$ rpki-client -vvf rpki-rsync.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/323430313a616530303a383a3a2f34382d3438203d3e203338373533.roa File: 323430313a616530303a383a3a2f34382d3438203d3e203338373533.roa (raw, json) Hash identifier: +arfhaqnvHvQCyZFxXy4+1jvqLY0KJc/vVBqN1YJZjk= Subject key identifier: 9F:6A:ED:A5:B7:3C:22:7B:B1:A4:80:D5:31:06:71:59:63:13:90:30 Certificate issuer: /CN=955AF2D41C7C84BFE354F8648EE3271584452C79 Certificate serial: 76EBB0B04F59E2E9E10391C49B151BAE4B17B2B9 Authority key identifier: 95:5A:F2:D4:1C:7C:84:BF:E3:54:F8:64:8E:E3:27:15:84:45:2C:79 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/955AF2D41C7C84BFE354F8648EE3271584452C79.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/323430313a616530303a383a3a2f34382d3438203d3e203338373533.roa Signing time: Sun 03 May 2026 02:55:21 +0000 ROA not before: Sun 03 May 2026 02:50:21 +0000 ROA not after: Sun 02 May 2027 02:55:21 +0000 asID: 38753 IP address blocks: 2401:ae00:8::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/955AF2D41C7C84BFE354F8648EE3271584452C79.crl rsync://rpki-rsync.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/955AF2D41C7C84BFE354F8648EE3271584452C79.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/955AF2D41C7C84BFE354F8648EE3271584452C79.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 19:15:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:eb:b0:b0:4f:59:e2:e9:e1:03:91:c4:9b:15:1b:ae:4b:17:b2:b9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=955AF2D41C7C84BFE354F8648EE3271584452C79 Validity Not Before: May 3 02:50:21 2026 GMT Not After : May 2 02:55:21 2027 GMT Subject: CN=9F6AEDA5B73C227BB1A480D53106715963139030 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:a2:3e:db:38:ac:81:47:a0:9e:7d:ea:be:45: d5:5d:15:e7:79:91:b0:c1:6d:83:1f:01:d7:d9:90: 20:06:65:e5:55:d4:6e:3c:be:b4:40:fd:ad:77:00: fd:83:f2:2e:7e:6f:6f:6e:34:73:7f:e9:66:16:6e: 14:28:b8:4c:ec:ef:d5:38:c6:09:52:9f:14:ef:af: 05:8a:8b:96:c4:0b:ec:77:a4:04:a9:9b:29:48:6e: 75:46:ec:0a:b7:90:a1:da:27:37:72:e0:b1:c2:52: 65:f6:28:4a:1d:89:2b:23:98:07:56:99:9d:96:04: 29:b1:f9:d6:9d:27:61:6e:a5:45:a3:8b:d4:a0:cf: 7c:7e:18:b4:fc:f7:f2:7d:1d:5e:6c:9a:05:29:51: e0:ab:4d:ef:14:3c:ae:fa:45:dd:7d:ad:22:fc:22: 28:3f:34:e6:aa:a0:28:b1:12:e3:61:5a:35:2b:79: ee:cf:08:8b:e3:55:47:82:bd:41:5a:66:0d:11:c8: b2:83:63:34:d8:5f:71:b5:ea:9f:ee:5d:12:6f:c0: 3b:e9:f9:30:b1:db:2a:25:54:32:3c:20:2c:ea:c7: f2:9a:e5:30:70:9e:52:b6:e7:2c:64:59:99:79:9c: 4c:d1:f6:68:4c:5d:cd:fd:23:f6:e6:2a:c3:61:a8: a6:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:6A:ED:A5:B7:3C:22:7B:B1:A4:80:D5:31:06:71:59:63:13:90:30 X509v3 Authority Key Identifier: keyid:95:5A:F2:D4:1C:7C:84:BF:E3:54:F8:64:8E:E3:27:15:84:45:2C:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/955AF2D41C7C84BFE354F8648EE3271584452C79.