$ rpki-client -vvf rpki-rsync.idnic.net/repo/ae0e5ac2-b6bb-4bec-9dc9-e430a6733216/0/323430303a613334303a3a2f33322d3332203d3e20313336303735.roa File: 323430303a613334303a3a2f33322d3332203d3e20313336303735.roa (raw, json) Hash identifier: OIonx4PAzk7Dy9a/7NaLZFZxiwqMh13QBPm2JkuGHNM= Subject key identifier: 24:3D:C9:EC:C0:88:A3:C4:5B:84:A7:CE:AD:10:B3:1B:F8:E9:F9:9D Certificate issuer: /CN=AE70603036AD2614B0A87825C6E2788B1AD6F663 Certificate serial: 54EF59325A28EEA7F2AD3215325F5FBAC997D5CA Authority key identifier: AE:70:60:30:36:AD:26:14:B0:A8:78:25:C6:E2:78:8B:1A:D6:F6:63 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AE70603036AD2614B0A87825C6E2788B1AD6F663.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/ae0e5ac2-b6bb-4bec-9dc9-e430a6733216/0/323430303a613334303a3a2f33322d3332203d3e20313336303735.roa Signing time: Sun 03 May 2026 02:59:11 +0000 ROA not before: Sun 03 May 2026 02:54:11 +0000 ROA not after: Sun 02 May 2027 02:59:11 +0000 asID: 136075 IP address blocks: 2400:a340::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/ae0e5ac2-b6bb-4bec-9dc9-e430a6733216/0/AE70603036AD2614B0A87825C6E2788B1AD6F663.crl rsync://rpki-rsync.idnic.net/repo/ae0e5ac2-b6bb-4bec-9dc9-e430a6733216/0/AE70603036AD2614B0A87825C6E2788B1AD6F663.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AE70603036AD2614B0A87825C6E2788B1AD6F663.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 22:07:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:ef:59:32:5a:28:ee:a7:f2:ad:32:15:32:5f:5f:ba:c9:97:d5:ca Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AE70603036AD2614B0A87825C6E2788B1AD6F663 Validity Not Before: May 3 02:54:11 2026 GMT Not After : May 2 02:59:11 2027 GMT Subject: CN=243DC9ECC088A3C45B84A7CEAD10B31BF8E9F99D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:54:bc:3e:5f:35:d4:a1:91:4d:13:76:9f:05: bb:19:37:f9:91:70:14:a0:b9:e5:ec:a3:80:ea:dd: 3d:e7:68:af:7b:f7:9a:87:e1:11:45:c9:d1:06:a0: 45:5e:9a:99:71:11:84:89:d1:6f:91:8b:c1:19:22: 30:e3:0b:ef:43:22:d6:ca:2d:81:ce:c1:65:b9:4b: 36:1a:7b:4c:b2:64:be:bc:42:4a:12:39:45:cd:84: ff:e4:32:73:64:25:c0:ed:66:b3:07:99:d9:d8:0c: ab:27:d2:b8:dd:a7:8f:4d:51:8f:9e:82:b6:46:cc: 4d:26:52:88:06:4f:0e:80:6f:b7:a2:96:30:f4:a7: 83:68:19:b1:44:b6:5e:07:3a:13:67:aa:dd:ab:01: cc:86:8a:ba:eb:e1:82:0c:64:ea:e1:cb:e6:db:a3: ad:a4:44:dd:b0:23:cf:83:8e:ff:ed:d4:79:33:1c: 1f:ea:73:3f:fd:b7:ee:96:6f:6d:f8:ff:6b:85:87: 39:7b:26:fe:65:34:78:55:f4:3d:cf:31:d3:f6:9d: 22:a0:85:8d:85:e4:fe:08:18:2f:cc:47:f2:16:29: b0:a7:9d:7b:1a:12:23:11:21:d1:95:58:51:95:c6: 7b:b3:ed:68:2e:d5:60:1b:64:4d:84:a3:f9:7a:38: 0c:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:3D:C9:EC:C0:88:A3:C4:5B:84:A7:CE:AD:10:B3:1B:F8:E9:F9:9D X509v3 Authority Key Identifier: keyid:AE:70:60:30:36:AD:26:14:B0:A8:78:25:C6:E2:78:8B:1A:D6:F6:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/ae0e5ac2-b6bb-4bec-9dc9-e430a6733216/0/AE70603036AD2614B0A87825C6E2788B1AD6F663.