$ rpki-client -vvf rpki-rsync.idnic.net/repo/a36a2171-12a0-4e01-bcab-be3b6b836f5d/0/323430373a366163303a31303a3a2f34382d3438203d3e20313431393638.roa File: 323430373a366163303a31303a3a2f34382d3438203d3e20313431393638.roa (raw, json) Hash identifier: mazZEIAiOuG4KpGr5hwlPA5N57EIEV/LQkQcu7NU8cw= Subject key identifier: 16:2D:78:73:19:8C:E8:4F:37:46:CE:47:70:EF:F8:5E:A2:8A:27:33 Certificate issuer: /CN=54F7A008D9BBE9D5D539336425D4B8FD368DBB22 Certificate serial: 130257D9D18E2CA677714F416613FFD4B8666248 Authority key identifier: 54:F7:A0:08:D9:BB:E9:D5:D5:39:33:64:25:D4:B8:FD:36:8D:BB:22 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/54F7A008D9BBE9D5D539336425D4B8FD368DBB22.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/a36a2171-12a0-4e01-bcab-be3b6b836f5d/0/323430373a366163303a31303a3a2f34382d3438203d3e20313431393638.roa Signing time: Sun 03 May 2026 02:56:20 +0000 ROA not before: Sun 03 May 2026 02:51:20 +0000 ROA not after: Sun 02 May 2027 02:56:20 +0000 asID: 141968 IP address blocks: 2407:6ac0:10::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/a36a2171-12a0-4e01-bcab-be3b6b836f5d/0/54F7A008D9BBE9D5D539336425D4B8FD368DBB22.crl rsync://rpki-rsync.idnic.net/repo/a36a2171-12a0-4e01-bcab-be3b6b836f5d/0/54F7A008D9BBE9D5D539336425D4B8FD368DBB22.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/54F7A008D9BBE9D5D539336425D4B8FD368DBB22.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 23:19:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:02:57:d9:d1:8e:2c:a6:77:71:4f:41:66:13:ff:d4:b8:66:62:48 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=54F7A008D9BBE9D5D539336425D4B8FD368DBB22 Validity Not Before: May 3 02:51:20 2026 GMT Not After : May 2 02:56:20 2027 GMT Subject: CN=162D7873198CE84F3746CE4770EFF85EA28A2733 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:87:6a:84:25:74:1a:aa:b8:f8:32:7f:58:a9: 18:5a:da:a6:6d:7a:7a:4f:88:3d:76:10:3e:91:9e: c4:a3:35:11:87:50:d7:6f:7c:ed:29:95:b9:d6:86: e5:eb:55:12:f3:a6:cf:5e:71:59:e9:0b:07:f0:83: 9c:cd:be:08:23:60:1d:da:3f:cf:90:21:38:79:b5: e5:5c:04:30:5b:2c:13:98:2d:26:7e:63:c8:4d:82: 89:ae:bb:6e:8c:02:c2:03:c6:bc:11:18:dd:41:67: d6:e6:66:cb:c2:64:31:d0:15:b9:19:c2:91:60:f0: 28:25:ad:4b:75:cc:cc:74:c4:34:a9:b6:11:5b:c1: 81:ec:d4:29:05:90:6f:1d:58:19:99:83:b8:95:e8: bd:3e:a1:8d:90:6b:3b:03:34:09:be:cd:74:69:f6: 01:05:63:2e:32:8a:40:cd:c1:cb:79:8c:ed:be:65: 87:4f:77:9a:ad:33:b5:73:69:e0:f7:17:17:7f:54: 9a:da:e7:92:20:57:aa:13:6f:ac:46:22:8b:31:a7: 7e:16:90:7a:7a:75:0d:cd:68:df:59:e8:47:25:3d: 0a:da:ae:73:01:89:6e:09:02:e1:09:b9:d6:e3:be: df:cd:ef:a7:cf:5b:f0:7a:31:9a:43:cc:26:47:9f: b0:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:2D:78:73:19:8C:E8:4F:37:46:CE:47:70:EF:F8:5E:A2:8A:27:33 X509v3 Authority Key Identifier: keyid:54:F7:A0:08:D9:BB:E9:D5:D5:39:33:64:25:D4:B8:FD:36:8D:BB:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/a36a2171-12a0-4e01-bcab-be3b6b836f5d/0/54F7A008D9BBE9D5D539336425D4B8FD368DBB22.