$ rpki-client -vvf rpki-rsync.idnic.net/repo/bc5867d8-3d6f-4816-b84f-fdd5c502b634/0/323430343a636263303a3a2f34302d3430203d3e20313338383433.roa File: 323430343a636263303a3a2f34302d3430203d3e20313338383433.roa (raw, json) Hash identifier: g1km73POKKg69MSbDnEF0CkpP2rF3ZrF65BD2T6WTQc= Subject key identifier: 38:B5:3A:BF:9A:12:DA:E7:74:78:E8:B1:4C:08:C3:B2:FB:7F:28:71 Certificate issuer: /CN=2702EC259515C0960B0BFF36647679F0CA781E52 Certificate serial: 671BE643BD67971C879253867019B5AE2B5A3226 Authority key identifier: 27:02:EC:25:95:15:C0:96:0B:0B:FF:36:64:76:79:F0:CA:78:1E:52 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2702EC259515C0960B0BFF36647679F0CA781E52.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/bc5867d8-3d6f-4816-b84f-fdd5c502b634/0/323430343a636263303a3a2f34302d3430203d3e20313338383433.roa Signing time: Sun 03 May 2026 03:02:24 +0000 ROA not before: Sun 03 May 2026 02:57:24 +0000 ROA not after: Sun 02 May 2027 03:02:24 +0000 asID: 138843 IP address blocks: 2404:cbc0::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/bc5867d8-3d6f-4816-b84f-fdd5c502b634/0/2702EC259515C0960B0BFF36647679F0CA781E52.crl rsync://rpki-rsync.idnic.net/repo/bc5867d8-3d6f-4816-b84f-fdd5c502b634/0/2702EC259515C0960B0BFF36647679F0CA781E52.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2702EC259515C0960B0BFF36647679F0CA781E52.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 21:49:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:1b:e6:43:bd:67:97:1c:87:92:53:86:70:19:b5:ae:2b:5a:32:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2702EC259515C0960B0BFF36647679F0CA781E52 Validity Not Before: May 3 02:57:24 2026 GMT Not After : May 2 03:02:24 2027 GMT Subject: CN=38B53ABF9A12DAE77478E8B14C08C3B2FB7F2871 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:86:81:2c:2e:d9:67:a5:f0:ab:bc:86:69:05: 9b:01:82:58:25:e9:c3:ae:c0:08:87:df:ac:71:8f: b5:a7:47:c2:03:e9:d6:46:eb:c8:62:24:bb:e5:e0: 67:be:aa:2d:1e:a5:f2:2d:3f:0a:2d:44:46:ce:29: c5:a1:11:c7:60:b4:06:ae:2d:a3:85:6e:02:8c:8f: 54:41:67:e1:43:18:01:56:a3:c0:6d:a2:38:91:90: 60:bc:63:0c:20:6b:20:77:d3:1e:25:0e:53:ca:84: 6a:f1:e9:b0:56:db:fe:44:ed:62:59:fe:0a:dc:50: c2:c3:e8:9d:d2:1e:7b:18:c7:82:8e:36:7a:4e:05: b8:7b:5a:cb:e0:6d:d7:ed:5c:1d:85:2c:6e:86:79: 0b:20:35:22:2a:d2:8f:aa:d9:69:7f:49:40:6e:06: e7:25:67:39:99:69:40:eb:df:94:89:0b:2f:16:3f: 62:73:5e:3a:5a:0a:4d:88:b4:4e:b0:13:3e:0f:93: b6:fc:56:03:3d:9b:56:c3:3a:45:88:67:21:13:18: 2a:59:50:15:dd:25:9f:a6:a9:38:1d:52:4b:f3:82: 42:65:33:a1:40:4f:84:7b:be:55:0d:30:58:ec:94: 24:07:42:ff:57:0c:c2:80:69:8b:7f:7c:f5:1a:a8: 03:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:B5:3A:BF:9A:12:DA:E7:74:78:E8:B1:4C:08:C3:B2:FB:7F:28:71 X509v3 Authority Key Identifier: keyid:27:02:EC:25:95:15:C0:96:0B:0B:FF:36:64:76:79:F0:CA:78:1E:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/bc5867d8-3d6f-4816-b84f-fdd5c502b634/0/2702EC259515C0960B0BFF36647679F0CA781E52.