$ rpki-client -vvf rpki-rsync.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a373a3a2f34382d3438203d3e203338353030.roa File: 323430333a323730303a373a3a2f34382d3438203d3e203338353030.roa (raw, json) Hash identifier: efYXDESf97PNy9TvTDf72fJqCLFsjxGBo+T7mU6xbw8= Subject key identifier: 7E:52:84:A3:2A:D5:81:C2:30:D7:20:ED:F9:A4:86:07:73:FA:5D:30 Certificate issuer: /CN=FB081C4B909CDF56184D0455B2AA1F52EBFC9293 Certificate serial: 3412BDA3C50EF1885710AC83D809D41574F99B6D Authority key identifier: FB:08:1C:4B:90:9C:DF:56:18:4D:04:55:B2:AA:1F:52:EB:FC:92:93 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/FB081C4B909CDF56184D0455B2AA1F52EBFC9293.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a373a3a2f34382d3438203d3e203338353030.roa Signing time: Sun 03 May 2026 03:00:00 +0000 ROA not before: Sun 03 May 2026 02:55:00 +0000 ROA not after: Sun 02 May 2027 03:00:00 +0000 asID: 38500 IP address blocks: 2403:2700:7::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/FB081C4B909CDF56184D0455B2AA1F52EBFC9293.crl rsync://rpki-rsync.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/FB081C4B909CDF56184D0455B2AA1F52EBFC9293.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/FB081C4B909CDF56184D0455B2AA1F52EBFC9293.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 01:56:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:12:bd:a3:c5:0e:f1:88:57:10:ac:83:d8:09:d4:15:74:f9:9b:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FB081C4B909CDF56184D0455B2AA1F52EBFC9293 Validity Not Before: May 3 02:55:00 2026 GMT Not After : May 2 03:00:00 2027 GMT Subject: CN=7E5284A32AD581C230D720EDF9A4860773FA5D30 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:e4:11:c7:9f:d8:24:8c:f0:a5:c5:a4:3e:52: e2:da:aa:c4:8a:59:3a:dc:b0:d6:3d:0a:2e:25:e6: 31:29:de:a9:09:68:73:ec:dd:1c:f3:9f:b8:ff:7f: eb:c1:e1:8e:96:fc:05:76:30:00:10:9c:a0:87:9a: 69:89:f9:41:f1:bd:68:68:a3:73:28:a1:2c:ae:87: 67:c5:97:16:62:3b:aa:3d:bb:1c:f4:18:98:66:17: ed:36:44:5c:35:6e:6d:ab:3e:3d:c3:8c:ba:92:8e: a5:81:87:9b:95:a0:86:44:53:70:71:89:89:35:57: 16:fc:dc:87:a3:93:3d:6e:f0:22:e1:7c:94:5f:bb: d3:4b:f2:02:e3:93:d3:ca:9d:cb:2b:c0:8b:0e:72: d6:96:72:b9:6a:17:a3:d0:60:fd:03:22:c5:23:f4: de:21:42:22:f7:3f:a5:7e:ec:87:e5:e4:78:b5:0f: 23:ab:21:56:fa:d2:d6:a2:86:a2:5b:35:d6:47:fa: b6:90:b4:61:cd:4e:64:9c:ea:54:7c:e1:4c:de:b7: 9a:65:c7:d4:e3:64:7d:1e:f3:ea:e5:39:b2:e1:14: d3:db:b2:08:91:6c:b0:bf:2d:53:85:da:44:8f:3c: 4a:73:69:52:c3:f9:f2:57:8a:c4:b9:2b:96:c2:3b: 67:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:52:84:A3:2A:D5:81:C2:30:D7:20:ED:F9:A4:86:07:73:FA:5D:30 X509v3 Authority Key Identifier: keyid:FB:08:1C:4B:90:9C:DF:56:18:4D:04:55:B2:AA:1F:52:EB:FC:92:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/FB081C4B909CDF56184D0455B2AA1F52EBFC9293.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/FB081C4B909CDF56184D0455B2AA1F52EBFC9293.