$ rpki-client -vvf rpki-rsync.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/323430343a356434303a3a2f34382d3438203d3e20313338353938.roa File: 323430343a356434303a3a2f34382d3438203d3e20313338353938.roa (raw, json) Hash identifier: o69GAoupi19SYQFx9GbnxeXAPra1yIHc+y9tXTKqEaE= Subject key identifier: 47:31:6C:44:2B:CB:99:97:26:2D:94:9C:FA:7F:BB:43:32:C1:42:F4 Certificate issuer: /CN=3F62814044EDF8B5E77D2B82095BF6627E136F4B Certificate serial: 7A6C29CD682BBB9A01651FFBF366B17261AADC2C Authority key identifier: 3F:62:81:40:44:ED:F8:B5:E7:7D:2B:82:09:5B:F6:62:7E:13:6F:4B Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/3F62814044EDF8B5E77D2B82095BF6627E136F4B.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/323430343a356434303a3a2f34382d3438203d3e20313338353938.roa Signing time: Sun 03 May 2026 02:54:36 +0000 ROA not before: Sun 03 May 2026 02:49:36 +0000 ROA not after: Sun 02 May 2027 02:54:36 +0000 asID: 138598 IP address blocks: 2404:5d40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/3F62814044EDF8B5E77D2B82095BF6627E136F4B.crl rsync://rpki-rsync.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/3F62814044EDF8B5E77D2B82095BF6627E136F4B.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/3F62814044EDF8B5E77D2B82095BF6627E136F4B.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 21:18:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:6c:29:cd:68:2b:bb:9a:01:65:1f:fb:f3:66:b1:72:61:aa:dc:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3F62814044EDF8B5E77D2B82095BF6627E136F4B Validity Not Before: May 3 02:49:36 2026 GMT Not After : May 2 02:54:36 2027 GMT Subject: CN=47316C442BCB9997262D949CFA7FBB4332C142F4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:90:06:19:70:ba:bb:81:78:41:81:98:d7:ca: ef:25:ae:6e:c4:61:a5:70:f5:d0:f0:76:62:93:69: 85:9a:d7:83:23:1a:2e:49:73:a1:60:c0:38:f0:ae: 80:9d:32:9c:2d:ba:68:d0:6a:03:99:75:2b:41:30: c3:a8:87:99:39:64:c4:71:e4:3d:07:2b:3d:fa:df: eb:ab:d9:d2:1c:10:1e:f0:fa:bd:94:d8:15:03:01: 46:3e:29:b9:fe:2f:79:bb:ce:a2:a2:50:23:9d:24: 61:a1:c1:7b:0f:43:e5:3c:23:a8:9a:ab:34:00:77: 02:82:ad:91:61:21:08:eb:b9:c6:3d:1f:e6:17:02: 06:4d:39:82:b8:1b:02:df:33:e5:4c:a7:fc:45:6c: 48:12:44:d8:9f:f7:51:9b:27:2b:17:2a:62:50:03: 96:ed:a1:4d:1c:5f:76:22:52:f9:99:49:38:11:ee: 89:fd:46:00:ac:d6:1a:1d:2c:86:cf:11:0a:e9:fe: c3:1e:c4:e4:a1:99:37:93:22:b1:b0:5f:18:d3:db: 21:dc:f9:0c:fe:03:01:a9:43:1f:fa:e0:c5:e0:0c: b3:77:73:36:fd:ce:2e:5e:ec:a4:f2:01:92:d1:87: b3:09:a5:5b:5a:fe:f8:aa:1b:ed:85:29:e0:a3:fe: b4:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:31:6C:44:2B:CB:99:97:26:2D:94:9C:FA:7F:BB:43:32:C1:42:F4 X509v3 Authority Key Identifier: