$ rpki-client -vvf rpki-rsync.idnic.net/repo/c8f6beb8-e4e8-4e39-8275-1c6d77c3eef8/0/323430333a393530303a3a2f33322d3336203d3e2039363537.roa File: 323430333a393530303a3a2f33322d3336203d3e2039363537.roa (raw, json) Hash identifier: Bjupm6rpCAaMTeTPZ2eGuF40Rt3f9ZMn/qqAW7B+FsQ= Subject key identifier: 30:16:59:CA:3B:68:BA:5A:49:B6:B5:9A:8F:F1:47:16:F4:02:81:D8 Certificate issuer: /CN=5137BC6C642818ED44761CE24BD59136B86E9502 Certificate serial: 20D961C1BAE2A30C622ED200B760D7615283F133 Authority key identifier: 51:37:BC:6C:64:28:18:ED:44:76:1C:E2:4B:D5:91:36:B8:6E:95:02 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/5137BC6C642818ED44761CE24BD59136B86E9502.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/c8f6beb8-e4e8-4e39-8275-1c6d77c3eef8/0/323430333a393530303a3a2f33322d3336203d3e2039363537.roa Signing time: Sun 03 May 2026 03:06:13 +0000 ROA not before: Sun 03 May 2026 03:01:13 +0000 ROA not after: Sun 02 May 2027 03:06:13 +0000 asID: 9657 IP address blocks: 2403:9500::/32 maxlen: 36 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/c8f6beb8-e4e8-4e39-8275-1c6d77c3eef8/0/5137BC6C642818ED44761CE24BD59136B86E9502.crl rsync://rpki-rsync.idnic.net/repo/c8f6beb8-e4e8-4e39-8275-1c6d77c3eef8/0/5137BC6C642818ED44761CE24BD59136B86E9502.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/5137BC6C642818ED44761CE24BD59136B86E9502.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:d9:61:c1:ba:e2:a3:0c:62:2e:d2:00:b7:60:d7:61:52:83:f1:33 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5137BC6C642818ED44761CE24BD59136B86E9502 Validity Not Before: May 3 03:01:13 2026 GMT Not After : May 2 03:06:13 2027 GMT Subject: CN=301659CA3B68BA5A49B6B59A8FF14716F40281D8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:97:8c:2f:f5:e7:05:d2:97:ed:94:2f:b1:7f: cf:c2:9d:a8:29:67:6f:8e:6f:78:10:9c:df:de:7d: 3a:a1:5e:86:9f:88:1b:03:63:61:1c:3c:d2:32:41: f0:3b:3d:a0:32:c6:00:f9:6d:ba:17:3f:08:3a:6b: e7:2d:f7:3e:10:d4:21:ef:63:14:f2:24:19:36:eb: c1:98:60:b9:11:e3:25:03:a4:54:2b:90:55:5a:d3: ed:62:9a:47:fa:26:4b:79:b7:c4:a6:98:78:e9:42: 2c:61:44:05:b9:e2:0c:7c:05:18:39:3d:f1:64:0f: 0c:f9:80:98:63:47:e2:2b:1e:7f:11:c1:61:1c:c6: 3d:ab:46:43:b7:85:43:6d:10:b0:21:5e:57:aa:40: f6:2c:21:d7:7a:d7:d2:32:11:de:e9:b7:26:20:05: a4:ee:3f:0f:09:24:fd:ed:0d:77:3b:16:1a:ed:7f: a3:8c:48:fc:bf:d4:04:85:ac:69:61:75:49:53:c4: f6:6f:8a:69:cf:05:db:53:27:a3:9f:5d:d8:4e:1d: 61:41:6c:53:bf:b3:db:67:80:c1:ce:9f:d2:35:57: 20:6e:23:84:a1:2c:ff:43:0e:e0:a7:16:59:31:6c: bb:d1:9c:98:4f:51:fd:d6:e0:49:78:a1:6d:02:38: 32:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:16:59:CA:3B:68:BA:5A:49:B6:B5:9A:8F:F1:47:16:F4:02:81:D8 X509v3 Authority Key Identifier: keyid:51:37:BC:6C:64:28:18:ED:44:76:1C:E2:4B:D5:91:36:B8:6E:95:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/c8f6beb8-e4e8-4e39-8275-1c6d77c3eef8/0/5137BC6C642818ED44761CE24BD59136B86E9502.