$ rpki-client -vvf rpki-rsync.idnic.net/repo/b20c6d69-6290-402f-a84e-d289c6e93a73/0/323430343a636534303a3a2f33322d3332203d3e20313338383834.roa File: 323430343a636534303a3a2f33322d3332203d3e20313338383834.roa (raw, json) Hash identifier: T2qYaU04VQzWeYCnQwxqbKhnW+Yc8luFZj24cheJV1Y= Subject key identifier: 9F:2A:7B:01:D4:95:42:87:B8:78:4D:30:C5:17:FE:45:71:F6:D2:2C Certificate issuer: /CN=5FC45BE9EDAC7BAD3D0704610E374B873FC7B61C Certificate serial: 4A3021CF8E1009C8382C544064281E496665BC25 Authority key identifier: 5F:C4:5B:E9:ED:AC:7B:AD:3D:07:04:61:0E:37:4B:87:3F:C7:B6:1C Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/5FC45BE9EDAC7BAD3D0704610E374B873FC7B61C.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/b20c6d69-6290-402f-a84e-d289c6e93a73/0/323430343a636534303a3a2f33322d3332203d3e20313338383834.roa Signing time: Sun 03 May 2026 03:00:29 +0000 ROA not before: Sun 03 May 2026 02:55:29 +0000 ROA not after: Sun 02 May 2027 03:00:29 +0000 asID: 138884 IP address blocks: 2404:ce40::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/b20c6d69-6290-402f-a84e-d289c6e93a73/0/5FC45BE9EDAC7BAD3D0704610E374B873FC7B61C.crl rsync://rpki-rsync.idnic.net/repo/b20c6d69-6290-402f-a84e-d289c6e93a73/0/5FC45BE9EDAC7BAD3D0704610E374B873FC7B61C.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/5FC45BE9EDAC7BAD3D0704610E374B873FC7B61C.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 21:53:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:30:21:cf:8e:10:09:c8:38:2c:54:40:64:28:1e:49:66:65:bc:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5FC45BE9EDAC7BAD3D0704610E374B873FC7B61C Validity Not Before: May 3 02:55:29 2026 GMT Not After : May 2 03:00:29 2027 GMT Subject: CN=9F2A7B01D4954287B8784D30C517FE4571F6D22C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:cf:05:cc:83:ee:aa:75:30:e8:9c:71:1d:a4: 5c:0f:ee:20:02:7d:e3:bc:f8:74:06:8d:0c:8c:89: 7c:1e:d9:d8:28:d7:d5:dd:69:2c:e0:55:c4:b9:69: b3:83:a7:e8:50:1e:71:aa:07:d9:83:ee:ff:01:85: e2:b7:e9:e3:ad:e5:7a:be:13:e8:82:1f:32:4f:a9: 52:8b:57:b4:47:09:93:25:49:7d:e4:03:c3:df:31: 54:33:78:77:d2:c1:e8:25:70:ba:90:3f:62:a7:e8: 30:27:06:9c:34:00:a5:5f:1e:1c:b6:59:13:ff:6b: 3c:89:f0:61:9c:08:a8:25:1b:a3:a7:90:8c:0f:11: a4:db:61:b9:82:41:f5:5a:4b:04:8f:02:e3:9b:14: 6c:e3:47:6e:20:92:4a:62:d1:75:f5:40:03:5a:0e: da:c6:da:4e:4a:14:17:ab:fb:4c:90:51:87:97:cc: 04:d0:87:33:cb:59:5a:9f:23:ab:13:bb:a9:d4:79: e4:43:3f:e5:c3:74:05:b6:09:fd:69:cb:d5:8d:f2: 00:6b:88:6e:2b:ce:3e:0c:8b:98:7c:f4:ba:4a:35: d8:0c:73:4c:ea:c0:12:43:e5:65:86:d8:87:27:1f: 4f:29:5d:97:76:27:7c:fd:db:8d:ee:6d:54:b6:33: 21:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:2A:7B:01:D4:95:42:87:B8:78:4D:30:C5:17:FE:45:71:F6:D2:2C X509v3 Authority Key Identifier: keyid:5F:C4:5B:E9:ED:AC:7B:AD:3D:07:04:61:0E:37:4B:87:3F:C7:B6:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/b20c6d69-6290-402f-a84e-d289c6e93a73/0/5FC45BE9EDAC7BAD3D0704610E374B873FC7B61C.