$ rpki-client -vvf rpki-rsync.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a343030343a3a2f34382d3438203d3e203338353030.roa File: 323430333a323730303a343030343a3a2f34382d3438203d3e203338353030.roa (raw, json) Hash identifier: YaVkULLoKYVFCCc7gMkHUCgKWFPX5otfQP004jRqIN0= Subject key identifier: 3C:DF:7D:15:A2:58:39:F6:5D:A7:70:A2:3C:7A:A1:59:11:49:A6:C5 Certificate issuer: /CN=FB081C4B909CDF56184D0455B2AA1F52EBFC9293 Certificate serial: 0A8ECEE6B21760569FBF61CD2A67323A203BAE1C Authority key identifier: FB:08:1C:4B:90:9C:DF:56:18:4D:04:55:B2:AA:1F:52:EB:FC:92:93 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/FB081C4B909CDF56184D0455B2AA1F52EBFC9293.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a343030343a3a2f34382d3438203d3e203338353030.roa Signing time: Sun 03 May 2026 03:00:01 +0000 ROA not before: Sun 03 May 2026 02:55:01 +0000 ROA not after: Sun 02 May 2027 03:00:01 +0000 asID: 38500 IP address blocks: 2403:2700:4004::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/FB081C4B909CDF56184D0455B2AA1F52EBFC9293.crl rsync://rpki-rsync.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/FB081C4B909CDF56184D0455B2AA1F52EBFC9293.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/FB081C4B909CDF56184D0455B2AA1F52EBFC9293.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 01:56:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:8e:ce:e6:b2:17:60:56:9f:bf:61:cd:2a:67:32:3a:20:3b:ae:1c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FB081C4B909CDF56184D0455B2AA1F52EBFC9293 Validity Not Before: May 3 02:55:01 2026 GMT Not After : May 2 03:00:01 2027 GMT Subject: CN=3CDF7D15A25839F65DA770A23C7AA1591149A6C5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:0a:32:1f:ea:02:a4:24:d5:fb:b8:53:f7:91: 86:1d:de:a0:28:15:16:16:d4:10:b4:f2:ea:4a:94: 68:25:3a:3f:9e:69:41:09:13:4a:df:cb:98:2c:de: 9e:16:26:b3:9f:91:c9:6a:da:e0:1b:9e:89:a4:8d: 4b:98:c3:49:86:55:0f:a9:00:14:8a:3a:bb:00:6a: 48:fd:53:37:50:6c:f5:49:42:50:1d:2a:a4:6a:11: 5b:5a:ec:0b:44:e5:a0:12:77:7d:3f:a2:5a:f5:58: 8d:b2:0b:72:c1:3f:6f:66:4e:75:13:2c:42:e5:4a: d3:b9:5a:88:d7:c0:a4:79:16:dd:e0:af:74:50:97: df:56:2d:5f:72:fe:df:c6:6d:a4:15:5f:8c:62:e3: d8:83:03:45:48:52:2c:21:e3:e1:e5:11:ce:36:7e: 4c:bb:77:d5:a5:cf:1a:95:3a:94:ea:88:8a:75:bc: dd:2b:ae:f0:bf:c1:37:ce:65:e1:bc:36:48:70:aa: 0b:6c:91:2b:97:53:26:6d:f6:b1:87:3f:63:fe:ff: 34:7a:52:cd:67:cc:b6:db:68:25:06:93:48:b8:d8: 0c:84:da:67:0b:4a:92:1b:3f:92:92:c5:7d:04:8c: b2:bc:41:8c:c0:1f:ca:95:81:d5:e2:07:ab:0a:bb: 57:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:DF:7D:15:A2:58:39:F6:5D:A7:70:A2:3C:7A:A1:59:11:49:A6:C5 X509v3 Authority Key Identifier: keyid:FB:08:1C:4B:90:9C:DF:56:18:4D:04:55:B2:AA:1F:52:EB:FC:92:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/FB081C4B909CDF56184D0455B2AA1F52EBFC9293.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/FB081C4B909CDF56184D0455B2AA1F52EBFC9293.