$ rpki-client -vvf rpki-rsync.idnic.net/repo/c07c88da-2b56-487e-9efe-571170b10286/0/323430353a6334303a3a2f33332d3333203d3e20313338383837.roa File: 323430353a6334303a3a2f33332d3333203d3e20313338383837.roa (raw, json) Hash identifier: f40WyqcJUx5CaPP5/qa5LhPHXzQ7tY9s/CnE73Q55+U= Subject key identifier: 7C:FC:FD:1E:02:AF:E3:A0:E2:B8:1F:A1:3B:BD:92:9E:0F:C6:04:AC Certificate issuer: /CN=C9E3CF72C347D28B4B430DB737BE80CB0172B106 Certificate serial: 5BFA1779E201A5E10630F12BE75EA5DA6EFC42E4 Authority key identifier: C9:E3:CF:72:C3:47:D2:8B:4B:43:0D:B7:37:BE:80:CB:01:72:B1:06 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C9E3CF72C347D28B4B430DB737BE80CB0172B106.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/c07c88da-2b56-487e-9efe-571170b10286/0/323430353a6334303a3a2f33332d3333203d3e20313338383837.roa Signing time: Sun 03 May 2026 03:03:15 +0000 ROA not before: Sun 03 May 2026 02:58:15 +0000 ROA not after: Sun 02 May 2027 03:03:15 +0000 asID: 138887 IP address blocks: 2405:c40::/33 maxlen: 33 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/c07c88da-2b56-487e-9efe-571170b10286/0/C9E3CF72C347D28B4B430DB737BE80CB0172B106.crl rsync://rpki-rsync.idnic.net/repo/c07c88da-2b56-487e-9efe-571170b10286/0/C9E3CF72C347D28B4B430DB737BE80CB0172B106.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C9E3CF72C347D28B4B430DB737BE80CB0172B106.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 03:34:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:fa:17:79:e2:01:a5:e1:06:30:f1:2b:e7:5e:a5:da:6e:fc:42:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C9E3CF72C347D28B4B430DB737BE80CB0172B106 Validity Not Before: May 3 02:58:15 2026 GMT Not After : May 2 03:03:15 2027 GMT Subject: CN=7CFCFD1E02AFE3A0E2B81FA13BBD929E0FC604AC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:34:06:dd:f1:26:b1:38:01:e0:b7:41:aa:ec: 10:66:33:ad:5e:3c:7f:06:06:f3:9e:76:78:c8:0e: cf:a8:0e:b8:7c:ad:bd:36:1d:25:4e:b1:13:63:d0: 95:fd:10:b6:87:f7:64:cb:b6:03:e4:4a:2e:dd:7b: 5b:dd:d0:25:07:97:9a:21:24:13:39:b4:b6:3b:b6: 3d:8d:c8:e4:65:17:50:5a:5f:4e:86:2e:db:95:65: d1:c2:39:8b:a6:4a:f3:e8:6f:1e:71:b0:22:f3:80: 2f:3f:63:c9:2c:5b:41:95:f9:73:27:a9:28:01:97: 4f:29:b1:59:25:ed:8c:4f:ff:5e:c7:19:37:4e:65: 5c:fc:52:29:7b:dc:f9:ee:a2:23:60:6f:32:7c:9e: b9:7d:23:cb:10:c1:0e:af:b4:cf:41:59:b8:0a:41: 0a:4c:08:a7:eb:09:31:fd:87:10:c1:ee:a0:89:6c: d8:a1:80:c6:9e:42:03:2c:25:2a:33:0a:ea:b6:df: ed:43:7c:87:6a:e6:60:9b:66:0b:79:14:bc:fc:e6: 51:44:01:fe:e0:c7:26:ab:ec:09:09:e7:36:78:8e: 9a:aa:6c:cf:73:8d:71:24:a8:0d:8c:59:13:6a:92: ca:9b:41:da:4e:9a:62:1b:65:e5:12:1f:3c:be:b5: 0d:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:FC:FD:1E:02:AF:E3:A0:E2:B8:1F:A1:3B:BD:92:9E:0F:C6:04:AC X509v3 Authority Key Identifier: keyid:C9:E3:CF:72:C3:47:D2:8B:4B:43:0D:B7:37:BE:80:CB:01:72:B1:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/c07c88da-2b56-487e-9efe-571170b10286/0/C9E3CF72C347D28B4B430DB737BE80CB0172B106.