$ rpki-client -vvf rpki-rsync.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a393a3a2f34382d3438203d3e203338353030.roa File: 323430333a323730303a393a3a2f34382d3438203d3e203338353030.roa (raw, json) Hash identifier: rWesTreZroTNg8Hx0d7djjiM+oQhdE3LPMnUtzRP6cU= Subject key identifier: 05:C2:C6:0F:5F:46:FE:6A:70:32:24:DA:27:CB:50:E7:BD:52:27:1E Certificate issuer: /CN=FB081C4B909CDF56184D0455B2AA1F52EBFC9293 Certificate serial: 599414AA1055A58902D3108E36A30D3EE81F28BF Authority key identifier: FB:08:1C:4B:90:9C:DF:56:18:4D:04:55:B2:AA:1F:52:EB:FC:92:93 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/FB081C4B909CDF56184D0455B2AA1F52EBFC9293.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a393a3a2f34382d3438203d3e203338353030.roa Signing time: Sun 03 May 2026 02:59:57 +0000 ROA not before: Sun 03 May 2026 02:54:57 +0000 ROA not after: Sun 02 May 2027 02:59:57 +0000 asID: 38500 IP address blocks: 2403:2700:9::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/FB081C4B909CDF56184D0455B2AA1F52EBFC9293.crl rsync://rpki-rsync.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/FB081C4B909CDF56184D0455B2AA1F52EBFC9293.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/FB081C4B909CDF56184D0455B2AA1F52EBFC9293.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 01:56:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:94:14:aa:10:55:a5:89:02:d3:10:8e:36:a3:0d:3e:e8:1f:28:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FB081C4B909CDF56184D0455B2AA1F52EBFC9293 Validity Not Before: May 3 02:54:57 2026 GMT Not After : May 2 02:59:57 2027 GMT Subject: CN=05C2C60F5F46FE6A703224DA27CB50E7BD52271E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:10:f2:83:27:ef:89:d2:ba:0c:ad:15:38:10: 75:cd:bf:3d:2a:9b:82:fd:8c:46:37:f7:a3:41:ef: e6:09:44:e9:ab:eb:74:ec:d8:13:bb:0b:19:b8:09: 87:47:e2:4a:a1:f0:b2:be:5b:b9:cd:1d:77:6a:c7: 9b:e4:82:81:6f:3c:79:6e:c2:fd:e8:bf:2b:b9:18: 33:aa:4d:61:28:67:c4:d7:34:8d:c1:49:d9:40:55: fd:48:f1:33:65:1f:73:25:09:fe:75:31:82:e1:46: 9b:e4:54:e3:5e:46:b4:0e:c0:67:7b:24:b7:bd:ff: eb:b2:98:e6:30:23:97:08:e4:f1:53:97:8c:73:97: 77:0f:52:fa:b9:56:74:0b:11:d1:ab:d2:3c:d1:7b: 2e:21:b2:02:a7:49:e5:09:31:35:83:69:83:9d:aa: 5b:8a:5b:38:70:5e:b0:e5:87:77:9d:bd:0b:18:2c: 83:10:f1:10:1c:da:fc:25:26:76:53:cd:04:ac:55: 8f:b2:99:06:73:a1:4c:63:8e:e5:0e:c7:b8:f8:a3: 7b:fd:a1:53:8b:ff:24:35:a1:10:c2:1f:d4:20:b4: 3f:69:c0:2a:8d:03:3b:10:8a:fd:8b:bd:65:e5:21: 37:4a:b6:c4:df:1e:2f:49:6b:c9:4c:11:30:b7:30: e8:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:C2:C6:0F:5F:46:FE:6A:70:32:24:DA:27:CB:50:E7:BD:52:27:1E X509v3 Authority Key Identifier: keyid:FB:08:1C:4B:90:9C:DF:56:18:4D:04:55:B2:AA:1F:52:EB:FC:92:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/FB081C4B909CDF56184D0455B2AA1F52EBFC9293.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/FB081C4B909CDF56184D0455B2AA1F52EBFC9293.