$ rpki-client -vvf rpki-rsync.idnic.net/repo/bf542bc4-74dc-45dd-b659-745ca2aca333/0/323430303a623138303a3a2f33322d3438203d3e203539323736.roa File: 323430303a623138303a3a2f33322d3438203d3e203539323736.roa (raw, json) Hash identifier: Pp8IAqZslv9JrsHvh5t4K1Xf7pozFAooFyaeWpnY8Hw= Subject key identifier: C8:4C:53:8C:AF:F7:9B:EC:69:F1:BA:C9:E8:3A:3B:AA:15:E0:4B:2F Certificate issuer: /CN=33DCD855DE6E866A83A570ABA8A1DEA5A6E30E4D Certificate serial: 2D2177BDA700322C737F73DA43E19CCF9E057F55 Authority key identifier: 33:DC:D8:55:DE:6E:86:6A:83:A5:70:AB:A8:A1:DE:A5:A6:E3:0E:4D Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/33DCD855DE6E866A83A570ABA8A1DEA5A6E30E4D.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/bf542bc4-74dc-45dd-b659-745ca2aca333/0/323430303a623138303a3a2f33322d3438203d3e203539323736.roa Signing time: Sun 03 May 2026 03:03:02 +0000 ROA not before: Sun 03 May 2026 02:58:02 +0000 ROA not after: Sun 02 May 2027 03:03:02 +0000 asID: 59276 IP address blocks: 2400:b180::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/bf542bc4-74dc-45dd-b659-745ca2aca333/0/33DCD855DE6E866A83A570ABA8A1DEA5A6E30E4D.crl rsync://rpki-rsync.idnic.net/repo/bf542bc4-74dc-45dd-b659-745ca2aca333/0/33DCD855DE6E866A83A570ABA8A1DEA5A6E30E4D.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/33DCD855DE6E866A83A570ABA8A1DEA5A6E30E4D.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 04:31:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:21:77:bd:a7:00:32:2c:73:7f:73:da:43:e1:9c:cf:9e:05:7f:55 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=33DCD855DE6E866A83A570ABA8A1DEA5A6E30E4D Validity Not Before: May 3 02:58:02 2026 GMT Not After : May 2 03:03:02 2027 GMT Subject: CN=C84C538CAFF79BEC69F1BAC9E83A3BAA15E04B2F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:83:c4:68:68:bf:9b:d6:4b:a2:79:d7:4e:31:45: 94:88:4d:26:f0:f2:28:98:0e:91:33:16:05:12:29: 7d:46:d1:d7:19:09:1a:f0:a1:42:34:0f:16:1b:59: 04:fb:b4:51:9b:61:12:65:d7:a0:f0:11:d1:94:85: 27:1d:20:ad:f5:b1:25:cb:41:51:89:35:dc:00:a3: 45:35:1f:b2:36:94:68:a5:2d:73:66:98:a8:7c:d5: 03:77:4d:e9:82:1e:9b:94:f1:a5:3c:2d:42:3e:85: bd:1c:17:f9:06:df:42:64:ed:be:3a:b1:6c:08:94: c7:24:cc:16:93:29:3a:f9:ac:1a:56:25:10:3b:66: a4:d1:00:44:fe:a4:10:cc:9f:24:6f:dd:05:57:d9: 13:59:a9:65:69:f0:67:d0:73:02:dd:23:e2:e0:ad: 04:81:c3:de:4e:e9:cf:63:f7:55:28:43:a8:17:83: 86:c2:76:d2:0d:45:ae:95:2c:f1:ac:c1:fc:14:a4: c3:8e:ce:90:28:ff:42:61:78:72:7f:43:28:05:b7: 86:18:b9:ff:86:a1:2b:20:68:88:22:6f:53:3f:22: 88:c4:cc:fb:12:40:4e:d3:56:4e:7a:dc:3a:ec:8e: 2c:b8:19:54:47:cc:98:fb:db:61:e4:5a:4c:38:13: ad:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:4C:53:8C:AF:F7:9B:EC:69:F1:BA:C9:E8:3A:3B:AA:15:E0:4B:2F X509v3 Authority Key Identifier: keyid:33:DC:D8:55:DE:6E:86:6A:83:A5:70:AB:A8:A1:DE:A5:A6:E3:0E:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/bf542bc4-74dc-45dd-b659-745ca2aca333/0/33DCD855DE6E866A83A570ABA8A1DEA5A6E30E4D.