM2QzUzMERFMDExMkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCshNtkhFgNWJzrnpctJUNmASUD sF4t5bydcdJv8+ZPFIBwG5AAN6wtq98cJjQPNqTnj4IY0LNuizgnf8jg9OjqlOZh dZ0cBiDX1sMCdPQ0hwdRoi701vgQ4kvqt7UlPlvTw4OGUmFQvnVYTmV7RC+eJd1O WsYneNvxts5kXD/AOv3S5bCpkBGmuSDJ+3TWVmzZ9BYK7/M48KAmC5w5msd8CmKE iDNo70m3FEckHTKnqcCjfRN7WOOgT0NAxvaWDw6meLFKBZYmryU0FipyDOtHe2bh 8BDL6gy3/kdSV0hEDr/UL24kmLxjcvOZyvPPCT5k+20KMPVYAzmt5llOKMtjAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQU3i/i5XBmYX2YMacslaNsUw3gES4wHwYDVR0j BBgwFoAUP2KBQETt+LXnfSuCCVv2Yn4Tb0swDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v OWM4NWM2YjktMzRmOS00YTg1LTljZWEtYzE2ZTk4YThiNWUwLzAvM0Y2MjgxNDA0 NEVERjhCNUU3N0QyQjgyMDk1QkY2NjI3RTEzNkY0Qi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8zRjYyODE0MDQ0RURGOEI1RTc3RDJCODIwOTVCRjY2MjdFMTM2 RjRCLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzljODVjNmI5LTM0ZjktNGE4NS05 Y2VhLWMxNmU5OGE4YjVlMC8wLzMyMzQzMDM0M2EzNTY0MzQzMDNhMzkzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTMzMzgzNTM5Mzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBF1AAAkw DQYJKoZIhvcNAQELBQADggEBAPVj71zyQZAebY4L9viYpgaShDWT55G6BOPlXb3B 7QywL/2trNGlWeqAeYrfpqmybVrxqxQJzH3RGbqcNvU1zwQPdeh9rRFLi5dGRyLx YEnfASE3jTdwJ0KP6gQnN/O6Z8sjXABy5crxMwzjp7PZOaRjd/Rd5lUl7D2BfvDq BlJgnTHcHGRmMwSENoP8qTCabBU31OHM4JuWmOSZ21BblqUSxXXn24SkhCp1h8tr Fdv3XTzgfNcIlHsbeFcf12QxpzimGhmoIfx5gFCiVb4nVqivELYDh1g4CvlB1dDw evv1ys9Z26soaiDgHSj4KKg6dImB9GIZ//D3Pzg1y/Ud+Es= -----END CERTIFICATE-----Generated at Wed May 13 08:23:56 2026 by rpki-client