$ rpki-client -vvf rpki-rsync.idnic.net/repo/b0d880d4-c33e-401e-b468-a5a6a8aaf3d7/0/323430343a616663303a3a2f33322d3438203d3e20313338383239.roa File: 323430343a616663303a3a2f33322d3438203d3e20313338383239.roa (raw, json) Hash identifier: DN0zl+C7RPTYn8cVhIgfqevu4Mrybu56lQL63Rz+l+w= Subject key identifier: A0:6C:AD:2C:BB:31:13:9C:DC:EA:00:10:8A:48:2A:70:EF:5B:72:7C Certificate issuer: /CN=86EA8C01BDC9597D130241AC29DEF660BADEC8D9 Certificate serial: 21259FEFA6DCDBD1CD8058EB59E75F1870C8681F Authority key identifier: 86:EA:8C:01:BD:C9:59:7D:13:02:41:AC:29:DE:F6:60:BA:DE:C8:D9 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/86EA8C01BDC9597D130241AC29DEF660BADEC8D9.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/b0d880d4-c33e-401e-b468-a5a6a8aaf3d7/0/323430343a616663303a3a2f33322d3438203d3e20313338383239.roa Signing time: Sun 03 May 2026 03:00:13 +0000 ROA not before: Sun 03 May 2026 02:55:13 +0000 ROA not after: Sun 02 May 2027 03:00:13 +0000 asID: 138829 IP address blocks: 2404:afc0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/b0d880d4-c33e-401e-b468-a5a6a8aaf3d7/0/86EA8C01BDC9597D130241AC29DEF660BADEC8D9.crl rsync://rpki-rsync.idnic.net/repo/b0d880d4-c33e-401e-b468-a5a6a8aaf3d7/0/86EA8C01BDC9597D130241AC29DEF660BADEC8D9.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/86EA8C01BDC9597D130241AC29DEF660BADEC8D9.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 01:58:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:25:9f:ef:a6:dc:db:d1:cd:80:58:eb:59:e7:5f:18:70:c8:68:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=86EA8C01BDC9597D130241AC29DEF660BADEC8D9 Validity Not Before: May 3 02:55:13 2026 GMT Not After : May 2 03:00:13 2027 GMT Subject: CN=A06CAD2CBB31139CDCEA00108A482A70EF5B727C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:6e:5c:32:e3:9f:00:28:a1:82:4b:a7:11:06: bb:43:82:15:be:96:84:07:47:b7:27:ab:b3:b3:5a: 5d:ba:20:c3:52:f1:e3:af:23:8f:bc:b0:bb:ae:ee: f6:2f:31:02:71:fb:a9:37:35:77:e7:31:51:d8:6c: 2c:fc:7c:9d:7d:04:d5:d7:90:ab:54:60:12:db:2c: cb:18:44:90:ad:3c:e3:ba:7e:b9:85:14:fc:c5:ba: 37:2d:f4:05:34:35:93:0d:a8:71:29:ee:47:57:41: 3d:d0:f0:e1:7d:7c:84:ff:10:e2:32:21:6f:42:2d: c6:54:3f:62:04:9e:33:65:fa:23:c9:3a:3c:2f:0e: 49:44:10:35:2b:33:1d:18:13:94:5f:38:2d:61:b6: 9a:00:4b:eb:f0:c0:62:88:e0:12:83:0a:ff:3a:f9: f9:77:9b:32:3a:ac:65:0e:dd:8b:70:e3:2b:e7:4f: 5c:26:30:f2:53:70:a4:ab:5b:56:ba:49:a3:9e:20: 0d:dd:f9:c6:1d:f9:01:af:a0:91:0e:89:74:20:77: 6f:c3:5e:e0:ab:ec:64:20:fe:2d:6d:73:5f:3d:8d: 91:f5:02:8c:63:a4:78:26:19:fd:97:58:1a:ab:04: 6f:cd:39:4e:3f:9a:e1:84:63:cb:74:e3:a2:9a:dc: 1f:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:6C:AD:2C:BB:31:13:9C:DC:EA:00:10:8A:48:2A:70:EF:5B:72:7C X509v3 Authority Key Identifier: keyid:86:EA:8C:01:BD:C9:59:7D:13:02:41:AC:29:DE:F6:60:BA:DE:C8:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/b0d880d4-c33e-401e-b468-a5a6a8aaf3d7/0/86EA8C01BDC9597D130241AC29DEF660BADEC8D9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/86EA8C01BDC9597D130241AC29DEF660BADEC8D9.