$ rpki-client -vvf rpki-rsync.idnic.net/repo/c596bcc8-38cd-4437-80b1-5bae9f857937/0/323430363a313334303a3a2f33322d3333203d3e20313430343037.roa File: 323430363a313334303a3a2f33322d3333203d3e20313430343037.roa (raw, json) Hash identifier: MI6jQTtOVHvsuWHm0uvBE0TFhtVi+xCMKjXMCSCBFDY= Subject key identifier: 34:34:50:EC:11:09:B6:6A:0C:01:04:DC:80:01:99:66:E5:6E:5D:C9 Certificate issuer: /CN=ACB5F5BD4845167F55B8DBC49245C40C476C72D1 Certificate serial: 62F4034552989B050C48C15239A5FC881D56F571 Authority key identifier: AC:B5:F5:BD:48:45:16:7F:55:B8:DB:C4:92:45:C4:0C:47:6C:72:D1 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/ACB5F5BD4845167F55B8DBC49245C40C476C72D1.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/c596bcc8-38cd-4437-80b1-5bae9f857937/0/323430363a313334303a3a2f33322d3333203d3e20313430343037.roa Signing time: Sun 03 May 2026 03:05:03 +0000 ROA not before: Sun 03 May 2026 03:00:03 +0000 ROA not after: Sun 02 May 2027 03:05:03 +0000 asID: 140407 IP address blocks: 2406:1340::/32 maxlen: 33 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/c596bcc8-38cd-4437-80b1-5bae9f857937/0/ACB5F5BD4845167F55B8DBC49245C40C476C72D1.crl rsync://rpki-rsync.idnic.net/repo/c596bcc8-38cd-4437-80b1-5bae9f857937/0/ACB5F5BD4845167F55B8DBC49245C40C476C72D1.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/ACB5F5BD4845167F55B8DBC49245C40C476C72D1.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 22:18:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:f4:03:45:52:98:9b:05:0c:48:c1:52:39:a5:fc:88:1d:56:f5:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ACB5F5BD4845167F55B8DBC49245C40C476C72D1 Validity Not Before: May 3 03:00:03 2026 GMT Not After : May 2 03:05:03 2027 GMT Subject: CN=343450EC1109B66A0C0104DC80019966E56E5DC9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:e3:be:32:c9:80:5e:74:21:ac:4e:b1:b5:9a: 38:46:7a:1a:0a:60:63:77:0e:75:ac:38:11:38:3c: 23:d4:16:f8:60:1d:79:6f:f6:f2:20:b2:77:1c:1a: 09:d0:dc:94:e8:6c:5b:b9:43:e1:60:c4:2b:4f:3f: 4c:dd:d1:e0:c6:83:72:59:a1:50:4e:6b:fd:5b:c8: b0:dc:22:f9:d0:cc:f3:8b:26:67:1b:9d:0e:53:15: 64:f4:e7:61:16:0e:3c:0e:10:6b:41:2b:b8:67:30: c5:8b:0f:17:5e:5e:25:d5:7e:01:7d:4e:46:db:4f: de:13:bb:10:6e:fd:f4:d0:9d:30:90:8e:3f:0d:9f: f6:ff:43:b3:e0:dc:be:02:6c:97:ff:dc:8f:fd:0b: 97:d2:f2:ef:0a:27:36:5f:1e:6a:89:17:92:6f:15: f3:61:c9:7c:8e:ba:85:22:51:d4:ca:98:17:b7:36: 44:f3:ad:57:32:16:5b:0b:e5:a9:a4:33:36:f0:b3: 9e:cd:c4:cc:c6:ed:18:76:ba:7f:fb:ba:ea:ad:04: cf:ed:2a:ea:e2:72:ac:b1:44:0c:fc:5a:7a:3c:6d: c7:82:7e:21:3e:8e:e0:29:17:b1:45:ee:8f:04:f2: 33:51:43:93:aa:c5:2d:13:3b:d2:33:8a:07:71:de: cd:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:34:50:EC:11:09:B6:6A:0C:01:04:DC:80:01:99:66:E5:6E:5D:C9 X509v3 Authority Key Identifier: keyid:AC:B5:F5:BD:48:45:16:7F:55:B8:DB:C4:92:45:C4:0C:47:6C:72:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/c596bcc8-38cd-4437-80b1-5bae9f857937/0/ACB5F5BD4845167F55B8DBC49245C40C476C72D1.