$ rpki-client -vvf rpki-rsync.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/323430313a616530303a313a3a2f34382d3438203d3e203338373533.roa File: 323430313a616530303a313a3a2f34382d3438203d3e203338373533.roa (raw, json) Hash identifier: Yp4AlMzcVYyyGS+YY72MKg5SMHdwjMcmGiC3OjnXSZQ= Subject key identifier: FE:13:AC:14:58:4C:97:DD:36:9C:14:8A:B9:7A:57:80:10:5A:33:EC Certificate issuer: /CN=955AF2D41C7C84BFE354F8648EE3271584452C79 Certificate serial: 72D1D470168527422AF60688CC8BB36505AB3932 Authority key identifier: 95:5A:F2:D4:1C:7C:84:BF:E3:54:F8:64:8E:E3:27:15:84:45:2C:79 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/955AF2D41C7C84BFE354F8648EE3271584452C79.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/323430313a616530303a313a3a2f34382d3438203d3e203338373533.roa Signing time: Sun 03 May 2026 02:55:23 +0000 ROA not before: Sun 03 May 2026 02:50:23 +0000 ROA not after: Sun 02 May 2027 02:55:23 +0000 asID: 38753 IP address blocks: 2401:ae00:1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/955AF2D41C7C84BFE354F8648EE3271584452C79.crl rsync://rpki-rsync.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/955AF2D41C7C84BFE354F8648EE3271584452C79.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/955AF2D41C7C84BFE354F8648EE3271584452C79.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 19:15:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:d1:d4:70:16:85:27:42:2a:f6:06:88:cc:8b:b3:65:05:ab:39:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=955AF2D41C7C84BFE354F8648EE3271584452C79 Validity Not Before: May 3 02:50:23 2026 GMT Not After : May 2 02:55:23 2027 GMT Subject: CN=FE13AC14584C97DD369C148AB97A5780105A33EC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:8a:d8:bb:df:6b:af:9a:d6:ac:28:fe:bb:81: e2:b0:49:dd:c0:1c:0d:c4:df:0c:0e:7e:de:2c:a5: 95:11:52:05:d5:e2:68:21:36:9e:5b:43:70:e9:f0: dc:f2:0a:ab:29:50:4e:2d:c8:60:cf:86:8c:f0:23: 08:51:93:a5:12:1f:7c:ec:f3:43:c1:1f:a4:9f:d9: a0:25:33:55:7f:f0:b6:0f:a0:8b:ca:db:47:e7:03: 48:66:9c:a7:87:03:2c:5b:58:29:43:ac:72:6c:a2: 32:e1:d6:3d:3e:6b:dc:8e:2a:ce:f0:ba:e1:ee:98: 6d:d9:e6:d3:45:91:38:ab:c5:61:5b:f3:df:7e:a9: 62:8d:4b:16:75:20:dc:7b:06:6a:ee:f8:4c:4d:38: 34:e1:b6:19:14:28:17:c7:17:67:a9:2e:d9:0b:89: 37:27:b3:66:6d:d3:ac:4d:aa:85:1d:5c:0a:c1:26: 8c:ad:c1:4e:01:6d:dd:52:d3:8a:25:64:cd:4f:49: 99:d6:ec:2c:0b:11:3e:91:58:cf:ee:7b:29:25:8e: d2:b3:0b:90:a5:31:dd:01:74:e0:ce:9d:ad:ff:98: ff:ce:4f:73:11:da:7d:97:dc:00:9d:82:2c:10:a8: 8a:2a:84:a8:bd:5e:0f:2c:4b:cb:12:23:46:e7:62: e1:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:13:AC:14:58:4C:97:DD:36:9C:14:8A:B9:7A:57:80:10:5A:33:EC X509v3 Authority Key Identifier: keyid:95:5A:F2:D4:1C:7C:84:BF:E3:54:F8:64:8E:E3:27:15:84:45:2C:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/955AF2D41C7C84BFE354F8648EE3271584452C79.