$ rpki-client -vvf rpki-rsync.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/323430323a616230303a636166653a3a2f34382d3438203d3e203234323036.roa File: 323430323a616230303a636166653a3a2f34382d3438203d3e203234323036.roa (raw, json) Hash identifier: EAVIC7zwho1aCdIDVakXoAbpjUpz2w2Y3LxfSakp/FM= Subject key identifier: 95:C1:49:6D:3A:6A:1F:AD:47:8D:D6:92:80:69:AA:32:7A:46:0B:5D Certificate issuer: /CN=E6B678AE8DC843399DF534610764D871D4D698D8 Certificate serial: 03AAACE9F9002A3EBFFF3694BBBB22B7D92A1C46 Authority key identifier: E6:B6:78:AE:8D:C8:43:39:9D:F5:34:61:07:64:D8:71:D4:D6:98:D8 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/E6B678AE8DC843399DF534610764D871D4D698D8.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/323430323a616230303a636166653a3a2f34382d3438203d3e203234323036.roa Signing time: Sun 03 May 2026 02:57:27 +0000 ROA not before: Sun 03 May 2026 02:52:27 +0000 ROA not after: Sun 02 May 2027 02:57:27 +0000 asID: 24206 IP address blocks: 2402:ab00:cafe::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/E6B678AE8DC843399DF534610764D871D4D698D8.crl rsync://rpki-rsync.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/E6B678AE8DC843399DF534610764D871D4D698D8.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/E6B678AE8DC843399DF534610764D871D4D698D8.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 16:14:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:aa:ac:e9:f9:00:2a:3e:bf:ff:36:94:bb:bb:22:b7:d9:2a:1c:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E6B678AE8DC843399DF534610764D871D4D698D8 Validity Not Before: May 3 02:52:27 2026 GMT Not After : May 2 02:57:27 2027 GMT Subject: CN=95C1496D3A6A1FAD478DD6928069AA327A460B5D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:22:8b:2b:29:e1:b8:fa:d4:c6:62:c3:f4:49: 7a:61:c5:da:60:2b:9d:b0:49:17:b0:55:11:30:20: 93:27:b5:4c:b9:95:ad:32:55:83:0f:ae:ff:2c:fb: f0:bc:88:03:b0:55:8d:5b:c4:c7:b3:d5:e1:51:d0: 4f:52:a1:f4:15:6c:83:42:cb:05:80:75:fb:13:f9: 6a:6f:83:49:91:bd:75:bd:16:7f:35:a6:d3:15:53: 72:eb:e5:66:c8:19:b3:ce:f9:7f:d7:c2:3e:b2:d9: ac:7e:2f:e9:5a:e8:aa:af:40:bb:8e:e3:0f:6f:e5: 8c:68:9f:f8:a4:e9:44:d4:09:1d:fe:7d:f6:7f:c8: aa:32:3f:58:76:10:6f:a3:83:0c:67:07:f0:13:df: 16:1e:2a:4a:fb:e3:8d:bf:f8:66:da:9e:4f:5b:95: 1a:32:2c:05:4d:da:d0:e4:ea:04:c9:e8:43:6e:36: ba:60:5c:7b:c0:1e:d0:8e:d8:9e:ac:49:e7:2f:10: 88:87:5b:33:d8:f4:4a:1b:92:04:43:57:ff:96:33: c0:10:67:d1:01:7a:06:df:ac:7d:bc:f9:f5:a1:41: bc:dc:bb:b3:f9:45:52:c6:9c:c7:b4:4d:44:90:8f: 55:3e:58:de:57:99:3a:a5:47:5b:01:24:74:5a:20: dd:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:C1:49:6D:3A:6A:1F:AD:47:8D:D6:92:80:69:AA:32:7A:46:0B:5D X509v3 Authority Key Identifier: keyid:E6:B6:78:AE:8D:C8:43:39:9D:F5:34:61:07:64:D8:71:D4:D6:98:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/E6B678AE8DC843399DF534610764D871D4D698D8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/E6B678AE8DC843399DF534610764D871D4D698D8.