$ rpki-client -vvf rpki-rsync.idnic.net/repo/c07c88da-2b56-487e-9efe-571170b10286/0/323430353a6334303a363030303a3a2f33362d3336203d3e20313338383837.roa File: 323430353a6334303a363030303a3a2f33362d3336203d3e20313338383837.roa (raw, json) Hash identifier: LdrXXHPkIXvu63segAbWDO8C0FmCk2NoI4rodpf99hs= Subject key identifier: 96:11:4F:22:51:5C:FF:E3:C6:94:66:BA:D8:23:8F:74:A9:C3:6A:27 Certificate issuer: /CN=C9E3CF72C347D28B4B430DB737BE80CB0172B106 Certificate serial: 0DAA317193455B58C0E44D641B36679915A7977A Authority key identifier: C9:E3:CF:72:C3:47:D2:8B:4B:43:0D:B7:37:BE:80:CB:01:72:B1:06 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C9E3CF72C347D28B4B430DB737BE80CB0172B106.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/c07c88da-2b56-487e-9efe-571170b10286/0/323430353a6334303a363030303a3a2f33362d3336203d3e20313338383837.roa Signing time: Sun 03 May 2026 03:03:14 +0000 ROA not before: Sun 03 May 2026 02:58:14 +0000 ROA not after: Sun 02 May 2027 03:03:14 +0000 asID: 138887 IP address blocks: 2405:c40:6000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/c07c88da-2b56-487e-9efe-571170b10286/0/C9E3CF72C347D28B4B430DB737BE80CB0172B106.crl rsync://rpki-rsync.idnic.net/repo/c07c88da-2b56-487e-9efe-571170b10286/0/C9E3CF72C347D28B4B430DB737BE80CB0172B106.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C9E3CF72C347D28B4B430DB737BE80CB0172B106.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 03:34:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:aa:31:71:93:45:5b:58:c0:e4:4d:64:1b:36:67:99:15:a7:97:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C9E3CF72C347D28B4B430DB737BE80CB0172B106 Validity Not Before: May 3 02:58:14 2026 GMT Not After : May 2 03:03:14 2027 GMT Subject: CN=96114F22515CFFE3C69466BAD8238F74A9C36A27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:dc:41:ff:12:40:ce:13:bf:08:8a:13:7f:72: 40:fb:e6:66:4d:ce:51:07:a4:73:20:90:de:3b:7f: 67:f0:74:6e:87:34:90:af:c9:ad:d8:c3:07:f3:27: 85:95:e6:cc:96:48:56:de:30:fe:17:77:fc:03:41: 4e:f4:c1:54:bf:77:09:0a:a9:7e:ce:ef:ba:23:43: e1:4e:2a:c5:2d:51:42:90:63:01:45:87:f2:36:86: 3d:18:88:a8:61:af:a0:c9:f2:45:6e:b3:40:4a:63: 55:e4:01:31:2d:5f:42:42:e2:18:ff:23:6d:b8:76: a4:79:af:b3:82:69:e5:76:f6:ef:9a:85:a0:43:da: d6:d8:2d:b5:06:65:b3:08:0f:46:0e:b2:2c:33:28: e7:f1:15:de:a2:2f:fd:d7:1b:34:1f:a1:5d:b2:16: 08:f6:2b:ed:a1:9c:81:8e:26:f2:36:80:de:d2:70: a9:65:01:ee:00:5b:d9:11:b2:4d:d6:40:5e:7f:20: 19:56:f5:41:3a:cd:bb:67:2c:3b:48:e0:e4:bd:bc: 38:ce:68:7b:22:d7:d6:2b:c9:d4:34:98:3f:67:e4: e7:c3:f8:5e:ac:05:0f:12:fa:ac:35:c4:d5:aa:7b: c2:8d:d6:fa:fb:81:59:51:b4:cb:72:28:fe:2c:6c: 34:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:11:4F:22:51:5C:FF:E3:C6:94:66:BA:D8:23:8F:74:A9:C3:6A:27 X509v3 Authority Key Identifier: keyid:C9:E3:CF:72:C3:47:D2:8B:4B:43:0D:B7:37:BE:80:CB:01:72:B1:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/c07c88da-2b56-487e-9efe-571170b10286/0/C9E3CF72C347D28B4B430DB737BE80CB0172B106.