$ rpki-client -vvf rpki-rsync.idnic.net/repo/b20c6d69-6290-402f-a84e-d289c6e93a73/0/323430343a636534303a313030303a3a2f33362d3336203d3e20313338383834.roa File: 323430343a636534303a313030303a3a2f33362d3336203d3e20313338383834.roa (raw, json) Hash identifier: zhBd5a5gGTbtet5YBbXE5S+qo1B6mGLmWLRBGJ6q7+o= Subject key identifier: 6F:B6:AE:2F:B1:D2:97:8C:E1:09:9A:A8:8B:9F:89:FF:31:1D:A4:83 Certificate issuer: /CN=5FC45BE9EDAC7BAD3D0704610E374B873FC7B61C Certificate serial: 3A2E253DE4034A5493D3506AB21045408EA767DA Authority key identifier: 5F:C4:5B:E9:ED:AC:7B:AD:3D:07:04:61:0E:37:4B:87:3F:C7:B6:1C Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/5FC45BE9EDAC7BAD3D0704610E374B873FC7B61C.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/b20c6d69-6290-402f-a84e-d289c6e93a73/0/323430343a636534303a313030303a3a2f33362d3336203d3e20313338383834.roa Signing time: Sun 03 May 2026 03:00:28 +0000 ROA not before: Sun 03 May 2026 02:55:28 +0000 ROA not after: Sun 02 May 2027 03:00:28 +0000 asID: 138884 IP address blocks: 2404:ce40:1000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/b20c6d69-6290-402f-a84e-d289c6e93a73/0/5FC45BE9EDAC7BAD3D0704610E374B873FC7B61C.crl rsync://rpki-rsync.idnic.net/repo/b20c6d69-6290-402f-a84e-d289c6e93a73/0/5FC45BE9EDAC7BAD3D0704610E374B873FC7B61C.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/5FC45BE9EDAC7BAD3D0704610E374B873FC7B61C.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 21:53:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:2e:25:3d:e4:03:4a:54:93:d3:50:6a:b2:10:45:40:8e:a7:67:da Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5FC45BE9EDAC7BAD3D0704610E374B873FC7B61C Validity Not Before: May 3 02:55:28 2026 GMT Not After : May 2 03:00:28 2027 GMT Subject: CN=6FB6AE2FB1D2978CE1099AA88B9F89FF311DA483 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:3a:b6:51:a1:fd:cb:80:c7:af:cc:0f:91:aa: ec:46:2e:d3:cc:57:fb:fd:ad:41:dd:90:ea:10:1a: 6e:10:33:60:7c:3d:db:a7:a0:b4:38:c3:99:44:92: 58:0d:26:4d:d7:13:45:37:1f:87:7d:3e:fb:7a:0c: c4:5c:43:9b:5b:27:90:8f:25:cd:9a:ca:f5:e2:cf: 0d:93:6c:5b:3c:ae:c5:7e:8d:b7:6b:03:a1:e0:2e: 9d:a4:d5:77:ef:12:6b:47:b6:25:bb:42:55:6c:07: 73:63:b5:bd:b0:dd:ab:78:82:29:35:4b:30:dc:c7: f1:66:aa:19:1d:47:dd:9e:65:ef:36:01:00:5a:f5: c3:54:4d:f3:75:5a:04:4f:be:33:fc:67:60:b6:d0: 59:83:ee:c3:52:cb:8a:7c:33:69:0d:7d:8b:fa:e4: 47:4a:a7:81:63:0b:f0:75:c0:18:6d:3f:d1:f6:2f: 73:d4:70:13:5d:17:f2:4f:34:1c:a5:32:3d:50:b5: b9:d0:d7:65:44:56:41:ec:c5:5d:65:10:d7:f1:15: a8:0a:1b:26:69:9f:48:0f:5e:f0:bf:da:61:34:bf: 9f:ff:b2:4a:9b:11:95:e2:69:fc:0b:8b:3f:1e:79: 47:0b:c8:4c:aa:94:6c:e2:ad:f2:e5:16:76:7e:14: 20:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:B6:AE:2F:B1:D2:97:8C:E1:09:9A:A8:8B:9F:89:FF:31:1D:A4:83 X509v3 Authority Key Identifier: keyid:5F:C4:5B:E9:ED:AC:7B:AD:3D:07:04:61:0E:37:4B:87:3F:C7:B6:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/b20c6d69-6290-402f-a84e-d289c6e93a73/0/5FC45BE9EDAC7BAD3D0704610E374B873FC7B61C.