$ rpki-client -vvf rpki-rsync.idnic.net/repo/a945b86e-0895-4759-a77c-a06ce14e243c/0/323430343a333930303a313939323a3a2f34382d3438203d3e203338333230.roa File: 323430343a333930303a313939323a3a2f34382d3438203d3e203338333230.roa (raw, json) Hash identifier: YLpNL78dS+hrdN7t5xzPdvLY1lNxrdFsxq9VzIbxRC4= Subject key identifier: 0B:62:D9:F9:2C:4C:C0:28:74:BF:EA:B4:F8:94:BD:B9:AD:CD:D2:C9 Certificate issuer: /CN=1DACDC41C28CE5C38F4251C614DE100A3F1EFCAD Certificate serial: 38D9A94AB7668694C848CF7C341ED4E11057E8AF Authority key identifier: 1D:AC:DC:41:C2:8C:E5:C3:8F:42:51:C6:14:DE:10:0A:3F:1E:FC:AD Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/1DACDC41C28CE5C38F4251C614DE100A3F1EFCAD.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/a945b86e-0895-4759-a77c-a06ce14e243c/0/323430343a333930303a313939323a3a2f34382d3438203d3e203338333230.roa Signing time: Sun 03 May 2026 02:58:05 +0000 ROA not before: Sun 03 May 2026 02:53:05 +0000 ROA not after: Sun 02 May 2027 02:58:05 +0000 asID: 38320 IP address blocks: 2404:3900:1992::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/a945b86e-0895-4759-a77c-a06ce14e243c/0/1DACDC41C28CE5C38F4251C614DE100A3F1EFCAD.crl rsync://rpki-rsync.idnic.net/repo/a945b86e-0895-4759-a77c-a06ce14e243c/0/1DACDC41C28CE5C38F4251C614DE100A3F1EFCAD.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/1DACDC41C28CE5C38F4251C614DE100A3F1EFCAD.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 03:13:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:d9:a9:4a:b7:66:86:94:c8:48:cf:7c:34:1e:d4:e1:10:57:e8:af Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1DACDC41C28CE5C38F4251C614DE100A3F1EFCAD Validity Not Before: May 3 02:53:05 2026 GMT Not After : May 2 02:58:05 2027 GMT Subject: CN=0B62D9F92C4CC02874BFEAB4F894BDB9ADCDD2C9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:9f:d3:5a:96:65:85:5d:d3:1f:c8:1f:8b:70: 4b:64:3b:ea:50:8f:34:35:0a:5b:27:ea:cb:bd:3d: 4a:92:de:c5:75:bc:b3:fc:8c:d2:fa:51:21:ad:9c: f3:ee:78:88:45:6f:f6:5e:5d:d0:bf:b7:a8:8d:c5: 66:48:93:a6:8a:9e:80:ee:6c:dc:32:45:53:ab:26: f1:dc:34:ad:11:91:3c:1d:61:c0:b1:80:d5:c2:57: 18:ca:4a:73:81:de:55:54:98:b4:22:26:65:c6:ea: 4f:05:1e:7a:4c:6b:ac:69:c8:4e:f4:ff:d7:f7:52: c6:6f:bf:21:58:93:e6:3c:22:13:df:7f:f3:32:df: b7:0e:0d:c0:13:23:5b:b8:b2:c9:13:52:d7:eb:60: 61:eb:64:82:4b:91:3d:a9:2f:c2:d6:52:68:0c:75: f7:55:b6:ea:79:86:ce:b0:5e:3a:e8:81:33:0b:e4: ba:18:cf:d4:21:8b:8d:6e:ab:6c:be:8a:eb:2b:75: dc:65:ba:85:6e:78:7f:8d:c4:02:6c:ee:3b:90:32: e7:78:24:00:62:00:b3:d0:bf:a7:d2:6d:85:8c:15: 61:d9:98:9d:2d:a4:98:6f:19:66:92:df:b8:8e:0f: ca:f8:11:aa:34:99:95:a1:78:1f:9d:64:31:e0:38: 36:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:62:D9:F9:2C:4C:C0:28:74:BF:EA:B4:F8:94:BD:B9:AD:CD:D2:C9 X509v3 Authority Key Identifier: keyid:1D:AC:DC:41:C2:8C:E5:C3:8F:42:51:C6:14:DE:10:0A:3F:1E:FC:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/a945b86e-0895-4759-a77c-a06ce14e243c/0/1DACDC41C28CE5C38F4251C614DE100A3F1EFCAD.