$ rpki-client -vvf rpki-rsync.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/323430323a616230303a3a2f33322d3332203d3e203234323036.roa File: 323430323a616230303a3a2f33322d3332203d3e203234323036.roa (raw, json) Hash identifier: hHOpQuaz1NpiD38wKgMW7/sVdao5mcNb1qjoiXtjt2M= Subject key identifier: C7:72:25:10:AD:44:B9:AD:D5:95:2C:3B:04:82:1A:AF:05:48:E3:32 Certificate issuer: /CN=E6B678AE8DC843399DF534610764D871D4D698D8 Certificate serial: 5DB95460860481C2CDAA5D28DAE55BE22BBEEB61 Authority key identifier: E6:B6:78:AE:8D:C8:43:39:9D:F5:34:61:07:64:D8:71:D4:D6:98:D8 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/E6B678AE8DC843399DF534610764D871D4D698D8.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/323430323a616230303a3a2f33322d3332203d3e203234323036.roa Signing time: Sun 03 May 2026 02:57:32 +0000 ROA not before: Sun 03 May 2026 02:52:32 +0000 ROA not after: Sun 02 May 2027 02:57:32 +0000 asID: 24206 IP address blocks: 2402:ab00::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/E6B678AE8DC843399DF534610764D871D4D698D8.crl rsync://rpki-rsync.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/E6B678AE8DC843399DF534610764D871D4D698D8.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/E6B678AE8DC843399DF534610764D871D4D698D8.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 16:14:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:b9:54:60:86:04:81:c2:cd:aa:5d:28:da:e5:5b:e2:2b:be:eb:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E6B678AE8DC843399DF534610764D871D4D698D8 Validity Not Before: May 3 02:52:32 2026 GMT Not After : May 2 02:57:32 2027 GMT Subject: CN=C7722510AD44B9ADD5952C3B04821AAF0548E332 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:ae:02:e6:29:ac:51:d4:d8:92:19:10:97:bb: b1:e8:93:9e:75:d5:46:74:02:a4:2f:40:a9:41:a1: 08:c1:eb:e4:d1:10:05:5c:65:72:9a:cf:7c:63:53: 5e:07:ca:d1:90:5e:73:bd:1f:a2:5d:8c:c6:0a:0e: 8f:9a:52:16:4d:c0:3a:da:1e:c8:7f:7a:6c:e8:1e: 7b:9d:0e:62:22:60:aa:f2:63:8c:1d:1d:44:90:c6: cc:cd:bd:da:07:77:c6:df:81:1a:06:2a:ed:e9:bb: a3:91:42:e6:99:95:04:b3:e6:a6:de:ea:9b:12:fc: 2b:80:e6:71:8e:40:bc:b0:ab:19:cd:57:f7:85:09: 51:c1:1f:df:35:14:14:ea:00:f9:4c:1d:92:87:4f: d1:6a:03:5e:43:bb:ff:13:f8:38:b7:09:3c:fb:7a: 7c:e6:a2:c0:1a:30:a0:28:90:2b:62:81:32:4b:e0: 77:74:57:4a:b8:e5:73:12:55:2e:a0:62:0e:4d:2b: 71:15:57:11:c2:f0:f6:8e:00:5b:69:37:9b:86:16: 51:e5:71:3f:99:85:a5:08:c7:22:06:19:3e:f4:86: 9c:f9:60:1b:59:2c:4e:f4:19:2f:d6:b0:37:2d:da: 25:60:94:7b:2d:9b:b6:7a:c9:9b:17:7b:b2:dc:e3: d0:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:72:25:10:AD:44:B9:AD:D5:95:2C:3B:04:82:1A:AF:05:48:E3:32 X509v3 Authority Key Identifier: keyid:E6:B6:78:AE:8D:C8:43:39:9D:F5:34:61:07:64:D8:71:D4:D6:98:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/E6B678AE8DC843399DF534610764D871D4D698D8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/E6B678AE8DC843399DF534610764D871D4D698D8.