$ rpki-client -vvf rpki-rsync.idnic.net/repo/a36a2171-12a0-4e01-bcab-be3b6b836f5d/0/323430373a366163303a3a2f33322d3332203d3e20313431393638.roa File: 323430373a366163303a3a2f33322d3332203d3e20313431393638.roa (raw, json) Hash identifier: WQR96xVbOR8YHfuDPH4pCwZMpccOELsvadx46Qaje3c= Subject key identifier: 74:A6:9B:C5:EF:F8:C3:78:76:57:56:2E:70:37:78:56:51:A8:77:42 Certificate issuer: /CN=54F7A008D9BBE9D5D539336425D4B8FD368DBB22 Certificate serial: 7BB019EB30FE98522429712496572FF0CDEDCA4E Authority key identifier: 54:F7:A0:08:D9:BB:E9:D5:D5:39:33:64:25:D4:B8:FD:36:8D:BB:22 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/54F7A008D9BBE9D5D539336425D4B8FD368DBB22.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/a36a2171-12a0-4e01-bcab-be3b6b836f5d/0/323430373a366163303a3a2f33322d3332203d3e20313431393638.roa Signing time: Sun 03 May 2026 02:56:19 +0000 ROA not before: Sun 03 May 2026 02:51:19 +0000 ROA not after: Sun 02 May 2027 02:56:19 +0000 asID: 141968 IP address blocks: 2407:6ac0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/a36a2171-12a0-4e01-bcab-be3b6b836f5d/0/54F7A008D9BBE9D5D539336425D4B8FD368DBB22.crl rsync://rpki-rsync.idnic.net/repo/a36a2171-12a0-4e01-bcab-be3b6b836f5d/0/54F7A008D9BBE9D5D539336425D4B8FD368DBB22.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/54F7A008D9BBE9D5D539336425D4B8FD368DBB22.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 23:19:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:b0:19:eb:30:fe:98:52:24:29:71:24:96:57:2f:f0:cd:ed:ca:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=54F7A008D9BBE9D5D539336425D4B8FD368DBB22 Validity Not Before: May 3 02:51:19 2026 GMT Not After : May 2 02:56:19 2027 GMT Subject: CN=74A69BC5EFF8C3787657562E7037785651A87742 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:63:b5:72:c3:55:0f:6d:9d:47:94:af:5b:a6: 1f:73:da:ce:8f:98:ec:db:27:c5:fd:f4:6d:51:b1: 86:da:c0:66:07:fe:ff:ac:3a:f1:02:dc:ec:61:be: ba:29:3d:1c:cb:1e:34:fa:f9:ef:04:8e:ca:c4:9c: 76:f4:84:3e:bd:24:c8:94:ce:89:fa:dc:c5:55:86: 94:4f:75:4e:96:d6:db:05:59:36:8e:4c:c4:60:cb: d3:9e:33:c3:c9:5c:c6:63:5d:18:b9:34:6f:44:b7: 7c:2f:14:0a:8d:68:33:a9:93:31:20:80:9f:5e:e0: 4c:50:95:d2:b5:28:0d:58:6e:17:66:87:4a:52:ad: d7:50:ce:77:af:91:7e:81:e2:09:09:b0:76:f5:ff: c3:b8:84:04:09:82:ce:9a:ac:30:8e:cf:ab:7c:ac: 60:66:9d:6e:ea:08:79:bd:c2:7b:fb:b4:eb:9f:fb: c0:1f:6e:9e:69:20:36:3b:63:71:d0:b4:75:15:47: 6b:71:d1:e4:6f:a7:7a:ca:c1:d2:2d:6c:f9:d4:e2: 5c:1f:59:88:55:54:ff:1f:20:88:2c:59:d0:a6:4c: 59:30:63:d0:17:ac:ea:94:5c:65:b0:33:2e:3f:67: a7:4a:08:ea:97:e9:6a:ac:27:ca:e3:87:7e:e6:1a: 77:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:A6:9B:C5:EF:F8:C3:78:76:57:56:2E:70:37:78:56:51:A8:77:42 X509v3 Authority Key Identifier: keyid:54:F7:A0:08:D9:BB:E9:D5:D5:39:33:64:25:D4:B8:FD:36:8D:BB:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/a36a2171-12a0-4e01-bcab-be3b6b836f5d/0/54F7A008D9BBE9D5D539336425D4B8FD368DBB22.