$ rpki-client -vvf rpki-rsync.idnic.net/repo/b5355c5a-efc8-48f7-902f-6e31fc42995a/0/323430363a386563303a3a2f33322d3332203d3e203435373031.roa File: 323430363a386563303a3a2f33322d3332203d3e203435373031.roa (raw, json) Hash identifier: Ndn10HkuTSjLbjizNWK1QWx6xtlpc6JAMMmVzvO86rw= Subject key identifier: A0:40:7F:4A:8D:32:C9:7C:C9:2C:2E:AA:72:AE:E2:31:04:EE:64:1B Certificate issuer: /CN=B25AA89991DF81963DB95ACB8023EAC3D55C3D7A Certificate serial: 542AD89F5D0DC58E2856A6CB2A7726CCBE1C9425 Authority key identifier: B2:5A:A8:99:91:DF:81:96:3D:B9:5A:CB:80:23:EA:C3:D5:5C:3D:7A Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B25AA89991DF81963DB95ACB8023EAC3D55C3D7A.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/b5355c5a-efc8-48f7-902f-6e31fc42995a/0/323430363a386563303a3a2f33322d3332203d3e203435373031.roa Signing time: Sun 03 May 2026 03:01:05 +0000 ROA not before: Sun 03 May 2026 02:56:05 +0000 ROA not after: Sun 02 May 2027 03:01:05 +0000 asID: 45701 IP address blocks: 2406:8ec0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/b5355c5a-efc8-48f7-902f-6e31fc42995a/0/B25AA89991DF81963DB95ACB8023EAC3D55C3D7A.crl rsync://rpki-rsync.idnic.net/repo/b5355c5a-efc8-48f7-902f-6e31fc42995a/0/B25AA89991DF81963DB95ACB8023EAC3D55C3D7A.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B25AA89991DF81963DB95ACB8023EAC3D55C3D7A.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 22:40:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:2a:d8:9f:5d:0d:c5:8e:28:56:a6:cb:2a:77:26:cc:be:1c:94:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B25AA89991DF81963DB95ACB8023EAC3D55C3D7A Validity Not Before: May 3 02:56:05 2026 GMT Not After : May 2 03:01:05 2027 GMT Subject: CN=A0407F4A8D32C97CC92C2EAA72AEE23104EE641B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:86:cd:6e:6a:aa:da:59:99:e6:f3:45:05:21:43: 9d:4c:9c:20:8b:3f:81:d8:c6:0f:26:6b:dd:46:2f: ed:a7:59:34:e7:30:e0:82:b7:f6:d9:f3:7a:9c:03: 14:44:77:c9:22:b6:b7:73:2f:61:55:52:7a:31:83: 5c:2b:7d:bc:8f:55:8d:b1:25:c9:ee:95:cf:4f:8a: cd:08:39:f7:42:9c:58:e5:79:98:0b:84:f9:f8:aa: 79:a4:08:c2:b9:a5:d7:95:9d:24:3a:1e:3c:89:8d: 6b:3d:67:a6:87:50:74:76:7d:85:69:34:88:36:f6: 71:0f:58:28:27:7a:bd:84:fe:55:4c:b1:fb:15:5a: 52:7f:54:61:23:42:33:cf:d3:c1:39:d6:16:7f:b5: 68:3e:67:a3:b8:2e:9e:32:ba:af:12:dd:9c:f7:05: ba:c4:ce:98:5a:5c:b0:53:87:4b:99:c0:c1:b0:fc: 61:9d:b8:9c:16:75:85:5f:54:8e:17:da:a0:43:51: 2f:b0:73:af:b8:5e:d9:0c:5f:e6:06:91:45:94:3e: 3c:b7:12:c4:ab:a0:28:06:d1:ed:51:d8:83:9b:cb: 2d:54:86:18:2e:c0:b5:de:a0:77:c6:f8:fa:4e:28: a5:6a:f6:ee:13:4f:44:da:47:23:95:a9:75:e9:23: 54:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:40:7F:4A:8D:32:C9:7C:C9:2C:2E:AA:72:AE:E2:31:04:EE:64:1B X509v3 Authority Key Identifier: keyid:B2:5A:A8:99:91:DF:81:96:3D:B9:5A:CB:80:23:EA:C3:D5:5C:3D:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/b5355c5a-efc8-48f7-902f-6e31fc42995a/0/B25AA89991DF81963DB95ACB8023EAC3D55C3D7A.