$ rpki-client -vvf rpki-rsync.idnic.net/repo/caf50383-7d04-47c8-aaeb-f7e766937731/0/323430353a666134303a3a2f33322d3438203d3e20313430333930.roa File: 323430353a666134303a3a2f33322d3438203d3e20313430333930.roa (raw, json) Hash identifier: HUZNs1iD5swAwh/g3qINc50EKHQkckdyfTFIx7Aj1lM= Subject key identifier: 35:C3:D4:37:99:05:C2:6A:03:01:7D:E6:D0:16:76:F1:16:95:49:B6 Certificate issuer: /CN=7F88979F157A73BC13FC5A3D5B9C76CB3A2B3E31 Certificate serial: 15202323BC65A5C82211D412DDBFF0C60CDDA037 Authority key identifier: 7F:88:97:9F:15:7A:73:BC:13:FC:5A:3D:5B:9C:76:CB:3A:2B:3E:31 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/7F88979F157A73BC13FC5A3D5B9C76CB3A2B3E31.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/caf50383-7d04-47c8-aaeb-f7e766937731/0/323430353a666134303a3a2f33322d3438203d3e20313430333930.roa Signing time: Sun 03 May 2026 03:06:52 +0000 ROA not before: Sun 03 May 2026 03:01:52 +0000 ROA not after: Sun 02 May 2027 03:06:52 +0000 asID: 140390 IP address blocks: 2405:fa40::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/caf50383-7d04-47c8-aaeb-f7e766937731/0/7F88979F157A73BC13FC5A3D5B9C76CB3A2B3E31.crl rsync://rpki-rsync.idnic.net/repo/caf50383-7d04-47c8-aaeb-f7e766937731/0/7F88979F157A73BC13FC5A3D5B9C76CB3A2B3E31.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/7F88979F157A73BC13FC5A3D5B9C76CB3A2B3E31.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 21:02:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:20:23:23:bc:65:a5:c8:22:11:d4:12:dd:bf:f0:c6:0c:dd:a0:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7F88979F157A73BC13FC5A3D5B9C76CB3A2B3E31 Validity Not Before: May 3 03:01:52 2026 GMT Not After : May 2 03:06:52 2027 GMT Subject: CN=35C3D4379905C26A03017DE6D01676F1169549B6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:92:2a:2f:5e:e8:2e:8d:a3:a0:a6:77:a0:8e: d4:63:89:c3:fe:76:fc:8e:19:81:31:55:43:9a:08: 5f:46:25:ab:fa:d8:77:31:38:43:4e:89:be:ca:69: 76:47:e3:73:cf:21:9d:eb:49:70:e9:96:38:fc:8d: bb:b9:f8:74:9c:9c:ff:1d:da:b6:fb:26:6f:8d:b6: e4:d7:78:df:53:42:e4:cd:9e:1f:53:4c:1c:23:63: 41:4e:fa:8e:b9:b3:f0:44:ce:2f:b4:0e:82:08:8e: 41:69:dc:8d:04:db:42:dd:9d:cf:d8:30:ec:4a:e8: 21:37:b8:7c:20:5d:6b:f4:6b:72:eb:21:61:0f:d2: 4e:4d:34:7f:0d:f3:95:4f:19:73:4f:6d:50:0b:96: bd:b2:41:65:54:77:1a:e5:37:c9:1f:e9:fd:9e:3b: 0d:12:62:ee:f6:85:36:c0:45:96:4f:99:be:eb:96: 11:dc:fb:41:3d:a5:aa:0a:a1:22:d7:89:bc:ac:65: 1a:d7:68:61:8e:05:56:c9:db:98:6c:ac:7c:68:e4: 9b:29:1a:e0:4b:f0:72:71:4f:c2:06:db:c2:c9:15: c7:67:5d:67:31:79:5f:31:d6:66:46:27:f1:fc:cb: 97:4e:fd:11:73:4c:79:c7:49:ed:41:42:59:2c:f9: 8d:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:C3:D4:37:99:05:C2:6A:03:01:7D:E6:D0:16:76:F1:16:95:49:B6 X509v3 Authority Key Identifier: keyid:7F:88:97:9F:15:7A:73:BC:13:FC:5A:3D:5B:9C:76:CB:3A:2B:3E:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/caf50383-7d04-47c8-aaeb-f7e766937731/0/7F88979F157A73BC13FC5A3D5B9C76CB3A2B3E31.