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/5FC45BE9EDAC7BAD3D0704610E374B873FC7B61C.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/b20c6d69-6290-402f-a84e-d289c6e93a73/0/323430343a636534303a313030303a3a2f33362d3336203d3e20313338383834.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:ce40:1000::/36 Signature Algorithm: sha256WithRSAEncryption 80:d5:96:6e:a7:51:59:d6:48:9c:d9:fe:ed:db:72:ed:6a:03: be:09:26:2f:a3:ba:55:4d:c3:3e:ce:9d:88:99:df:b8:02:9a: 34:51:73:9b:5e:5e:8e:74:09:64:fe:f5:b9:73:02:20:f7:50: 70:0e:34:29:12:34:bc:42:46:30:f8:00:91:06:52:5b:7b:81: 37:4c:31:5e:fb:bb:79:80:98:a2:05:6b:ff:1f:79:97:a1:ff: 6b:c9:44:74:6f:cb:01:ed:82:d1:0a:b2:b8:2a:b0:5a:0d:ce: 2c:3f:17:b2:a2:2b:0d:d4:91:63:24:e3:73:58:8a:80:3d:02: 1b:ee:2d:1d:22:96:05:ce:48:1f:b7:ea:e2:f1:56:cd:aa:b5: f2:ff:83:4a:25:39:13:46:d7:73:2c:05:9f:3f:10:84:e9:ee: d1:b4:2f:c2:7c:63:06:32:00:77:fd:56:9b:f5:1f:9d:c7:3a: 36:f9:a0:11:3e:5f:bb:b6:d5:a2:6b:b4:17:24:36:bc:a2:a8: 0d:65:45:20:cd:34:2f:48:7f:01:19:4f:7b:54:de:42:90:75: 14:dc:e9:af:32:29:f6:7e:8f:98:c7:0c:0e:92:40:9b:ab:78: 04:f8:4b:2c:03:f4:0f:cc:bb:33:79:4e:79:dc:f2:ce:6b:e8: ed:55:ed:f7 -----BEGIN CERTIFICATE----- MIIFNDCCBBygAwIBAgIUOi4lPeQDSlST01BqshBFQI6nZ9owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUZDNDVCRTlFREFDN0JBRDNEMDcwNDYxMEUzNzRCODcz RkM3QjYxQzAeFw0yNjA1MDMwMjU1MjhaFw0yNzA1MDIwMzAwMjhaMDMxMTAvBgNV BAMTKDZGQjZBRTJGQjFEMjk3OENFMTA5OUFBODhCOUY4OUZGMzExREE0ODMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqOrZRof3LgMevzA+RquxGLtPM V/v9rUHdkOoQGm4QM2B8PdunoLQ4w5lEklgNJk3XE0U3H4d9Pvt6DMRcQ5tbJ5CP Jc2ayvXizw2TbFs8rsV+jbdrA6HgLp2k1XfvEmtHtiW7QlVsB3Njtb2w3at4gik1 SzDcx/FmqhkdR92eZe82AQBa9cNUTfN1WgRPvjP8Z2C20FmD7sNSy4p8M2kNfYv6 5EdKp4FjC/B1wBhtP9H2L3PUcBNdF/JPNBylMj1QtbnQ12VEVkHsxV1lENfxFagK GyZpn0gPXvC/2mE0v5//skqbEZXiafwLiz8eeUcLyEyqlGzirfLlFnZ+FCC9AgMB AAGjggI+MIICOjAdBgNVHQ4EFgQUb7auL7HSl4zhCZqoi5+J/zEdpIMwHwYDVR0j BBgwFoAUX8Rb6e2se609BwRhDjdLhz/HthwwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YjIwYzZkNjktNjI5MC00MDJmLWE4NGUtZDI4OWM2ZTkzYTczLzAvNUZDNDVCRTlF REFDN0JBRDNEMDcwNDYxMEUzNzRCODczRkM3QjYxQy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS81RkM0NUJFOUVEQUM3QkFEM0QwNzA0NjEwRTM3NEI4NzNGQzdC NjFDLmNlcjCBrQYIKwYBBQUHAQsEgaAwgZ0wgZoGCCsGAQUFBzALhoGNcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2IyMGM2ZDY5LTYyOTAtNDAyZi1h ODRlLWQyODljNmU5M2E3My8wLzMyMzQzMDM0M2E2MzY1MzQzMDNhMzEzMDMwMzAz YTNhMmYzMzM2MmQzMzM2MjAzZDNlMjAzMTMzMzgzODM4MzQucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgQk BM5AEDANBgkqhkiG9w0BAQsFAAOCAQEAgNWWbqdRWdZInNn+7dty7WoDvgkmL6O6 VU3DPs6diJnfuAKaNFFzm15ejnQJZP71uXMCIPdQcA40KRI0vEJGMPgAkQZSW3uB N0wxXvu7eYCYogVr/x95l6H/a8lEdG/LAe2C0QqyuCqwWg3OLD8XsqIrDdSRYyTj c1iKgD0CG+4tHSKWBc5IH7fq4vFWzaq18v+DSiU5E0bXcywFnz8QhOnu0bQvwnxj BjIAd/1Wm/Ufncc6NvmgET5fu7bVomu0FyQ2vKKoDWVFIM00L0h/ARlPe1TeQpB1 FNzprzIp9n6PmMcMDpJAm6t4BPhLLAP0D8y7M3lOedzyzmvo7VXt9w== -----END CERTIFICATE-----Generated at Wed May 13 14:59:16 2026 by rpki-client