$ rpki-client -vvf rpki-rsync.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/323430313a616530303a3130313a3a2f34382d3438203d3e203338373533.roa File: 323430313a616530303a3130313a3a2f34382d3438203d3e203338373533.roa (raw, json) Hash identifier: vmxBRwNdmgzibUSpFXO78tLcpgGuVVRF9GhyVBoLpGs= Subject key identifier: 1F:AF:F4:BD:21:7E:FE:61:16:69:4D:00:3D:00:B3:6D:63:CB:F2:07 Certificate issuer: /CN=955AF2D41C7C84BFE354F8648EE3271584452C79 Certificate serial: 4F40608D6FCE6DC2C2F272E6B93612A3862EA856 Authority key identifier: 95:5A:F2:D4:1C:7C:84:BF:E3:54:F8:64:8E:E3:27:15:84:45:2C:79 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/955AF2D41C7C84BFE354F8648EE3271584452C79.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/323430313a616530303a3130313a3a2f34382d3438203d3e203338373533.roa Signing time: Sun 03 May 2026 02:55:20 +0000 ROA not before: Sun 03 May 2026 02:50:20 +0000 ROA not after: Sun 02 May 2027 02:55:20 +0000 asID: 38753 IP address blocks: 2401:ae00:101::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/955AF2D41C7C84BFE354F8648EE3271584452C79.crl rsync://rpki-rsync.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/955AF2D41C7C84BFE354F8648EE3271584452C79.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/955AF2D41C7C84BFE354F8648EE3271584452C79.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 10:27:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:40:60:8d:6f:ce:6d:c2:c2:f2:72:e6:b9:36:12:a3:86:2e:a8:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=955AF2D41C7C84BFE354F8648EE3271584452C79 Validity Not Before: May 3 02:50:20 2026 GMT Not After : May 2 02:55:20 2027 GMT Subject: CN=1FAFF4BD217EFE6116694D003D00B36D63CBF207 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:3a:27:2f:2a:a2:5a:ce:af:7c:b5:8b:b9:23: 2b:90:eb:e6:3d:86:6e:f1:cb:46:bb:2c:08:37:ef: d7:55:79:6b:c1:f1:81:01:e6:5c:d6:79:5f:e5:dc: 9f:e2:75:ad:9b:8c:37:84:3f:d5:ae:9d:f6:7d:f9: 2d:b2:22:7b:c4:01:85:80:08:fb:1f:9a:2d:19:ef: b5:04:35:97:2f:3d:27:0f:58:0c:9f:26:b6:76:7a: c6:2b:c1:3b:8c:62:5c:70:0e:1a:a3:ef:7e:2d:0a: e5:d1:87:ad:3a:05:0c:50:19:ee:81:c4:87:11:5b: 7a:d0:f3:c4:4b:00:80:57:b8:f9:45:76:61:d7:a6: a9:78:51:ae:34:db:96:22:e1:a3:0d:c7:bd:29:5a: 1c:3e:11:53:3d:d6:38:36:44:9a:eb:15:ff:a6:25: aa:39:24:2d:d3:45:65:5d:41:9d:90:71:7f:2a:26: fb:0f:3a:b9:d7:c6:80:03:9b:2c:0a:2e:4f:38:b1: bc:a3:45:80:53:46:1c:79:0f:06:77:43:05:38:b1: 65:d0:44:34:93:ea:0e:91:d8:63:83:03:f1:5a:21: bc:e4:db:b0:90:ea:bc:dd:8a:f1:40:ac:d6:ec:a1: d2:bb:ff:7f:e7:cd:31:06:ba:5e:11:50:2f:61:4e: 6c:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:AF:F4:BD:21:7E:FE:61:16:69:4D:00:3D:00:B3:6D:63:CB:F2:07 X509v3 Authority Key Identifier: keyid:95:5A:F2:D4:1C:7C:84:BF:E3:54:F8:64:8E:E3:27:15:84:45:2C:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/955AF2D41C7C84BFE354F8648EE3271584452C79.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/955AF2D41C7C84BFE354F8648EE3271584452C79.