$ rpki-client -vvf rpki-rsync.idnic.net/repo/a70dfb5a-845e-4ddf-aca7-a9b31c31dff4/0/323430373a623463303a31323a3a2f34382d3438203d3e20313432333636.roa File: 323430373a623463303a31323a3a2f34382d3438203d3e20313432333636.roa (raw, json) Hash identifier: gmPxQm5NcqK3BCfFQb7w+dLmFYWZ/DthSfb9I0IYOOQ= Subject key identifier: 1D:A9:8A:3F:2A:40:4F:FC:84:4C:EF:4C:4F:AB:B9:88:B6:C4:D8:11 Certificate issuer: /CN=399FBE55CFD957C1E3849C75FE378403E394BB45 Certificate serial: 35AFD57D67C9A6F7170784CF427A3A8AE6FAA930 Authority key identifier: 39:9F:BE:55:CF:D9:57:C1:E3:84:9C:75:FE:37:84:03:E3:94:BB:45 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/399FBE55CFD957C1E3849C75FE378403E394BB45.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/a70dfb5a-845e-4ddf-aca7-a9b31c31dff4/0/323430373a623463303a31323a3a2f34382d3438203d3e20313432333636.roa Signing time: Sun 03 May 2026 02:57:23 +0000 ROA not before: Sun 03 May 2026 02:52:23 +0000 ROA not after: Sun 02 May 2027 02:57:23 +0000 asID: 142366 IP address blocks: 2407:b4c0:12::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/a70dfb5a-845e-4ddf-aca7-a9b31c31dff4/0/399FBE55CFD957C1E3849C75FE378403E394BB45.crl rsync://rpki-rsync.idnic.net/repo/a70dfb5a-845e-4ddf-aca7-a9b31c31dff4/0/399FBE55CFD957C1E3849C75FE378403E394BB45.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/399FBE55CFD957C1E3849C75FE378403E394BB45.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 00:03:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:af:d5:7d:67:c9:a6:f7:17:07:84:cf:42:7a:3a:8a:e6:fa:a9:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=399FBE55CFD957C1E3849C75FE378403E394BB45 Validity Not Before: May 3 02:52:23 2026 GMT Not After : May 2 02:57:23 2027 GMT Subject: CN=1DA98A3F2A404FFC844CEF4C4FABB988B6C4D811 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:7c:ef:c3:b5:bd:8b:b9:66:67:cd:e8:3e:a8: cc:1a:2d:58:58:c9:49:9f:5e:c9:6a:48:34:83:82: 10:47:c6:c3:6a:55:ed:de:dc:e6:e6:6c:66:37:bc: b2:20:1e:13:d6:9e:d3:f7:08:26:3f:da:f2:74:33: 93:a0:19:3e:e5:27:32:ea:e1:bd:ad:98:31:a5:85: 88:9d:6b:40:a3:68:95:99:7a:1f:94:f1:56:74:bd: 18:a1:bd:96:b8:54:b5:92:82:2f:b6:00:6f:c8:a8: c8:b3:d0:96:52:3d:46:db:6b:cf:a8:cb:c0:ba:8c: 01:3b:23:29:4a:e1:ba:dd:52:f2:0b:37:a4:ae:d3: b3:50:2a:49:fc:a9:18:ad:f8:57:36:a2:00:95:98: 6d:47:39:94:da:c5:45:f3:48:b9:39:0d:1f:1f:7d: b5:de:e3:94:4c:3c:8a:d2:2e:e8:88:a0:82:da:68: 8a:64:72:1a:14:0d:fb:89:a0:3b:29:f4:f4:23:df: a1:cb:fd:a2:0e:bc:3b:37:b8:7f:56:e8:70:0e:71: 16:2e:27:2f:d3:5c:3b:d2:01:43:e0:69:b0:25:b8: bd:50:65:52:7f:34:a1:f1:49:88:0c:0e:8f:db:ca: 74:57:ef:6c:7c:4e:91:2f:c6:4e:1a:f2:28:a6:c5: 23:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:A9:8A:3F:2A:40:4F:FC:84:4C:EF:4C:4F:AB:B9:88:B6:C4:D8:11 X509v3 Authority Key Identifier: keyid:39:9F:BE:55:CF:D9:57:C1:E3:84:9C:75:FE:37:84:03:E3:94:BB:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/a70dfb5a-845e-4ddf-aca7-a9b31c31dff4/0/399FBE55CFD957C1E3849C75FE378403E394BB45.