$ rpki-client -vvf rpki-rsync.idnic.net/repo/a945b86e-0895-4759-a77c-a06ce14e243c/0/323430343a333930303a313a3a2f34382d3438203d3e203338333230.roa File: 323430343a333930303a313a3a2f34382d3438203d3e203338333230.roa (raw, json) Hash identifier: 5B5+pc329D1iQV3SlgDy544BDthefmzEqIq6UspEPv0= Subject key identifier: 24:9D:26:AA:76:F3:46:E7:1F:79:77:9C:5A:C7:5F:F4:04:59:40:50 Certificate issuer: /CN=1DACDC41C28CE5C38F4251C614DE100A3F1EFCAD Certificate serial: 6029F554F62AD73B5CF6ECBFBBEC002D3C636A0B Authority key identifier: 1D:AC:DC:41:C2:8C:E5:C3:8F:42:51:C6:14:DE:10:0A:3F:1E:FC:AD Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/1DACDC41C28CE5C38F4251C614DE100A3F1EFCAD.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/a945b86e-0895-4759-a77c-a06ce14e243c/0/323430343a333930303a313a3a2f34382d3438203d3e203338333230.roa Signing time: Sun 03 May 2026 02:58:02 +0000 ROA not before: Sun 03 May 2026 02:53:02 +0000 ROA not after: Sun 02 May 2027 02:58:02 +0000 asID: 38320 IP address blocks: 2404:3900:1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/a945b86e-0895-4759-a77c-a06ce14e243c/0/1DACDC41C28CE5C38F4251C614DE100A3F1EFCAD.crl rsync://rpki-rsync.idnic.net/repo/a945b86e-0895-4759-a77c-a06ce14e243c/0/1DACDC41C28CE5C38F4251C614DE100A3F1EFCAD.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/1DACDC41C28CE5C38F4251C614DE100A3F1EFCAD.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 03:13:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:29:f5:54:f6:2a:d7:3b:5c:f6:ec:bf:bb:ec:00:2d:3c:63:6a:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1DACDC41C28CE5C38F4251C614DE100A3F1EFCAD Validity Not Before: May 3 02:53:02 2026 GMT Not After : May 2 02:58:02 2027 GMT Subject: CN=249D26AA76F346E71F79779C5AC75FF404594050 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:56:c7:3c:d4:75:5d:32:51:d0:67:27:8a:24: 39:67:97:83:4a:4c:db:96:a6:d4:3a:a6:19:16:61: 67:1a:43:13:fb:e6:ca:20:fe:c2:eb:f4:3f:3b:4f: 57:f5:e2:9d:1c:1b:2e:63:66:4b:0b:fc:8b:b5:24: e9:ee:c4:8c:0b:54:95:13:35:b7:c9:cf:81:4a:d0: 01:d9:f8:c7:51:d6:ee:79:a3:da:d7:73:b9:a2:d7: 9e:68:e4:07:a6:3e:8e:29:d9:18:11:f9:48:51:78: 74:6c:e2:b9:96:f1:40:2c:f4:a5:bb:24:6d:98:dd: ab:bc:94:12:04:63:47:cc:1f:15:76:6e:83:ca:a2: 99:51:18:e5:ab:58:8b:b5:d8:3f:08:0b:38:76:2a: 5e:20:46:e9:b4:0e:b0:9b:ef:fe:94:c7:be:3a:f1: 30:8f:eb:f6:5e:7f:63:ad:b2:23:36:6d:a6:c0:81: 27:d6:c5:cb:ca:7d:79:bc:64:dc:42:92:23:e7:86: 4e:39:c0:42:b3:4d:13:d7:c1:2b:bd:69:4c:61:b5: a2:90:bb:a7:0e:23:04:34:b8:24:57:57:ce:56:02: 7b:d9:41:ab:23:6b:a1:ee:7a:f1:7b:dd:3e:02:69: 06:3d:55:30:37:88:c5:af:7f:48:a0:3e:67:42:f1: f6:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:9D:26:AA:76:F3:46:E7:1F:79:77:9C:5A:C7:5F:F4:04:59:40:50 X509v3 Authority Key Identifier: keyid:1D:AC:DC:41:C2:8C:E5:C3:8F:42:51:C6:14:DE:10:0A:3F:1E:FC:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/a945b86e-0895-4759-a77c-a06ce14e243c/0/1DACDC41C28CE5C38F4251C614DE100A3F1EFCAD.