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/ACB5F5BD4845167F55B8DBC49245C40C476C72D1.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/c596bcc8-38cd-4437-80b1-5bae9f857937/0/323430363a313334303a3a2f33322d3333203d3e20313430343037.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:1340::/32 Signature Algorithm: sha256WithRSAEncryption 89:52:d5:03:0a:a3:42:f1:8e:84:a8:90:5f:1e:b7:b7:13:2f: ac:4c:7b:c0:44:c3:52:62:32:5e:12:42:93:da:32:c3:b5:44: 9e:62:5a:17:da:bb:07:e9:45:35:e7:ea:1d:9c:e9:0b:a9:fb: 11:95:5c:18:20:5b:a4:55:77:ee:a7:fa:0c:52:82:6a:0d:79: db:ff:60:0a:32:a7:16:08:eb:52:a6:72:97:9e:10:d0:a9:0a: 10:14:3b:a1:27:ae:2a:0e:00:a8:01:11:99:9e:20:4f:40:75: 3f:d3:11:bf:06:8a:60:d1:d8:01:3a:58:eb:fb:fb:38:5f:47: 7a:67:49:bb:f6:b0:bd:c7:c5:a1:75:80:50:dd:07:88:4f:5c: 21:2b:06:41:f0:b4:f8:55:9e:3c:e7:f8:67:c1:0e:74:9f:4d: 76:0a:95:1b:f9:82:e4:a3:b6:f3:1a:e6:78:3d:b7:db:6a:ef: c0:cb:ab:08:a7:7c:7a:03:3d:0a:54:ad:48:38:f1:ec:20:29: c6:77:e7:6d:eb:ba:84:07:41:80:bf:d8:51:cd:0a:0e:a0:32: a8:1d:41:33:d0:e7:2a:28:a8:19:7b:14:d0:4f:fd:c1:d7:63: 80:18:86:f9:b3:ce:07:18:12:d5:da:0c:4f:9c:d3:0b:41:2f: c4:85:e2:1d -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUYvQDRVKYmwUMSMFSOaX8iB1W9XEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUNCNUY1QkQ0ODQ1MTY3RjU1QjhEQkM0OTI0NUM0MEM0 NzZDNzJEMTAeFw0yNjA1MDMwMzAwMDNaFw0yNzA1MDIwMzA1MDNaMDMxMTAvBgNV BAMTKDM0MzQ1MEVDMTEwOUI2NkEwQzAxMDREQzgwMDE5OTY2RTU2RTVEQzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCi474yyYBedCGsTrG1mjhGehoK YGN3DnWsOBE4PCPUFvhgHXlv9vIgsnccGgnQ3JTobFu5Q+FgxCtPP0zd0eDGg3JZ oVBOa/1byLDcIvnQzPOLJmcbnQ5TFWT052EWDjwOEGtBK7hnMMWLDxdeXiXVfgF9 TkbbT94TuxBu/fTQnTCQjj8Nn/b/Q7Pg3L4CbJf/3I/9C5fS8u8KJzZfHmqJF5Jv FfNhyXyOuoUiUdTKmBe3NkTzrVcyFlsL5amkMzbws57NxMzG7Rh2un/7uuqtBM/t KuricqyxRAz8Wno8bceCfiE+juApF7FF7o8E8jNRQ5OqxS0TO9Izigdx3s09AgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUNDRQ7BEJtmoMAQTcgAGZZuVuXckwHwYDVR0j BBgwFoAUrLX1vUhFFn9VuNvEkkXEDEdsctEwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YzU5NmJjYzgtMzhjZC00NDM3LTgwYjEtNWJhZTlmODU3OTM3LzAvQUNCNUY1QkQ0 ODQ1MTY3RjU1QjhEQkM0OTI0NUM0MEM0NzZDNzJEMS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9BQ0I1RjVCRDQ4NDUxNjdGNTVCOERCQzQ5MjQ1QzQwQzQ3NkM3 MkQxLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2M1OTZiY2M4LTM4Y2QtNDQzNy04 MGIxLTViYWU5Zjg1NzkzNy8wLzMyMzQzMDM2M2EzMTMzMzQzMDNhM2EyZjMzMzIy ZDMzMzMyMDNkM2UyMDMxMzQzMDM0MzAzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQGE0AwDQYJKoZI hvcNAQELBQADggEBAIlS1QMKo0LxjoSokF8et7cTL6xMe8BEw1JiMl4SQpPaMsO1 RJ5iWhfauwfpRTXn6h2c6Qup+xGVXBggW6RVd+6n+gxSgmoNedv/YAoypxYI61Km cpeeENCpChAUO6EnrioOAKgBEZmeIE9AdT/TEb8GimDR2AE6WOv7+zhfR3pnSbv2 sL3HxaF1gFDdB4hPXCErBkHwtPhVnjzn+GfBDnSfTXYKlRv5guSjtvMa5ng9t9tq 78DLqwinfHoDPQpUrUg48ewgKcZ3523ruoQHQYC/2FHNCg6gMqgdQTPQ5yooqBl7 FNBP/cHXY4AYhvmzzgcYEtXaDE+c0wtBL8SF4h0= -----END CERTIFICATE-----Generated at Wed May 13 08:39:08 2026 by rpki-client