$ rpki-client -vvf rpki-rsync.idnic.net/repo/ca8b54e6-1015-48eb-9bbd-51c16cd45445/0/323430313a343865303a333030313a3a2f34382d3438203d3e20313439373336.roa File: 323430313a343865303a333030313a3a2f34382d3438203d3e20313439373336.roa (raw, json) Hash identifier: EeoLX1eQr3kbHp2go87fzfWuIm2QGRQurIS8zg4rg8k= Subject key identifier: 38:CC:5D:E8:B4:E5:8B:A3:58:BD:87:B9:6B:73:D8:96:BB:3D:34:64 Certificate issuer: /CN=4E0311031DBA1471A97F3183416162430EA78405 Certificate serial: 719BB4A0D851160CDFB92C2F547D05A7A3ABC5C1 Authority key identifier: 4E:03:11:03:1D:BA:14:71:A9:7F:31:83:41:61:62:43:0E:A7:84:05 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/4E0311031DBA1471A97F3183416162430EA78405.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/ca8b54e6-1015-48eb-9bbd-51c16cd45445/0/323430313a343865303a333030313a3a2f34382d3438203d3e20313439373336.roa Signing time: Sun 03 May 2026 03:06:47 +0000 ROA not before: Sun 03 May 2026 03:01:47 +0000 ROA not after: Sun 02 May 2027 03:06:47 +0000 asID: 149736 IP address blocks: 2401:48e0:3001::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/ca8b54e6-1015-48eb-9bbd-51c16cd45445/0/4E0311031DBA1471A97F3183416162430EA78405.crl rsync://rpki-rsync.idnic.net/repo/ca8b54e6-1015-48eb-9bbd-51c16cd45445/0/4E0311031DBA1471A97F3183416162430EA78405.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/4E0311031DBA1471A97F3183416162430EA78405.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 01:41:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:9b:b4:a0:d8:51:16:0c:df:b9:2c:2f:54:7d:05:a7:a3:ab:c5:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4E0311031DBA1471A97F3183416162430EA78405 Validity Not Before: May 3 03:01:47 2026 GMT Not After : May 2 03:06:47 2027 GMT Subject: CN=38CC5DE8B4E58BA358BD87B96B73D896BB3D3464 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:71:17:8b:44:be:f4:27:af:90:37:bd:d9:e3: c5:bb:d5:9a:8d:8e:12:ba:3e:9e:9a:ef:3c:80:95: 94:2a:a5:f4:7f:8a:23:a2:9a:fe:1d:71:7e:87:dd: 64:7d:ea:36:27:4c:ad:90:d8:77:de:5b:69:4d:e9: 05:93:b4:e1:48:57:38:6a:f2:67:4c:41:3f:4a:08: 88:cc:f4:fe:b1:8a:db:d9:54:79:99:24:ed:52:20: 4a:05:af:01:03:98:a2:c4:bf:7f:05:b8:3a:96:88: 62:9a:38:80:fd:c7:04:64:4e:12:17:20:38:05:e1: 20:b0:4e:48:79:33:3d:d0:ce:79:1a:6a:d4:57:ac: fb:29:49:10:c0:97:50:b5:f9:24:de:3b:94:83:4e: a3:09:10:18:d6:5c:38:0a:76:d8:92:61:bb:5c:cb: a1:aa:3a:9a:ac:5b:02:8b:0e:3d:8c:02:5c:b5:21: af:c3:eb:15:83:66:ba:2d:2e:5d:7c:e1:ef:f2:0b: d7:b8:9f:40:af:1a:13:73:60:2c:fe:09:22:73:5f: 5d:3c:14:18:96:17:e0:72:ad:e8:f9:e4:1c:b6:87: b2:94:38:6c:81:37:bd:38:7e:c8:7a:fd:bc:09:8d: f8:73:7f:6f:7e:8d:8a:31:5b:e3:3b:11:63:49:8e: f1:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:CC:5D:E8:B4:E5:8B:A3:58:BD:87:B9:6B:73:D8:96:BB:3D:34:64 X509v3 Authority Key Identifier: keyid:4E:03:11:03:1D:BA:14:71:A9:7F:31:83:41:61:62:43:0E:A7:84:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/ca8b54e6-1015-48eb-9bbd-51c16cd45445/0/4E0311031DBA1471A97F3183416162430EA78405.