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a343030343a3a2f34382d3438203d3e203338353030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:2700:4004::/48 Signature Algorithm: sha256WithRSAEncryption 38:10:cd:12:0a:c0:83:04:af:05:84:97:c7:73:b7:5f:ec:8a: f6:00:f7:0d:fa:04:4f:7b:1b:1d:e4:4f:5c:7c:a1:fb:17:e9: ef:07:80:68:45:3c:77:26:40:5a:3f:a5:73:f4:5d:07:70:80: 4a:f2:dd:ab:c4:1c:e5:51:5c:b5:29:28:57:87:bf:ba:04:a7: 3d:13:e8:76:4d:f2:c9:02:b7:29:91:14:c0:ad:a0:ea:fc:a1: a5:ff:33:be:bf:d1:ee:96:e3:00:c9:19:21:1b:1c:a7:24:29: b1:90:5c:ac:ad:af:dd:ef:3d:bc:5a:90:55:f8:ce:67:bf:99: b1:a2:41:7e:25:8d:90:9d:7a:99:9d:99:ce:36:c7:5e:30:08: 61:b1:43:8c:31:5e:e1:32:8c:9f:92:c3:64:1a:09:10:34:7d: 9a:76:fd:c1:18:92:cd:d3:46:da:85:54:12:09:42:b1:93:34: b2:ad:86:5a:ed:c4:55:ca:04:22:42:ef:56:71:57:25:ff:8c: 32:08:34:d3:00:37:f1:59:db:09:3f:5b:7d:47:bb:3a:62:2b: 5e:ac:df:63:9d:3f:19:76:45:b8:da:40:16:1f:f6:2a:46:3c: 63:85:c0:3f:7f:ca:4d:0d:6d:3a:17:b3:48:de:cc:56:ca:a3: d8:e9:2f:8e -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUCo7O5rIXYFafv2HNKmcyOiA7rhwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkIwODFDNEI5MDlDREY1NjE4NEQwNDU1QjJBQTFGNTJF QkZDOTI5MzAeFw0yNjA1MDMwMjU1MDFaFw0yNzA1MDIwMzAwMDFaMDMxMTAvBgNV BAMTKDNDREY3RDE1QTI1ODM5RjY1REE3NzBBMjNDN0FBMTU5MTE0OUE2QzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDCjIf6gKkJNX7uFP3kYYd3qAo FRYW1BC08upKlGglOj+eaUEJE0rfy5gs3p4WJrOfkclq2uAbnomkjUuYw0mGVQ+p ABSKOrsAakj9UzdQbPVJQlAdKqRqEVta7AtE5aASd30/olr1WI2yC3LBP29mTnUT LELlStO5WojXwKR5Ft3gr3RQl99WLV9y/t/GbaQVX4xi49iDA0VIUiwh4+HlEc42 fky7d9WlzxqVOpTqiIp1vN0rrvC/wTfOZeG8NkhwqgtskSuXUyZt9rGHP2P+/zR6 Us1nzLbbaCUGk0i42AyE2mcLSpIbP5KSxX0EjLK8QYzAH8qVgdXiB6sKu1eDAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUPN99FaJYOfZdp3CiPHqhWRFJpsUwHwYDVR0j BBgwFoAU+wgcS5Cc31YYTQRVsqofUuv8kpMwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YjA0MDY4ZjMtYTc1Yi00NzY0LTllODAtMWZhNTcyOTIwN2ZjLzAvRkIwODFDNEI5 MDlDREY1NjE4NEQwNDU1QjJBQTFGNTJFQkZDOTI5My5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9GQjA4MUM0QjkwOUNERjU2MTg0RDA0NTVCMkFBMUY1MkVCRkM5 MjkzLmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUFBzALhoGLcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2IwNDA2OGYzLWE3NWItNDc2NC05 ZTgwLTFmYTU3MjkyMDdmYy8wLzMyMzQzMDMzM2EzMjM3MzAzMDNhMzQzMDMwMzQz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMzM4MzUzMDMwLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAMn AEAEMA0GCSqGSIb3DQEBCwUAA4IBAQA4EM0SCsCDBK8FhJfHc7df7Ir2APcN+gRP exsd5E9cfKH7F+nvB4BoRTx3JkBaP6Vz9F0HcIBK8t2rxBzlUVy1KShXh7+6BKc9 E+h2TfLJArcpkRTAraDq/KGl/zO+v9HuluMAyRkhGxynJCmxkFysra/d7z28WpBV +M5nv5mxokF+JY2QnXqZnZnONsdeMAhhsUOMMV7hMoyfksNkGgkQNH2adv3BGJLN 00bahVQSCUKxkzSyrYZa7cRVygQiQu9WcVcl/4wyCDTTADfxWdsJP1t9R7s6Yite rN9jnT8ZdkW42kAWH/YqRjxjhcA/f8pNDW06F7NI3sxWyqPY6S+O -----END CERTIFICATE-----Generated at Wed May 13 07:45:05 2026 by rpki-client