$ rpki-client -vvf rpki-rsync.idnic.net/repo/b20c6d69-6290-402f-a84e-d289c6e93a73/0/323430343a636534303a333a3a2f34382d3438203d3e20313338383834.roa File: 323430343a636534303a333a3a2f34382d3438203d3e20313338383834.roa (raw, json) Hash identifier: 0ARU4umpFLyMta2vB6qYPPj5Ig4hYBGPCu9MzyUF/8A= Subject key identifier: 40:FE:6E:A2:BB:FF:91:27:06:2F:A2:22:D0:86:29:65:82:94:DE:99 Certificate issuer: /CN=5FC45BE9EDAC7BAD3D0704610E374B873FC7B61C Certificate serial: 36F70239CA5D3B99C69E30D2D2FB1B0E610FBF2F Authority key identifier: 5F:C4:5B:E9:ED:AC:7B:AD:3D:07:04:61:0E:37:4B:87:3F:C7:B6:1C Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/5FC45BE9EDAC7BAD3D0704610E374B873FC7B61C.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/b20c6d69-6290-402f-a84e-d289c6e93a73/0/323430343a636534303a333a3a2f34382d3438203d3e20313338383834.roa Signing time: Sun 03 May 2026 03:00:28 +0000 ROA not before: Sun 03 May 2026 02:55:28 +0000 ROA not after: Sun 02 May 2027 03:00:28 +0000 asID: 138884 IP address blocks: 2404:ce40:3::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/b20c6d69-6290-402f-a84e-d289c6e93a73/0/5FC45BE9EDAC7BAD3D0704610E374B873FC7B61C.crl rsync://rpki-rsync.idnic.net/repo/b20c6d69-6290-402f-a84e-d289c6e93a73/0/5FC45BE9EDAC7BAD3D0704610E374B873FC7B61C.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/5FC45BE9EDAC7BAD3D0704610E374B873FC7B61C.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 21:53:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:f7:02:39:ca:5d:3b:99:c6:9e:30:d2:d2:fb:1b:0e:61:0f:bf:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5FC45BE9EDAC7BAD3D0704610E374B873FC7B61C Validity Not Before: May 3 02:55:28 2026 GMT Not After : May 2 03:00:28 2027 GMT Subject: CN=40FE6EA2BBFF9127062FA222D08629658294DE99 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:b0:8b:40:a9:c8:db:1e:9c:51:10:5d:d8:9e: 2a:08:05:04:8f:7c:a7:97:d8:00:b6:76:28:00:d4: 92:75:50:74:c7:05:19:8f:ec:a5:fa:86:f4:af:c7: 18:f2:0d:24:ef:43:f9:24:02:53:5e:55:be:60:8d: 74:b5:ba:fe:4e:35:ef:ab:e2:f9:50:0f:9f:7f:9f: 97:5b:1d:ab:ff:35:af:99:38:64:8a:a6:4a:db:56: b8:20:5a:f7:ce:63:e0:25:8a:13:8d:71:6f:82:0a: a2:14:c7:5d:cb:a9:2b:f0:6c:8c:1b:90:6c:ea:83: 34:dd:84:c2:b5:61:ac:21:bb:76:05:21:c4:04:fa: ea:e0:a2:fc:66:b4:28:9c:e4:de:b6:c6:ec:78:52: 0d:b5:08:55:f2:33:4c:09:7e:a6:ee:64:bf:c5:80: 02:24:ba:76:b9:a5:d9:bd:a5:47:5c:fa:a2:cf:29: e2:86:58:ff:eb:53:63:13:85:d6:82:41:54:25:32: df:0a:3d:ed:08:0f:a4:a7:7a:fe:23:33:9f:70:16: ce:a3:d4:0d:72:cf:07:59:88:28:00:a7:f9:e2:82: 9d:a4:6e:5b:a5:09:d7:6d:52:d3:09:84:e1:9e:5e: 4e:db:d4:0b:a9:7e:44:10:2b:69:4c:72:7f:d7:f6: 64:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:FE:6E:A2:BB:FF:91:27:06:2F:A2:22:D0:86:29:65:82:94:DE:99 X509v3 Authority Key Identifier: keyid:5F:C4:5B:E9:ED:AC:7B:AD:3D:07:04:61:0E:37:4B:87:3F:C7:B6:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/b20c6d69-6290-402f-a84e-d289c6e93a73/0/5FC45BE9EDAC7BAD3D0704610E374B873FC7B61C.