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/1DACDC41C28CE5C38F4251C614DE100A3F1EFCAD.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/a945b86e-0895-4759-a77c-a06ce14e243c/0/323430343a333930303a313939323a3a2f34382d3438203d3e203338333230.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:3900:1992::/48 Signature Algorithm: sha256WithRSAEncryption 66:26:8a:b4:b9:47:2d:3a:01:04:bb:48:53:40:e5:25:16:36: 71:04:9e:49:31:c5:b4:ca:80:11:11:89:15:62:df:d9:c8:0c: 43:7d:8d:b2:8d:82:d1:43:8a:24:ad:88:4a:02:f0:02:90:c9: d8:62:b7:41:bd:cf:ae:e4:23:29:3b:1d:c8:5c:47:80:b1:b7: 47:46:a4:bd:ec:f0:d5:78:55:5f:59:51:c6:ee:ef:9f:8b:c1: 19:21:76:80:d4:14:bf:43:63:d1:b0:41:89:2b:d8:70:f1:a9: 73:7b:27:37:9d:79:68:59:25:22:de:3f:ba:fa:4b:99:0a:8b: bf:5d:65:95:f3:89:f7:42:b4:d7:f5:8b:65:63:26:cd:d6:8e: 75:16:31:ab:77:dc:72:43:24:ea:f4:a3:e6:c4:ec:f9:2c:93: 9a:dd:29:f8:41:a8:c0:b8:f5:66:7a:9a:92:c8:04:3d:45:a9: 10:30:96:c4:e7:3c:5d:c8:cf:39:5f:ac:0d:55:5b:18:ee:4d: 85:43:8b:e9:97:95:8e:55:52:9b:b6:ec:81:44:0c:35:7b:49: e9:14:97:7c:b3:98:da:78:d6:8b:05:62:91:63:f7:f3:5a:61: 9a:df:e4:a5:07:8c:48:c8:f0:78:6d:2f:bf:d9:92:1a:bf:4f: 35:be:77:73 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUONmpSrdmhpTISM98NB7U4RBX6K8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMURBQ0RDNDFDMjhDRTVDMzhGNDI1MUM2MTRERTEwMEEz RjFFRkNBRDAeFw0yNjA1MDMwMjUzMDVaFw0yNzA1MDIwMjU4MDVaMDMxMTAvBgNV BAMTKDBCNjJEOUY5MkM0Q0MwMjg3NEJGRUFCNEY4OTRCREI5QURDREQyQzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCdn9NalmWFXdMfyB+LcEtkO+pQ jzQ1Clsn6su9PUqS3sV1vLP8jNL6USGtnPPueIhFb/ZeXdC/t6iNxWZIk6aKnoDu bNwyRVOrJvHcNK0RkTwdYcCxgNXCVxjKSnOB3lVUmLQiJmXG6k8FHnpMa6xpyE70 /9f3UsZvvyFYk+Y8IhPff/My37cODcATI1u4sskTUtfrYGHrZIJLkT2pL8LWUmgM dfdVtup5hs6wXjrogTML5LoYz9Qhi41uq2y+iusrddxluoVueH+NxAJs7juQMud4 JABiALPQv6fSbYWMFWHZmJ0tpJhvGWaS37iOD8r4Eao0mZWheB+dZDHgODadAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUC2LZ+SxMwCh0v+q0+JS9ua3N0skwHwYDVR0j BBgwFoAUHazcQcKM5cOPQlHGFN4QCj8e/K0wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YTk0NWI4NmUtMDg5NS00NzU5LWE3N2MtYTA2Y2UxNGUyNDNjLzAvMURBQ0RDNDFD MjhDRTVDMzhGNDI1MUM2MTRERTEwMEEzRjFFRkNBRC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8xREFDREM0MUMyOENFNUMzOEY0MjUxQzYxNERFMTAwQTNGMUVG Q0FELmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUFBzALhoGLcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2E5NDViODZlLTA4OTUtNDc1OS1h NzdjLWEwNmNlMTRlMjQzYy8wLzMyMzQzMDM0M2EzMzM5MzAzMDNhMzEzOTM5MzIz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMzM4MzMzMjMwLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAQ5 ABmSMA0GCSqGSIb3DQEBCwUAA4IBAQBmJoq0uUctOgEEu0hTQOUlFjZxBJ5JMcW0 yoAREYkVYt/ZyAxDfY2yjYLRQ4okrYhKAvACkMnYYrdBvc+u5CMpOx3IXEeAsbdH RqS97PDVeFVfWVHG7u+fi8EZIXaA1BS/Q2PRsEGJK9hw8alzeyc3nXloWSUi3j+6 +kuZCou/XWWV84n3QrTX9YtlYybN1o51FjGrd9xyQyTq9KPmxOz5LJOa3Sn4QajA uPVmepqSyAQ9RakQMJbE5zxdyM85X6wNVVsY7k2FQ4vpl5WOVVKbtuyBRAw1e0np FJd8s5jaeNaLBWKRY/fzWmGa3+SlB4xIyPB4bS+/2ZIav081vndz -----END CERTIFICATE-----Generated at Wed May 13 13:24:37 2026 by rpki-client