$ rpki-client -vvf rpki-rsync.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a343031303a3a2f34382d3438203d3e203338353030.roa File: 323430333a323730303a343031303a3a2f34382d3438203d3e203338353030.roa (raw, json) Hash identifier: G5zoc18zyZyCwyoYZ5SMhz2RctCyRZzf3BtDt6i3PRo= Subject key identifier: 19:C3:AD:E3:E0:E1:8A:57:3B:04:5E:62:AF:F4:BC:9E:4B:3F:92:58 Certificate issuer: /CN=FB081C4B909CDF56184D0455B2AA1F52EBFC9293 Certificate serial: 5D686EC9B17CA5163D4252F833C975E8271DA008 Authority key identifier: FB:08:1C:4B:90:9C:DF:56:18:4D:04:55:B2:AA:1F:52:EB:FC:92:93 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/FB081C4B909CDF56184D0455B2AA1F52EBFC9293.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a343031303a3a2f34382d3438203d3e203338353030.roa Signing time: Sun 03 May 2026 02:59:59 +0000 ROA not before: Sun 03 May 2026 02:54:59 +0000 ROA not after: Sun 02 May 2027 02:59:59 +0000 asID: 38500 IP address blocks: 2403:2700:4010::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/FB081C4B909CDF56184D0455B2AA1F52EBFC9293.crl rsync://rpki-rsync.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/FB081C4B909CDF56184D0455B2AA1F52EBFC9293.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/FB081C4B909CDF56184D0455B2AA1F52EBFC9293.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 01:56:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:68:6e:c9:b1:7c:a5:16:3d:42:52:f8:33:c9:75:e8:27:1d:a0:08 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FB081C4B909CDF56184D0455B2AA1F52EBFC9293 Validity Not Before: May 3 02:54:59 2026 GMT Not After : May 2 02:59:59 2027 GMT Subject: CN=19C3ADE3E0E18A573B045E62AFF4BC9E4B3F9258 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:18:f8:7d:bf:ad:c2:42:9b:ba:fe:8f:fe:df: a4:2a:bd:2d:09:40:a6:b0:63:d7:d7:07:91:5a:1d: 3d:fe:bf:48:d1:8f:3c:7c:9a:80:d6:c6:52:c0:5a: 9b:6a:26:a8:8d:da:5f:1f:a9:b3:fd:4b:2d:66:ca: 1f:d5:e3:35:bb:c6:6f:cd:bf:53:b6:5f:cf:46:a0: 49:ff:ca:d3:3a:61:93:52:42:fd:27:f3:77:7e:0e: 36:d0:a9:a5:3f:68:ba:45:87:dc:35:a5:83:fd:45: b8:7a:6a:f8:84:c6:e8:d5:86:c2:0a:82:a1:dd:7b: 82:f8:9a:ad:63:40:ef:5c:32:de:47:4c:f1:a6:8c: 68:38:5c:55:a6:5f:4a:87:89:82:19:6c:8c:f8:ef: 8b:b1:c9:e7:89:51:66:73:48:85:1f:e1:a1:7b:15: 7e:90:a0:36:df:20:e4:43:72:e2:ee:23:f6:40:da: da:f5:f7:7e:f1:82:3d:ef:fc:94:9c:fa:00:3a:13: cf:b2:df:a3:be:21:02:24:8b:40:c6:13:d7:9a:91: 49:40:a5:e0:e1:e5:56:48:b5:6c:4d:19:1c:00:8b: 32:92:a1:54:ec:66:10:04:b1:0e:e0:8c:0e:30:e2: 97:6d:80:4a:13:83:fb:a9:26:b0:73:d4:9d:f0:3f: 35:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:C3:AD:E3:E0:E1:8A:57:3B:04:5E:62:AF:F4:BC:9E:4B:3F:92:58 X509v3 Authority Key Identifier: keyid:FB:08:1C:4B:90:9C:DF:56:18:4D:04:55:B2:AA:1F:52:EB:FC:92:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/FB081C4B909CDF56184D0455B2AA1F52EBFC9293.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/FB081C4B909CDF56184D0455B2AA1F52EBFC9293.