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/54F7A008D9BBE9D5D539336425D4B8FD368DBB22.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/a36a2171-12a0-4e01-bcab-be3b6b836f5d/0/323430373a366163303a31303a3a2f34382d3438203d3e20313431393638.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2407:6ac0:10::/48 Signature Algorithm: sha256WithRSAEncryption 22:a9:95:f2:4a:93:98:12:e8:ad:02:90:d0:ab:fd:31:e4:28: fa:34:12:07:fe:f3:e2:05:8d:5a:14:45:d8:50:ab:62:a6:07: 72:50:21:b3:ad:8f:c6:18:f8:c5:26:37:29:c3:97:65:43:0f: bc:24:b3:8e:d7:28:03:8a:e8:6c:10:56:01:91:0e:25:ea:fc: 2f:59:0d:71:49:17:55:00:c2:c6:c3:fe:df:d7:6c:33:fd:12: 4f:27:96:29:81:e2:84:6e:9d:b0:ce:68:f0:60:b5:9a:c1:19: bd:d7:9f:8c:33:e4:c3:86:4a:91:37:71:94:ba:2c:43:e7:1f: 81:91:74:d4:ba:6d:ad:c0:83:c9:f0:fc:d9:07:71:32:a0:2e: b6:8e:d7:bd:4f:76:ee:f0:d6:59:24:d9:75:0a:dc:3b:1d:09: 84:e2:d4:dd:c2:29:77:92:b6:6e:3d:90:e1:40:58:09:26:25: f7:fe:c6:40:0f:f9:fe:78:b7:e2:2c:c7:f0:3b:f0:2e:d1:62: 3b:58:89:f3:29:ab:af:49:17:62:d9:bd:3b:65:f4:06:44:c2: b4:3d:6a:8b:98:0b:4f:3e:c7:2e:ab:87:bd:5c:84:c8:31:ec: 45:7f:4d:23:b4:cd:68:d1:e8:52:95:be:0e:31:ea:85:b3:e3: 3e:9c:6b:06 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUEwJX2dGOLKZ3cU9BZhP/1LhmYkgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTRGN0EwMDhEOUJCRTlENUQ1MzkzMzY0MjVENEI4RkQz NjhEQkIyMjAeFw0yNjA1MDMwMjUxMjBaFw0yNzA1MDIwMjU2MjBaMDMxMTAvBgNV BAMTKDE2MkQ3ODczMTk4Q0U4NEYzNzQ2Q0U0NzcwRUZGODVFQTI4QTI3MzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCdh2qEJXQaqrj4Mn9YqRha2qZt enpPiD12ED6RnsSjNRGHUNdvfO0plbnWhuXrVRLzps9ecVnpCwfwg5zNvggjYB3a P8+QITh5teVcBDBbLBOYLSZ+Y8hNgomuu26MAsIDxrwRGN1BZ9bmZsvCZDHQFbkZ wpFg8CglrUt1zMx0xDSpthFbwYHs1CkFkG8dWBmZg7iV6L0+oY2QazsDNAm+zXRp 9gEFYy4yikDNwct5jO2+ZYdPd5qtM7VzaeD3Fxd/VJra55IgV6oTb6xGIosxp34W kHp6dQ3NaN9Z6EclPQrarnMBiW4JAuEJudbjvt/N76fPW/B6MZpDzCZHn7BzAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUFi14cxmM6E83Rs5HcO/4XqKKJzMwHwYDVR0j BBgwFoAUVPegCNm76dXVOTNkJdS4/TaNuyIwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YTM2YTIxNzEtMTJhMC00ZTAxLWJjYWItYmUzYjZiODM2ZjVkLzAvNTRGN0EwMDhE OUJCRTlENUQ1MzkzMzY0MjVENEI4RkQzNjhEQkIyMi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS81NEY3QTAwOEQ5QkJFOUQ1RDUzOTMzNjQyNUQ0QjhGRDM2OERC QjIyLmNlcjCBqQYIKwYBBQUHAQsEgZwwgZkwgZYGCCsGAQUFBzALhoGJcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2EzNmEyMTcxLTEyYTAtNGUwMS1i Y2FiLWJlM2I2YjgzNmY1ZC8wLzMyMzQzMDM3M2EzNjYxNjMzMDNhMzEzMDNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzQzMTM5MzYzOC5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQHasAA EDANBgkqhkiG9w0BAQsFAAOCAQEAIqmV8kqTmBLorQKQ0Kv9MeQo+jQSB/7z4gWN WhRF2FCrYqYHclAhs62Pxhj4xSY3KcOXZUMPvCSzjtcoA4robBBWAZEOJer8L1kN cUkXVQDCxsP+39dsM/0STyeWKYHihG6dsM5o8GC1msEZvdefjDPkw4ZKkTdxlLos Q+cfgZF01LptrcCDyfD82QdxMqAuto7XvU927vDWWSTZdQrcOx0JhOLU3cIpd5K2 bj2Q4UBYCSYl9/7GQA/5/ni34izH8DvwLtFiO1iJ8ymrr0kXYtm9O2X0BkTCtD1q i5gLTz7HLquHvVyEyDHsRX9NI7TNaNHoUpW+DjHqhbPjPpxrBg== -----END CERTIFICATE-----Generated at Wed May 13 05:57:49 2026 by rpki-client