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/323430323a616230303a3a2f33322d3332203d3e203234323036.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:ab00::/32 Signature Algorithm: sha256WithRSAEncryption 26:f0:ab:f8:82:ca:e4:54:85:21:91:11:8e:e1:1f:7a:5b:e1: d9:9b:17:fe:e5:84:73:50:7d:09:02:0b:95:48:ce:82:54:1e: a0:05:d2:d8:53:54:ee:a9:b6:fa:1c:02:eb:be:3b:da:7e:73: 40:77:bc:a8:aa:a1:f5:a2:6c:6e:0a:9f:66:d7:e9:6e:4c:29: f7:41:93:08:18:3e:7a:7a:69:9f:0d:0b:58:2f:fc:d8:fd:d6: ba:a9:2b:19:99:d1:25:0b:9b:b3:05:cc:ce:64:dd:6e:31:fd: ed:5f:dd:92:39:13:74:4c:98:11:cf:fd:e2:b5:9c:b7:98:ca: 53:5f:30:12:1e:c4:b3:b3:53:ee:67:fc:ff:40:b6:f2:57:76: 64:1d:1b:0d:41:3f:58:58:44:9a:6a:b6:72:cd:ed:dc:39:40: 0b:f3:3d:63:4a:da:95:3b:79:38:c2:d0:39:c0:1e:8f:7b:a3: 4a:e1:9c:4c:6b:4a:42:fe:1c:17:a1:29:9d:dd:c9:b4:81:ee: a4:48:2d:48:91:8c:1e:8e:f2:50:41:46:91:f2:dd:a9:69:d6: 95:31:31:83:e4:b5:93:d6:80:af:0d:31:58:6d:2a:36:c9:82: 3a:c1:87:40:2a:fb:b7:1f:a6:1a:9a:ae:03:ea:93:d7:55:af: 3d:81:76:80 -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUXblUYIYEgcLNql0o2uVb4iu+62EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTZCNjc4QUU4REM4NDMzOTlERjUzNDYxMDc2NEQ4NzFE NEQ2OThEODAeFw0yNjA1MDMwMjUyMzJaFw0yNzA1MDIwMjU3MzJaMDMxMTAvBgNV BAMTKEM3NzIyNTEwQUQ0NEI5QURENTk1MkMzQjA0ODIxQUFGMDU0OEUzMzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVrgLmKaxR1NiSGRCXu7Hok551 1UZ0AqQvQKlBoQjB6+TREAVcZXKaz3xjU14HytGQXnO9H6JdjMYKDo+aUhZNwDra Hsh/emzoHnudDmIiYKryY4wdHUSQxszNvdoHd8bfgRoGKu3pu6ORQuaZlQSz5qbe 6psS/CuA5nGOQLywqxnNV/eFCVHBH981FBTqAPlMHZKHT9FqA15Du/8T+Di3CTz7 enzmosAaMKAokCtigTJL4Hd0V0q45XMSVS6gYg5NK3EVVxHC8PaOAFtpN5uGFlHl cT+ZhaUIxyIGGT70hpz5YBtZLE70GS/WsDct2iVglHstm7Z6yZsXe7Lc49CdAgMB AAGjggIxMIICLTAdBgNVHQ4EFgQUx3IlEK1Eua3VlSw7BIIarwVI4zIwHwYDVR0j BBgwFoAU5rZ4ro3IQzmd9TRhB2TYcdTWmNgwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YTc5MjJmODktM2U5Yi00YjIxLTkxODYtYTY0OGMyZGEzZjdiLzAvRTZCNjc4QUU4 REM4NDMzOTlERjUzNDYxMDc2NEQ4NzFENEQ2OThEOC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9FNkI2NzhBRThEQzg0MzM5OURGNTM0NjEwNzY0RDg3MUQ0RDY5 OEQ4LmNlcjCBoQYIKwYBBQUHAQsEgZQwgZEwgY4GCCsGAQUFBzALhoGBcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2E3OTIyZjg5LTNlOWItNGIyMS05 MTg2LWE2NDhjMmRhM2Y3Yi8wLzMyMzQzMDMyM2E2MTYyMzAzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMyMzQzMjMwMzYucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkAqsAMA0GCSqGSIb3 DQEBCwUAA4IBAQAm8Kv4gsrkVIUhkRGO4R96W+HZmxf+5YRzUH0JAguVSM6CVB6g BdLYU1Tuqbb6HALrvjvafnNAd7yoqqH1omxuCp9m1+luTCn3QZMIGD56emmfDQtY L/zY/da6qSsZmdElC5uzBczOZN1uMf3tX92SORN0TJgRz/3itZy3mMpTXzASHsSz s1PuZ/z/QLbyV3ZkHRsNQT9YWESaarZyze3cOUAL8z1jStqVO3k4wtA5wB6Pe6NK 4ZxMa0pC/hwXoSmd3cm0ge6kSC1IkYwejvJQQUaR8t2padaVMTGD5LWT1oCvDTFY bSo2yYI6wYdAKvu3H6Yamq4D6pPXVa89gXaA -----END CERTIFICATE-----Generated at Wed May 13 08:28:49 2026 by rpki-client