keyid:3F:62:81:40:44:ED:F8:B5:E7:7D:2B:82:09:5B:F6:62:7E:13:6F:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/3F62814044EDF8B5E77D2B82095BF6627E136F4B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/3F62814044EDF8B5E77D2B82095BF6627E136F4B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/323430343a356434303a3a2f34382d3438203d3e20313338353938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:5d40::/48 Signature Algorithm: sha256WithRSAEncryption 6f:89:b0:a9:71:74:75:e9:8a:d9:21:62:68:ac:f6:07:6f:64: 71:d3:e6:7a:ba:0f:4c:83:c1:39:5f:5a:d0:78:77:c5:a4:d2: 6b:0f:45:71:e4:7f:28:7f:7a:7c:36:fc:ac:cd:9d:9e:6e:c9: ea:b5:3e:a9:77:d0:73:93:db:1d:75:12:de:d1:23:2a:6d:38: b0:43:3e:76:8e:05:ca:46:31:2f:3c:d4:92:08:1e:64:d9:02: 46:09:ec:64:3e:7f:12:63:c1:ee:33:e7:64:a4:13:83:bb:4b: 7d:d0:23:27:6b:7c:ad:2f:aa:e4:3b:c0:c3:61:ea:f8:49:8e: 7f:bc:28:cf:ef:56:5a:93:f1:64:dd:5c:83:7b:21:d8:d1:16: 53:d4:cc:b2:21:7a:ff:e7:2f:1d:d0:7f:8c:04:9a:20:f8:9d: 87:ea:50:a8:c4:15:d5:23:52:92:34:d3:d3:57:1c:69:be:9d: 0f:b6:fb:51:0d:98:72:a7:19:06:49:0f:d4:6a:09:91:ee:2e: 81:35:ce:4c:39:41:5e:0f:fd:f5:af:1c:d3:43:9b:bd:db:fc: 0b:c0:17:c4:fe:ac:67:8e:11:dc:a2:dd:29:3b:71:10:82:17: 7e:99:5c:ac:c9:fd:fb:02:90:44:38:93:04:23:16:60:5a:93: 37:3f:00:7f -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgIUemwpzWgru5oBZR/782axcmGq3CwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0Y2MjgxNDA0NEVERjhCNUU3N0QyQjgyMDk1QkY2NjI3 RTEzNkY0QjAeFw0yNjA1MDMwMjQ5MzZaFw0yNzA1MDIwMjU0MzZaMDMxMTAvBgNV BAMTKDQ3MzE2QzQ0MkJDQjk5OTcyNjJEOTQ5Q0ZBN0ZCQjQzMzJDMTQyRjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCbkAYZcLq7gXhBgZjXyu8lrm7E YaVw9dDwdmKTaYWa14MjGi5Jc6FgwDjwroCdMpwtumjQagOZdStBMMOoh5k5ZMRx 5D0HKz363+ur2dIcEB7w+r2U2BUDAUY+Kbn+L3m7zqKiUCOdJGGhwXsPQ+U8I6ia qzQAdwKCrZFhIQjrucY9H+YXAgZNOYK4GwLfM+VMp/xFbEgSRNif91GbJysXKmJQ A5btoU0cX3YiUvmZSTgR7on9RgCs1hodLIbPEQrp/sMexOShmTeTIrGwXxjT2yHc +Qz+AwGpQx/64MXgDLN3czb9zi5e7KTyAZLRh7MJpVta/viqG+2FKeCj/rTXAgMB AAGjggI1MIICMTAdBgNVHQ4EFgQURzFsRCvLmZcmLZSc+n+7QzLBQvQwHwYDVR0j BBgwFoAUP2KBQETt+LXnfSuCCVv2Yn4Tb0swDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v OWM4NWM2YjktMzRmOS00YTg1LTljZWEtYzE2ZTk4YThiNWUwLzAvM0Y2MjgxNDA0 NEVERjhCNUU3N0QyQjgyMDk1QkY2NjI3RTEzNkY0Qi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8zRjYyODE0MDQ0RURGOEI1RTc3RDJCODIwOTVCRjY2MjdFMTM2 RjRCLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzljODVjNmI5LTM0ZjktNGE4NS05 Y2VhLWMxNmU5OGE4YjVlMC8wLzMyMzQzMDM0M2EzNTY0MzQzMDNhM2EyZjM0Mzgy ZDM0MzgyMDNkM2UyMDMxMzMzODM1MzkzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQEXUAAADANBgkq hkiG9w0BAQsFAAOCAQEAb4mwqXF0demK2SFiaKz2B29kcdPmeroPTIPBOV9a0Hh3 xaTSaw9FceR/KH96fDb8rM2dnm7J6rU+qXfQc5PbHXUS3tEjKm04sEM+do4FykYx LzzUkggeZNkCRgnsZD5/EmPB7jPnZKQTg7tLfdAjJ2t8rS+q5DvAw2Hq+EmOf7wo z+9WWpPxZN1cg3sh2NEWU9TMsiF6/+cvHdB/jASaIPidh+pQqMQV1SNSkjTT01cc ab6dD7b7UQ2YcqcZBkkP1GoJke4ugTXOTDlBXg/99a8c00Obvdv8C8AXxP6sZ44R 3KLdKTtxEIIXfplcrMn9+wKQRDiTBCMWYFqTNz8Afw== -----END CERTIFICATE-----Generated at Wed May 13 06:48:31 2026 by rpki-client