$ rpki-client -vvf rpki-rsync.idnic.net/repo/c07c88da-2b56-487e-9efe-571170b10286/0/323430353a6334303a343030303a3a2f33362d3336203d3e20313338383837.roa File: 323430353a6334303a343030303a3a2f33362d3336203d3e20313338383837.roa (raw, json) Hash identifier: Uw2DZXWdsbdLxITCw50MdBG6P/SrnICAOddefwFUHEU= Subject key identifier: 06:55:95:CA:BA:B0:E9:C9:35:17:5B:B9:0A:45:F3:E3:F2:E1:58:73 Certificate issuer: /CN=C9E3CF72C347D28B4B430DB737BE80CB0172B106 Certificate serial: 5767D2B2CBC94F9F66A2992D0DF39C8D7D8DA121 Authority key identifier: C9:E3:CF:72:C3:47:D2:8B:4B:43:0D:B7:37:BE:80:CB:01:72:B1:06 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C9E3CF72C347D28B4B430DB737BE80CB0172B106.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/c07c88da-2b56-487e-9efe-571170b10286/0/323430353a6334303a343030303a3a2f33362d3336203d3e20313338383837.roa Signing time: Sun 03 May 2026 03:03:11 +0000 ROA not before: Sun 03 May 2026 02:58:11 +0000 ROA not after: Sun 02 May 2027 03:03:11 +0000 asID: 138887 IP address blocks: 2405:c40:4000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/c07c88da-2b56-487e-9efe-571170b10286/0/C9E3CF72C347D28B4B430DB737BE80CB0172B106.crl rsync://rpki-rsync.idnic.net/repo/c07c88da-2b56-487e-9efe-571170b10286/0/C9E3CF72C347D28B4B430DB737BE80CB0172B106.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C9E3CF72C347D28B4B430DB737BE80CB0172B106.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 03:34:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:67:d2:b2:cb:c9:4f:9f:66:a2:99:2d:0d:f3:9c:8d:7d:8d:a1:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C9E3CF72C347D28B4B430DB737BE80CB0172B106 Validity Not Before: May 3 02:58:11 2026 GMT Not After : May 2 03:03:11 2027 GMT Subject: CN=065595CABAB0E9C935175BB90A45F3E3F2E15873 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:7f:01:be:cd:b3:c9:4d:c2:86:a7:1b:95:35: 2c:d0:2e:79:36:27:59:fe:af:fd:14:21:ca:3d:94: 36:4d:72:9c:19:6f:a9:4c:c0:a1:1d:9c:b3:dc:a9: 6d:ec:f0:f7:bb:c3:11:d7:4e:d0:37:52:96:70:f0: 2a:23:5f:ba:f9:a5:50:4e:19:65:a3:5b:55:99:db: 05:9f:a4:2e:6c:b8:00:42:38:b4:3d:82:c0:10:fc: b9:d4:d9:2b:e9:db:f0:e4:11:34:05:2e:9f:4c:5b: e3:de:eb:9f:33:a7:ba:45:5f:8d:9e:bf:59:c3:2c: 11:43:2c:17:ab:ee:96:45:e5:56:dd:0f:27:58:8a: 37:0c:0b:78:51:be:66:71:24:76:60:67:3f:23:eb: 90:42:66:c8:61:9c:4e:f5:93:ce:5c:42:b8:f3:c4: 0f:79:39:f0:b7:0d:68:df:05:e9:32:70:f6:e8:e3: 43:61:8f:39:72:a2:f9:f9:4f:46:57:a8:a9:38:55: 16:87:a8:06:92:e0:94:c7:56:ab:f5:49:f1:ed:53: 88:c0:32:5c:d3:a9:b6:31:52:fa:31:b3:5f:f9:2c: 99:63:c4:3d:eb:67:e6:ca:ff:19:e3:e8:57:4f:26: b9:89:69:b5:10:96:c5:25:c8:d3:2c:a6:2d:21:e7: 76:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:55:95:CA:BA:B0:E9:C9:35:17:5B:B9:0A:45:F3:E3:F2:E1:58:73 X509v3 Authority Key Identifier: keyid:C9:E3:CF:72:C3:47:D2:8B:4B:43:0D:B7:37:BE:80:CB:01:72:B1:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/c07c88da-2b56-487e-9efe-571170b10286/0/C9E3CF72C347D28B4B430DB737BE80CB0172B106.