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C9E3CF72C347D28B4B430DB737BE80CB0172B106.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/c07c88da-2b56-487e-9efe-571170b10286/0/323430353a6334303a3a2f33332d3333203d3e20313338383837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:c40::/33 Signature Algorithm: sha256WithRSAEncryption 86:f7:a9:75:bc:a0:35:6c:7c:c0:fb:aa:60:b0:41:dc:40:6b: 3d:57:15:73:d1:3d:c5:08:b9:2e:2e:0c:21:c0:7a:34:6b:fc: fe:f2:20:77:10:1a:7e:10:cf:f2:74:89:c4:01:b3:05:e3:a9: b4:19:81:62:f3:a6:a7:c6:55:5f:1e:26:02:62:c4:98:d9:d8: ad:bd:2a:d0:0e:69:7d:87:c0:4b:28:e6:c5:48:21:d4:82:30: 66:26:cb:f9:9e:43:2d:a1:89:0f:03:fc:dd:53:84:61:63:b9: 34:2a:d7:e9:5c:de:b1:29:16:8e:70:3d:3c:9f:1c:a7:54:bc: fd:eb:27:a0:3a:d6:a5:74:d5:c9:48:7f:4c:ae:78:04:04:d6: bb:15:59:94:61:59:fb:9b:e8:3b:fd:52:0e:62:ca:b4:68:6f: 2a:f7:57:b5:8b:01:bb:b7:65:75:7e:fe:2f:85:1c:43:0e:0c: 0a:bc:6c:a6:ed:2d:ab:f4:5b:92:24:8c:1b:b6:29:47:e6:df: c3:43:24:01:59:13:fc:f9:94:d4:95:44:d5:35:e8:d2:30:53: 84:75:66:57:1c:cd:c0:fb:05:29:13:e5:82:64:22:b6:ac:33: 99:7e:ea:7a:7c:64:8b:4c:6d:84:38:bf:d8:44:28:7c:d3:b3: 48:35:0b:17 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUW/oXeeIBpeEGMPEr516l2m78QuQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzlFM0NGNzJDMzQ3RDI4QjRCNDMwREI3MzdCRTgwQ0Iw MTcyQjEwNjAeFw0yNjA1MDMwMjU4MTVaFw0yNzA1MDIwMzAzMTVaMDMxMTAvBgNV BAMTKDdDRkNGRDFFMDJBRkUzQTBFMkI4MUZBMTNCQkQ5MjlFMEZDNjA0QUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDcNAbd8SaxOAHgt0Gq7BBmM61e PH8GBvOednjIDs+oDrh8rb02HSVOsRNj0JX9ELaH92TLtgPkSi7de1vd0CUHl5oh JBM5tLY7tj2NyORlF1BaX06GLtuVZdHCOYumSvPobx5xsCLzgC8/Y8ksW0GV+XMn qSgBl08psVkl7YxP/17HGTdOZVz8Uil73PnuoiNgbzJ8nrl9I8sQwQ6vtM9BWbgK QQpMCKfrCTH9hxDB7qCJbNihgMaeQgMsJSozCuq23+1DfIdq5mCbZgt5FLz85lFE Af7gxyar7AkJ5zZ4jpqqbM9zjXEkqA2MWRNqksqbQdpOmmIbZeUSHzy+tQ0nAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUfPz9HgKv46DiuB+hO72Sng/GBKwwHwYDVR0j BBgwFoAUyePPcsNH0otLQw23N76AywFysQYwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YzA3Yzg4ZGEtMmI1Ni00ODdlLTllZmUtNTcxMTcwYjEwMjg2LzAvQzlFM0NGNzJD MzQ3RDI4QjRCNDMwREI3MzdCRTgwQ0IwMTcyQjEwNi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9DOUUzQ0Y3MkMzNDdEMjhCNEI0MzBEQjczN0JFODBDQjAxNzJC MTA2LmNlcjCBoQYIKwYBBQUHAQsEgZQwgZEwgY4GCCsGAQUFBzALhoGBcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2MwN2M4OGRhLTJiNTYtNDg3ZS05 ZWZlLTU3MTE3MGIxMDI4Ni8wLzMyMzQzMDM1M2E2MzM0MzAzYTNhMmYzMzMzMmQz MzMzMjAzZDNlMjAzMTMzMzgzODM4Mzcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgckBQxAADANBgkqhkiG 9w0BAQsFAAOCAQEAhvepdbygNWx8wPuqYLBB3EBrPVcVc9E9xQi5Li4MIcB6NGv8 /vIgdxAafhDP8nSJxAGzBeOptBmBYvOmp8ZVXx4mAmLEmNnYrb0q0A5pfYfASyjm xUgh1IIwZibL+Z5DLaGJDwP83VOEYWO5NCrX6VzesSkWjnA9PJ8cp1S8/esnoDrW pXTVyUh/TK54BATWuxVZlGFZ+5voO/1SDmLKtGhvKvdXtYsBu7dldX7+L4UcQw4M Crxspu0tq/RbkiSMG7YpR+bfw0MkAVkT/PmU1JVE1TXo0jBThHVmVxzNwPsFKRPl gmQitqwzmX7qenxki0xthDi/2EQofNOzSDULFw== -----END CERTIFICATE-----Generated at Wed May 13 11:50:21 2026 by rpki-client