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/323430313a616530303a3130313a3a2f34382d3438203d3e203338373533.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:ae00:101::/48 Signature Algorithm: sha256WithRSAEncryption 30:bd:44:68:f9:7a:a4:27:a5:5c:a3:69:a9:4c:ed:4b:c5:db: 60:5b:4c:23:1f:2b:c4:7d:82:63:e5:73:4f:77:15:a2:22:26: 79:d0:8e:4b:fb:20:67:dd:15:df:81:12:e1:a4:a0:9a:c4:71: 88:67:9c:66:08:38:02:74:4c:b2:9c:65:f9:45:46:0e:95:b1: 5b:44:69:f3:30:7a:26:1b:07:cd:d7:aa:6a:1e:f4:66:97:06: 62:ab:46:ac:e6:83:6f:69:d5:7f:73:be:32:99:b2:d9:1a:32: 45:16:16:eb:74:9a:2d:84:93:d1:63:d5:9a:8e:00:e8:c5:fb: e0:69:85:1b:73:ac:88:ff:f1:bb:f2:9a:00:55:46:08:ba:be: 89:2c:cf:bb:17:1f:25:64:97:e7:5a:2d:24:6e:02:86:7f:be: dd:e4:0b:fc:b6:8a:fa:bb:b3:3c:47:85:03:ec:22:1d:8c:0f: 77:4f:28:33:70:94:54:4f:fe:72:96:b9:89:85:52:0e:c8:91: 64:76:4e:09:3e:49:e6:12:3e:35:a0:e7:07:fb:3c:a6:27:48: c9:bc:9c:3c:e8:84:5d:a1:40:01:c3:bb:72:a5:ba:08:9f:7c: 31:1e:90:0e:5a:bb:3d:bb:7f:ea:36:c3:d3:22:a3:45:4e:6e: 3f:3e:f4:b2 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUT0BgjW/ObcLC8nLmuTYSo4YuqFYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTU1QUYyRDQxQzdDODRCRkUzNTRGODY0OEVFMzI3MTU4 NDQ1MkM3OTAeFw0yNjA1MDMwMjUwMjBaFw0yNzA1MDIwMjU1MjBaMDMxMTAvBgNV BAMTKDFGQUZGNEJEMjE3RUZFNjExNjY5NEQwMDNEMDBCMzZENjNDQkYyMDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCsOicvKqJazq98tYu5IyuQ6+Y9 hm7xy0a7LAg379dVeWvB8YEB5lzWeV/l3J/ida2bjDeEP9WunfZ9+S2yInvEAYWA CPsfmi0Z77UENZcvPScPWAyfJrZ2esYrwTuMYlxwDhqj734tCuXRh606BQxQGe6B xIcRW3rQ88RLAIBXuPlFdmHXpql4Ua4025Yi4aMNx70pWhw+EVM91jg2RJrrFf+m Jao5JC3TRWVdQZ2QcX8qJvsPOrnXxoADmywKLk84sbyjRYBTRhx5DwZ3QwU4sWXQ RDST6g6R2GODA/FaIbzk27CQ6rzdivFArNbsodK7/3/nzTEGul4RUC9hTmxrAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUH6/0vSF+/mEWaU0APQCzbWPL8gcwHwYDVR0j BBgwFoAUlVry1Bx8hL/jVPhkjuMnFYRFLHkwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YTA2YjY2NzMtNDdhMS00NWU1LWI2YzItNDJhYjhiNDc2MjQ5LzAvOTU1QUYyRDQx QzdDODRCRkUzNTRGODY0OEVFMzI3MTU4NDQ1MkM3OS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS85NTVBRjJENDFDN0M4NEJGRTM1NEY4NjQ4RUUzMjcxNTg0NDUy Qzc5LmNlcjCBqQYIKwYBBQUHAQsEgZwwgZkwgZYGCCsGAQUFBzALhoGJcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2EwNmI2NjczLTQ3YTEtNDVlNS1i NmMyLTQyYWI4YjQ3NjI0OS8wLzMyMzQzMDMxM2E2MTY1MzAzMDNhMzEzMDMxM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzMzODM3MzUzMy5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQBrgAB ATANBgkqhkiG9w0BAQsFAAOCAQEAML1EaPl6pCelXKNpqUztS8XbYFtMIx8rxH2C Y+VzT3cVoiImedCOS/sgZ90V34ES4aSgmsRxiGecZgg4AnRMspxl+UVGDpWxW0Rp 8zB6JhsHzdeqah70ZpcGYqtGrOaDb2nVf3O+Mpmy2RoyRRYW63SaLYST0WPVmo4A 6MX74GmFG3OsiP/xu/KaAFVGCLq+iSzPuxcfJWSX51otJG4Chn++3eQL/LaK+ruz PEeFA+wiHYwPd08oM3CUVE/+cpa5iYVSDsiRZHZOCT5J5hI+NaDnB/s8pidIybyc POiEXaFAAcO7cqW6CJ98MR6QDlq7Pbt/6jbD0yKjRU5uPz70sg== -----END CERTIFICATE-----Generated at Wed May 13 14:50:19 2026 by rpki-client