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a373a3a2f34382d3438203d3e203338353030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:2700:7::/48 Signature Algorithm: sha256WithRSAEncryption 01:5d:61:36:7a:2a:1b:64:3a:6c:7d:99:31:0a:59:8a:69:c0: 3d:b0:39:c2:e1:c2:2c:7d:0f:33:38:d2:9e:11:28:1f:65:4d: 16:50:3d:49:3a:6a:6a:66:21:66:1b:be:4e:51:a1:ab:c8:19: 56:6b:84:69:d5:4d:10:ef:04:03:08:8a:a3:15:75:6d:bc:94: 62:12:92:cd:9e:fd:bc:a7:3c:eb:69:82:fc:d7:6c:8e:f4:83: 0d:26:e5:d2:85:44:50:a8:23:1f:93:c7:2d:14:2e:61:9a:d8: e6:d9:b6:c3:00:49:a2:81:5d:c0:52:47:61:f2:9f:16:8c:71: 41:d8:17:dd:82:26:23:f8:6d:26:dd:4f:21:b6:22:15:ce:d6: 8e:33:1e:4d:72:11:0b:9a:66:2c:0c:66:e4:f6:ac:79:bb:df: 75:4b:fe:c7:49:28:fb:93:67:a9:3d:8b:bd:32:f6:1f:67:f3: 2b:76:05:15:16:16:42:2a:9c:0d:7c:d7:65:42:a6:71:d7:5f: 67:e4:75:bc:92:7f:27:11:1a:1c:96:f8:34:60:12:c3:fa:ec: 5b:11:2e:5b:3c:6b:2b:c6:58:be:8a:03:62:03:e6:d6:ea:3d: 57:93:0d:38:ea:a4:71:54:6a:c3:b6:a3:31:1b:cb:b0:8c:26: 08:9f:24:b7 -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUNBK9o8UO8YhXEKyD2AnUFXT5m20wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkIwODFDNEI5MDlDREY1NjE4NEQwNDU1QjJBQTFGNTJF QkZDOTI5MzAeFw0yNjA1MDMwMjU1MDBaFw0yNzA1MDIwMzAwMDBaMDMxMTAvBgNV BAMTKDdFNTI4NEEzMkFENTgxQzIzMEQ3MjBFREY5QTQ4NjA3NzNGQTVEMzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCY5BHHn9gkjPClxaQ+UuLaqsSK WTrcsNY9Ci4l5jEp3qkJaHPs3Rzzn7j/f+vB4Y6W/AV2MAAQnKCHmmmJ+UHxvWho o3MooSyuh2fFlxZiO6o9uxz0GJhmF+02RFw1bm2rPj3DjLqSjqWBh5uVoIZEU3Bx iYk1Vxb83Iejkz1u8CLhfJRfu9NL8gLjk9PKncsrwIsOctaWcrlqF6PQYP0DIsUj 9N4hQiL3P6V+7Ifl5Hi1DyOrIVb60taihqJbNdZH+raQtGHNTmSc6lR84Uzet5pl x9TjZH0e8+rlObLhFNPbsgiRbLC/LVOF2kSPPEpzaVLD+fJXisS5K5bCO2fhAgMB AAGjggI3MIICMzAdBgNVHQ4EFgQUflKEoyrVgcIw1yDt+aSGB3P6XTAwHwYDVR0j BBgwFoAU+wgcS5Cc31YYTQRVsqofUuv8kpMwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YjA0MDY4ZjMtYTc1Yi00NzY0LTllODAtMWZhNTcyOTIwN2ZjLzAvRkIwODFDNEI5 MDlDREY1NjE4NEQwNDU1QjJBQTFGNTJFQkZDOTI5My5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9GQjA4MUM0QjkwOUNERjU2MTg0RDA0NTVCMkFBMUY1MkVCRkM5 MjkzLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2IwNDA2OGYzLWE3NWItNDc2NC05 ZTgwLTFmYTU3MjkyMDdmYy8wLzMyMzQzMDMzM2EzMjM3MzAzMDNhMzczYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMzM4MzUzMDMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAMnAAAHMA0G CSqGSIb3DQEBCwUAA4IBAQABXWE2eiobZDpsfZkxClmKacA9sDnC4cIsfQ8zONKe ESgfZU0WUD1JOmpqZiFmG75OUaGryBlWa4Rp1U0Q7wQDCIqjFXVtvJRiEpLNnv28 pzzraYL812yO9IMNJuXShURQqCMfk8ctFC5hmtjm2bbDAEmigV3AUkdh8p8WjHFB 2BfdgiYj+G0m3U8htiIVztaOMx5NchELmmYsDGbk9qx5u991S/7HSSj7k2epPYu9 MvYfZ/MrdgUVFhZCKpwNfNdlQqZx119n5HW8kn8nERoclvg0YBLD+uxbES5bPGsr xli+igNiA+bW6j1Xkw046qRxVGrDtqMxG8uwjCYInyS3 -----END CERTIFICATE-----Generated at Wed May 13 04:47:52 2026 by rpki-client