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/33DCD855DE6E866A83A570ABA8A1DEA5A6E30E4D.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/bf542bc4-74dc-45dd-b659-745ca2aca333/0/323430303a623138303a3a2f33322d3438203d3e203539323736.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:b180::/32 Signature Algorithm: sha256WithRSAEncryption 49:04:08:c2:a9:04:5e:70:4a:ac:1f:a4:f7:47:c5:9e:62:51: 48:fd:4c:91:34:c6:8f:d8:d2:5f:e3:6d:b6:83:7c:6c:72:42: 31:83:e2:58:3d:8d:6c:56:57:b6:67:9e:60:3f:46:70:6c:1d: c9:ed:9f:a4:0d:91:e5:fa:0c:aa:7d:c6:70:0c:f5:dc:ce:8e: 1a:f1:63:11:85:35:ad:ef:d0:89:1b:f0:9e:78:1e:0b:fc:c8: 9b:c5:5e:7a:84:80:bd:ba:4e:8e:6b:c7:05:15:3d:b9:13:ac: 86:62:cb:ca:dd:98:2e:dd:43:73:c2:98:ec:ff:20:12:5d:34: 7f:f9:6c:21:4b:6d:ec:45:81:b8:1a:5f:e6:d0:17:2e:12:e8: b8:3a:9c:f3:42:9b:e3:55:f3:7a:2d:58:5e:e5:4a:5a:f6:9d: ce:50:7d:fb:e6:2b:c4:0b:7c:b0:22:68:00:95:dc:d6:ea:34: 05:d3:29:45:e3:8e:aa:12:d3:38:03:81:58:15:c3:14:f9:9b: 18:3e:7b:93:c4:4f:c6:dd:56:b1:95:07:cc:53:16:f6:11:1c: c6:b3:c5:62:ce:0a:d7:d0:78:d8:31:e3:8e:e6:e9:02:fc:f9: d4:b5:a9:bf:0a:b4:2c:09:c3:57:ad:b0:f9:0f:94:6d:4c:76: b4:8c:d9:c0 -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIULSF3vacAMixzf3PaQ+Gcz54Ff1UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzNEQ0Q4NTVERTZFODY2QTgzQTU3MEFCQThBMURFQTVB NkUzMEU0RDAeFw0yNjA1MDMwMjU4MDJaFw0yNzA1MDIwMzAzMDJaMDMxMTAvBgNV BAMTKEM4NEM1MzhDQUZGNzlCRUM2OUYxQkFDOUU4M0EzQkFBMTVFMDRCMkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCDxGhov5vWS6J5104xRZSITSbw 8iiYDpEzFgUSKX1G0dcZCRrwoUI0DxYbWQT7tFGbYRJl16DwEdGUhScdIK31sSXL QVGJNdwAo0U1H7I2lGilLXNmmKh81QN3TemCHpuU8aU8LUI+hb0cF/kG30Jk7b46 sWwIlMckzBaTKTr5rBpWJRA7ZqTRAET+pBDMnyRv3QVX2RNZqWVp8GfQcwLdI+Lg rQSBw95O6c9j91UoQ6gXg4bCdtINRa6VLPGswfwUpMOOzpAo/0JheHJ/QygFt4YY uf+GoSsgaIgib1M/IojEzPsSQE7TVk563Drsjiy4GVRHzJj722HkWkw4E60pAgMB AAGjggIxMIICLTAdBgNVHQ4EFgQUyExTjK/3m+xp8brJ6Do7qhXgSy8wHwYDVR0j BBgwFoAUM9zYVd5uhmqDpXCrqKHepabjDk0wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YmY1NDJiYzQtNzRkYy00NWRkLWI2NTktNzQ1Y2EyYWNhMzMzLzAvMzNEQ0Q4NTVE RTZFODY2QTgzQTU3MEFCQThBMURFQTVBNkUzMEU0RC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8zM0RDRDg1NURFNkU4NjZBODNBNTcwQUJBOEExREVBNUE2RTMw RTRELmNlcjCBoQYIKwYBBQUHAQsEgZQwgZEwgY4GCCsGAQUFBzALhoGBcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2JmNTQyYmM0LTc0ZGMtNDVkZC1i NjU5LTc0NWNhMmFjYTMzMy8wLzMyMzQzMDMwM2E2MjMxMzgzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDM1MzkzMjM3MzYucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkALGAMA0GCSqGSIb3 DQEBCwUAA4IBAQBJBAjCqQRecEqsH6T3R8WeYlFI/UyRNMaP2NJf4222g3xsckIx g+JYPY1sVle2Z55gP0ZwbB3J7Z+kDZHl+gyqfcZwDPXczo4a8WMRhTWt79CJG/Ce eB4L/MibxV56hIC9uk6Oa8cFFT25E6yGYsvK3Zgu3UNzwpjs/yASXTR/+WwhS23s RYG4Gl/m0BcuEui4OpzzQpvjVfN6LVhe5Upa9p3OUH375ivEC3ywImgAldzW6jQF 0ylF446qEtM4A4FYFcMU+ZsYPnuTxE/G3VaxlQfMUxb2ERzGs8VizgrX0HjYMeOO 5ukC/PnUtam/CrQsCcNXrbD5D5RtTHa0jNnA -----END CERTIFICATE-----Generated at Wed May 13 07:39:13 2026 by rpki-client