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a343031303a3a2f34382d3438203d3e203338353030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:2700:4010::/48 Signature Algorithm: sha256WithRSAEncryption 6f:c8:b1:21:3d:dd:30:93:80:6e:b7:ff:56:ec:c6:36:bd:e3: 23:a6:8d:1d:70:a6:04:7b:3d:0e:a0:bf:89:e7:38:27:26:6f: 84:75:54:b1:18:52:1a:6a:c7:17:29:c5:d9:68:1e:ea:d4:fc: c1:6a:24:64:35:00:2b:91:fd:be:b7:f7:9f:36:a8:ad:4f:31: b1:28:c2:e0:6f:de:33:3b:a4:4c:fd:ac:93:8d:60:84:49:02: 1f:54:6b:12:48:ff:2b:8a:5b:ad:55:c5:5a:f5:56:23:97:74: 50:e7:db:58:29:9c:f9:b9:40:9a:9e:ce:b4:e9:09:3d:ae:46: 54:10:b0:a9:a8:36:e8:6b:56:a4:fc:fe:81:b1:77:4d:4b:4e: 8e:4a:a6:eb:42:db:0a:35:17:da:51:75:fd:a4:be:bb:70:13: 59:75:4f:12:c9:61:8e:da:2e:4a:62:8d:79:fd:28:8c:6d:e9: 4f:59:87:2b:26:fd:5e:0b:1c:0c:75:2f:5b:5d:a2:e9:e2:37: c1:0a:8d:71:1a:5f:ec:0c:c9:cc:78:ec:a3:b0:8d:6a:7b:e6: d9:eb:a2:31:b3:a9:42:ac:78:99:46:b1:5d:85:c0:2c:94:86: ce:1a:4a:df:eb:c1:b5:f0:a4:70:21:fd:dc:bf:45:6a:89:28: 3b:90:3b:5a -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUXWhuybF8pRY9QlL4M8l16CcdoAgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkIwODFDNEI5MDlDREY1NjE4NEQwNDU1QjJBQTFGNTJF QkZDOTI5MzAeFw0yNjA1MDMwMjU0NTlaFw0yNzA1MDIwMjU5NTlaMDMxMTAvBgNV BAMTKDE5QzNBREUzRTBFMThBNTczQjA0NUU2MkFGRjRCQzlFNEIzRjkyNTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzGPh9v63CQpu6/o/+36QqvS0J QKawY9fXB5FaHT3+v0jRjzx8moDWxlLAWptqJqiN2l8fqbP9Sy1myh/V4zW7xm/N v1O2X89GoEn/ytM6YZNSQv0n83d+DjbQqaU/aLpFh9w1pYP9Rbh6aviExujVhsIK gqHde4L4mq1jQO9cMt5HTPGmjGg4XFWmX0qHiYIZbIz474uxyeeJUWZzSIUf4aF7 FX6QoDbfIORDcuLuI/ZA2tr1937xgj3v/JSc+gA6E8+y36O+IQIki0DGE9eakUlA peDh5VZItWxNGRwAizKSoVTsZhAEsQ7gjA4w4pdtgEoTg/upJrBz1J3wPzXDAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUGcOt4+Dhilc7BF5ir/S8nks/klgwHwYDVR0j BBgwFoAU+wgcS5Cc31YYTQRVsqofUuv8kpMwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YjA0MDY4ZjMtYTc1Yi00NzY0LTllODAtMWZhNTcyOTIwN2ZjLzAvRkIwODFDNEI5 MDlDREY1NjE4NEQwNDU1QjJBQTFGNTJFQkZDOTI5My5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9GQjA4MUM0QjkwOUNERjU2MTg0RDA0NTVCMkFBMUY1MkVCRkM5 MjkzLmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUFBzALhoGLcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2IwNDA2OGYzLWE3NWItNDc2NC05 ZTgwLTFmYTU3MjkyMDdmYy8wLzMyMzQzMDMzM2EzMjM3MzAzMDNhMzQzMDMxMzAz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMzM4MzUzMDMwLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAMn AEAQMA0GCSqGSIb3DQEBCwUAA4IBAQBvyLEhPd0wk4But/9W7MY2veMjpo0dcKYE ez0OoL+J5zgnJm+EdVSxGFIaascXKcXZaB7q1PzBaiRkNQArkf2+t/efNqitTzGx KMLgb94zO6RM/ayTjWCESQIfVGsSSP8rilutVcVa9VYjl3RQ59tYKZz5uUCans60 6Qk9rkZUELCpqDboa1ak/P6BsXdNS06OSqbrQtsKNRfaUXX9pL67cBNZdU8SyWGO 2i5KYo15/SiMbelPWYcrJv1eCxwMdS9bXaLp4jfBCo1xGl/sDMnMeOyjsI1qe+bZ 66Ixs6lCrHiZRrFdhcAslIbOGkrf68G18KRwIf3cv0VqiSg7kDta -----END CERTIFICATE-----Generated at Wed May 13 09:55:07 2026 by rpki-client