$ rpki-client -vvf rpki-rsync.idnic.net/repo/b20c6d69-6290-402f-a84e-d289c6e93a73/0/323430343a636534303a313a3a2f34382d3438203d3e20313338383834.roa File: 323430343a636534303a313a3a2f34382d3438203d3e20313338383834.roa (raw, json) Hash identifier: dxfdhNXh202P44oHhJYRmZOKu5Lqt6H/PJxnBPCKWdo= Subject key identifier: 3C:03:DB:34:DB:46:CD:69:FC:D7:F9:1A:6B:A9:26:69:D3:66:C7:A2 Certificate issuer: /CN=5FC45BE9EDAC7BAD3D0704610E374B873FC7B61C Certificate serial: 60F59F47EBAE2ECFCBC5C6CB53E3CD16DE4CB945 Authority key identifier: 5F:C4:5B:E9:ED:AC:7B:AD:3D:07:04:61:0E:37:4B:87:3F:C7:B6:1C Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/5FC45BE9EDAC7BAD3D0704610E374B873FC7B61C.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/b20c6d69-6290-402f-a84e-d289c6e93a73/0/323430343a636534303a313a3a2f34382d3438203d3e20313338383834.roa Signing time: Sun 03 May 2026 03:00:28 +0000 ROA not before: Sun 03 May 2026 02:55:28 +0000 ROA not after: Sun 02 May 2027 03:00:28 +0000 asID: 138884 IP address blocks: 2404:ce40:1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/b20c6d69-6290-402f-a84e-d289c6e93a73/0/5FC45BE9EDAC7BAD3D0704610E374B873FC7B61C.crl rsync://rpki-rsync.idnic.net/repo/b20c6d69-6290-402f-a84e-d289c6e93a73/0/5FC45BE9EDAC7BAD3D0704610E374B873FC7B61C.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/5FC45BE9EDAC7BAD3D0704610E374B873FC7B61C.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 21:53:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:f5:9f:47:eb:ae:2e:cf:cb:c5:c6:cb:53:e3:cd:16:de:4c:b9:45 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5FC45BE9EDAC7BAD3D0704610E374B873FC7B61C Validity Not Before: May 3 02:55:28 2026 GMT Not After : May 2 03:00:28 2027 GMT Subject: CN=3C03DB34DB46CD69FCD7F91A6BA92669D366C7A2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:a0:4a:f7:33:e0:d4:a0:a7:f3:bc:fb:21:d0: 0d:ee:bc:79:2b:77:33:0f:8d:f4:12:64:20:9f:fe: 4d:a1:6d:42:5b:1e:03:f1:c2:dc:c8:17:43:a2:e9: d5:3d:f4:7d:44:0b:8b:9b:22:a5:4d:84:17:a9:ec: 31:1e:81:9f:76:90:b5:13:e8:1c:0a:62:74:ad:0a: 93:b5:de:56:ec:4d:be:76:fe:cb:5f:44:22:a1:2c: 40:91:4d:08:49:4d:c9:bd:6b:23:de:e8:86:04:9b: fa:44:48:68:f2:1f:6c:70:19:47:86:d8:48:87:03: 4d:0b:7e:d3:f1:81:84:29:af:b7:c5:50:0f:10:8f: c0:dd:aa:34:61:60:b0:74:1d:85:83:ec:0b:53:45: c5:c5:1b:2a:d1:e9:9f:1c:cc:3f:59:a0:ed:03:1c: 87:de:35:be:3e:86:a8:5c:02:cf:ff:99:fa:3b:79: da:93:63:0a:a8:59:7a:1b:21:5b:46:8b:34:ca:bb: df:e5:75:39:34:54:d0:9c:20:27:35:2a:4e:ad:90: 41:78:06:cd:78:0e:80:bf:c0:7d:2a:b3:13:6b:cf: db:61:96:10:b0:f4:be:fb:9b:e3:37:00:53:32:1d: 9d:9f:5d:2a:b2:ee:36:1c:d6:e4:e4:6a:86:c0:81: 13:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:03:DB:34:DB:46:CD:69:FC:D7:F9:1A:6B:A9:26:69:D3:66:C7:A2 X509v3 Authority Key Identifier: keyid:5F:C4:5B:E9:ED:AC:7B:AD:3D:07:04:61:0E:37:4B:87:3F:C7:B6:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/b20c6d69-6290-402f-a84e-d289c6e93a73/0/5FC45BE9EDAC7BAD3D0704610E374B873FC7B61C.