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AE70603036AD2614B0A87825C6E2788B1AD6F663.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/ae0e5ac2-b6bb-4bec-9dc9-e430a6733216/0/323430303a613334303a3a2f33322d3332203d3e20313336303735.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:a340::/32 Signature Algorithm: sha256WithRSAEncryption 3d:c1:ae:13:cc:ba:47:c7:f3:9b:26:fe:75:4b:37:a1:58:42: 80:c9:2e:07:c0:30:ca:e8:20:1f:3e:41:bf:97:73:d1:d0:f8: 00:92:d3:df:0e:31:54:b9:46:89:0d:7f:fb:e6:a0:5b:9c:8a: f4:20:2c:b7:c9:49:92:c2:1d:d6:5f:e0:99:5a:0a:a9:45:ac: c5:f8:45:d5:04:36:7e:b6:63:26:e8:f1:ae:b3:7c:95:0d:9d: af:bb:f1:11:5c:e5:16:06:e0:b6:7a:de:da:b0:93:39:0b:00: 46:a9:9b:7d:c9:a9:82:46:15:d6:c6:f4:53:da:72:95:59:7d: 08:2e:17:15:14:53:29:35:bc:ff:ee:cf:9b:f9:23:bb:8c:39: 85:54:50:ea:e5:2b:a2:32:4a:93:50:38:78:e4:aa:2b:c8:44: dc:39:84:f9:7d:d1:86:02:02:a7:9f:f4:81:24:ec:48:94:0d: e3:db:20:49:65:be:db:63:98:c2:f2:dd:5d:67:b0:32:d7:9f: 0c:c5:e3:d7:94:cc:f4:85:5b:44:ea:3b:9f:0a:f5:e7:6e:4f: e4:fb:94:0e:11:ab:44:cd:3d:fe:a9:13:af:d9:25:3c:b7:aa: 26:71:80:31:77:f9:7e:c7:27:1b:f4:3b:df:ab:89:ea:b3:6a: ae:57:bb:33 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUVO9ZMloo7qfyrTIVMl9fusmX1cowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUU3MDYwMzAzNkFEMjYxNEIwQTg3ODI1QzZFMjc4OEIx QUQ2RjY2MzAeFw0yNjA1MDMwMjU0MTFaFw0yNzA1MDIwMjU5MTFaMDMxMTAvBgNV BAMTKDI0M0RDOUVDQzA4OEEzQzQ1Qjg0QTdDRUFEMTBCMzFCRjhFOUY5OUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtVLw+XzXUoZFNE3afBbsZN/mR cBSgueXso4Dq3T3naK9795qH4RFFydEGoEVemplxEYSJ0W+Ri8EZIjDjC+9DItbK LYHOwWW5SzYae0yyZL68QkoSOUXNhP/kMnNkJcDtZrMHmdnYDKsn0rjdp49NUY+e grZGzE0mUogGTw6Ab7eiljD0p4NoGbFEtl4HOhNnqt2rAcyGirrr4YIMZOrhy+bb o62kRN2wI8+Djv/t1HkzHB/qcz/9t+6Wb234/2uFhzl7Jv5lNHhV9D3PMdP2nSKg hY2F5P4IGC/MR/IWKbCnnXsaEiMRIdGVWFGVxnuz7Wgu1WAbZE2Eo/l6OAx9AgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUJD3J7MCIo8RbhKfOrRCzG/jp+Z0wHwYDVR0j BBgwFoAUrnBgMDatJhSwqHglxuJ4ixrW9mMwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YWUwZTVhYzItYjZiYi00YmVjLTlkYzktZTQzMGE2NzMzMjE2LzAvQUU3MDYwMzAz NkFEMjYxNEIwQTg3ODI1QzZFMjc4OEIxQUQ2RjY2My5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9BRTcwNjAzMDM2QUQyNjE0QjBBODc4MjVDNkUyNzg4QjFBRDZG NjYzLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2FlMGU1YWMyLWI2YmItNGJlYy05 ZGM5LWU0MzBhNjczMzIxNi8wLzMyMzQzMDMwM2E2MTMzMzQzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzMzNjMwMzczNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQAo0AwDQYJKoZI hvcNAQELBQADggEBAD3BrhPMukfH85sm/nVLN6FYQoDJLgfAMMroIB8+Qb+Xc9HQ +ACS098OMVS5RokNf/vmoFucivQgLLfJSZLCHdZf4JlaCqlFrMX4RdUENn62Yybo 8a6zfJUNna+78RFc5RYG4LZ63tqwkzkLAEapm33JqYJGFdbG9FPacpVZfQguFxUU Uyk1vP/uz5v5I7uMOYVUUOrlK6IySpNQOHjkqivIRNw5hPl90YYCAqef9IEk7EiU DePbIEllvttjmMLy3V1nsDLXnwzF49eUzPSFW0TqO58K9eduT+T7lA4Rq0TNPf6p E6/ZJTy3qiZxgDF3+X7HJxv0O9+rieqzaq5XuzM= -----END CERTIFICATE-----Generated at Wed May 13 04:54:32 2026 by rpki-client