$ rpki-client -vvf rpki-rsync.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a343030323a3a2f34382d3438203d3e203338353030.roa File: 323430333a323730303a343030323a3a2f34382d3438203d3e203338353030.roa (raw, json) Hash identifier: pthlIwHWw7JpkCaN2NfuhLEif94Ew8btrUdW3O9vYPs= Subject key identifier: AD:D4:EC:D7:A8:AC:D8:F0:27:17:4D:1E:80:67:23:EE:5A:EA:3C:B0 Certificate issuer: /CN=FB081C4B909CDF56184D0455B2AA1F52EBFC9293 Certificate serial: 64F449A13D3B89371F01F0DCAC4991909062144D Authority key identifier: FB:08:1C:4B:90:9C:DF:56:18:4D:04:55:B2:AA:1F:52:EB:FC:92:93 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/FB081C4B909CDF56184D0455B2AA1F52EBFC9293.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a343030323a3a2f34382d3438203d3e203338353030.roa Signing time: Sun 03 May 2026 03:00:04 +0000 ROA not before: Sun 03 May 2026 02:55:04 +0000 ROA not after: Sun 02 May 2027 03:00:04 +0000 asID: 38500 IP address blocks: 2403:2700:4002::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/FB081C4B909CDF56184D0455B2AA1F52EBFC9293.crl rsync://rpki-rsync.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/FB081C4B909CDF56184D0455B2AA1F52EBFC9293.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/FB081C4B909CDF56184D0455B2AA1F52EBFC9293.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 01:56:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:f4:49:a1:3d:3b:89:37:1f:01:f0:dc:ac:49:91:90:90:62:14:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FB081C4B909CDF56184D0455B2AA1F52EBFC9293 Validity Not Before: May 3 02:55:04 2026 GMT Not After : May 2 03:00:04 2027 GMT Subject: CN=ADD4ECD7A8ACD8F027174D1E806723EE5AEA3CB0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:05:67:cd:a4:43:95:7d:63:94:e9:99:c6:c1: f9:92:44:64:c2:26:d7:b6:45:e1:ac:dc:6d:c6:58: 0c:bc:ae:56:e3:1c:66:39:1b:21:02:98:b4:15:e5: f5:cd:27:bf:27:23:17:0c:f2:ed:b6:b8:23:67:f5: 8a:a2:67:86:21:99:9e:e1:3e:54:48:f1:e1:4f:00: 5b:be:46:81:63:a4:21:d9:eb:be:e8:e1:84:00:b3: e2:ad:86:91:7a:fa:fe:c6:8f:2f:8a:4c:6f:39:9f: 96:db:24:37:fb:a8:d7:fc:3c:71:8d:48:fa:30:c0: 98:8c:2b:b9:73:e7:e3:d3:5a:17:f3:0c:c9:df:08: 06:c0:23:47:b2:19:8a:4a:66:fe:d2:5b:e5:c9:1d: 9b:16:6b:10:61:2a:01:9e:5f:6e:59:25:10:54:7b: de:80:7d:dd:1f:04:21:4c:26:de:15:85:96:81:c0: fe:12:14:96:d4:fc:2f:7e:40:54:a0:e6:2c:41:bc: 42:51:3e:3b:26:ef:e4:49:ee:24:26:7b:11:5f:4f: a4:df:f9:eb:54:f7:1d:22:d8:21:6d:8d:dd:1b:c2: 92:7b:ab:05:1f:07:57:ee:13:98:14:6f:fa:38:c6: 5f:7f:b5:e9:cb:15:da:21:b5:ad:ac:a3:a2:38:8b: 0b:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:D4:EC:D7:A8:AC:D8:F0:27:17:4D:1E:80:67:23:EE:5A:EA:3C:B0 X509v3 Authority Key Identifier: keyid:FB:08:1C:4B:90:9C:DF:56:18:4D:04:55:B2:AA:1F:52:EB:FC:92:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/FB081C4B909CDF56184D0455B2AA1F52EBFC9293.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/FB081C4B909CDF56184D0455B2AA1F52EBFC9293.