$ rpki-client -vvf rpki-rsync.idnic.net/repo/aa914ada-a9aa-4d7f-9e47-594bcb7a70ab/0/323430353a366463303a3a2f33322d3332203d3e20313339343237.roa File: 323430353a366463303a3a2f33322d3332203d3e20313339343237.roa (raw, json) Hash identifier: 3KrJ0+AfMCOxSs3J3yun9Ot0fuEZmxiN3y8DZjfYS7Q= Subject key identifier: 25:99:1D:0C:C8:80:F9:BC:DC:36:07:2D:7E:2E:B4:8E:C2:6E:C8:F3 Certificate issuer: /CN=A92D7A2CE9CBAAFD763A380C28FADDD1A3C7EA81 Certificate serial: 565043C8BDEF14A3F757EA466A3493D8695E97B8 Authority key identifier: A9:2D:7A:2C:E9:CB:AA:FD:76:3A:38:0C:28:FA:DD:D1:A3:C7:EA:81 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/A92D7A2CE9CBAAFD763A380C28FADDD1A3C7EA81.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/aa914ada-a9aa-4d7f-9e47-594bcb7a70ab/0/323430353a366463303a3a2f33322d3332203d3e20313339343237.roa Signing time: Sun 03 May 2026 02:58:15 +0000 ROA not before: Sun 03 May 2026 02:53:15 +0000 ROA not after: Sun 02 May 2027 02:58:15 +0000 asID: 139427 IP address blocks: 2405:6dc0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/aa914ada-a9aa-4d7f-9e47-594bcb7a70ab/0/A92D7A2CE9CBAAFD763A380C28FADDD1A3C7EA81.crl rsync://rpki-rsync.idnic.net/repo/aa914ada-a9aa-4d7f-9e47-594bcb7a70ab/0/A92D7A2CE9CBAAFD763A380C28FADDD1A3C7EA81.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/A92D7A2CE9CBAAFD763A380C28FADDD1A3C7EA81.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 22:06:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:50:43:c8:bd:ef:14:a3:f7:57:ea:46:6a:34:93:d8:69:5e:97:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A92D7A2CE9CBAAFD763A380C28FADDD1A3C7EA81 Validity Not Before: May 3 02:53:15 2026 GMT Not After : May 2 02:58:15 2027 GMT Subject: CN=25991D0CC880F9BCDC36072D7E2EB48EC26EC8F3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:24:cf:99:d6:f9:4e:8e:7d:36:dc:7f:34:31: cb:57:df:f6:b9:09:13:f0:0e:06:4b:d3:d8:e8:4f: d5:b7:f2:a9:11:e9:15:44:03:4b:5c:93:80:2c:63: 34:12:e1:ef:d2:ce:44:0b:93:d8:dd:23:e7:72:d3: a5:70:32:ad:df:fd:73:99:bd:3c:16:bc:c0:81:7f: 62:40:7a:65:e5:c4:ac:66:09:8a:e9:d9:18:d7:35: 97:2c:1b:94:1c:69:4f:f2:9c:4d:a4:12:cf:ec:b7: 43:f5:59:e4:da:61:e6:02:77:3c:81:95:32:53:35: c9:ce:c2:9a:6f:ca:2f:30:80:2e:c4:70:7f:50:02: 16:b5:6f:5c:5a:80:53:54:e5:95:7e:46:5e:b9:fc: 01:ec:d2:e4:3d:fd:bc:6c:90:c5:5d:45:f6:5c:ae: 46:09:3c:f1:d7:49:0b:2b:e0:a1:a4:97:92:e1:d3: eb:6a:d6:80:f0:ed:68:bf:4d:63:37:ec:26:e1:71: 34:8a:b4:cb:7a:36:73:b7:63:fc:ca:53:d3:80:0d: bc:0b:5a:2b:20:d8:36:52:d7:d9:0f:b7:d1:53:05: 25:57:a2:71:fa:e5:41:78:90:bf:72:81:1e:25:e3: 2b:d4:c5:e6:b5:85:48:ab:6e:79:ff:e9:af:95:0e: 38:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:99:1D:0C:C8:80:F9:BC:DC:36:07:2D:7E:2E:B4:8E:C2:6E:C8:F3 X509v3 Authority Key Identifier: keyid:A9:2D:7A:2C:E9:CB:AA:FD:76:3A:38:0C:28:FA:DD:D1:A3:C7:EA:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/aa914ada-a9aa-4d7f-9e47-594bcb7a70ab/0/A92D7A2CE9CBAAFD763A380C28FADDD1A3C7EA81.