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/5FC45BE9EDAC7BAD3D0704610E374B873FC7B61C.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/b20c6d69-6290-402f-a84e-d289c6e93a73/0/323430343a636534303a313a3a2f34382d3438203d3e20313338383834.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:ce40:1::/48 Signature Algorithm: sha256WithRSAEncryption 59:2b:ef:15:a2:63:ae:9a:1d:af:cb:1b:2e:09:67:ac:7d:ea: 84:8a:aa:86:16:d1:22:d5:e5:21:a7:cf:ba:99:d5:95:ed:ad: e8:04:8e:23:cd:bf:8e:c0:c9:cd:9f:52:fd:9e:8a:8a:e3:bd: ce:43:4a:9a:82:0c:2e:e7:9d:c8:29:ba:23:0d:4f:f6:77:84: bf:c8:70:25:d5:14:6c:f1:33:12:e8:4f:ba:33:f7:93:b4:cd: ea:21:ff:cc:17:bb:74:ef:1d:46:8c:4d:4b:82:03:75:f4:5b: ec:1c:3a:15:41:4d:96:94:d8:50:a4:1d:ec:45:92:7c:70:69: 56:40:7d:f7:ca:2d:ae:f7:3b:8e:1e:f6:85:d9:1c:ad:07:37: cc:e3:ae:9d:2e:12:fd:58:69:ed:c6:25:03:79:46:35:3d:c4: ff:f2:23:03:a8:51:c3:ec:b4:cc:6c:72:b6:8c:e0:82:bf:5e: 59:60:f2:cc:f5:a0:3a:4c:d5:5b:78:0c:5e:f6:e0:18:a7:c9: 97:56:bf:1a:e6:67:16:bd:c4:8a:e1:56:83:56:9e:78:71:f4: 86:ff:d5:51:fa:1e:28:79:fa:60:f8:19:27:ba:1e:9a:bb:39: e2:42:cf:3e:af:8a:ae:e2:70:21:f0:6b:5b:f7:b7:9f:29:a4: 32:e9:28:bc -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUYPWfR+uuLs/LxcbLU+PNFt5MuUUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUZDNDVCRTlFREFDN0JBRDNEMDcwNDYxMEUzNzRCODcz RkM3QjYxQzAeFw0yNjA1MDMwMjU1MjhaFw0yNzA1MDIwMzAwMjhaMDMxMTAvBgNV BAMTKDNDMDNEQjM0REI0NkNENjlGQ0Q3RjkxQTZCQTkyNjY5RDM2NkM3QTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+oEr3M+DUoKfzvPsh0A3uvHkr dzMPjfQSZCCf/k2hbUJbHgPxwtzIF0Oi6dU99H1EC4ubIqVNhBep7DEegZ92kLUT 6BwKYnStCpO13lbsTb52/stfRCKhLECRTQhJTcm9ayPe6IYEm/pESGjyH2xwGUeG 2EiHA00LftPxgYQpr7fFUA8Qj8DdqjRhYLB0HYWD7AtTRcXFGyrR6Z8czD9ZoO0D HIfeNb4+hqhcAs//mfo7edqTYwqoWXobIVtGizTKu9/ldTk0VNCcICc1Kk6tkEF4 Bs14DoC/wH0qsxNrz9thlhCw9L77m+M3AFMyHZ2fXSqy7jYc1uTkaobAgRMVAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUPAPbNNtGzWn81/kaa6kmadNmx6IwHwYDVR0j BBgwFoAUX8Rb6e2se609BwRhDjdLhz/HthwwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YjIwYzZkNjktNjI5MC00MDJmLWE4NGUtZDI4OWM2ZTkzYTczLzAvNUZDNDVCRTlF REFDN0JBRDNEMDcwNDYxMEUzNzRCODczRkM3QjYxQy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS81RkM0NUJFOUVEQUM3QkFEM0QwNzA0NjEwRTM3NEI4NzNGQzdC NjFDLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2IyMGM2ZDY5LTYyOTAtNDAyZi1h ODRlLWQyODljNmU5M2E3My8wLzMyMzQzMDM0M2E2MzY1MzQzMDNhMzEzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTMzMzgzODM4MzQucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBM5AAAEw DQYJKoZIhvcNAQELBQADggEBAFkr7xWiY66aHa/LGy4JZ6x96oSKqoYW0SLV5SGn z7qZ1ZXtregEjiPNv47Ayc2fUv2eiorjvc5DSpqCDC7nncgpuiMNT/Z3hL/IcCXV FGzxMxLoT7oz95O0zeoh/8wXu3TvHUaMTUuCA3X0W+wcOhVBTZaU2FCkHexFknxw aVZAfffKLa73O44e9oXZHK0HN8zjrp0uEv1Yae3GJQN5RjU9xP/yIwOoUcPstMxs craM4IK/Xllg8sz1oDpM1Vt4DF724BinyZdWvxrmZxa9xIrhVoNWnnhx9Ib/1VH6 Hih5+mD4GSe6Hpq7OeJCzz6viq7icCHwa1v3t58ppDLpKLw= -----END CERTIFICATE-----Generated at Wed May 13 14:25:28 2026 by rpki-client