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/b0d880d4-c33e-401e-b468-a5a6a8aaf3d7/0/323430343a616663303a3a2f33322d3438203d3e20313338383239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:afc0::/32 Signature Algorithm: sha256WithRSAEncryption 5f:ab:4e:1a:90:ef:dc:1d:57:29:ec:b1:94:83:72:1a:7b:25: b9:90:a8:6b:50:8a:ef:be:fe:01:d2:d5:ae:27:e5:f3:79:16: 6f:28:58:99:41:ee:fe:b4:53:a0:26:84:e5:1f:9c:17:10:d2: 8f:49:82:c2:93:29:ea:e3:0c:61:1b:99:c4:a1:19:2f:75:97: 0f:a1:ec:d9:d9:7d:b0:9a:6f:9c:9e:1f:d9:1a:86:ca:0a:d3: 03:43:cf:53:e1:23:2f:5a:44:33:db:47:62:07:94:54:09:43: 34:07:3a:24:b4:8f:1e:c3:ef:1c:76:c6:57:37:f5:4e:e6:a4: 8a:bf:c6:3a:f1:bc:14:a9:a3:0d:f7:7d:96:e7:67:d7:aa:0b: f0:01:f8:0d:f9:0c:05:6c:68:90:92:a2:90:38:10:2a:c7:c3: ee:9e:f9:d5:4a:49:7b:70:41:6e:57:ad:66:0f:83:18:e6:cf: c5:73:22:d3:e5:44:ab:76:2a:60:fd:c7:3a:3b:b7:08:23:e6: 76:73:54:f1:00:8f:de:6b:63:0d:74:43:0c:6c:d1:d0:02:31: 2b:50:af:45:96:4d:6b:bd:48:f5:90:b8:10:64:9d:0c:a9:c4: f5:93:f6:e5:7f:29:e1:4d:21:50:1b:73:eb:fb:59:a5:93:b9: b2:0e:15:1f -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUISWf76bc29HNgFjrWedfGHDIaB8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODZFQThDMDFCREM5NTk3RDEzMDI0MUFDMjlERUY2NjBC QURFQzhEOTAeFw0yNjA1MDMwMjU1MTNaFw0yNzA1MDIwMzAwMTNaMDMxMTAvBgNV BAMTKEEwNkNBRDJDQkIzMTEzOUNEQ0VBMDAxMDhBNDgyQTcwRUY1QjcyN0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRblwy458AKKGCS6cRBrtDghW+ loQHR7cnq7OzWl26IMNS8eOvI4+8sLuu7vYvMQJx+6k3NXfnMVHYbCz8fJ19BNXX kKtUYBLbLMsYRJCtPOO6frmFFPzFujct9AU0NZMNqHEp7kdXQT3Q8OF9fIT/EOIy IW9CLcZUP2IEnjNl+iPJOjwvDklEEDUrMx0YE5RfOC1htpoAS+vwwGKI4BKDCv86 +fl3mzI6rGUO3Ytw4yvnT1wmMPJTcKSrW1a6SaOeIA3d+cYd+QGvoJEOiXQgd2/D XuCr7GQg/i1tc189jZH1AoxjpHgmGf2XWBqrBG/NOU4/muGEY8t046Ka3B+RAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUoGytLLsxE5zc6gAQikgqcO9bcnwwHwYDVR0j BBgwFoAUhuqMAb3JWX0TAkGsKd72YLreyNkwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YjBkODgwZDQtYzMzZS00MDFlLWI0NjgtYTVhNmE4YWFmM2Q3LzAvODZFQThDMDFC REM5NTk3RDEzMDI0MUFDMjlERUY2NjBCQURFQzhEOS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS84NkVBOEMwMUJEQzk1OTdEMTMwMjQxQUMyOURFRjY2MEJBREVD OEQ5LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2IwZDg4MGQ0LWMzM2UtNDAxZS1i NDY4LWE1YTZhOGFhZjNkNy8wLzMyMzQzMDM0M2E2MTY2NjMzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMxMzMzODM4MzIzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQEr8AwDQYJKoZI hvcNAQELBQADggEBAF+rThqQ79wdVynssZSDchp7JbmQqGtQiu++/gHS1a4n5fN5 Fm8oWJlB7v60U6AmhOUfnBcQ0o9JgsKTKerjDGEbmcShGS91lw+h7NnZfbCab5ye H9kahsoK0wNDz1PhIy9aRDPbR2IHlFQJQzQHOiS0jx7D7xx2xlc39U7mpIq/xjrx vBSpow33fZbnZ9eqC/AB+A35DAVsaJCSopA4ECrHw+6e+dVKSXtwQW5XrWYPgxjm z8VzItPlRKt2KmD9xzo7twgj5nZzVPEAj95rYw10Qwxs0dACMStQr0WWTWu9SPWQ uBBknQypxPWT9uV/KeFNIVAbc+v7WaWTubIOFR8= -----END CERTIFICATE-----Generated at Wed May 13 04:54:51 2026 by rpki-client