$ rpki-client -vvf rpki-rsync.idnic.net/repo/af1c79f1-264e-423f-9e08-0b2900da6949/0/323430323a363938303a3a2f33322d3438203d3e203539323738.roa File: 323430323a363938303a3a2f33322d3438203d3e203539323738.roa (raw, json) Hash identifier: aRqarVDmeezXJU+Pwuv00vHqWnKaxtDs6IZN+swCI28= Subject key identifier: C5:B0:64:FB:AA:03:77:7C:5D:00:0F:FB:AF:38:0D:4D:0A:60:A2:37 Certificate issuer: /CN=7637E963EF709E2BBD39881202E68EA7BA09EB64 Certificate serial: 416C431AFFB69A0B95912D12E479E37387BDD32F Authority key identifier: 76:37:E9:63:EF:70:9E:2B:BD:39:88:12:02:E6:8E:A7:BA:09:EB:64 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/7637E963EF709E2BBD39881202E68EA7BA09EB64.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/af1c79f1-264e-423f-9e08-0b2900da6949/0/323430323a363938303a3a2f33322d3438203d3e203539323738.roa Signing time: Sun 03 May 2026 02:59:43 +0000 ROA not before: Sun 03 May 2026 02:54:43 +0000 ROA not after: Sun 02 May 2027 02:59:43 +0000 asID: 59278 IP address blocks: 2402:6980::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/af1c79f1-264e-423f-9e08-0b2900da6949/0/7637E963EF709E2BBD39881202E68EA7BA09EB64.crl rsync://rpki-rsync.idnic.net/repo/af1c79f1-264e-423f-9e08-0b2900da6949/0/7637E963EF709E2BBD39881202E68EA7BA09EB64.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/7637E963EF709E2BBD39881202E68EA7BA09EB64.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 22:20:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:6c:43:1a:ff:b6:9a:0b:95:91:2d:12:e4:79:e3:73:87:bd:d3:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7637E963EF709E2BBD39881202E68EA7BA09EB64 Validity Not Before: May 3 02:54:43 2026 GMT Not After : May 2 02:59:43 2027 GMT Subject: CN=C5B064FBAA03777C5D000FFBAF380D4D0A60A237 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:f8:f9:2b:9d:6f:47:db:91:19:a0:fa:46:76: e5:c1:d7:d5:b1:84:3c:92:bd:ca:8a:01:1e:ef:c2: 65:ae:27:e8:c6:11:25:53:75:4f:b0:f1:63:2c:84: 80:d4:89:2f:66:e9:de:c1:79:61:f2:d2:c4:f6:7a: f9:36:f4:4f:31:f8:94:ab:36:b7:e7:27:6d:ff:cd: e5:ec:0b:de:da:7a:51:66:98:d3:f9:01:e1:46:bc: 16:1b:9f:35:f1:27:9e:b5:45:71:27:e0:51:be:1d: c2:04:41:c5:78:2d:65:5f:6c:27:12:9a:d9:9c:0f: 5b:96:c0:8d:24:25:78:3b:2c:65:df:fc:19:4b:91: 74:98:5e:bd:5d:6d:ed:48:a4:58:ad:72:97:a1:0c: 5e:06:a4:9e:38:bb:84:76:03:78:51:e8:76:21:26: 14:fa:6b:30:c4:27:91:47:9b:85:aa:ca:04:5f:de: ac:1f:6e:5d:71:11:20:28:9d:d6:44:c0:db:96:16: db:f2:d2:c2:be:78:4d:01:31:04:c5:a9:e5:f0:c2: 53:b1:03:97:28:b6:5e:47:31:61:a6:39:02:94:7e: 2a:10:d2:06:39:2a:dd:5e:56:fe:91:90:c6:3a:da: 9a:4e:f5:0b:cf:be:bb:f3:12:15:ca:47:05:52:47: 33:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:B0:64:FB:AA:03:77:7C:5D:00:0F:FB:AF:38:0D:4D:0A:60:A2:37 X509v3 Authority Key Identifier: keyid:76:37:E9:63:EF:70:9E:2B:BD:39:88:12:02:E6:8E:A7:BA:09:EB:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/af1c79f1-264e-423f-9e08-0b2900da6949/0/7637E963EF709E2BBD39881202E68EA7BA09EB64.