$ rpki-client -vvf rpki-rsync.idnic.net/repo/c07c88da-2b56-487e-9efe-571170b10286/0/323430353a6334303a663030303a3a2f34302d3430203d3e20313338383837.roa File: 323430353a6334303a663030303a3a2f34302d3430203d3e20313338383837.roa (raw, json) Hash identifier: G3HPmbrylByhe8P0W3+v8DhwstU+DtkeFukqMhA3cww= Subject key identifier: 82:8F:7B:1B:21:39:5A:42:A1:71:AF:A6:B6:50:D2:38:9A:73:5C:EF Certificate issuer: /CN=C9E3CF72C347D28B4B430DB737BE80CB0172B106 Certificate serial: 367BF6864C0A1FD55E9CEEF42D9E42A802A02BC6 Authority key identifier: C9:E3:CF:72:C3:47:D2:8B:4B:43:0D:B7:37:BE:80:CB:01:72:B1:06 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C9E3CF72C347D28B4B430DB737BE80CB0172B106.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/c07c88da-2b56-487e-9efe-571170b10286/0/323430353a6334303a663030303a3a2f34302d3430203d3e20313338383837.roa Signing time: Sun 03 May 2026 03:03:12 +0000 ROA not before: Sun 03 May 2026 02:58:12 +0000 ROA not after: Sun 02 May 2027 03:03:12 +0000 asID: 138887 IP address blocks: 2405:c40:f000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/c07c88da-2b56-487e-9efe-571170b10286/0/C9E3CF72C347D28B4B430DB737BE80CB0172B106.crl rsync://rpki-rsync.idnic.net/repo/c07c88da-2b56-487e-9efe-571170b10286/0/C9E3CF72C347D28B4B430DB737BE80CB0172B106.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C9E3CF72C347D28B4B430DB737BE80CB0172B106.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 03:34:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:7b:f6:86:4c:0a:1f:d5:5e:9c:ee:f4:2d:9e:42:a8:02:a0:2b:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C9E3CF72C347D28B4B430DB737BE80CB0172B106 Validity Not Before: May 3 02:58:12 2026 GMT Not After : May 2 03:03:12 2027 GMT Subject: CN=828F7B1B21395A42A171AFA6B650D2389A735CEF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:4a:13:a1:fb:24:88:ff:d9:37:88:d8:bb:44: b5:61:97:30:24:14:5e:67:ec:90:a0:80:59:d3:68: 1b:6d:6d:5b:b3:e9:02:57:ee:f4:81:ae:c0:f0:82: 55:40:a7:b2:86:a9:42:b7:a0:e4:75:6e:0d:6a:f7: f3:6e:4a:08:6e:8e:79:fe:ae:6f:7a:30:5a:94:a7: fe:a0:31:a8:14:7e:7b:f4:a4:45:ab:7e:04:5d:eb: b1:52:4a:1a:a4:cb:92:4b:81:3b:d6:dc:d2:42:43: ca:2f:d4:13:ed:6b:02:3d:f3:86:62:52:b3:2f:21: e9:9d:d7:b5:61:b3:51:ca:5d:71:25:91:68:b3:97: e7:3a:b1:60:ae:69:8c:90:d4:44:17:f2:53:06:92: c2:68:ff:00:55:c0:45:f0:98:55:be:f7:3a:83:ee: 6f:67:31:c6:d1:63:32:62:0c:c3:99:02:0f:72:62: 4d:d6:c8:d5:71:81:d3:a8:10:fd:c0:a5:d9:2f:74: 85:66:fd:42:f8:9e:47:13:37:b2:93:3e:c1:96:72: b6:d6:bc:0e:fe:bb:84:88:6e:1f:10:c4:51:f6:a3: e6:0c:59:aa:62:65:e0:1b:d7:95:ca:20:33:12:fa: 61:16:41:4b:5f:7c:a1:1e:e8:e3:41:e3:30:7d:a0: dd:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:8F:7B:1B:21:39:5A:42:A1:71:AF:A6:B6:50:D2:38:9A:73:5C:EF X509v3 Authority Key Identifier: keyid:C9:E3:CF:72:C3:47:D2:8B:4B:43:0D:B7:37:BE:80:CB:01:72:B1:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/c07c88da-2b56-487e-9efe-571170b10286/0/C9E3CF72C347D28B4B430DB737BE80CB0172B106.