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/955AF2D41C7C84BFE354F8648EE3271584452C79.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/323430313a616530303a313a3a2f34382d3438203d3e203338373533.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:ae00:1::/48 Signature Algorithm: sha256WithRSAEncryption 2f:8d:7d:41:92:cf:48:81:6a:b0:66:e4:f5:a4:05:dd:1d:1c: 3f:73:48:a6:b3:c6:95:db:97:4b:09:ca:29:df:1f:6f:5a:8f: 5e:db:42:27:59:3d:aa:ed:ad:ec:d5:85:97:cd:2b:5b:81:d8: ed:61:19:e5:ce:fb:77:9b:54:53:ad:ee:da:a7:23:b4:91:45: 84:c7:72:16:b4:e0:f3:05:ee:15:f2:3a:43:83:36:2e:b4:20: b4:64:10:5d:9e:fc:a1:a4:23:38:cc:92:e2:d1:7f:58:57:c5: b0:9c:b8:4b:dd:cb:08:04:3a:bc:94:35:53:7b:27:bf:bd:f6: 95:ea:d0:fa:a8:75:2d:fc:84:e1:08:e8:6f:fe:9c:31:10:9f: 3a:96:1e:17:e9:77:1b:5b:5e:8a:ee:f0:57:70:80:6c:f8:b3: b1:9d:b3:64:c8:c3:ba:4b:da:33:7a:9e:85:8e:dd:45:50:a6: 01:f1:f9:2e:c4:cf:8e:0f:d1:b9:89:5d:3b:83:5b:6f:b9:18: 94:b2:23:9e:7a:b9:d2:e9:79:fe:03:de:57:3f:9a:4a:43:09: ff:af:7d:25:d3:2b:fa:34:66:a6:a7:a0:c2:40:e4:ba:b6:c0: 77:72:8c:29:3c:26:b9:e8:70:19:4a:ed:1f:33:67:29:37:da: f7:f1:75:02 -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUctHUcBaFJ0Iq9gaIzIuzZQWrOTIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTU1QUYyRDQxQzdDODRCRkUzNTRGODY0OEVFMzI3MTU4 NDQ1MkM3OTAeFw0yNjA1MDMwMjUwMjNaFw0yNzA1MDIwMjU1MjNaMDMxMTAvBgNV BAMTKEZFMTNBQzE0NTg0Qzk3REQzNjlDMTQ4QUI5N0E1NzgwMTA1QTMzRUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCriti732uvmtasKP67geKwSd3A HA3E3wwOft4spZURUgXV4mghNp5bQ3Dp8NzyCqspUE4tyGDPhozwIwhRk6USH3zs 80PBH6Sf2aAlM1V/8LYPoIvK20fnA0hmnKeHAyxbWClDrHJsojLh1j0+a9yOKs7w uuHumG3Z5tNFkTirxWFb899+qWKNSxZ1INx7Bmru+ExNODThthkUKBfHF2epLtkL iTcns2Zt06xNqoUdXArBJoytwU4Bbd1S04olZM1PSZnW7CwLET6RWM/ueykljtKz C5ClMd0BdODOna3/mP/OT3MR2n2X3ACdgiwQqIoqhKi9Xg8sS8sSI0bnYuEBAgMB AAGjggI3MIICMzAdBgNVHQ4EFgQU/hOsFFhMl902nBSKuXpXgBBaM+wwHwYDVR0j BBgwFoAUlVry1Bx8hL/jVPhkjuMnFYRFLHkwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YTA2YjY2NzMtNDdhMS00NWU1LWI2YzItNDJhYjhiNDc2MjQ5LzAvOTU1QUYyRDQx QzdDODRCRkUzNTRGODY0OEVFMzI3MTU4NDQ1MkM3OS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS85NTVBRjJENDFDN0M4NEJGRTM1NEY4NjQ4RUUzMjcxNTg0NDUy Qzc5LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2EwNmI2NjczLTQ3YTEtNDVlNS1i NmMyLTQyYWI4YjQ3NjI0OS8wLzMyMzQzMDMxM2E2MTY1MzAzMDNhMzEzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMzM4MzczNTMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAGuAAABMA0G CSqGSIb3DQEBCwUAA4IBAQAvjX1Bks9IgWqwZuT1pAXdHRw/c0ims8aV25dLCcop 3x9vWo9e20InWT2q7a3s1YWXzStbgdjtYRnlzvt3m1RTre7apyO0kUWEx3IWtODz Be4V8jpDgzYutCC0ZBBdnvyhpCM4zJLi0X9YV8WwnLhL3csIBDq8lDVTeye/vfaV 6tD6qHUt/IThCOhv/pwxEJ86lh4X6XcbW16K7vBXcIBs+LOxnbNkyMO6S9ozep6F jt1FUKYB8fkuxM+OD9G5iV07g1tvuRiUsiOeernS6Xn+A95XP5pKQwn/r30l0yv6 NGamp6DCQOS6tsB3cowpPCa56HAZSu0fM2cpN9r38XUC -----END CERTIFICATE-----Generated at Wed May 13 12:24:37 2026 by rpki-client