$ rpki-client -vvf rpki-rsync.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/323430313a616530303a3a2f34382d3438203d3e203338373533.roa File: 323430313a616530303a3a2f34382d3438203d3e203338373533.roa (raw, json) Hash identifier: aStDmp310WlBA0VZRXWeth1+G9laMEVxTxGcBViXPnQ= Subject key identifier: 26:B9:5A:AC:E5:BF:F7:57:71:CD:87:D0:E1:CB:76:87:03:BA:DC:78 Certificate issuer: /CN=955AF2D41C7C84BFE354F8648EE3271584452C79 Certificate serial: 3EB47A18614428B808A9C680840DC30A6FD9833B Authority key identifier: 95:5A:F2:D4:1C:7C:84:BF:E3:54:F8:64:8E:E3:27:15:84:45:2C:79 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/955AF2D41C7C84BFE354F8648EE3271584452C79.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/323430313a616530303a3a2f34382d3438203d3e203338373533.roa Signing time: Sun 03 May 2026 02:55:24 +0000 ROA not before: Sun 03 May 2026 02:50:24 +0000 ROA not after: Sun 02 May 2027 02:55:24 +0000 asID: 38753 IP address blocks: 2401:ae00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/955AF2D41C7C84BFE354F8648EE3271584452C79.crl rsync://rpki-rsync.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/955AF2D41C7C84BFE354F8648EE3271584452C79.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/955AF2D41C7C84BFE354F8648EE3271584452C79.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 19:15:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:b4:7a:18:61:44:28:b8:08:a9:c6:80:84:0d:c3:0a:6f:d9:83:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=955AF2D41C7C84BFE354F8648EE3271584452C79 Validity Not Before: May 3 02:50:24 2026 GMT Not After : May 2 02:55:24 2027 GMT Subject: CN=26B95AACE5BFF75771CD87D0E1CB768703BADC78 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:4b:93:0b:ab:9c:ec:a8:dd:93:b1:40:4f:05: 1f:03:70:83:c5:06:d8:ab:5b:6e:5e:74:67:6e:d5: 44:07:e6:8f:e7:5b:92:c4:b3:e0:d8:54:bc:ea:58: 79:c8:de:a3:03:ad:72:65:69:44:8f:1b:f1:88:93: df:c8:7b:d0:95:51:58:90:08:16:a1:f3:07:70:af: 42:d4:dc:99:f8:d1:96:1d:5f:dc:57:14:60:12:97: 90:a0:e7:79:86:3e:cd:da:f1:f3:84:c9:49:9b:b9: fd:bd:7e:e1:33:b8:8f:d7:e7:fb:70:60:9f:e9:ac: 74:e2:f4:af:b8:88:4f:2e:4a:d1:4d:f1:8b:74:83: b5:ee:90:cc:68:73:76:a5:22:20:81:99:0e:ce:c8: ea:df:00:1e:46:4a:fe:5a:0c:6d:d4:0b:45:3e:fd: 09:c8:20:7b:74:90:8d:9e:c1:8a:0a:29:84:d3:b5: c5:1b:46:32:19:fb:10:34:b0:b1:7c:a4:38:e2:a5: 00:60:e0:b6:81:29:d3:f1:9f:97:c9:6b:f6:ed:86: 54:34:23:ba:4e:b9:c2:33:da:36:0c:70:68:a4:e0: a0:9f:4c:19:1b:ef:41:ea:4e:aa:17:22:a0:2d:a8: 49:f9:a2:da:81:d8:54:95:46:6d:09:b3:1c:00:a1: 42:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:B9:5A:AC:E5:BF:F7:57:71:CD:87:D0:E1:CB:76:87:03:BA:DC:78 X509v3 Authority Key Identifier: keyid:95:5A:F2:D4:1C:7C:84:BF:E3:54:F8:64:8E:E3:27:15:84:45:2C:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/955AF2D41C7C84BFE354F8648EE3271584452C79.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/955AF2D41C7C84BFE354F8648EE3271584452C79.