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/5FC45BE9EDAC7BAD3D0704610E374B873FC7B61C.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/b20c6d69-6290-402f-a84e-d289c6e93a73/0/323430343a636534303a3a2f33322d3332203d3e20313338383834.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:ce40::/32 Signature Algorithm: sha256WithRSAEncryption 64:a7:95:51:27:cf:fe:ef:74:79:ef:bb:4b:1e:1d:43:a3:51: 60:50:ac:3a:3b:98:44:6d:31:84:59:0a:1e:8d:0a:7b:dc:e6: a5:7d:c1:12:15:24:d1:93:b1:3e:4c:dd:16:3d:e4:f7:b5:c5: ae:82:a0:7f:7d:72:53:6c:8d:7b:7d:49:94:e8:8f:67:16:ac: 27:df:0f:bf:7b:40:a8:2a:13:f5:35:9c:b5:7e:19:3a:08:66: 40:b8:ea:8c:b7:5e:fa:39:4f:5a:89:01:61:95:af:ff:5e:16: 7d:ee:dc:8f:78:bd:28:95:e5:7e:71:cb:58:9d:32:95:b5:d6: f8:6a:d3:82:3e:c9:09:a3:b8:52:95:3c:df:1b:77:15:61:2a: ab:1c:12:ef:fa:0f:2f:0b:42:8f:58:35:34:27:04:db:f3:8b: 30:4e:8d:be:0d:54:d1:e1:c7:19:92:83:be:fc:94:a8:00:b5: bb:ca:d2:26:79:0d:4d:9c:10:31:96:e2:4d:40:dd:37:6b:6a: a0:97:3e:05:96:b2:72:cc:67:51:1a:14:cd:c3:42:5c:c9:72: 90:0d:09:3b:6c:21:46:ed:a9:87:b3:1f:f3:06:e3:a5:55:8a: 5b:41:35:5a:b5:b9:07:a4:10:21:a8:c4:89:0b:71:6e:cb:ce: 26:19:ae:19 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUSjAhz44QCcg4LFRAZCgeSWZlvCUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUZDNDVCRTlFREFDN0JBRDNEMDcwNDYxMEUzNzRCODcz RkM3QjYxQzAeFw0yNjA1MDMwMjU1MjlaFw0yNzA1MDIwMzAwMjlaMDMxMTAvBgNV BAMTKDlGMkE3QjAxRDQ5NTQyODdCODc4NEQzMEM1MTdGRTQ1NzFGNkQyMkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCzwXMg+6qdTDonHEdpFwP7iAC feO8+HQGjQyMiXwe2dgo19XdaSzgVcS5abODp+hQHnGqB9mD7v8BheK36eOt5Xq+ E+iCHzJPqVKLV7RHCZMlSX3kA8PfMVQzeHfSweglcLqQP2Kn6DAnBpw0AKVfHhy2 WRP/azyJ8GGcCKglG6OnkIwPEaTbYbmCQfVaSwSPAuObFGzjR24gkkpi0XX1QANa DtrG2k5KFBer+0yQUYeXzATQhzPLWVqfI6sTu6nUeeRDP+XDdAW2Cf1py9WN8gBr iG4rzj4Mi5h89LpKNdgMc0zqwBJD5WWG2IcnH08pXZd2J3z9243ubVS2MyFPAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUnyp7AdSVQoe4eE0wxRf+RXH20iwwHwYDVR0j BBgwFoAUX8Rb6e2se609BwRhDjdLhz/HthwwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YjIwYzZkNjktNjI5MC00MDJmLWE4NGUtZDI4OWM2ZTkzYTczLzAvNUZDNDVCRTlF REFDN0JBRDNEMDcwNDYxMEUzNzRCODczRkM3QjYxQy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS81RkM0NUJFOUVEQUM3QkFEM0QwNzA0NjEwRTM3NEI4NzNGQzdC NjFDLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2IyMGM2ZDY5LTYyOTAtNDAyZi1h ODRlLWQyODljNmU5M2E3My8wLzMyMzQzMDM0M2E2MzY1MzQzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzMzODM4MzgzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQEzkAwDQYJKoZI hvcNAQELBQADggEBAGSnlVEnz/7vdHnvu0seHUOjUWBQrDo7mERtMYRZCh6NCnvc 5qV9wRIVJNGTsT5M3RY95Pe1xa6CoH99clNsjXt9SZToj2cWrCffD797QKgqE/U1 nLV+GToIZkC46oy3Xvo5T1qJAWGVr/9eFn3u3I94vSiV5X5xy1idMpW11vhq04I+ yQmjuFKVPN8bdxVhKqscEu/6Dy8LQo9YNTQnBNvzizBOjb4NVNHhxxmSg778lKgA tbvK0iZ5DU2cEDGW4k1A3TdraqCXPgWWsnLMZ1EaFM3DQlzJcpANCTtsIUbtqYez H/MG46VViltBNVq1uQekECGoxIkLcW7LziYZrhk= -----END CERTIFICATE-----Generated at Wed May 13 15:03:52 2026 by rpki-client