$ rpki-client -vvf rpki-rsync.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/323430313a313730303a3a2f33322d3438203d3e203535363636.roa File: 323430313a313730303a3a2f33322d3438203d3e203535363636.roa (raw, json) Hash identifier: Nf366z7083odp7IR4PDkJ5GuIfcHkTji6MKj/a8Q65k= Subject key identifier: 9E:F6:1A:04:FB:AB:3E:3A:03:FC:95:B0:14:14:69:A0:E7:EC:D6:3A Certificate issuer: /CN=8C8C56ED1EA0C6F9391CD9008E78CDF381C2720B Certificate serial: 024A72D703AD02CED609A34E865A1E28D23E13B8 Authority key identifier: 8C:8C:56:ED:1E:A0:C6:F9:39:1C:D9:00:8E:78:CD:F3:81:C2:72:0B Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/8C8C56ED1EA0C6F9391CD9008E78CDF381C2720B.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/323430313a313730303a3a2f33322d3438203d3e203535363636.roa Signing time: Sun 03 May 2026 02:59:29 +0000 ROA not before: Sun 03 May 2026 02:54:29 +0000 ROA not after: Sun 02 May 2027 02:59:29 +0000 asID: 55666 IP address blocks: 2401:1700::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/8C8C56ED1EA0C6F9391CD9008E78CDF381C2720B.crl rsync://rpki-rsync.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/8C8C56ED1EA0C6F9391CD9008E78CDF381C2720B.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/8C8C56ED1EA0C6F9391CD9008E78CDF381C2720B.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 22:04:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:4a:72:d7:03:ad:02:ce:d6:09:a3:4e:86:5a:1e:28:d2:3e:13:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8C8C56ED1EA0C6F9391CD9008E78CDF381C2720B Validity Not Before: May 3 02:54:29 2026 GMT Not After : May 2 02:59:29 2027 GMT Subject: CN=9EF61A04FBAB3E3A03FC95B0141469A0E7ECD63A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:19:40:01:0e:b7:fd:f2:37:01:e6:8f:b0:19: dc:09:6d:4e:14:f3:b1:c3:16:2c:41:46:35:2c:01: f5:de:98:de:df:a8:67:57:20:23:df:c4:e5:40:dc: 78:05:b4:35:47:a0:b4:9f:bd:bf:40:87:3f:e9:ac: 6a:4e:16:e1:8c:7a:af:c0:68:95:14:63:26:9b:6d: b3:ae:7b:96:b7:5b:da:89:2b:ac:f5:bf:48:68:c7: 90:8e:af:28:91:2c:e9:01:bc:fb:fa:ab:70:58:19: 19:61:ea:38:b0:7f:88:56:35:88:9d:56:57:27:f4: 12:03:bc:a1:65:55:ea:bc:6e:d0:51:db:cd:ae:4d: 1b:28:5d:fa:93:78:98:14:64:21:ce:dc:90:c3:bd: 5b:ed:79:95:6c:67:2a:24:d7:2f:61:85:7c:61:03: 78:79:19:57:13:f6:20:41:25:4d:e7:c2:fc:88:36: 4b:e4:7a:a2:ef:00:f0:47:80:e9:c0:78:f1:d7:88: 70:81:d1:45:be:2c:c0:05:e9:62:81:b9:b6:74:bd: 64:74:c4:19:9f:b5:71:69:b0:df:a8:6e:4f:0d:21: 64:73:6b:e0:6d:70:7b:d6:d7:c4:e8:10:6d:cf:4b: f8:f7:c0:49:19:ff:61:b4:0a:66:c3:50:b7:5c:0c: 5a:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:F6:1A:04:FB:AB:3E:3A:03:FC:95:B0:14:14:69:A0:E7:EC:D6:3A X509v3 Authority Key Identifier: keyid:8C:8C:56:ED:1E:A0:C6:F9:39:1C:D9:00:8E:78:CD:F3:81:C2:72:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/8C8C56ED1EA0C6F9391CD9008E78CDF381C2720B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/8C8C56ED1EA0C6F9391CD9008E78CDF381C2720B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/323430313a313730303a3a2f33322d3438203d3e203535363636.