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B25AA89991DF81963DB95ACB8023EAC3D55C3D7A.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/b5355c5a-efc8-48f7-902f-6e31fc42995a/0/323430363a386563303a3a2f33322d3332203d3e203435373031.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:8ec0::/32 Signature Algorithm: sha256WithRSAEncryption 41:7a:a1:f9:78:bd:e1:fd:45:d7:20:fa:38:88:f8:b9:7a:8c: 71:40:d7:ba:b7:f2:52:93:1d:bd:53:71:11:85:35:c1:9c:d5: f0:76:e0:c3:42:e6:3c:7c:7e:63:ff:4f:b6:b9:a5:9a:51:33: 9d:86:ec:17:28:f5:56:c0:aa:c3:d3:e4:e1:90:89:d1:2a:49: c7:d7:9d:3a:23:6a:dd:3a:33:07:99:ce:b7:1c:e2:cf:03:84: 68:70:9b:bf:56:63:73:26:7d:5b:1d:55:87:80:8d:22:04:66: 7f:2b:ff:c2:c9:7c:ff:81:97:05:79:02:f2:fc:e9:10:da:f9: 51:d1:b5:a8:cc:38:9f:e2:5c:ee:42:e6:31:12:b3:8b:3b:cc: f7:24:15:54:e9:5e:97:f8:8c:e7:36:57:da:dd:f2:39:12:e6: 95:4e:4e:2f:af:68:b0:3a:f7:ee:37:33:85:b5:df:6a:bb:3f: fe:70:75:7f:cb:2b:85:9f:e4:79:f9:6c:e5:bc:1d:d3:3c:e4: b0:ff:50:f2:b2:eb:4c:48:c7:d8:19:16:27:cd:0f:a8:76:ad: e7:7f:fa:51:47:2c:a1:cf:ee:5b:b8:70:58:0e:41:70:07:c7: d7:9b:49:04:c3:67:10:ce:08:bf:3e:dd:65:46:1f:67:cd:86: fa:24:43:10 -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUVCrYn10NxY4oVqbLKncmzL4clCUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjI1QUE4OTk5MURGODE5NjNEQjk1QUNCODAyM0VBQzNE NTVDM0Q3QTAeFw0yNjA1MDMwMjU2MDVaFw0yNzA1MDIwMzAxMDVaMDMxMTAvBgNV BAMTKEEwNDA3RjRBOEQzMkM5N0NDOTJDMkVBQTcyQUVFMjMxMDRFRTY0MUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCGzW5qqtpZmebzRQUhQ51MnCCL P4HYxg8ma91GL+2nWTTnMOCCt/bZ83qcAxREd8kitrdzL2FVUnoxg1wrfbyPVY2x Jcnulc9Pis0IOfdCnFjleZgLhPn4qnmkCMK5pdeVnSQ6HjyJjWs9Z6aHUHR2fYVp NIg29nEPWCgner2E/lVMsfsVWlJ/VGEjQjPP08E51hZ/tWg+Z6O4Lp4yuq8S3Zz3 BbrEzphaXLBTh0uZwMGw/GGduJwWdYVfVI4X2qBDUS+wc6+4XtkMX+YGkUWUPjy3 EsSroCgG0e1R2IObyy1UhhguwLXeoHfG+PpOKKVq9u4TT0TaRyOVqXXpI1TVAgMB AAGjggIxMIICLTAdBgNVHQ4EFgQUoEB/So0yyXzJLC6qcq7iMQTuZBswHwYDVR0j BBgwFoAUslqomZHfgZY9uVrLgCPqw9VcPXowDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YjUzNTVjNWEtZWZjOC00OGY3LTkwMmYtNmUzMWZjNDI5OTVhLzAvQjI1QUE4OTk5 MURGODE5NjNEQjk1QUNCODAyM0VBQzNENTVDM0Q3QS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9CMjVBQTg5OTkxREY4MTk2M0RCOTVBQ0I4MDIzRUFDM0Q1NUMz RDdBLmNlcjCBoQYIKwYBBQUHAQsEgZQwgZEwgY4GCCsGAQUFBzALhoGBcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2I1MzU1YzVhLWVmYzgtNDhmNy05 MDJmLTZlMzFmYzQyOTk1YS8wLzMyMzQzMDM2M2EzODY1NjMzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDM0MzUzNzMwMzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkBo7AMA0GCSqGSIb3 DQEBCwUAA4IBAQBBeqH5eL3h/UXXIPo4iPi5eoxxQNe6t/JSkx29U3ERhTXBnNXw duDDQuY8fH5j/0+2uaWaUTOdhuwXKPVWwKrD0+ThkInRKknH1506I2rdOjMHmc63 HOLPA4RocJu/VmNzJn1bHVWHgI0iBGZ/K//CyXz/gZcFeQLy/OkQ2vlR0bWozDif 4lzuQuYxErOLO8z3JBVU6V6X+IznNlfa3fI5EuaVTk4vr2iwOvfuNzOFtd9quz/+ cHV/yyuFn+R5+WzlvB3TPOSw/1DysutMSMfYGRYnzQ+odq3nf/pRRyyhz+5buHBY DkFwB8fXm0kEw2cQzgi/Pt1lRh9nzYb6JEMQ -----END CERTIFICATE-----Generated at Wed May 13 10:33:16 2026 by rpki-client