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/4E0311031DBA1471A97F3183416162430EA78405.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/ca8b54e6-1015-48eb-9bbd-51c16cd45445/0/323430313a343865303a333030313a3a2f34382d3438203d3e20313439373336.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:48e0:3001::/48 Signature Algorithm: sha256WithRSAEncryption 56:9c:69:d8:0a:53:02:9d:7a:9e:5e:c8:3e:b0:c9:0b:23:2f: 7c:3f:42:43:28:ea:76:d5:0a:85:20:24:20:7f:9d:7c:84:86: b5:bc:6f:f0:c2:d7:e7:c8:ac:7f:01:8e:06:3d:d2:62:c3:09: a4:e9:58:97:a6:1e:b3:4a:af:5f:f3:51:bf:3e:51:52:1f:7a: 94:c3:ce:96:3b:1a:f4:61:08:6e:84:a4:5e:d5:2e:17:2b:75: 4b:ac:d3:3a:4b:32:b4:50:5c:3d:d0:5e:99:f5:dd:1f:c0:93: b0:a7:bd:9b:d4:33:94:e6:06:a7:f5:96:a7:2e:c5:5e:97:2b: 74:85:63:e8:9c:84:2d:0f:70:8f:62:9e:f7:04:4b:11:68:02: 78:17:0b:13:4f:d4:05:4b:cf:62:6e:69:90:07:fe:6e:61:a2: 5b:0c:25:ac:9f:60:1d:39:43:f7:88:f5:48:ec:47:e9:66:cf: cf:75:42:94:fc:5b:06:1e:3b:70:13:3b:bc:77:52:5e:37:42: 5e:ac:9c:af:c0:f2:04:fe:f0:89:03:2e:97:0a:4b:5e:e0:5e: e4:84:bb:1d:f3:f0:c7:45:f6:1e:ce:f2:91:87:dc:d0:18:a6: 89:14:18:e4:49:d8:7c:0c:27:db:4d:bc:db:f9:9d:38:94:f8: 10:d7:94:33 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUcZu0oNhRFgzfuSwvVH0Fp6OrxcEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEUwMzExMDMxREJBMTQ3MUE5N0YzMTgzNDE2MTYyNDMw RUE3ODQwNTAeFw0yNjA1MDMwMzAxNDdaFw0yNzA1MDIwMzA2NDdaMDMxMTAvBgNV BAMTKDM4Q0M1REU4QjRFNThCQTM1OEJEODdCOTZCNzNEODk2QkIzRDM0NjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+cReLRL70J6+QN73Z48W71ZqN jhK6Pp6a7zyAlZQqpfR/iiOimv4dcX6H3WR96jYnTK2Q2HfeW2lN6QWTtOFIVzhq 8mdMQT9KCIjM9P6xitvZVHmZJO1SIEoFrwEDmKLEv38FuDqWiGKaOID9xwRkThIX IDgF4SCwTkh5Mz3QznkaatRXrPspSRDAl1C1+STeO5SDTqMJEBjWXDgKdtiSYbtc y6GqOpqsWwKLDj2MAly1Ia/D6xWDZrotLl184e/yC9e4n0CvGhNzYCz+CSJzX108 FBiWF+Byrej55By2h7KUOGyBN704fsh6/bwJjfhzf29+jYoxW+M7EWNJjvFBAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUOMxd6LTli6NYvYe5a3PYlrs9NGQwHwYDVR0j BBgwFoAUTgMRAx26FHGpfzGDQWFiQw6nhAUwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v Y2E4YjU0ZTYtMTAxNS00OGViLTliYmQtNTFjMTZjZDQ1NDQ1LzAvNEUwMzExMDMx REJBMTQ3MUE5N0YzMTgzNDE2MTYyNDMwRUE3ODQwNS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS80RTAzMTEwMzFEQkExNDcxQTk3RjMxODM0MTYxNjI0MzBFQTc4 NDA1LmNlcjCBrQYIKwYBBQUHAQsEgaAwgZ0wgZoGCCsGAQUFBzALhoGNcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2NhOGI1NGU2LTEwMTUtNDhlYi05 YmJkLTUxYzE2Y2Q0NTQ0NS8wLzMyMzQzMDMxM2EzNDM4NjUzMDNhMzMzMDMwMzEz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTM0MzkzNzMzMzYucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk AUjgMAEwDQYJKoZIhvcNAQELBQADggEBAFacadgKUwKdep5eyD6wyQsjL3w/QkMo 6nbVCoUgJCB/nXyEhrW8b/DC1+fIrH8BjgY90mLDCaTpWJemHrNKr1/zUb8+UVIf epTDzpY7GvRhCG6EpF7VLhcrdUus0zpLMrRQXD3QXpn13R/Ak7CnvZvUM5TmBqf1 lqcuxV6XK3SFY+ichC0PcI9invcESxFoAngXCxNP1AVLz2JuaZAH/m5holsMJayf YB05Q/eI9UjsR+lmz891QpT8WwYeO3ATO7x3Ul43Ql6snK/A8gT+8IkDLpcKS17g XuSEux3z8MdF9h7O8pGH3NAYpokUGORJ2HwMJ9tNvNv5nTiU+BDXlDM= -----END CERTIFICATE-----Generated at Wed May 13 10:20:19 2026 by rpki-client