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a343030323a3a2f34382d3438203d3e203338353030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:2700:4002::/48 Signature Algorithm: sha256WithRSAEncryption 87:f4:88:ca:b0:23:a8:65:07:e2:82:d3:42:6d:1a:59:f3:1f: d5:1e:49:09:39:ea:52:29:76:b5:98:65:a3:1b:d9:cd:39:be: 6f:36:d0:db:c9:64:1c:ab:4d:95:7f:d5:b0:7f:26:c5:b9:c9: b3:3c:15:a8:75:ca:78:76:14:6a:c7:41:8e:cd:bb:19:9f:62: f4:35:0f:c7:53:89:30:3c:69:2b:14:06:8c:b1:1f:69:52:e3: e5:63:d6:21:56:cb:f6:85:62:c4:2e:5d:77:9a:46:33:7e:63: 09:30:3c:da:58:4e:b0:59:08:e0:10:1e:87:88:75:4c:70:32: 48:b2:cd:a4:fb:bf:4f:a7:82:c2:bd:49:34:a0:4e:98:80:e0: e0:d1:32:eb:9d:2d:6e:2d:dc:c3:29:c0:05:e2:25:4b:12:56: 4c:d8:8e:5c:a8:5a:4d:58:6a:33:b9:38:19:f9:77:df:3f:3e: 80:87:88:9a:3b:e6:62:4d:94:00:3c:c3:1b:97:f0:9f:39:79: 59:bb:d9:c6:4a:82:70:97:79:c0:f9:3b:62:36:9e:56:dd:43: 23:ee:49:64:05:27:a1:4b:b4:ac:65:a3:30:bf:eb:8d:0a:d6: eb:6d:dd:5c:e4:f7:1e:42:a1:c2:c0:35:19:d4:1c:17:90:f0: f9:20:8a:00 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUZPRJoT07iTcfAfDcrEmRkJBiFE0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkIwODFDNEI5MDlDREY1NjE4NEQwNDU1QjJBQTFGNTJF QkZDOTI5MzAeFw0yNjA1MDMwMjU1MDRaFw0yNzA1MDIwMzAwMDRaMDMxMTAvBgNV BAMTKEFERDRFQ0Q3QThBQ0Q4RjAyNzE3NEQxRTgwNjcyM0VFNUFFQTNDQjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJBWfNpEOVfWOU6ZnGwfmSRGTC Jte2ReGs3G3GWAy8rlbjHGY5GyECmLQV5fXNJ78nIxcM8u22uCNn9YqiZ4YhmZ7h PlRI8eFPAFu+RoFjpCHZ677o4YQAs+KthpF6+v7Gjy+KTG85n5bbJDf7qNf8PHGN SPowwJiMK7lz5+PTWhfzDMnfCAbAI0eyGYpKZv7SW+XJHZsWaxBhKgGeX25ZJRBU e96Afd0fBCFMJt4VhZaBwP4SFJbU/C9+QFSg5ixBvEJRPjsm7+RJ7iQmexFfT6Tf +etU9x0i2CFtjd0bwpJ7qwUfB1fuE5gUb/o4xl9/tenLFdohta2so6I4iws5AgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUrdTs16is2PAnF00egGcj7lrqPLAwHwYDVR0j BBgwFoAU+wgcS5Cc31YYTQRVsqofUuv8kpMwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YjA0MDY4ZjMtYTc1Yi00NzY0LTllODAtMWZhNTcyOTIwN2ZjLzAvRkIwODFDNEI5 MDlDREY1NjE4NEQwNDU1QjJBQTFGNTJFQkZDOTI5My5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9GQjA4MUM0QjkwOUNERjU2MTg0RDA0NTVCMkFBMUY1MkVCRkM5 MjkzLmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUFBzALhoGLcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2IwNDA2OGYzLWE3NWItNDc2NC05 ZTgwLTFmYTU3MjkyMDdmYy8wLzMyMzQzMDMzM2EzMjM3MzAzMDNhMzQzMDMwMzIz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMzM4MzUzMDMwLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAMn AEACMA0GCSqGSIb3DQEBCwUAA4IBAQCH9IjKsCOoZQfigtNCbRpZ8x/VHkkJOepS KXa1mGWjG9nNOb5vNtDbyWQcq02Vf9WwfybFucmzPBWodcp4dhRqx0GOzbsZn2L0 NQ/HU4kwPGkrFAaMsR9pUuPlY9YhVsv2hWLELl13mkYzfmMJMDzaWE6wWQjgEB6H iHVMcDJIss2k+79Pp4LCvUk0oE6YgODg0TLrnS1uLdzDKcAF4iVLElZM2I5cqFpN WGozuTgZ+XffPz6Ah4iaO+ZiTZQAPMMbl/CfOXlZu9nGSoJwl3nA+TtiNp5W3UMj 7klkBSehS7SsZaMwv+uNCtbrbd1c5PceQqHCwDUZ1BwXkPD5IIoA -----END CERTIFICATE-----Generated at Wed May 13 09:55:09 2026 by rpki-client