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/54F7A008D9BBE9D5D539336425D4B8FD368DBB22.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/a36a2171-12a0-4e01-bcab-be3b6b836f5d/0/323430373a366163303a3a2f33322d3332203d3e20313431393638.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2407:6ac0::/32 Signature Algorithm: sha256WithRSAEncryption 66:9f:d5:9a:80:d3:3d:4a:c5:f3:e0:00:45:2a:d1:c7:eb:8b: 05:db:f8:3c:6f:d2:a0:c6:ab:0d:6e:3e:55:b4:29:dd:cc:84: d9:3a:17:39:5c:25:61:e5:fd:6d:ac:93:46:a8:e6:92:1b:0a: 69:e2:5a:d9:16:cd:df:59:27:85:0a:ed:6e:ff:c0:2d:2e:c6: 8c:75:1a:de:b9:57:60:05:7f:c8:28:42:e6:36:9d:d2:4e:5b: 06:91:b9:ce:ba:7b:fb:87:07:f1:36:11:5d:d6:a6:2a:1b:96: 5c:0c:7b:9f:4d:7c:2b:72:3b:9b:2b:dd:50:7e:bd:e6:1c:8c: 87:bf:52:dc:cd:d4:b3:19:3f:65:31:b0:f4:24:78:9b:f6:ee: 4f:78:73:71:7e:11:11:c9:04:0c:0a:24:3f:12:1f:0e:f3:39: 42:90:49:d1:19:17:dc:e8:f2:56:ab:dc:6d:d6:8a:98:da:33: cd:32:03:e9:e1:91:b6:c8:fc:f4:3d:db:59:bf:19:b4:6d:6b: c3:dc:43:59:0f:85:c7:2e:e4:07:57:1b:03:bc:88:3b:c5:d4: e7:84:2c:d8:64:37:9b:d9:67:c9:4e:7b:a5:45:cd:7d:c9:16: 8f:40:e0:da:88:ae:5e:dd:70:be:ab:c7:57:bd:5a:34:78:55: 45:51:96:71 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUe7AZ6zD+mFIkKXEkllcv8M3tyk4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTRGN0EwMDhEOUJCRTlENUQ1MzkzMzY0MjVENEI4RkQz NjhEQkIyMjAeFw0yNjA1MDMwMjUxMTlaFw0yNzA1MDIwMjU2MTlaMDMxMTAvBgNV BAMTKDc0QTY5QkM1RUZGOEMzNzg3NjU3NTYyRTcwMzc3ODU2NTFBODc3NDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAY7Vyw1UPbZ1HlK9bph9z2s6P mOzbJ8X99G1RsYbawGYH/v+sOvEC3OxhvropPRzLHjT6+e8EjsrEnHb0hD69JMiU zon63MVVhpRPdU6W1tsFWTaOTMRgy9OeM8PJXMZjXRi5NG9Et3wvFAqNaDOpkzEg gJ9e4ExQldK1KA1Ybhdmh0pSrddQznevkX6B4gkJsHb1/8O4hAQJgs6arDCOz6t8 rGBmnW7qCHm9wnv7tOuf+8Afbp5pIDY7Y3HQtHUVR2tx0eRvp3rKwdItbPnU4lwf WYhVVP8fIIgsWdCmTFkwY9AXrOqUXGWwMy4/Z6dKCOqX6WqsJ8rjh37mGnchAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUdKabxe/4w3h2V1YucDd4VlGod0IwHwYDVR0j BBgwFoAUVPegCNm76dXVOTNkJdS4/TaNuyIwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YTM2YTIxNzEtMTJhMC00ZTAxLWJjYWItYmUzYjZiODM2ZjVkLzAvNTRGN0EwMDhE OUJCRTlENUQ1MzkzMzY0MjVENEI4RkQzNjhEQkIyMi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS81NEY3QTAwOEQ5QkJFOUQ1RDUzOTMzNjQyNUQ0QjhGRDM2OERC QjIyLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2EzNmEyMTcxLTEyYTAtNGUwMS1i Y2FiLWJlM2I2YjgzNmY1ZC8wLzMyMzQzMDM3M2EzNjYxNjMzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzQzMTM5MzYzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQHasAwDQYJKoZI hvcNAQELBQADggEBAGaf1ZqA0z1KxfPgAEUq0cfriwXb+Dxv0qDGqw1uPlW0Kd3M hNk6FzlcJWHl/W2sk0ao5pIbCmniWtkWzd9ZJ4UK7W7/wC0uxox1Gt65V2AFf8go QuY2ndJOWwaRuc66e/uHB/E2EV3WpiobllwMe59NfCtyO5sr3VB+veYcjIe/UtzN 1LMZP2UxsPQkeJv27k94c3F+ERHJBAwKJD8SHw7zOUKQSdEZF9zo8lar3G3Wipja M80yA+nhkbbI/PQ921m/GbRta8PcQ1kPhccu5AdXGwO8iDvF1OeELNhkN5vZZ8lO e6VFzX3JFo9A4NqIrl7dcL6rx1e9WjR4VUVRlnE= -----END CERTIFICATE-----Generated at Wed May 13 05:48:04 2026 by rpki-client