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/955AF2D41C7C84BFE354F8648EE3271584452C79.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/323430313a616530303a383a3a2f34382d3438203d3e203338373533.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:ae00:8::/48 Signature Algorithm: sha256WithRSAEncryption 75:b1:69:d9:26:49:d6:fd:04:5c:28:bf:ab:f8:8f:d1:db:ce: 07:9e:da:64:8a:87:89:01:b8:9e:d2:a4:76:79:bb:09:97:4c: d2:71:b4:5f:ba:99:e7:54:a4:27:62:48:7d:4c:6f:8c:c2:54: 8a:d4:b0:52:e6:72:2f:e9:54:9b:90:72:56:dc:94:54:e0:3b: 28:35:fa:78:c8:fe:9e:72:2e:ae:a1:69:d2:11:d2:cb:60:06: 0f:77:04:e7:e2:2f:c9:18:4f:fe:69:7b:ea:19:cc:9b:e2:46: b3:21:a7:6b:db:e5:3c:6f:9b:cb:fd:c7:9e:e7:d2:31:80:e9: 4f:46:d7:25:92:71:f8:b0:dd:1d:ad:70:d7:46:eb:3d:82:96: f1:1d:6f:d6:f1:c9:4c:fd:9e:a2:b7:9e:a7:64:e9:e0:1c:cb: d3:bd:34:7a:9c:ea:99:12:44:65:6e:43:31:da:b9:a5:9a:e3: 27:ce:21:fc:a5:f7:55:65:0c:9b:26:79:90:df:5e:9e:84:54: 1f:19:e8:e5:01:6f:9d:72:52:a4:f4:e8:53:1d:73:98:ca:bc: be:56:38:2b:74:66:f5:41:fa:86:38:b2:3f:33:3a:47:25:bd: 28:90:13:a5:e9:27:b5:1f:98:25:22:d0:1e:b2:54:e8:5e:70: b6:cd:1e:60 -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUduuwsE9Z4unhA5HEmxUbrksXsrkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTU1QUYyRDQxQzdDODRCRkUzNTRGODY0OEVFMzI3MTU4 NDQ1MkM3OTAeFw0yNjA1MDMwMjUwMjFaFw0yNzA1MDIwMjU1MjFaMDMxMTAvBgNV BAMTKDlGNkFFREE1QjczQzIyN0JCMUE0ODBENTMxMDY3MTU5NjMxMzkwMzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCcoj7bOKyBR6Cefeq+RdVdFed5 kbDBbYMfAdfZkCAGZeVV1G48vrRA/a13AP2D8i5+b29uNHN/6WYWbhQouEzs79U4 xglSnxTvrwWKi5bEC+x3pASpmylIbnVG7Aq3kKHaJzdy4LHCUmX2KEodiSsjmAdW mZ2WBCmx+dadJ2FupUWji9Sgz3x+GLT89/J9HV5smgUpUeCrTe8UPK76Rd19rSL8 Iig/NOaqoCixEuNhWjUree7PCIvjVUeCvUFaZg0RyLKDYzTYX3G16p/uXRJvwDvp +TCx2yolVDI8ICzqx/Ka5TBwnlK25yxkWZl5nEzR9mhMXc39I/bmKsNhqKbZAgMB AAGjggI3MIICMzAdBgNVHQ4EFgQUn2rtpbc8InuxpIDVMQZxWWMTkDAwHwYDVR0j BBgwFoAUlVry1Bx8hL/jVPhkjuMnFYRFLHkwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YTA2YjY2NzMtNDdhMS00NWU1LWI2YzItNDJhYjhiNDc2MjQ5LzAvOTU1QUYyRDQx QzdDODRCRkUzNTRGODY0OEVFMzI3MTU4NDQ1MkM3OS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS85NTVBRjJENDFDN0M4NEJGRTM1NEY4NjQ4RUUzMjcxNTg0NDUy Qzc5LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2EwNmI2NjczLTQ3YTEtNDVlNS1i NmMyLTQyYWI4YjQ3NjI0OS8wLzMyMzQzMDMxM2E2MTY1MzAzMDNhMzgzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMzM4MzczNTMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAGuAAAIMA0G CSqGSIb3DQEBCwUAA4IBAQB1sWnZJknW/QRcKL+r+I/R284HntpkioeJAbie0qR2 ebsJl0zScbRfupnnVKQnYkh9TG+MwlSK1LBS5nIv6VSbkHJW3JRU4DsoNfp4yP6e ci6uoWnSEdLLYAYPdwTn4i/JGE/+aXvqGcyb4kazIadr2+U8b5vL/cee59IxgOlP RtclknH4sN0drXDXRus9gpbxHW/W8clM/Z6it56nZOngHMvTvTR6nOqZEkRlbkMx 2rmlmuMnziH8pfdVZQybJnmQ316ehFQfGejlAW+dclKk9OhTHXOYyry+VjgrdGb1 QfqGOLI/MzpHJb0okBOl6Se1H5glItAeslToXnC2zR5g -----END CERTIFICATE-----Generated at Wed May 13 11:18:41 2026 by rpki-client