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2702EC259515C0960B0BFF36647679F0CA781E52.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/bc5867d8-3d6f-4816-b84f-fdd5c502b634/0/323430343a636263303a3a2f34302d3430203d3e20313338383433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:cbc0::/40 Signature Algorithm: sha256WithRSAEncryption 8d:f2:8d:d5:3a:46:de:23:02:f1:9d:15:78:76:05:f3:7e:6a: 6d:48:2e:47:e6:cf:02:94:56:cb:97:bc:63:ec:f0:6a:0f:e0: fd:53:ee:26:1a:7b:58:f7:64:2d:4a:23:bb:01:13:c5:1b:1d: b1:e4:a3:08:0b:2d:5a:6a:6f:af:ff:5e:78:0d:d2:c2:b1:f1: 51:54:76:9d:f5:53:06:ff:7a:1f:b4:19:9d:13:28:3a:00:f6: bc:dc:3b:6b:4f:6c:00:95:22:66:57:f8:d3:49:77:f3:e2:b3: 16:b7:6f:87:77:a9:52:80:7f:cf:f4:80:09:7b:e2:68:f9:cc: 46:16:a9:7c:72:bc:26:7a:a3:67:1a:4a:ac:b0:c2:e7:b7:36: 39:37:cf:ba:26:58:ac:93:92:c9:ec:43:12:b8:8b:06:ab:fe: 89:fe:91:b7:a0:29:f2:46:00:58:58:94:6e:2e:4e:23:19:d5: a2:a0:09:a5:df:6a:67:a7:35:75:77:46:61:07:03:27:63:fc: 4e:27:8f:f8:d1:f0:29:8f:e2:a4:42:58:77:5f:3d:de:cd:e2: b9:58:26:d1:c5:af:df:0f:e5:78:ed:2e:3f:9a:fe:c5:56:09: 4b:60:30:50:88:33:b2:28:d4:15:e4:a7:76:c2:06:31:38:4e: 6f:01:ff:35 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUZxvmQ71nlxyHklOGcBm1ritaMiYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjcwMkVDMjU5NTE1QzA5NjBCMEJGRjM2NjQ3Njc5RjBD QTc4MUU1MjAeFw0yNjA1MDMwMjU3MjRaFw0yNzA1MDIwMzAyMjRaMDMxMTAvBgNV BAMTKDM4QjUzQUJGOUExMkRBRTc3NDc4RThCMTRDMDhDM0IyRkI3RjI4NzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCWhoEsLtlnpfCrvIZpBZsBglgl 6cOuwAiH36xxj7WnR8ID6dZG68hiJLvl4Ge+qi0epfItPwotREbOKcWhEcdgtAau LaOFbgKMj1RBZ+FDGAFWo8BtojiRkGC8YwwgayB30x4lDlPKhGrx6bBW2/5E7WJZ /grcUMLD6J3SHnsYx4KONnpOBbh7WsvgbdftXB2FLG6GeQsgNSIq0o+q2Wl/SUBu BuclZzmZaUDr35SJCy8WP2JzXjpaCk2ItE6wEz4Pk7b8VgM9m1bDOkWIZyETGCpZ UBXdJZ+mqTgdUkvzgkJlM6FAT4R7vlUNMFjslCQHQv9XDMKAaYt/fPUaqAPnAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUOLU6v5oS2ud0eOixTAjDsvt/KHEwHwYDVR0j BBgwFoAUJwLsJZUVwJYLC/82ZHZ58Mp4HlIwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YmM1ODY3ZDgtM2Q2Zi00ODE2LWI4NGYtZmRkNWM1MDJiNjM0LzAvMjcwMkVDMjU5 NTE1QzA5NjBCMEJGRjM2NjQ3Njc5RjBDQTc4MUU1Mi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8yNzAyRUMyNTk1MTVDMDk2MEIwQkZGMzY2NDc2NzlGMENBNzgx RTUyLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2JjNTg2N2Q4LTNkNmYtNDgxNi1i ODRmLWZkZDVjNTAyYjYzNC8wLzMyMzQzMDM0M2E2MzYyNjMzMDNhM2EyZjM0MzAy ZDM0MzAyMDNkM2UyMDMxMzMzODM4MzQzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGACQEy8AAMA0GCSqG SIb3DQEBCwUAA4IBAQCN8o3VOkbeIwLxnRV4dgXzfmptSC5H5s8ClFbLl7xj7PBq D+D9U+4mGntY92QtSiO7ARPFGx2x5KMICy1aam+v/154DdLCsfFRVHad9VMG/3of tBmdEyg6APa83DtrT2wAlSJmV/jTSXfz4rMWt2+Hd6lSgH/P9IAJe+Jo+cxGFql8 crwmeqNnGkqssMLntzY5N8+6Jlisk5LJ7EMSuIsGq/6J/pG3oCnyRgBYWJRuLk4j GdWioAml32pnpzV1d0ZhBwMnY/xOJ4/40fApj+KkQlh3Xz3ezeK5WCbRxa/fD+V4 7S4/mv7FVglLYDBQiDOyKNQV5Kd2wgYxOE5vAf81 -----END CERTIFICATE-----Generated at Wed May 13 12:39:25 2026 by rpki-client