$ rpki-client -vvf rpki-rsync.idnic.net/repo/b4b0bf5b-456d-4e62-9f48-6192149d52c2/0/323430333a636238303a3a2f33322d3438203d3e203633353038.roa File: 323430333a636238303a3a2f33322d3438203d3e203633353038.roa (raw, json) Hash identifier: 5Ux9FZjiRKbHvcLMHj57vi8xCjfaDnZG5BpZ2qxgkCs= Subject key identifier: EF:F0:55:95:68:F7:F3:25:CF:23:8D:6E:CD:44:33:D5:14:1D:86:9B Certificate issuer: /CN=029298EDFAB613103A6838C4E6588574BAE7834B Certificate serial: 16F8A6EC73228481DEB96BCF0061DD8C0B0B11E3 Authority key identifier: 02:92:98:ED:FA:B6:13:10:3A:68:38:C4:E6:58:85:74:BA:E7:83:4B Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/029298EDFAB613103A6838C4E6588574BAE7834B.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/b4b0bf5b-456d-4e62-9f48-6192149d52c2/0/323430333a636238303a3a2f33322d3438203d3e203633353038.roa Signing time: Sun 03 May 2026 03:01:00 +0000 ROA not before: Sun 03 May 2026 02:56:00 +0000 ROA not after: Sun 02 May 2027 03:01:00 +0000 asID: 63508 IP address blocks: 2403:cb80::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/b4b0bf5b-456d-4e62-9f48-6192149d52c2/0/029298EDFAB613103A6838C4E6588574BAE7834B.crl rsync://rpki-rsync.idnic.net/repo/b4b0bf5b-456d-4e62-9f48-6192149d52c2/0/029298EDFAB613103A6838C4E6588574BAE7834B.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/029298EDFAB613103A6838C4E6588574BAE7834B.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:f8:a6:ec:73:22:84:81:de:b9:6b:cf:00:61:dd:8c:0b:0b:11:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=029298EDFAB613103A6838C4E6588574BAE7834B Validity Not Before: May 3 02:56:00 2026 GMT Not After : May 2 03:01:00 2027 GMT Subject: CN=EFF0559568F7F325CF238D6ECD4433D5141D869B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:4b:a2:c0:51:ea:58:41:3f:29:62:c7:00:67: e6:64:75:cd:ca:0c:4f:6d:c1:25:35:1c:1c:ba:4b: ab:20:71:bb:44:25:e6:63:56:f8:fc:15:76:53:fa: 4a:d7:73:99:71:ce:c4:fd:6c:74:13:9c:0c:87:b4: f3:e0:5f:61:58:0c:ae:45:9d:80:0a:d9:55:9c:36: 25:4f:f4:05:1b:00:f6:94:d5:45:c8:5b:ac:f1:48: e1:ba:87:7b:ba:dc:67:52:91:37:5c:69:f2:8a:e3: 52:8c:84:16:31:e2:86:59:53:96:86:1a:ab:7d:71: b5:0f:4f:17:a5:02:47:45:00:bd:04:d6:35:20:35: f7:21:c5:2a:a9:cf:e9:a0:b7:a5:a9:9f:49:a4:d4: e4:cd:71:6c:7c:45:e8:45:2d:8f:c8:d9:40:de:0c: b2:ba:ac:01:dc:9e:22:07:93:00:20:77:5a:6a:b3: c7:1b:11:cf:7f:45:57:39:7d:40:d3:13:25:76:26: ad:b1:5d:1a:ac:f6:43:02:64:4f:7e:20:3d:65:16: c1:64:fc:6b:89:9b:ed:b4:52:1d:51:24:9d:6b:d8: f2:09:8c:cc:2d:b1:67:02:31:4e:ff:5a:cd:a8:26: 58:4d:4d:55:3c:5b:39:eb:65:0b:29:3b:dd:6c:75: 5c:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:F0:55:95:68:F7:F3:25:CF:23:8D:6E:CD:44:33:D5:14:1D:86:9B X509v3 Authority Key Identifier: keyid:02:92:98:ED:FA:B6:13:10:3A:68:38:C4:E6:58:85:74:BA:E7:83:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/b4b0bf5b-456d-4e62-9f48-6192149d52c2/0/029298EDFAB613103A6838C4E6588574BAE7834B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/029298EDFAB613103A6838C4E6588574BAE7834B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/b4b0bf5b-456d-4e62-9f48-6192149d52c2/0/323430333a636238303a3a2f33322d3438203d3e203633353038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:cb80::/32 