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C9E3CF72C347D28B4B430DB737BE80CB0172B106.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/c07c88da-2b56-487e-9efe-571170b10286/0/323430353a6334303a663030303a3a2f34302d3430203d3e20313338383837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:c40:f000::/40 Signature Algorithm: sha256WithRSAEncryption 70:13:11:2f:da:72:16:4f:5d:e4:bc:de:82:67:ae:01:47:99: 69:cc:7b:c3:2c:b2:6d:63:82:92:20:fa:d8:0e:49:cf:b4:91: 67:02:8b:82:c5:95:ee:46:b3:a9:3a:eb:b5:d0:73:05:61:52: 9c:7f:b9:45:07:a8:47:85:2c:85:01:8f:aa:96:34:56:2e:95: c4:39:99:a4:31:25:f7:14:bd:10:7c:e0:23:cb:63:19:37:8e: 55:af:e5:24:b9:69:2a:84:9a:be:35:68:89:c1:d3:7f:a8:27: 65:bb:a6:27:5e:76:53:a6:c8:26:8e:76:3f:ab:64:29:ac:50: c2:12:c7:4f:c4:57:35:f3:71:31:ca:9e:cf:5d:21:66:09:f4: 34:ca:2e:e7:ba:34:0b:09:a1:90:64:ae:77:24:6b:97:bc:fd: 58:a4:d2:44:bc:69:02:5d:2c:a3:7c:4e:48:80:17:37:52:7c: 82:36:a3:63:16:35:ad:7b:dd:6b:d5:b2:f8:c4:ad:cb:8f:d9: 5c:bf:89:e1:98:9d:af:50:2c:f7:d0:35:7d:5c:5b:41:68:57: 00:b7:ac:4b:84:78:53:9b:ca:eb:4b:57:06:6b:93:d7:bd:d7: 0f:06:d9:0f:90:22:41:ff:8b:4a:25:8a:e9:05:7d:16:42:e2: 87:61:6a:48 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUNnv2hkwKH9VenO70LZ5CqAKgK8YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzlFM0NGNzJDMzQ3RDI4QjRCNDMwREI3MzdCRTgwQ0Iw MTcyQjEwNjAeFw0yNjA1MDMwMjU4MTJaFw0yNzA1MDIwMzAzMTJaMDMxMTAvBgNV BAMTKDgyOEY3QjFCMjEzOTVBNDJBMTcxQUZBNkI2NTBEMjM4OUE3MzVDRUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCShOh+ySI/9k3iNi7RLVhlzAk FF5n7JCggFnTaBttbVuz6QJX7vSBrsDwglVAp7KGqUK3oOR1bg1q9/NuSghujnn+ rm96MFqUp/6gMagUfnv0pEWrfgRd67FSShqky5JLgTvW3NJCQ8ov1BPtawI984Zi UrMvIemd17Vhs1HKXXElkWizl+c6sWCuaYyQ1EQX8lMGksJo/wBVwEXwmFW+9zqD 7m9nMcbRYzJiDMOZAg9yYk3WyNVxgdOoEP3ApdkvdIVm/UL4nkcTN7KTPsGWcrbW vA7+u4SIbh8QxFH2o+YMWapiZeAb15XKIDMS+mEWQUtffKEe6ONB4zB9oN3LAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUgo97GyE5WkKhca+mtlDSOJpzXO8wHwYDVR0j BBgwFoAUyePPcsNH0otLQw23N76AywFysQYwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YzA3Yzg4ZGEtMmI1Ni00ODdlLTllZmUtNTcxMTcwYjEwMjg2LzAvQzlFM0NGNzJD MzQ3RDI4QjRCNDMwREI3MzdCRTgwQ0IwMTcyQjEwNi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9DOUUzQ0Y3MkMzNDdEMjhCNEI0MzBEQjczN0JFODBDQjAxNzJC MTA2LmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUFBzALhoGLcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2MwN2M4OGRhLTJiNTYtNDg3ZS05 ZWZlLTU3MTE3MGIxMDI4Ni8wLzMyMzQzMDM1M2E2MzM0MzAzYTY2MzAzMDMwM2Ez YTJmMzQzMDJkMzQzMDIwM2QzZTIwMzEzMzM4MzgzODM3LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYAJAUM QPAwDQYJKoZIhvcNAQELBQADggEBAHATES/achZPXeS83oJnrgFHmWnMe8Mssm1j gpIg+tgOSc+0kWcCi4LFle5Gs6k667XQcwVhUpx/uUUHqEeFLIUBj6qWNFYulcQ5 maQxJfcUvRB84CPLYxk3jlWv5SS5aSqEmr41aInB03+oJ2W7pidedlOmyCaOdj+r ZCmsUMISx0/EVzXzcTHKns9dIWYJ9DTKLue6NAsJoZBkrncka5e8/Vik0kS8aQJd LKN8TkiAFzdSfII2o2MWNa173WvVsvjErcuP2Vy/ieGYna9QLPfQNX1cW0FoVwC3 rEuEeFObyutLVwZrk9e91w8G2Q+QIkH/i0oliukFfRZC4odhakg= -----END CERTIFICATE-----Generated at Wed May 13 14:41:19 2026 by rpki-client