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a393a3a2f34382d3438203d3e203338353030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:2700:9::/48 Signature Algorithm: sha256WithRSAEncryption 9a:fc:79:d1:fe:12:72:1b:63:35:73:a6:b3:29:04:8b:77:9e: f5:ff:3f:6c:51:e0:d1:e5:0e:0d:84:4a:33:ab:79:06:9b:be: 76:5a:4a:2f:59:13:c8:e3:25:31:8a:81:fe:e2:85:5e:b0:65: b0:01:98:84:f1:99:53:c2:e9:4f:f9:28:ee:d4:94:d0:4a:85: 79:ff:ab:8d:f0:ae:30:ca:a9:e8:ba:ea:07:72:33:e0:9e:ff: 6f:37:ef:70:79:c6:10:a2:20:b8:d9:06:2f:7b:c2:40:cc:2f: 59:c8:e4:3e:99:c9:e6:a8:97:62:cd:59:e8:45:fb:dc:fe:bd: ec:1a:f5:c1:86:a7:16:62:5d:da:a1:4a:4c:dd:d5:a3:b9:37: f3:7d:b2:94:61:67:ba:cc:78:6f:ba:c4:89:e6:3e:16:b7:16: c5:05:8a:eb:b7:33:cc:82:27:a0:f3:ef:99:c0:46:25:8d:dd: b4:00:22:51:08:d5:57:27:1b:3c:6f:87:5b:db:e4:a6:ed:c4: d2:95:c0:c1:e9:af:a7:e7:23:b0:f2:c2:1e:2c:d2:64:be:e8: fd:e6:06:6a:87:9a:27:43:0f:17:13:d5:0a:22:02:73:07:56: 69:3b:70:48:70:42:cd:54:ee:b8:ec:4e:e9:6d:c4:5b:cc:f6: 4c:ff:fc:ba -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUWZQUqhBVpYkC0xCONqMNPugfKL8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkIwODFDNEI5MDlDREY1NjE4NEQwNDU1QjJBQTFGNTJF QkZDOTI5MzAeFw0yNjA1MDMwMjU0NTdaFw0yNzA1MDIwMjU5NTdaMDMxMTAvBgNV BAMTKDA1QzJDNjBGNUY0NkZFNkE3MDMyMjREQTI3Q0I1MEU3QkQ1MjI3MUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpEPKDJ++J0roMrRU4EHXNvz0q m4L9jEY396NB7+YJROmr63Ts2BO7Cxm4CYdH4kqh8LK+W7nNHXdqx5vkgoFvPHlu wv3ovyu5GDOqTWEoZ8TXNI3BSdlAVf1I8TNlH3MlCf51MYLhRpvkVONeRrQOwGd7 JLe9/+uymOYwI5cI5PFTl4xzl3cPUvq5VnQLEdGr0jzRey4hsgKnSeUJMTWDaYOd qluKWzhwXrDlh3edvQsYLIMQ8RAc2vwlJnZTzQSsVY+ymQZzoUxjjuUOx7j4o3v9 oVOL/yQ1oRDCH9QgtD9pwCqNAzsQiv2LvWXlITdKtsTfHi9Ja8lMETC3MOgHAgMB AAGjggI3MIICMzAdBgNVHQ4EFgQUBcLGD19G/mpwMiTaJ8tQ571SJx4wHwYDVR0j BBgwFoAU+wgcS5Cc31YYTQRVsqofUuv8kpMwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YjA0MDY4ZjMtYTc1Yi00NzY0LTllODAtMWZhNTcyOTIwN2ZjLzAvRkIwODFDNEI5 MDlDREY1NjE4NEQwNDU1QjJBQTFGNTJFQkZDOTI5My5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9GQjA4MUM0QjkwOUNERjU2MTg0RDA0NTVCMkFBMUY1MkVCRkM5 MjkzLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2IwNDA2OGYzLWE3NWItNDc2NC05 ZTgwLTFmYTU3MjkyMDdmYy8wLzMyMzQzMDMzM2EzMjM3MzAzMDNhMzkzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMzM4MzUzMDMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAMnAAAJMA0G CSqGSIb3DQEBCwUAA4IBAQCa/HnR/hJyG2M1c6azKQSLd571/z9sUeDR5Q4NhEoz q3kGm752WkovWRPI4yUxioH+4oVesGWwAZiE8ZlTwulP+Sju1JTQSoV5/6uN8K4w yqnouuoHcjPgnv9vN+9wecYQoiC42QYve8JAzC9ZyOQ+mcnmqJdizVnoRfvc/r3s GvXBhqcWYl3aoUpM3dWjuTfzfbKUYWe6zHhvusSJ5j4WtxbFBYrrtzPMgieg8++Z wEYljd20ACJRCNVXJxs8b4db2+Sm7cTSlcDB6a+n5yOw8sIeLNJkvuj95gZqh5on Qw8XE9UKIgJzB1ZpO3BIcELNVO647E7pbcRbzPZM//y6 -----END CERTIFICATE-----Generated at Wed May 13 04:51:08 2026 by rpki-client