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/399FBE55CFD957C1E3849C75FE378403E394BB45.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/a70dfb5a-845e-4ddf-aca7-a9b31c31dff4/0/323430373a623463303a31323a3a2f34382d3438203d3e20313432333636.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2407:b4c0:12::/48 Signature Algorithm: sha256WithRSAEncryption 3c:d9:6c:e7:5d:cb:d6:4e:ed:31:e7:9b:a0:96:fb:ae:b9:d0: 85:59:0e:13:55:ab:bd:0e:8f:f9:49:da:eb:9a:50:20:95:27: 3b:06:45:09:03:f2:70:dc:0e:b6:7e:de:23:a2:f1:c7:da:29: 79:3a:ef:e5:b4:f1:d9:ee:6e:39:58:c3:9a:d6:56:4a:fb:19: b5:82:83:fb:30:6f:66:fa:00:ca:4a:d5:0f:db:73:6d:b4:36: f7:7b:b6:21:ab:c0:17:39:01:e1:f2:54:45:fd:1e:f7:d9:d4: 31:56:5a:ce:ed:6c:4c:99:00:6c:f0:14:3d:0d:bf:82:4a:50: 77:2b:2f:81:73:41:e4:85:35:6c:0c:b8:f7:4e:4c:5e:c2:2f: 89:d3:30:7b:46:71:fb:98:67:55:70:3b:b7:c9:66:f2:c8:32: 06:b1:56:3f:74:a5:7f:93:b8:ca:a1:0b:95:bb:e6:79:6a:f4: fe:5e:7a:62:54:71:bc:4a:66:f8:cd:e1:86:11:64:c2:29:72: ed:c6:4f:a1:ea:25:ed:55:70:e1:8d:24:97:34:30:a0:a0:80: b1:10:ab:5f:b2:1e:5f:7d:ed:4f:4d:98:d9:9d:30:76:0c:b5: 25:16:41:bc:30:85:3d:7c:c9:8c:27:fb:3a:1e:ba:d1:be:3a: 0f:2c:8d:de -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUNa/VfWfJpvcXB4TPQno6iub6qTAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzk5RkJFNTVDRkQ5NTdDMUUzODQ5Qzc1RkUzNzg0MDNF Mzk0QkI0NTAeFw0yNjA1MDMwMjUyMjNaFw0yNzA1MDIwMjU3MjNaMDMxMTAvBgNV BAMTKDFEQTk4QTNGMkE0MDRGRkM4NDRDRUY0QzRGQUJCOTg4QjZDNEQ4MTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQChfO/Dtb2LuWZnzeg+qMwaLVhY yUmfXslqSDSDghBHxsNqVe3e3ObmbGY3vLIgHhPWntP3CCY/2vJ0M5OgGT7lJzLq 4b2tmDGlhYida0CjaJWZeh+U8VZ0vRihvZa4VLWSgi+2AG/IqMiz0JZSPUbba8+o y8C6jAE7IylK4brdUvILN6Su07NQKkn8qRit+Fc2ogCVmG1HOZTaxUXzSLk5DR8f fbXe45RMPIrSLuiIoILaaIpkchoUDfuJoDsp9PQj36HL/aIOvDs3uH9W6HAOcRYu Jy/TXDvSAUPgabAluL1QZVJ/NKHxSYgMDo/bynRX72x8TpEvxk4a8iimxSNZAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUHamKPypAT/yETO9MT6u5iLbE2BEwHwYDVR0j BBgwFoAUOZ++Vc/ZV8HjhJx1/jeEA+OUu0UwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YTcwZGZiNWEtODQ1ZS00ZGRmLWFjYTctYTliMzFjMzFkZmY0LzAvMzk5RkJFNTVD RkQ5NTdDMUUzODQ5Qzc1RkUzNzg0MDNFMzk0QkI0NS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8zOTlGQkU1NUNGRDk1N0MxRTM4NDlDNzVGRTM3ODQwM0UzOTRC QjQ1LmNlcjCBqQYIKwYBBQUHAQsEgZwwgZkwgZYGCCsGAQUFBzALhoGJcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2E3MGRmYjVhLTg0NWUtNGRkZi1h Y2E3LWE5YjMxYzMxZGZmNC8wLzMyMzQzMDM3M2E2MjM0NjMzMDNhMzEzMjNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzQzMjMzMzYzNi5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQHtMAA EjANBgkqhkiG9w0BAQsFAAOCAQEAPNls513L1k7tMeeboJb7rrnQhVkOE1WrvQ6P +Una65pQIJUnOwZFCQPycNwOtn7eI6Lxx9opeTrv5bTx2e5uOVjDmtZWSvsZtYKD +zBvZvoAykrVD9tzbbQ293u2IavAFzkB4fJURf0e99nUMVZazu1sTJkAbPAUPQ2/ gkpQdysvgXNB5IU1bAy4905MXsIvidMwe0Zx+5hnVXA7t8lm8sgyBrFWP3Slf5O4 yqELlbvmeWr0/l56YlRxvEpm+M3hhhFkwily7cZPoeol7VVw4Y0klzQwoKCAsRCr X7IeX33tT02Y2Z0wdgy1JRZBvDCFPXzJjCf7Oh660b46DyyN3g== -----END CERTIFICATE-----Generated at Wed May 13 06:00:53 2026 by rpki-client