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/5FC45BE9EDAC7BAD3D0704610E374B873FC7B61C.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/b20c6d69-6290-402f-a84e-d289c6e93a73/0/323430343a636534303a333a3a2f34382d3438203d3e20313338383834.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:ce40:3::/48 Signature Algorithm: sha256WithRSAEncryption 23:a8:18:35:ec:fd:59:d5:4b:8c:a6:4f:24:da:64:ec:1a:4e: 19:07:ae:de:70:d6:70:29:0a:56:48:2d:49:1d:01:2e:0d:fa: 8f:33:c4:97:4b:1a:99:33:0e:c4:5a:88:f8:33:21:57:9c:6b: 5b:b0:3b:ca:50:79:1f:bc:bc:1f:e1:35:38:a3:2d:78:9a:99: d6:0d:72:18:bb:11:a1:31:d8:6f:62:9b:11:02:17:81:8b:f7: 75:2f:c5:d1:4a:05:ab:45:26:da:ac:24:40:34:ae:3b:ee:a8: 23:a6:5c:99:31:22:03:f4:76:c6:89:9d:8d:56:51:8f:91:d5: d2:e7:4b:18:30:d4:a3:d3:6c:21:fb:d8:6a:c7:14:11:d5:e9: 44:60:23:76:5a:23:7d:52:67:3d:16:98:e5:f9:0d:71:e6:61: f9:43:23:a4:1f:e0:bb:bb:3d:88:11:80:00:81:68:ce:81:05: a3:52:bd:d8:aa:a9:09:48:8d:ac:bb:8b:ff:95:a5:f7:4d:25: a1:36:ee:dc:1e:b4:da:d1:bd:57:02:87:d4:d5:52:f7:be:b8: 05:30:9d:28:d2:f8:99:7a:cf:55:4f:86:05:b5:ae:30:aa:30: 9d:47:75:af:d7:a8:23:e3:2f:bc:ae:74:65:15:25:9c:4b:05: fa:2e:65:27 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUNvcCOcpdO5nGnjDS0vsbDmEPvy8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUZDNDVCRTlFREFDN0JBRDNEMDcwNDYxMEUzNzRCODcz RkM3QjYxQzAeFw0yNjA1MDMwMjU1MjhaFw0yNzA1MDIwMzAwMjhaMDMxMTAvBgNV BAMTKDQwRkU2RUEyQkJGRjkxMjcwNjJGQTIyMkQwODYyOTY1ODI5NERFOTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNsItAqcjbHpxREF3YnioIBQSP fKeX2AC2digA1JJ1UHTHBRmP7KX6hvSvxxjyDSTvQ/kkAlNeVb5gjXS1uv5ONe+r 4vlQD59/n5dbHav/Na+ZOGSKpkrbVrggWvfOY+AlihONcW+CCqIUx13LqSvwbIwb kGzqgzTdhMK1Yawhu3YFIcQE+urgovxmtCic5N62xux4Ug21CFXyM0wJfqbuZL/F gAIkuna5pdm9pUdc+qLPKeKGWP/rU2MThdaCQVQlMt8KPe0ID6Snev4jM59wFs6j 1A1yzwdZiCgAp/nigp2kblulCddtUtMJhOGeXk7b1AupfkQQK2lMcn/X9mSVAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUQP5uorv/kScGL6Ii0IYpZYKU3pkwHwYDVR0j BBgwFoAUX8Rb6e2se609BwRhDjdLhz/HthwwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YjIwYzZkNjktNjI5MC00MDJmLWE4NGUtZDI4OWM2ZTkzYTczLzAvNUZDNDVCRTlF REFDN0JBRDNEMDcwNDYxMEUzNzRCODczRkM3QjYxQy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS81RkM0NUJFOUVEQUM3QkFEM0QwNzA0NjEwRTM3NEI4NzNGQzdC NjFDLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2IyMGM2ZDY5LTYyOTAtNDAyZi1h ODRlLWQyODljNmU5M2E3My8wLzMyMzQzMDM0M2E2MzY1MzQzMDNhMzMzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTMzMzgzODM4MzQucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBM5AAAMw DQYJKoZIhvcNAQELBQADggEBACOoGDXs/VnVS4ymTyTaZOwaThkHrt5w1nApClZI LUkdAS4N+o8zxJdLGpkzDsRaiPgzIVeca1uwO8pQeR+8vB/hNTijLXiamdYNchi7 EaEx2G9imxECF4GL93UvxdFKBatFJtqsJEA0rjvuqCOmXJkxIgP0dsaJnY1WUY+R 1dLnSxgw1KPTbCH72GrHFBHV6URgI3ZaI31SZz0WmOX5DXHmYflDI6Qf4Lu7PYgR gACBaM6BBaNSvdiqqQlIjay7i/+VpfdNJaE27twetNrRvVcCh9TVUve+uAUwnSjS +Jl6z1VPhgW1rjCqMJ1Hda/XqCPjL7yudGUVJZxLBfouZSc= -----END CERTIFICATE-----Generated at Wed May 13 13:45:19 2026 by rpki-client