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:1700::/32 Signature Algorithm: sha256WithRSAEncryption 94:06:e0:04:15:67:d0:55:c6:39:ba:0a:ef:74:4a:91:c6:27: 71:bd:7a:e1:bf:a8:d2:18:de:f2:63:5b:2b:eb:97:3e:32:e3: 8e:1e:a1:af:3c:aa:97:b0:ac:3a:50:ea:3b:b5:27:f0:e0:04: 1a:a2:7d:01:79:0b:6e:46:fc:15:52:0a:f2:62:09:25:dd:59: cd:a2:ea:85:e6:9a:f4:2a:49:59:9b:54:11:e2:92:ef:2d:46: 74:d9:0c:7d:3f:e4:c5:84:53:64:ef:2c:27:ec:ef:de:38:9a: 56:7d:cc:46:6e:22:fc:07:1a:57:a7:fd:32:58:57:0e:93:7b: 56:be:aa:2c:7b:93:48:2a:86:fb:04:79:f5:f3:c5:03:3e:4b: 70:30:6e:81:70:45:fa:b5:96:3b:27:bc:57:16:c0:f2:3c:3c: d9:a3:81:fb:6e:43:1d:1f:3d:9d:22:c1:ca:9c:86:01:58:f8: 22:ac:e2:b3:21:10:0d:02:54:ad:7f:37:22:53:39:3a:40:ad: ab:68:ca:ba:0c:68:16:e0:23:13:77:e8:0c:7c:a3:ed:cb:be: 11:54:9e:d4:5b:6f:ad:ac:07:ab:ab:b4:bc:5e:86:e7:7a:d3: a2:7c:d5:ba:c3:b3:fe:b1:30:9c:03:84:68:bb:fe:22:1b:e0: 58:da:79:b4 -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUAkpy1wOtAs7WCaNOhloeKNI+E7gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEM4QzU2RUQxRUEwQzZGOTM5MUNEOTAwOEU3OENERjM4 MUMyNzIwQjAeFw0yNjA1MDMwMjU0MjlaFw0yNzA1MDIwMjU5MjlaMDMxMTAvBgNV BAMTKDlFRjYxQTA0RkJBQjNFM0EwM0ZDOTVCMDE0MTQ2OUEwRTdFQ0Q2M0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrGUABDrf98jcB5o+wGdwJbU4U 87HDFixBRjUsAfXemN7fqGdXICPfxOVA3HgFtDVHoLSfvb9Ahz/prGpOFuGMeq/A aJUUYyabbbOue5a3W9qJK6z1v0hox5COryiRLOkBvPv6q3BYGRlh6jiwf4hWNYid Vlcn9BIDvKFlVeq8btBR282uTRsoXfqTeJgUZCHO3JDDvVvteZVsZyok1y9hhXxh A3h5GVcT9iBBJU3nwvyINkvkeqLvAPBHgOnAePHXiHCB0UW+LMAF6WKBubZ0vWR0 xBmftXFpsN+obk8NIWRza+BtcHvW18ToEG3PS/j3wEkZ/2G0CmbDULdcDFplAgMB AAGjggIxMIICLTAdBgNVHQ4EFgQUnvYaBPurPjoD/JWwFBRpoOfs1jowHwYDVR0j BBgwFoAUjIxW7R6gxvk5HNkAjnjN84HCcgswDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YWVhN2ExMTUtYjhiOC00OTBiLTgzMjAtYzllNTlhMTAwM2RkLzAvOEM4QzU2RUQx RUEwQzZGOTM5MUNEOTAwOEU3OENERjM4MUMyNzIwQi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS84QzhDNTZFRDFFQTBDNkY5MzkxQ0Q5MDA4RTc4Q0RGMzgxQzI3 MjBCLmNlcjCBoQYIKwYBBQUHAQsEgZQwgZEwgY4GCCsGAQUFBzALhoGBcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2FlYTdhMTE1LWI4YjgtNDkwYi04 MzIwLWM5ZTU5YTEwMDNkZC8wLzMyMzQzMDMxM2EzMTM3MzAzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDM1MzUzNjM2MzYucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkARcAMA0GCSqGSIb3 DQEBCwUAA4IBAQCUBuAEFWfQVcY5ugrvdEqRxidxvXrhv6jSGN7yY1sr65c+MuOO HqGvPKqXsKw6UOo7tSfw4AQaon0BeQtuRvwVUgryYgkl3VnNouqF5pr0KklZm1QR 4pLvLUZ02Qx9P+TFhFNk7ywn7O/eOJpWfcxGbiL8BxpXp/0yWFcOk3tWvqose5NI Kob7BHn188UDPktwMG6BcEX6tZY7J7xXFsDyPDzZo4H7bkMdHz2dIsHKnIYBWPgi rOKzIRANAlStfzciUzk6QK2raMq6DGgW4CMTd+gMfKPty74RVJ7UW2+trAerq7S8 XobnetOifNW6w7P+sTCcA4Rou/4iG+BY2nm0 -----END CERTIFICATE-----Generated at Wed May 13 08:27:41 2026 by rpki-client