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/323430323a616230303a636166653a3a2f34382d3438203d3e203234323036.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:ab00:cafe::/48 Signature Algorithm: sha256WithRSAEncryption 89:47:d6:7c:11:1d:7f:bc:7d:2f:30:59:73:28:94:a2:b0:84: 2f:3a:d6:16:a7:70:0e:27:7b:76:e2:6e:86:6f:4a:79:7f:be: b9:2f:aa:82:23:65:73:ca:88:fc:25:04:98:47:af:be:50:4c: 8f:88:ad:82:95:7d:76:89:6c:c0:f3:63:fa:fa:8d:71:2b:28: f1:37:cc:3d:8d:ac:8e:d1:db:1a:f3:0e:e2:98:d4:24:2d:5d: 52:91:18:21:60:f0:4a:19:3a:00:cf:c1:2d:e3:6a:d7:4a:96: 81:49:f6:bd:28:4e:96:64:a0:97:85:68:4d:67:b0:36:05:a3: f6:cc:60:07:2c:07:e9:0c:cb:8f:81:f5:56:c4:e1:1d:01:80: af:6e:ac:60:86:b4:b6:b9:ce:d0:2a:dc:df:a0:ee:5d:b5:f6: be:c7:1e:fa:6e:36:18:68:74:ad:e5:28:95:98:66:9d:02:7a: 72:8f:0e:75:a7:bc:5d:b8:3f:13:2d:e2:3e:13:c8:ea:c8:47: 18:b8:26:03:21:0e:ad:65:84:1e:ce:8e:23:5b:6e:f0:70:63: 22:ef:24:fa:c8:8e:02:29:2c:26:67:00:5a:cf:ca:e7:ac:1b: f9:2c:0b:29:7b:d9:f4:47:b9:d1:4a:0e:20:9e:c6:e4:50:d9: ee:47:98:00 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUA6qs6fkAKj6//zaUu7sit9kqHEYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTZCNjc4QUU4REM4NDMzOTlERjUzNDYxMDc2NEQ4NzFE NEQ2OThEODAeFw0yNjA1MDMwMjUyMjdaFw0yNzA1MDIwMjU3MjdaMDMxMTAvBgNV BAMTKDk1QzE0OTZEM0E2QTFGQUQ0NzhERDY5MjgwNjlBQTMyN0E0NjBCNUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpIosrKeG4+tTGYsP0SXphxdpg K52wSRewVREwIJMntUy5la0yVYMPrv8s+/C8iAOwVY1bxMez1eFR0E9SofQVbINC ywWAdfsT+Wpvg0mRvXW9Fn81ptMVU3Lr5WbIGbPO+X/Xwj6y2ax+L+la6KqvQLuO 4w9v5Yxon/ik6UTUCR3+ffZ/yKoyP1h2EG+jgwxnB/AT3xYeKkr7442/+Gbank9b lRoyLAVN2tDk6gTJ6ENuNrpgXHvAHtCO2J6sSecvEIiHWzPY9EobkgRDV/+WM8AQ Z9EBegbfrH28+fWhQbzcu7P5RVLGnMe0TUSQj1U+WN5XmTqlR1sBJHRaIN0ZAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUlcFJbTpqH61HjdaSgGmqMnpGC10wHwYDVR0j BBgwFoAU5rZ4ro3IQzmd9TRhB2TYcdTWmNgwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YTc5MjJmODktM2U5Yi00YjIxLTkxODYtYTY0OGMyZGEzZjdiLzAvRTZCNjc4QUU4 REM4NDMzOTlERjUzNDYxMDc2NEQ4NzFENEQ2OThEOC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9FNkI2NzhBRThEQzg0MzM5OURGNTM0NjEwNzY0RDg3MUQ0RDY5 OEQ4LmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUFBzALhoGLcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2E3OTIyZjg5LTNlOWItNGIyMS05 MTg2LWE2NDhjMmRhM2Y3Yi8wLzMyMzQzMDMyM2E2MTYyMzAzMDNhNjM2MTY2NjUz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMjM0MzIzMDM2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAKr AMr+MA0GCSqGSIb3DQEBCwUAA4IBAQCJR9Z8ER1/vH0vMFlzKJSisIQvOtYWp3AO J3t24m6Gb0p5f765L6qCI2Vzyoj8JQSYR6++UEyPiK2ClX12iWzA82P6+o1xKyjx N8w9jayO0dsa8w7imNQkLV1SkRghYPBKGToAz8Et42rXSpaBSfa9KE6WZKCXhWhN Z7A2BaP2zGAHLAfpDMuPgfVWxOEdAYCvbqxghrS2uc7QKtzfoO5dtfa+xx76bjYY aHSt5SiVmGadAnpyjw51p7xduD8TLeI+E8jqyEcYuCYDIQ6tZYQezo4jW27wcGMi 7yT6yI4CKSwmZwBaz8rnrBv5LAspe9n0R7nRSg4gnsbkUNnuR5gA -----END CERTIFICATE-----Generated at Wed May 13 10:23:01 2026 by rpki-client