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C9E3CF72C347D28B4B430DB737BE80CB0172B106.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/c07c88da-2b56-487e-9efe-571170b10286/0/323430353a6334303a363030303a3a2f33362d3336203d3e20313338383837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:c40:6000::/36 Signature Algorithm: sha256WithRSAEncryption 68:db:10:42:40:e3:44:ce:e5:0c:60:07:da:53:ce:cd:bb:31: 61:df:ba:cc:b7:b4:8d:99:6c:7f:1e:38:2e:eb:cf:12:f6:21: 0c:88:65:38:f0:c7:7f:49:90:f8:c7:e5:1b:fe:d1:67:ef:35: 53:8b:46:42:e6:40:58:da:66:c3:52:38:7d:0b:04:6b:df:4b: a8:26:cc:5e:b4:7f:8e:36:d2:b9:1a:33:21:00:46:9b:5c:02: 53:4e:ea:15:a4:61:60:11:fe:3a:28:da:41:b6:23:0d:b7:59: 28:a8:12:2f:41:0c:95:4e:39:ed:2b:57:9c:16:56:3a:cd:1a: bb:21:ee:71:3c:78:6a:4b:6c:d8:8c:db:d0:1e:de:12:f3:a5: e1:5b:a7:94:69:68:5e:86:1d:46:1b:47:b4:e8:a2:3f:3c:57: 3f:0b:d6:2f:c6:63:10:7a:9b:f0:b3:e7:84:92:fd:fd:9b:05: e7:0d:fe:c5:91:01:73:c4:f8:c4:06:6c:16:99:56:13:bf:aa: 3c:0e:95:06:43:2f:02:9e:4d:29:85:a9:2e:85:e7:b1:8d:51: 97:cf:ab:8e:17:52:53:93:9f:55:0d:15:6e:a9:de:cd:5a:f9: 46:fc:95:6b:66:59:f1:be:bd:7a:50:b7:21:3a:e0:cc:26:83: 07:b8:fe:c2 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUDaoxcZNFW1jA5E1kGzZnmRWnl3owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzlFM0NGNzJDMzQ3RDI4QjRCNDMwREI3MzdCRTgwQ0Iw MTcyQjEwNjAeFw0yNjA1MDMwMjU4MTRaFw0yNzA1MDIwMzAzMTRaMDMxMTAvBgNV BAMTKDk2MTE0RjIyNTE1Q0ZGRTNDNjk0NjZCQUQ4MjM4Rjc0QTlDMzZBMjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDx3EH/EkDOE78IihN/ckD75mZN zlEHpHMgkN47f2fwdG6HNJCvya3YwwfzJ4WV5syWSFbeMP4Xd/wDQU70wVS/dwkK qX7O77ojQ+FOKsUtUUKQYwFFh/I2hj0YiKhhr6DJ8kVus0BKY1XkATEtX0JC4hj/ I224dqR5r7OCaeV29u+ahaBD2tbYLbUGZbMID0YOsiwzKOfxFd6iL/3XGzQfoV2y Fgj2K+2hnIGOJvI2gN7ScKllAe4AW9kRsk3WQF5/IBlW9UE6zbtnLDtI4OS9vDjO aHsi19YrydQ0mD9n5OfD+F6sBQ8S+qw1xNWqe8KN1vr7gVlRtMtyKP4sbDTfAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUlhFPIlFc/+PGlGa62COPdKnDaicwHwYDVR0j BBgwFoAUyePPcsNH0otLQw23N76AywFysQYwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YzA3Yzg4ZGEtMmI1Ni00ODdlLTllZmUtNTcxMTcwYjEwMjg2LzAvQzlFM0NGNzJD MzQ3RDI4QjRCNDMwREI3MzdCRTgwQ0IwMTcyQjEwNi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9DOUUzQ0Y3MkMzNDdEMjhCNEI0MzBEQjczN0JFODBDQjAxNzJC MTA2LmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUFBzALhoGLcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2MwN2M4OGRhLTJiNTYtNDg3ZS05 ZWZlLTU3MTE3MGIxMDI4Ni8wLzMyMzQzMDM1M2E2MzM0MzAzYTM2MzAzMDMwM2Ez YTJmMzMzNjJkMzMzNjIwM2QzZTIwMzEzMzM4MzgzODM3LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYEJAUM QGAwDQYJKoZIhvcNAQELBQADggEBAGjbEEJA40TO5QxgB9pTzs27MWHfusy3tI2Z bH8eOC7rzxL2IQyIZTjwx39JkPjH5Rv+0WfvNVOLRkLmQFjaZsNSOH0LBGvfS6gm zF60f4420rkaMyEARptcAlNO6hWkYWAR/joo2kG2Iw23WSioEi9BDJVOOe0rV5wW VjrNGrsh7nE8eGpLbNiM29Ae3hLzpeFbp5RpaF6GHUYbR7Tooj88Vz8L1i/GYxB6 m/Cz54SS/f2bBecN/sWRAXPE+MQGbBaZVhO/qjwOlQZDLwKeTSmFqS6F57GNUZfP q44XUlOTn1UNFW6p3s1a+Ub8lWtmWfG+vXpQtyE64Mwmgwe4/sI= -----END CERTIFICATE-----Generated at Wed May 13 13:42:59 2026 by rpki-client