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/5137BC6C642818ED44761CE24BD59136B86E9502.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/c8f6beb8-e4e8-4e39-8275-1c6d77c3eef8/0/323430333a393530303a3a2f33322d3336203d3e2039363537.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:9500::/32 Signature Algorithm: sha256WithRSAEncryption 76:3d:23:64:5c:2f:7c:da:5a:3b:38:04:77:96:c1:fe:9e:9e: f9:d1:d2:bf:82:cd:94:79:25:dd:b5:de:98:e4:d9:c2:07:63: 74:77:a6:45:27:13:3f:7c:2a:ae:3d:d0:2e:10:c8:07:a0:0b: fc:53:7f:19:7c:1e:9a:05:17:1b:cc:67:30:65:84:8c:cc:5b: 75:af:95:05:fb:3b:61:7f:28:27:cb:74:65:fb:15:f3:42:a6: c5:48:8b:9e:49:62:77:72:db:d2:bf:bf:dd:5e:36:b0:0f:de: 36:30:2d:52:00:91:98:be:15:e6:9d:57:e1:bf:b1:0d:81:5b: dc:9d:f6:a3:4d:a3:8e:a5:39:bb:6c:7b:f6:87:1d:8b:04:a4: 82:23:cd:ae:8c:c4:ff:2a:bf:82:c4:99:05:65:cb:91:98:e3: 49:60:9a:3f:6a:6a:9c:e0:0f:8f:23:97:0c:c4:f3:9e:53:d4: 06:07:9d:3c:cd:ee:b1:5d:ca:f8:5e:ef:cc:cb:ab:e2:5c:77: 49:a5:23:2c:02:d5:fb:a8:c0:d3:64:99:49:06:0c:c1:13:97: 06:50:ee:c6:ae:e3:6b:ba:6f:c5:b6:d1:77:4a:f9:ec:01:23: 40:f5:6b:75:46:e8:96:af:f0:88:cd:f4:93:1b:08:c6:6a:32: 37:85:a6:0d -----BEGIN CERTIFICATE----- MIIFJDCCBAygAwIBAgIUINlhwbriowxiLtIAt2DXYVKD8TMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTEzN0JDNkM2NDI4MThFRDQ0NzYxQ0UyNEJENTkxMzZC ODZFOTUwMjAeFw0yNjA1MDMwMzAxMTNaFw0yNzA1MDIwMzA2MTNaMDMxMTAvBgNV BAMTKDMwMTY1OUNBM0I2OEJBNUE0OUI2QjU5QThGRjE0NzE2RjQwMjgxRDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCgl4wv9ecF0pftlC+xf8/Cnagp Z2+Ob3gQnN/efTqhXoafiBsDY2EcPNIyQfA7PaAyxgD5bboXPwg6a+ct9z4Q1CHv YxTyJBk268GYYLkR4yUDpFQrkFVa0+1imkf6Jkt5t8SmmHjpQixhRAW54gx8BRg5 PfFkDwz5gJhjR+IrHn8RwWEcxj2rRkO3hUNtELAhXleqQPYsIdd619IyEd7ptyYg BaTuPw8JJP3tDXc7Fhrtf6OMSPy/1ASFrGlhdUlTxPZvimnPBdtTJ6OfXdhOHWFB bFO/s9tngMHOn9I1VyBuI4ShLP9DDuCnFlkxbLvRnJhPUf3W4El4oW0CODIHAgMB AAGjggIuMIICKjAdBgNVHQ4EFgQUMBZZyjtoulpJtrWaj/FHFvQCgdgwHwYDVR0j BBgwFoAUUTe8bGQoGO1EdhziS9WRNrhulQIwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YzhmNmJlYjgtZTRlOC00ZTM5LTgyNzUtMWM2ZDc3YzNlZWY4LzAvNTEzN0JDNkM2 NDI4MThFRDQ0NzYxQ0UyNEJENTkxMzZCODZFOTUwMi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS81MTM3QkM2QzY0MjgxOEVENDQ3NjFDRTI0QkQ1OTEzNkI4NkU5 NTAyLmNlcjCBngYIKwYBBQUHAQsEgZEwgY4wgYsGCCsGAQUFBzALhn9yc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vYzhmNmJlYjgtZTRlOC00ZTM5LTgy NzUtMWM2ZDc3YzNlZWY4LzAvMzIzNDMwMzMzYTM5MzUzMDMwM2EzYTJmMzMzMjJk MzMzNjIwM2QzZTIwMzkzNjM1Mzcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkA5UAMA0GCSqGSIb3DQEB CwUAA4IBAQB2PSNkXC982lo7OAR3lsH+np750dK/gs2UeSXdtd6Y5NnCB2N0d6ZF JxM/fCquPdAuEMgHoAv8U38ZfB6aBRcbzGcwZYSMzFt1r5UF+zthfygny3Rl+xXz QqbFSIueSWJ3ctvSv7/dXjawD942MC1SAJGYvhXmnVfhv7ENgVvcnfajTaOOpTm7 bHv2hx2LBKSCI82ujMT/Kr+CxJkFZcuRmONJYJo/amqc4A+PI5cMxPOeU9QGB508 ze6xXcr4Xu/My6viXHdJpSMsAtX7qMDTZJlJBgzBE5cGUO7GruNrum/FttF3Svns ASNA9Wt1RuiWr/CIzfSTGwjGajI3haYN -----END CERTIFICATE-----Generated at Tue May 12 23:07:04 2026 by rpki-client