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/1DACDC41C28CE5C38F4251C614DE100A3F1EFCAD.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/a945b86e-0895-4759-a77c-a06ce14e243c/0/323430343a333930303a313a3a2f34382d3438203d3e203338333230.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:3900:1::/48 Signature Algorithm: sha256WithRSAEncryption 50:98:44:69:1e:fa:7c:07:a6:a6:87:41:46:b5:df:ec:68:40: 4a:aa:90:a2:f1:49:fb:c4:c1:a1:64:68:8d:6e:46:3f:49:52: 9f:da:c4:1c:c1:bb:57:fc:b6:b1:18:2c:2d:ec:85:f9:44:bd: c5:50:fe:65:c4:85:31:94:90:8e:b0:3b:da:ae:5c:08:88:a4: 2a:69:df:c8:59:e5:f4:ec:a7:6e:4a:f9:6b:ac:34:4c:e3:0e: 37:fc:f4:df:09:74:36:56:94:e4:fc:c8:d0:5f:6f:83:14:93: 81:9a:09:e1:2c:45:1e:5c:ca:93:4d:75:a5:92:5d:0b:72:e9: 0e:ab:96:41:92:20:ee:9e:fe:3e:a7:4d:9a:c9:4a:39:63:14: a6:19:54:08:95:f5:3f:b3:df:94:51:59:55:9d:dd:d2:f7:fd: f7:df:c1:e1:51:38:f8:d8:06:4f:65:c8:1a:a9:86:d1:ee:9e: c1:92:f0:00:41:83:35:48:51:1f:53:4f:b6:f2:77:5e:21:f1: 69:8d:f5:50:df:5b:c5:dd:eb:f9:bd:c1:aa:62:79:67:e4:2c: 09:9b:72:ff:32:73:e0:21:66:bc:66:3c:0f:6a:74:a3:e7:b9: d1:5c:33:c6:21:a1:ce:2c:75:08:44:f2:80:e2:ae:30:d6:79: 77:39:a8:03 -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUYCn1VPYq1ztc9uy/u+wALTxjagswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMURBQ0RDNDFDMjhDRTVDMzhGNDI1MUM2MTRERTEwMEEz RjFFRkNBRDAeFw0yNjA1MDMwMjUzMDJaFw0yNzA1MDIwMjU4MDJaMDMxMTAvBgNV BAMTKDI0OUQyNkFBNzZGMzQ2RTcxRjc5Nzc5QzVBQzc1RkY0MDQ1OTQwNTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyVsc81HVdMlHQZyeKJDlnl4NK TNuWptQ6phkWYWcaQxP75sog/sLr9D87T1f14p0cGy5jZksL/Iu1JOnuxIwLVJUT NbfJz4FK0AHZ+MdR1u55o9rXc7mi155o5AemPo4p2RgR+UhReHRs4rmW8UAs9KW7 JG2Y3au8lBIEY0fMHxV2boPKoplRGOWrWIu12D8ICzh2Kl4gRum0DrCb7/6Ux746 8TCP6/Zef2OtsiM2babAgSfWxcvKfXm8ZNxCkiPnhk45wEKzTRPXwSu9aUxhtaKQ u6cOIwQ0uCRXV85WAnvZQasja6HuevF73T4CaQY9VTA3iMWvf0igPmdC8faLAgMB AAGjggI3MIICMzAdBgNVHQ4EFgQUJJ0mqnbzRucfeXecWsdf9ARZQFAwHwYDVR0j BBgwFoAUHazcQcKM5cOPQlHGFN4QCj8e/K0wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YTk0NWI4NmUtMDg5NS00NzU5LWE3N2MtYTA2Y2UxNGUyNDNjLzAvMURBQ0RDNDFD MjhDRTVDMzhGNDI1MUM2MTRERTEwMEEzRjFFRkNBRC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8xREFDREM0MUMyOENFNUMzOEY0MjUxQzYxNERFMTAwQTNGMUVG Q0FELmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2E5NDViODZlLTA4OTUtNDc1OS1h NzdjLWEwNmNlMTRlMjQzYy8wLzMyMzQzMDM0M2EzMzM5MzAzMDNhMzEzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMzM4MzMzMjMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAQ5AAABMA0G CSqGSIb3DQEBCwUAA4IBAQBQmERpHvp8B6amh0FGtd/saEBKqpCi8Un7xMGhZGiN bkY/SVKf2sQcwbtX/LaxGCwt7IX5RL3FUP5lxIUxlJCOsDvarlwIiKQqad/IWeX0 7KduSvlrrDRM4w43/PTfCXQ2VpTk/MjQX2+DFJOBmgnhLEUeXMqTTXWlkl0LcukO q5ZBkiDunv4+p02ayUo5YxSmGVQIlfU/s9+UUVlVnd3S9/3338HhUTj42AZPZcga qYbR7p7BkvAAQYM1SFEfU0+28ndeIfFpjfVQ31vF3ev5vcGqYnln5CwJm3L/MnPg IWa8ZjwPanSj57nRXDPGIaHOLHUIRPKA4q4w1nl3OagD -----END CERTIFICATE-----Generated at Wed May 13 10:36:39 2026 by rpki-client