$ rpki-client -vvf rpki-rsync.idnic.net/repo/a945b86e-0895-4759-a77c-a06ce14e243c/0/323430343a333930303a6139323a3a2f34382d3438203d3e203338333230.roa File: 323430343a333930303a6139323a3a2f34382d3438203d3e203338333230.roa (raw, json) Hash identifier: 8rfx5hsa0X1hhhAYAV+GnW9jNKRrSym9Qaq/7mxW1Sk= Subject key identifier: 58:63:89:3A:22:9E:00:1C:5B:70:08:E0:5A:52:74:EB:6E:A2:E3:02 Certificate issuer: /CN=1DACDC41C28CE5C38F4251C614DE100A3F1EFCAD Certificate serial: 31B89403A8FD923A911DC2E92B169C2DE1A30252 Authority key identifier: 1D:AC:DC:41:C2:8C:E5:C3:8F:42:51:C6:14:DE:10:0A:3F:1E:FC:AD Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/1DACDC41C28CE5C38F4251C614DE100A3F1EFCAD.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/a945b86e-0895-4759-a77c-a06ce14e243c/0/323430343a333930303a6139323a3a2f34382d3438203d3e203338333230.roa Signing time: Sun 03 May 2026 02:58:00 +0000 ROA not before: Sun 03 May 2026 02:53:00 +0000 ROA not after: Sun 02 May 2027 02:58:00 +0000 asID: 38320 IP address blocks: 2404:3900:a92::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/a945b86e-0895-4759-a77c-a06ce14e243c/0/1DACDC41C28CE5C38F4251C614DE100A3F1EFCAD.crl rsync://rpki-rsync.idnic.net/repo/a945b86e-0895-4759-a77c-a06ce14e243c/0/1DACDC41C28CE5C38F4251C614DE100A3F1EFCAD.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/1DACDC41C28CE5C38F4251C614DE100A3F1EFCAD.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 03:13:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:b8:94:03:a8:fd:92:3a:91:1d:c2:e9:2b:16:9c:2d:e1:a3:02:52 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1DACDC41C28CE5C38F4251C614DE100A3F1EFCAD Validity Not Before: May 3 02:53:00 2026 GMT Not After : May 2 02:58:00 2027 GMT Subject: CN=5863893A229E001C5B7008E05A5274EB6EA2E302 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:b2:97:85:c5:3d:c7:e2:5f:df:48:00:05:b7: 16:04:dd:dc:17:29:7a:46:f7:23:35:e5:33:22:01: 0e:10:5f:67:d1:e7:77:cf:db:d6:4f:ac:75:b1:05: 85:62:3e:5e:72:c3:0f:b2:31:27:6f:32:f6:b3:5b: 6d:c4:20:8c:1a:07:15:e7:da:c5:86:c5:f4:7d:a1: 2b:1e:d4:e6:7e:61:3c:c9:ff:5c:12:8d:0e:27:bf: 14:12:07:a4:86:98:06:a0:e1:a9:cf:bd:a7:00:59: 6d:61:fc:06:41:56:c5:56:07:0b:d5:e3:90:d1:eb: 21:c9:0e:24:0f:1c:7f:a7:6d:55:1a:cc:ca:12:a8: 46:87:7f:83:da:20:0d:d7:a8:ad:2a:8c:95:2b:aa: 9c:b1:15:b4:93:fd:47:18:e8:39:25:a8:ae:c3:85: 91:a9:eb:0c:94:e0:82:01:0c:83:91:dd:4c:a3:a2: 53:10:29:4c:71:5e:22:53:b5:b5:e6:46:64:1c:d1: df:bd:e6:41:44:1c:88:e0:bf:6f:3b:c9:b6:d9:63: 71:52:c2:fa:54:bd:c6:ea:dd:eb:e7:17:78:81:45: 32:00:67:c8:5d:ee:d7:09:a9:db:8f:89:20:22:df: f7:18:b0:3c:73:e9:95:94:0b:8d:4e:4d:a3:98:b6: 75:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:63:89:3A:22:9E:00:1C:5B:70:08:E0:5A:52:74:EB:6E:A2:E3:02 X509v3 Authority Key Identifier: keyid:1D:AC:DC:41:C2:8C:E5:C3:8F:42:51:C6:14:DE:10:0A:3F:1E:FC:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/a945b86e-0895-4759-a77c-a06ce14e243c/0/1DACDC41C28CE5C38F4251C614DE100A3F1EFCAD.