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C9E3CF72C347D28B4B430DB737BE80CB0172B106.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/c07c88da-2b56-487e-9efe-571170b10286/0/323430353a6334303a343030303a3a2f33362d3336203d3e20313338383837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:c40:4000::/36 Signature Algorithm: sha256WithRSAEncryption 7d:31:3f:3c:4d:10:59:00:b0:16:34:b2:f8:1b:d6:c6:6f:e2: 5d:38:10:9e:97:24:0c:84:bc:da:af:4e:2c:11:4b:5c:ab:70: 8f:1b:87:90:9f:ff:25:cd:0d:f9:ae:ff:40:7b:2f:de:50:d6: 73:2d:7c:70:ab:02:88:99:ad:fe:99:21:1c:63:06:2c:43:f8: b8:6b:64:09:0a:d4:33:35:bb:8c:85:eb:dc:a2:f9:83:36:5b: 3d:de:0a:f1:6f:5d:61:24:0c:31:ac:d5:8f:72:60:5d:81:ed: 78:d4:e8:33:50:a2:53:03:13:8e:87:0c:3a:b0:37:60:f6:bf: 21:31:6f:cb:35:1c:58:11:83:d0:a7:4e:45:1e:5b:15:11:d6: 0b:5a:bd:b9:67:ac:db:64:de:b2:a5:5f:93:10:2a:2d:c2:9a: 18:55:56:ce:ac:df:86:a8:23:45:b3:f2:43:7b:59:ab:32:82: c9:d0:9d:d6:17:8d:ee:c0:6b:03:17:c5:1e:1e:01:75:e3:bc: 2c:0c:dd:61:9c:2f:52:46:0d:b2:13:8d:ce:d7:94:b8:dc:4d: b8:a1:10:16:80:2e:56:4d:18:1d:5a:43:a8:b9:10:be:d0:6e: 97:86:71:c0:5d:78:d5:95:58:3d:94:aa:8e:5f:fb:c4:90:a1: a3:2b:be:e8 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUV2fSssvJT59mopktDfOcjX2NoSEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzlFM0NGNzJDMzQ3RDI4QjRCNDMwREI3MzdCRTgwQ0Iw MTcyQjEwNjAeFw0yNjA1MDMwMjU4MTFaFw0yNzA1MDIwMzAzMTFaMDMxMTAvBgNV BAMTKDA2NTU5NUNBQkFCMEU5QzkzNTE3NUJCOTBBNDVGM0UzRjJFMTU4NzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCefwG+zbPJTcKGpxuVNSzQLnk2 J1n+r/0UIco9lDZNcpwZb6lMwKEdnLPcqW3s8Pe7wxHXTtA3UpZw8CojX7r5pVBO GWWjW1WZ2wWfpC5suABCOLQ9gsAQ/LnU2Svp2/DkETQFLp9MW+Pe658zp7pFX42e v1nDLBFDLBer7pZF5VbdDydYijcMC3hRvmZxJHZgZz8j65BCZshhnE71k85cQrjz xA95OfC3DWjfBekycPbo40Nhjzlyovn5T0ZXqKk4VRaHqAaS4JTHVqv1SfHtU4jA MlzTqbYxUvoxs1/5LJljxD3rZ+bK/xnj6FdPJrmJabUQlsUlyNMspi0h53Y9AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUBlWVyrqw6ck1F1u5CkXz4/LhWHMwHwYDVR0j BBgwFoAUyePPcsNH0otLQw23N76AywFysQYwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YzA3Yzg4ZGEtMmI1Ni00ODdlLTllZmUtNTcxMTcwYjEwMjg2LzAvQzlFM0NGNzJD MzQ3RDI4QjRCNDMwREI3MzdCRTgwQ0IwMTcyQjEwNi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9DOUUzQ0Y3MkMzNDdEMjhCNEI0MzBEQjczN0JFODBDQjAxNzJC MTA2LmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUFBzALhoGLcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2MwN2M4OGRhLTJiNTYtNDg3ZS05 ZWZlLTU3MTE3MGIxMDI4Ni8wLzMyMzQzMDM1M2E2MzM0MzAzYTM0MzAzMDMwM2Ez YTJmMzMzNjJkMzMzNjIwM2QzZTIwMzEzMzM4MzgzODM3LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYEJAUM QEAwDQYJKoZIhvcNAQELBQADggEBAH0xPzxNEFkAsBY0svgb1sZv4l04EJ6XJAyE vNqvTiwRS1yrcI8bh5Cf/yXNDfmu/0B7L95Q1nMtfHCrAoiZrf6ZIRxjBixD+Lhr ZAkK1DM1u4yF69yi+YM2Wz3eCvFvXWEkDDGs1Y9yYF2B7XjU6DNQolMDE46HDDqw N2D2vyExb8s1HFgRg9CnTkUeWxUR1gtavblnrNtk3rKlX5MQKi3CmhhVVs6s34ao I0Wz8kN7WasygsnQndYXje7AawMXxR4eAXXjvCwM3WGcL1JGDbITjc7XlLjcTbih EBaALlZNGB1aQ6i5EL7QbpeGccBdeNWVWD2Uqo5f+8SQoaMrvug= -----END CERTIFICATE-----Generated at Wed May 13 13:28:03 2026 by rpki-client