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/323430313a616530303a3a2f34382d3438203d3e203338373533.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:ae00::/48 Signature Algorithm: sha256WithRSAEncryption 97:05:5b:12:f4:09:fe:6b:3a:ec:41:e4:b3:4e:b2:a0:3c:0d: 9c:19:b9:69:36:2a:44:e1:7d:45:16:6a:40:9e:73:4c:8c:dd: c0:e6:f3:1e:5c:11:26:d9:25:31:64:a8:05:9e:ed:06:6a:3b: 1f:ff:05:45:85:0e:d9:06:60:17:fb:58:dd:15:b8:55:c0:07: 73:db:8c:79:11:00:05:db:84:dc:47:be:cc:e5:22:48:d0:80: 99:1b:59:38:b1:31:2f:a5:ca:eb:34:d0:5c:84:bb:16:b0:c4: 5f:a5:2f:6d:34:dc:fe:64:90:de:11:7d:4b:08:fe:27:6b:7d: e5:45:30:93:3b:68:ae:ee:ca:a7:df:85:bb:50:c8:cb:20:cc: 41:07:26:34:e9:2c:c0:d6:09:88:8b:2b:74:bc:12:f3:45:a4: 81:8a:0c:28:70:41:fa:83:1d:27:aa:59:f8:53:2d:32:c2:12: c8:72:7a:7d:89:89:da:dd:6f:89:0e:fd:21:8d:98:bd:e5:8c: 20:8c:fd:a9:b4:0b:8a:b6:fd:e8:f7:b3:a1:c9:c7:65:ac:08: bb:33:49:76:2c:2f:70:85:0c:44:f1:17:99:da:54:1c:b5:e6: d3:d6:11:dd:3d:c5:a1:ff:12:4a:ab:e8:1f:43:25:1c:c9:28: 59:96:0f:b4 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUPrR6GGFEKLgIqcaAhA3DCm/ZgzswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTU1QUYyRDQxQzdDODRCRkUzNTRGODY0OEVFMzI3MTU4 NDQ1MkM3OTAeFw0yNjA1MDMwMjUwMjRaFw0yNzA1MDIwMjU1MjRaMDMxMTAvBgNV BAMTKDI2Qjk1QUFDRTVCRkY3NTc3MUNEODdEMEUxQ0I3Njg3MDNCQURDNzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD2S5MLq5zsqN2TsUBPBR8DcIPF BtirW25edGdu1UQH5o/nW5LEs+DYVLzqWHnI3qMDrXJlaUSPG/GIk9/Ie9CVUViQ CBah8wdwr0LU3Jn40ZYdX9xXFGASl5Cg53mGPs3a8fOEyUmbuf29fuEzuI/X5/tw YJ/prHTi9K+4iE8uStFN8Yt0g7XukMxoc3alIiCBmQ7OyOrfAB5GSv5aDG3UC0U+ /QnIIHt0kI2ewYoKKYTTtcUbRjIZ+xA0sLF8pDjipQBg4LaBKdPxn5fJa/bthlQ0 I7pOucIz2jYMcGik4KCfTBkb70HqTqoXIqAtqEn5otqB2FSVRm0JsxwAoUJdAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUJrlarOW/91dxzYfQ4ct2hwO63HgwHwYDVR0j BBgwFoAUlVry1Bx8hL/jVPhkjuMnFYRFLHkwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YTA2YjY2NzMtNDdhMS00NWU1LWI2YzItNDJhYjhiNDc2MjQ5LzAvOTU1QUYyRDQx QzdDODRCRkUzNTRGODY0OEVFMzI3MTU4NDQ1MkM3OS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS85NTVBRjJENDFDN0M4NEJGRTM1NEY4NjQ4RUUzMjcxNTg0NDUy Qzc5LmNlcjCBoQYIKwYBBQUHAQsEgZQwgZEwgY4GCCsGAQUFBzALhoGBcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2EwNmI2NjczLTQ3YTEtNDVlNS1i NmMyLTQyYWI4YjQ3NjI0OS8wLzMyMzQzMDMxM2E2MTY1MzAzMDNhM2EyZjM0Mzgy ZDM0MzgyMDNkM2UyMDMzMzgzNzM1MzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkAa4AAAAwDQYJKoZI hvcNAQELBQADggEBAJcFWxL0Cf5rOuxB5LNOsqA8DZwZuWk2KkThfUUWakCec0yM 3cDm8x5cESbZJTFkqAWe7QZqOx//BUWFDtkGYBf7WN0VuFXAB3PbjHkRAAXbhNxH vszlIkjQgJkbWTixMS+lyus00FyEuxawxF+lL2003P5kkN4RfUsI/idrfeVFMJM7 aK7uyqffhbtQyMsgzEEHJjTpLMDWCYiLK3S8EvNFpIGKDChwQfqDHSeqWfhTLTLC Eshyen2Jidrdb4kO/SGNmL3ljCCM/am0C4q2/ej3s6HJx2WsCLszSXYsL3CFDETx F5naVBy15tPWEd09xaH/Ekqr6B9DJRzJKFmWD7Q= -----END CERTIFICATE-----Generated at Wed May 13 09:12:33 2026 by rpki-client