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/1DACDC41C28CE5C38F4251C614DE100A3F1EFCAD.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/a945b86e-0895-4759-a77c-a06ce14e243c/0/323430343a333930303a6139323a3a2f34382d3438203d3e203338333230.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:3900:a92::/48 Signature Algorithm: sha256WithRSAEncryption 4e:2a:bc:4c:92:ea:d6:a6:18:65:20:d4:47:42:28:30:d0:12: ff:e3:30:f1:8e:e5:9d:95:b7:9f:3f:be:6c:04:fa:a7:11:99: 02:d5:9a:55:e4:ba:d9:44:ec:85:2b:ea:72:6d:3f:7f:df:3c: c7:69:52:98:cf:5c:47:54:da:b6:f3:45:1c:c6:38:21:5a:59: bc:65:ca:33:ea:ae:ec:af:49:01:8b:dc:7e:db:cb:57:05:41: 22:4d:00:dc:e1:fc:08:d9:ea:63:72:5f:3a:f1:10:90:80:fc: 47:0c:b6:f7:2f:6d:92:79:e4:2b:7e:d5:8d:ee:26:94:93:84: e8:4f:15:fd:f7:76:2f:78:67:e5:35:54:79:b6:23:9a:b6:f6: 13:60:fc:45:ba:99:d3:a4:1c:47:df:e2:3f:eb:b7:0c:a5:33: c3:6b:f0:96:bc:95:7e:8f:88:5f:60:48:c9:4c:4f:06:8a:d9: a6:f1:af:68:ca:b6:4d:a7:b3:52:ea:ea:58:71:4a:1e:11:d1: f8:c4:8d:86:79:4d:0f:4b:54:01:44:c9:ff:f1:d2:36:87:51: 36:b9:ee:5e:aa:e1:ef:79:91:1e:bd:f3:72:c9:02:22:46:98: d2:0b:86:94:b8:af:3d:d1:29:bf:3d:52:31:64:60:a1:25:29: 32:02:96:f4 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUMbiUA6j9kjqRHcLpKxacLeGjAlIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMURBQ0RDNDFDMjhDRTVDMzhGNDI1MUM2MTRERTEwMEEz RjFFRkNBRDAeFw0yNjA1MDMwMjUzMDBaFw0yNzA1MDIwMjU4MDBaMDMxMTAvBgNV BAMTKDU4NjM4OTNBMjI5RTAwMUM1QjcwMDhFMDVBNTI3NEVCNkVBMkUzMDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCcspeFxT3H4l/fSAAFtxYE3dwX KXpG9yM15TMiAQ4QX2fR53fP29ZPrHWxBYViPl5yww+yMSdvMvazW23EIIwaBxXn 2sWGxfR9oSse1OZ+YTzJ/1wSjQ4nvxQSB6SGmAag4anPvacAWW1h/AZBVsVWBwvV 45DR6yHJDiQPHH+nbVUazMoSqEaHf4PaIA3XqK0qjJUrqpyxFbST/UcY6DklqK7D hZGp6wyU4IIBDIOR3UyjolMQKUxxXiJTtbXmRmQc0d+95kFEHIjgv287ybbZY3FS wvpUvcbq3evnF3iBRTIAZ8hd7tcJqduPiSAi3/cYsDxz6ZWUC41OTaOYtnVdAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUWGOJOiKeABxbcAjgWlJ0626i4wIwHwYDVR0j BBgwFoAUHazcQcKM5cOPQlHGFN4QCj8e/K0wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YTk0NWI4NmUtMDg5NS00NzU5LWE3N2MtYTA2Y2UxNGUyNDNjLzAvMURBQ0RDNDFD MjhDRTVDMzhGNDI1MUM2MTRERTEwMEEzRjFFRkNBRC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8xREFDREM0MUMyOENFNUMzOEY0MjUxQzYxNERFMTAwQTNGMUVG Q0FELmNlcjCBqQYIKwYBBQUHAQsEgZwwgZkwgZYGCCsGAQUFBzALhoGJcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2E5NDViODZlLTA4OTUtNDc1OS1h NzdjLWEwNmNlMTRlMjQzYy8wLzMyMzQzMDM0M2EzMzM5MzAzMDNhNjEzOTMyM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzMzODMzMzIzMC5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQEOQAK kjANBgkqhkiG9w0BAQsFAAOCAQEATiq8TJLq1qYYZSDUR0IoMNAS/+Mw8Y7lnZW3 nz++bAT6pxGZAtWaVeS62UTshSvqcm0/f988x2lSmM9cR1TatvNFHMY4IVpZvGXK M+qu7K9JAYvcftvLVwVBIk0A3OH8CNnqY3JfOvEQkID8Rwy29y9tknnkK37Vje4m lJOE6E8V/fd2L3hn5TVUebYjmrb2E2D8RbqZ06QcR9/iP+u3DKUzw2vwlryVfo+I X2BIyUxPBorZpvGvaMq2TaezUurqWHFKHhHR+MSNhnlND0tUAUTJ//HSNodRNrnu Xqrh73mRHr3zcskCIkaY0guGlLivPdEpvz1SMWRgoSUpMgKW9A== -----END CERTIFICATE-----Generated at Wed May 13 12:43:56 2026 by rpki-client