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/7637E963EF709E2BBD39881202E68EA7BA09EB64.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/af1c79f1-264e-423f-9e08-0b2900da6949/0/323430323a363938303a3a2f33322d3438203d3e203539323738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:6980::/32 Signature Algorithm: sha256WithRSAEncryption b6:42:1c:e1:ac:c4:52:eb:62:e1:b0:78:55:f8:06:ae:5f:02: 04:08:85:8c:0c:1b:bc:eb:e9:60:3a:28:d3:c7:8d:ac:f0:df: 41:7a:a2:a0:6b:51:b7:72:53:1f:0b:1c:54:ef:1d:59:41:d0: 97:93:74:d4:51:21:b8:d9:83:fa:d8:31:bf:47:ed:be:09:9f: 2e:71:ca:3d:26:6b:ed:5c:7b:ab:6c:82:98:0f:ce:7e:5c:86: 2b:a0:2d:78:3a:89:45:66:58:fa:e5:cf:1f:a4:18:fc:a7:97: 51:0a:28:41:0f:45:0e:96:b0:0a:60:ba:32:ad:4b:e3:8f:b4: 4a:7d:16:ed:87:3d:e4:87:0d:65:cc:42:98:49:ee:2e:da:55: 55:8d:c9:93:98:a4:51:4b:4c:fd:bb:32:9c:3e:74:78:98:aa: 87:dd:5b:c2:1d:ac:c0:73:05:5b:13:8d:b6:4e:87:e7:57:df: 85:cf:53:ec:f8:93:2f:af:d9:a9:48:90:19:a5:10:ec:c0:c3: c0:43:9f:b7:ec:e3:b1:fe:a6:fe:54:a6:34:26:bd:ae:6a:07: 5c:c9:ab:36:3e:c9:93:3a:1b:99:9f:2b:5c:d0:66:16:d0:0c: 7d:bf:8d:82:0f:b1:c4:64:ef:3f:b4:74:34:55:d9:b3:1f:a3: 18:af:a1:4b -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUQWxDGv+2mguVkS0S5Hnjc4e90y8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzYzN0U5NjNFRjcwOUUyQkJEMzk4ODEyMDJFNjhFQTdC QTA5RUI2NDAeFw0yNjA1MDMwMjU0NDNaFw0yNzA1MDIwMjU5NDNaMDMxMTAvBgNV BAMTKEM1QjA2NEZCQUEwMzc3N0M1RDAwMEZGQkFGMzgwRDREMEE2MEEyMzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7+PkrnW9H25EZoPpGduXB19Wx hDySvcqKAR7vwmWuJ+jGESVTdU+w8WMshIDUiS9m6d7BeWHy0sT2evk29E8x+JSr NrfnJ23/zeXsC97aelFmmNP5AeFGvBYbnzXxJ561RXEn4FG+HcIEQcV4LWVfbCcS mtmcD1uWwI0kJXg7LGXf/BlLkXSYXr1dbe1IpFitcpehDF4GpJ44u4R2A3hR6HYh JhT6azDEJ5FHm4WqygRf3qwfbl1xESAondZEwNuWFtvy0sK+eE0BMQTFqeXwwlOx A5cotl5HMWGmOQKUfioQ0gY5Kt1eVv6RkMY62ppO9QvPvrvzEhXKRwVSRzMHAgMB AAGjggIxMIICLTAdBgNVHQ4EFgQUxbBk+6oDd3xdAA/7rzgNTQpgojcwHwYDVR0j BBgwFoAUdjfpY+9wniu9OYgSAuaOp7oJ62QwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YWYxYzc5ZjEtMjY0ZS00MjNmLTllMDgtMGIyOTAwZGE2OTQ5LzAvNzYzN0U5NjNF RjcwOUUyQkJEMzk4ODEyMDJFNjhFQTdCQTA5RUI2NC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS83NjM3RTk2M0VGNzA5RTJCQkQzOTg4MTIwMkU2OEVBN0JBMDlF QjY0LmNlcjCBoQYIKwYBBQUHAQsEgZQwgZEwgY4GCCsGAQUFBzALhoGBcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2FmMWM3OWYxLTI2NGUtNDIzZi05 ZTA4LTBiMjkwMGRhNjk0OS8wLzMyMzQzMDMyM2EzNjM5MzgzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDM1MzkzMjM3Mzgucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkAmmAMA0GCSqGSIb3 DQEBCwUAA4IBAQC2QhzhrMRS62LhsHhV+AauXwIECIWMDBu86+lgOijTx42s8N9B eqKga1G3clMfCxxU7x1ZQdCXk3TUUSG42YP62DG/R+2+CZ8ucco9JmvtXHurbIKY D85+XIYroC14OolFZlj65c8fpBj8p5dRCihBD0UOlrAKYLoyrUvjj7RKfRbthz3k hw1lzEKYSe4u2lVVjcmTmKRRS0z9uzKcPnR4mKqH3VvCHazAcwVbE422TofnV9+F z1Ps+JMvr9mpSJAZpRDswMPAQ5+37OOx/qb+VKY0Jr2uagdcyas2PsmTOhuZnytc 0GYW0Ax9v42CD7HEZO8/tHQ0VdmzH6MYr6FL -----END CERTIFICATE-----Generated at Wed May 13 07:15:04 2026 by rpki-client