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/A92D7A2CE9CBAAFD763A380C28FADDD1A3C7EA81.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/aa914ada-a9aa-4d7f-9e47-594bcb7a70ab/0/323430353a366463303a3a2f33322d3332203d3e20313339343237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:6dc0::/32 Signature Algorithm: sha256WithRSAEncryption 6e:ab:af:66:4d:63:76:2f:22:2d:c4:04:5f:9b:da:49:d9:2a: 3b:87:3a:d5:67:04:44:02:c3:3f:c8:da:21:42:c5:4a:f1:83: 89:ec:44:6a:79:01:47:49:4b:12:66:ae:7b:be:cb:8c:1e:84: 00:63:2e:6b:bb:d2:63:d2:2e:0c:a3:99:eb:4d:49:b0:a5:2a: 7c:4b:80:a1:a3:21:67:95:00:46:cf:e7:96:80:0f:5d:04:e9: 9d:25:47:fc:b2:47:20:c2:c2:7d:00:b2:78:74:3d:e6:d8:05: 43:e7:d7:fc:0b:82:2c:4e:3c:57:ce:4a:86:46:ad:e2:6c:d0: 1a:f1:99:0f:28:ab:f7:a7:08:c5:50:2d:82:13:fb:c4:61:ed: 0a:94:a9:f1:f3:d1:a3:ce:ab:7c:b4:1f:48:8c:07:f3:5c:5d: 33:3e:c2:c7:3e:d6:ad:93:7f:08:ee:e3:9e:f1:3f:f0:ad:e2: b7:9d:ad:04:45:b6:53:11:71:d5:68:27:2d:6e:dd:a7:17:19: 86:82:c5:dc:28:5d:c4:e2:69:08:45:7f:94:80:a8:a8:a8:c9: 02:49:8a:05:d4:17:4d:26:6f:8a:f3:77:39:79:3f:19:39:cd: 94:19:52:7f:1b:c6:e6:88:82:81:d8:38:89:48:c0:2a:5f:66: 2e:97:75:2c -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUVlBDyL3vFKP3V+pGajST2Glel7gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTkyRDdBMkNFOUNCQUFGRDc2M0EzODBDMjhGQURERDFB M0M3RUE4MTAeFw0yNjA1MDMwMjUzMTVaFw0yNzA1MDIwMjU4MTVaMDMxMTAvBgNV BAMTKDI1OTkxRDBDQzg4MEY5QkNEQzM2MDcyRDdFMkVCNDhFQzI2RUM4RjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCOJM+Z1vlOjn023H80MctX3/a5 CRPwDgZL09joT9W38qkR6RVEA0tck4AsYzQS4e/SzkQLk9jdI+dy06VwMq3f/XOZ vTwWvMCBf2JAemXlxKxmCYrp2RjXNZcsG5QcaU/ynE2kEs/st0P1WeTaYeYCdzyB lTJTNcnOwppvyi8wgC7EcH9QAha1b1xagFNU5ZV+Rl65/AHs0uQ9/bxskMVdRfZc rkYJPPHXSQsr4KGkl5Lh0+tq1oDw7Wi/TWM37CbhcTSKtMt6NnO3Y/zKU9OADbwL Wisg2DZS19kPt9FTBSVXonH65UF4kL9ygR4l4yvUxea1hUirbnn/6a+VDjjLAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUJZkdDMiA+bzcNgctfi60jsJuyPMwHwYDVR0j BBgwFoAUqS16LOnLqv12OjgMKPrd0aPH6oEwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YWE5MTRhZGEtYTlhYS00ZDdmLTllNDctNTk0YmNiN2E3MGFiLzAvQTkyRDdBMkNF OUNCQUFGRDc2M0EzODBDMjhGQURERDFBM0M3RUE4MS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9BOTJEN0EyQ0U5Q0JBQUZENzYzQTM4MEMyOEZBREREMUEzQzdF QTgxLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2FhOTE0YWRhLWE5YWEtNGQ3Zi05 ZTQ3LTU5NGJjYjdhNzBhYi8wLzMyMzQzMDM1M2EzNjY0NjMzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzMzOTM0MzIzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQFbcAwDQYJKoZI hvcNAQELBQADggEBAG6rr2ZNY3YvIi3EBF+b2knZKjuHOtVnBEQCwz/I2iFCxUrx g4nsRGp5AUdJSxJmrnu+y4wehABjLmu70mPSLgyjmetNSbClKnxLgKGjIWeVAEbP 55aAD10E6Z0lR/yyRyDCwn0Asnh0PebYBUPn1/wLgixOPFfOSoZGreJs0BrxmQ8o q/enCMVQLYIT+8Rh7QqUqfHz0aPOq3y0H0iMB/NcXTM+wsc+1q2Tfwju457xP/Ct 4redrQRFtlMRcdVoJy1u3acXGYaCxdwoXcTiaQhFf5SAqKioyQJJigXUF00mb4rz dzl5Pxk5zZQZUn8bxuaIgoHYOIlIwCpfZi6XdSw= -----END CERTIFICATE-----Generated at Wed May 13 06:00:53 2026 by rpki-client