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/7F88979F157A73BC13FC5A3D5B9C76CB3A2B3E31.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/caf50383-7d04-47c8-aaeb-f7e766937731/0/323430353a666134303a3a2f33322d3438203d3e20313430333930.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:fa40::/32 Signature Algorithm: sha256WithRSAEncryption 72:d6:47:68:a1:9b:87:7d:92:fc:d4:f8:14:4f:a6:87:7b:5a: 0b:af:e9:2e:75:b0:fe:8a:d1:3f:05:9e:5c:37:d3:9c:ad:1a: fd:66:06:49:e3:37:b1:b3:01:6c:11:19:4d:6f:fb:e0:99:03: 4a:c9:9e:49:91:cb:69:6e:81:84:bf:83:cd:f0:f5:87:e0:f0: 1c:a8:64:8f:33:e8:62:da:05:13:09:c1:bc:d3:0f:23:36:1a: 4d:3f:25:38:a1:56:a1:d0:24:07:08:36:36:70:83:ac:fd:c0: a8:ca:d6:9b:61:03:b9:19:60:cf:fb:f9:ac:c2:ae:25:ae:0a: 69:e8:53:b7:79:f8:60:bf:25:e3:9d:83:89:0e:a3:35:d7:f4: 3a:76:ab:67:e4:87:e2:7c:1d:c0:9e:ca:eb:f8:3f:11:d5:5f: bd:43:5f:96:d0:cb:a5:63:50:39:40:11:b7:46:f0:a1:1f:17: 80:e4:18:47:45:2e:86:d3:f4:06:6c:ba:2e:b1:10:64:3a:fd: f0:25:2c:19:be:5f:c1:45:77:72:8e:de:f1:ba:a0:77:80:f2: 3f:28:c3:a0:10:b5:f0:19:16:fb:c6:9a:f3:c6:c4:4c:fd:55: 4c:a2:61:d3:d2:0e:b6:45:24:39:ea:12:b3:5c:87:20:e1:9d: d6:60:e6:b6 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUFSAjI7xlpcgiEdQS3b/wxgzdoDcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0Y4ODk3OUYxNTdBNzNCQzEzRkM1QTNENUI5Qzc2Q0Iz QTJCM0UzMTAeFw0yNjA1MDMwMzAxNTJaFw0yNzA1MDIwMzA2NTJaMDMxMTAvBgNV BAMTKDM1QzNENDM3OTkwNUMyNkEwMzAxN0RFNkQwMTY3NkYxMTY5NTQ5QjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0kiovXugujaOgpnegjtRjicP+ dvyOGYExVUOaCF9GJav62HcxOENOib7KaXZH43PPIZ3rSXDpljj8jbu5+HScnP8d 2rb7Jm+NtuTXeN9TQuTNnh9TTBwjY0FO+o65s/BEzi+0DoIIjkFp3I0E20Ldnc/Y MOxK6CE3uHwgXWv0a3LrIWEP0k5NNH8N85VPGXNPbVALlr2yQWVUdxrlN8kf6f2e Ow0SYu72hTbARZZPmb7rlhHc+0E9paoKoSLXibysZRrXaGGOBVbJ25hsrHxo5Jsp GuBL8HJxT8IG28LJFcdnXWcxeV8x1mZGJ/H8y5dO/RFzTHnHSe1BQlks+Y11AgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUNcPUN5kFwmoDAX3m0BZ28RaVSbYwHwYDVR0j BBgwFoAUf4iXnxV6c7wT/Fo9W5x2yzorPjEwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v Y2FmNTAzODMtN2QwNC00N2M4LWFhZWItZjdlNzY2OTM3NzMxLzAvN0Y4ODk3OUYx NTdBNzNCQzEzRkM1QTNENUI5Qzc2Q0IzQTJCM0UzMS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS83Rjg4OTc5RjE1N0E3M0JDMTNGQzVBM0Q1QjlDNzZDQjNBMkIz RTMxLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2NhZjUwMzgzLTdkMDQtNDdjOC1h YWViLWY3ZTc2NjkzNzczMS8wLzMyMzQzMDM1M2E2NjYxMzQzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMxMzQzMDMzMzkzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQF+kAwDQYJKoZI hvcNAQELBQADggEBAHLWR2ihm4d9kvzU+BRPpod7Wguv6S51sP6K0T8Fnlw305yt Gv1mBknjN7GzAWwRGU1v++CZA0rJnkmRy2lugYS/g83w9Yfg8ByoZI8z6GLaBRMJ wbzTDyM2Gk0/JTihVqHQJAcINjZwg6z9wKjK1pthA7kZYM/7+azCriWuCmnoU7d5 +GC/JeOdg4kOozXX9Dp2q2fkh+J8HcCeyuv4PxHVX71DX5bQy6VjUDlAEbdG8KEf F4DkGEdFLobT9AZsui6xEGQ6/fAlLBm+X8FFd3KO3vG6oHeA8j8ow6AQtfAZFvvG mvPGxEz9VUyiYdPSDrZFJDnqErNchyDhndZg5rY= -----END CERTIFICATE-----Generated at Wed May 13 13:42:45 2026 by rpki-client