Signature Algorithm: sha256WithRSAEncryption bd:7b:d0:4c:67:18:2f:26:ab:c4:e4:6f:2c:78:f7:f5:c7:65: f6:71:35:f3:0d:fc:20:d5:a0:31:56:47:8e:85:07:f1:46:32: 0e:ef:46:8a:d5:ce:02:c6:4d:aa:b1:2d:a3:a2:44:f6:3a:25: 9b:ae:83:61:81:af:27:3b:ac:b1:91:2e:49:f6:18:df:89:44: 82:5f:8a:05:36:1b:4d:19:36:cb:ed:6a:db:b3:bc:3d:44:15: 4a:36:fd:46:d5:2b:91:d9:fe:ae:d1:cf:12:a1:df:ba:a2:b7: fe:37:a0:0b:81:6c:ac:db:81:69:2e:b4:bf:aa:a2:48:d0:16: 6c:73:68:b1:c9:98:c9:86:c7:8a:87:30:3d:e3:38:3a:ba:d8: 5a:01:22:72:28:4e:6e:ae:47:13:34:87:fe:3e:90:4e:bb:b7: 61:9a:eb:08:40:d2:8e:a1:eb:55:3d:26:b8:22:3b:22:11:70: b7:48:60:d4:6a:7b:cd:fe:10:3c:89:ce:36:da:b0:22:bb:8f: d1:60:66:87:80:7e:eb:82:e6:f2:40:03:69:44:e6:fb:1f:f0: 9b:fc:15:8a:4b:b3:db:95:b7:fb:8e:fd:7e:99:0c:33:17:17: 3f:ef:3e:d0:07:e2:1a:6b:fc:fd:77:6d:46:11:43:10:92:db: 28:3b:b2:23 -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUFvim7HMihIHeuWvPAGHdjAsLEeMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDI5Mjk4RURGQUI2MTMxMDNBNjgzOEM0RTY1ODg1NzRC QUU3ODM0QjAeFw0yNjA1MDMwMjU2MDBaFw0yNzA1MDIwMzAxMDBaMDMxMTAvBgNV BAMTKEVGRjA1NTk1NjhGN0YzMjVDRjIzOEQ2RUNENDQzM0Q1MTQxRDg2OUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8S6LAUepYQT8pYscAZ+Zkdc3K DE9twSU1HBy6S6sgcbtEJeZjVvj8FXZT+krXc5lxzsT9bHQTnAyHtPPgX2FYDK5F nYAK2VWcNiVP9AUbAPaU1UXIW6zxSOG6h3u63GdSkTdcafKK41KMhBYx4oZZU5aG Gqt9cbUPTxelAkdFAL0E1jUgNfchxSqpz+mgt6Wpn0mk1OTNcWx8RehFLY/I2UDe DLK6rAHcniIHkwAgd1pqs8cbEc9/RVc5fUDTEyV2Jq2xXRqs9kMCZE9+ID1lFsFk /GuJm+20Uh1RJJ1r2PIJjMwtsWcCMU7/Ws2oJlhNTVU8WznrZQspO91sdVyDAgMB AAGjggIxMIICLTAdBgNVHQ4EFgQU7/BVlWj38yXPI41uzUQz1RQdhpswHwYDVR0j BBgwFoAUApKY7fq2ExA6aDjE5liFdLrng0swDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YjRiMGJmNWItNDU2ZC00ZTYyLTlmNDgtNjE5MjE0OWQ1MmMyLzAvMDI5Mjk4RURG QUI2MTMxMDNBNjgzOEM0RTY1ODg1NzRCQUU3ODM0Qi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8wMjkyOThFREZBQjYxMzEwM0E2ODM4QzRFNjU4ODU3NEJBRTc4 MzRCLmNlcjCBoQYIKwYBBQUHAQsEgZQwgZEwgY4GCCsGAQUFBzALhoGBcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2I0YjBiZjViLTQ1NmQtNGU2Mi05 ZjQ4LTYxOTIxNDlkNTJjMi8wLzMyMzQzMDMzM2E2MzYyMzgzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDM2MzMzNTMwMzgucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkA8uAMA0GCSqGSIb3 DQEBCwUAA4IBAQC9e9BMZxgvJqvE5G8sePf1x2X2cTXzDfwg1aAxVkeOhQfxRjIO 70aK1c4Cxk2qsS2jokT2OiWbroNhga8nO6yxkS5J9hjfiUSCX4oFNhtNGTbL7Wrb s7w9RBVKNv1G1SuR2f6u0c8Sod+6orf+N6ALgWys24FpLrS/qqJI0BZsc2ixyZjJ hseKhzA94zg6uthaASJyKE5urkcTNIf+PpBOu7dhmusIQNKOoetVPSa4IjsiEXC3 SGDUanvN/hA8ic422rAiu4/RYGaHgH7rgubyQANpROb7H/Cb/BWKS7Pblbf7jv1+ mQwzFxc/7z7QB+Iaa/z9d21GEUMQktsoO7Ij -----END CERTIFICATE-----Generated at Wed May 13 02:50:32 2026 by rpki-client