$ rpki-client -vvf rpki-rsync.idnic.net/repo/ccf1706b-6c17-4786-abd9-47a3844da8f8/0/323430353a386363303a3a2f33322d3332203d3e20313339343530.roa File: 323430353a386363303a3a2f33322d3332203d3e20313339343530.roa (raw, json) Hash identifier: rJ/og/iKUK3xac6RdgdlO70UvsZ6axJQZfH2pg1L5Gs= Subject key identifier: D7:3C:A8:50:38:4A:C9:77:AE:BD:9D:EA:A6:F6:51:26:EF:E1:D8:E5 Certificate issuer: /CN=F1A3DAB9001212D9FD6F8463049F312D727BFF2C Certificate serial: 6FA22E2770D6F882E5BD8EB65FF3DE389E16A1E2 Authority key identifier: F1:A3:DA:B9:00:12:12:D9:FD:6F:84:63:04:9F:31:2D:72:7B:FF:2C Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F1A3DAB9001212D9FD6F8463049F312D727BFF2C.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/ccf1706b-6c17-4786-abd9-47a3844da8f8/0/323430353a386363303a3a2f33322d3332203d3e20313339343530.roa Signing time: Sun 03 May 2026 03:07:26 +0000 ROA not before: Sun 03 May 2026 03:02:26 +0000 ROA not after: Sun 02 May 2027 03:07:26 +0000 asID: 139450 IP address blocks: 2405:8cc0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/ccf1706b-6c17-4786-abd9-47a3844da8f8/0/F1A3DAB9001212D9FD6F8463049F312D727BFF2C.crl rsync://rpki-rsync.idnic.net/repo/ccf1706b-6c17-4786-abd9-47a3844da8f8/0/F1A3DAB9001212D9FD6F8463049F312D727BFF2C.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F1A3DAB9001212D9FD6F8463049F312D727BFF2C.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 21:13:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:a2:2e:27:70:d6:f8:82:e5:bd:8e:b6:5f:f3:de:38:9e:16:a1:e2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F1A3DAB9001212D9FD6F8463049F312D727BFF2C Validity Not Before: May 3 03:02:26 2026 GMT Not After : May 2 03:07:26 2027 GMT Subject: CN=D73CA850384AC977AEBD9DEAA6F65126EFE1D8E5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:85:d0:33:22:f1:55:07:6c:81:5b:65:53:95: 95:ca:8e:d6:7e:1d:fc:55:57:db:3b:42:42:fa:b0: e7:78:04:77:27:fc:5f:06:59:4a:16:32:17:cc:cb: e7:60:fd:fa:b7:37:75:a8:ca:09:d2:7b:ee:9c:21: 9f:d9:49:80:45:7e:35:05:60:85:e7:cd:78:17:36: 31:96:b9:b1:87:c0:59:19:b7:c8:bd:7d:82:04:af: dc:a2:e6:b8:9a:0a:1b:51:7d:94:ba:ea:1c:84:17: 4f:ca:a8:82:b8:ae:14:c4:4f:2e:b1:45:df:b0:2e: 3d:0a:18:b3:b8:ab:16:ee:f4:72:37:10:49:cb:35: db:e9:8c:ff:b6:03:d6:4b:ef:a9:26:f1:5c:91:6c: 64:8e:7c:fb:95:b6:cb:c1:92:2b:d8:b8:f2:cf:75: 70:d8:09:95:e8:a1:b6:04:5f:13:db:0e:ea:8c:81: 41:22:5d:08:6e:44:1a:84:60:1b:a3:13:65:11:6d: dd:51:26:c5:2c:a7:12:51:ce:7c:94:d9:48:e3:da: 5f:cf:48:0d:5d:7b:25:10:52:f5:b0:f2:4c:bc:e2: 53:e9:77:d2:88:00:cf:1f:d3:91:f6:e3:1e:2b:4f: 54:bc:cc:7b:20:05:c1:fc:71:e4:55:f2:72:bd:31: 14:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:3C:A8:50:38:4A:C9:77:AE:BD:9D:EA:A6:F6:51:26:EF:E1:D8:E5 X509v3 Authority Key Identifier: keyid:F1:A3:DA:B9:00:12:12:D9:FD:6F:84:63:04:9F:31:2D:72:7B:FF:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/ccf1706b-6c17-4786-abd9-47a3844da8f8/0/F1A3DAB9001212D9FD6F8463049F312D727BFF2C.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F1A3DAB9001212D9FD6F8463049F312D727BFF2C.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/ccf1706b-6c17-4786-abd9-47a3844da8f8/0/323430353a386363303a3a2f33322d3332203d3e20313339343530.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:8cc0::/32 Signature Algorithm: sha256WithRSAEncryption 92:94:fe:47:24:77:15:5d:92:4c:50:c4:bf:b9:d4:87:a9:33: 9d:f4:69:e3:e8:3f:9f:df:84:32:a8:30:41:60:d9:c9:2d:0d: 35:3f:c1:b9:b9:03:f3:0e:ff:09:5b:07:87:80:c9:56:15:0a: 5d:04:2e:f2:58:16:96:30:63:72:19:9f:d7:c4:6b:de:6c:1e: 6f:0f:47:67:f0:84:6a:5c:56:4c:c6:fc:ed:03:a7:43:c6:54: 08:9c:d7:c1:2b:90:5f:b6:d3:ed:65:bc:b1:d5:2d:5b:5f:0e: 36:65:cd:31:f3:11:4e:be:78:89:6a:1d:64:00:b4:4d:1f:8a: 0c:66:9f:5c:b4:bf:f2:06:82:30:58:bf:a0:70:d9:ea:55:e0: 7f:61:31:56:94:3f:bf:8c:98:f0:bb:b0:32:e9:76:87:ea:e9: 7f:11:92:88:c9:4b:b0:e0:a4:13:a2:1d:ed:68:04:60:91:06: 0b:0f:45:ee:ea:22:11:4c:12:a4:c2:a4:f8:ef:d2:7c:c1:5d: ce:5a:ef:91:4f:2f:95:0e:ab:68:67:38:04:d8:a5:e3:65:3d: ad:dd:2e:73:77:fb:4d:1a:77:96:bf:42:d7:b1:92:de:a3:55: 77:cc:e5:64:c3:69:64:bf:b6:a9:92:09:13:09:1e:8e:4a:ed: 3c:61:49:a5 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUb6IuJ3DW+ILlvY62X/PeOJ4WoeIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjFBM0RBQjkwMDEyMTJEOUZENkY4NDYzMDQ5RjMxMkQ3 MjdCRkYyQzAeFw0yNjA1MDMwMzAyMjZaFw0yNzA1MDIwMzA3MjZaMDMxMTAvBgNV BAMTKEQ3M0NBODUwMzg0QUM5NzdBRUJEOURFQUE2RjY1MTI2RUZFMUQ4RTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/hdAzIvFVB2yBW2VTlZXKjtZ+ HfxVV9s7QkL6sOd4BHcn/F8GWUoWMhfMy+dg/fq3N3WoygnSe+6cIZ/ZSYBFfjUF YIXnzXgXNjGWubGHwFkZt8i9fYIEr9yi5riaChtRfZS66hyEF0/KqIK4rhTETy6x Rd+wLj0KGLO4qxbu9HI3EEnLNdvpjP+2A9ZL76km8VyRbGSOfPuVtsvBkivYuPLP dXDYCZXoobYEXxPbDuqMgUEiXQhuRBqEYBujE2URbd1RJsUspxJRznyU2Ujj2l/P SA1deyUQUvWw8ky84lPpd9KIAM8f05H24x4rT1S8zHsgBcH8ceRV8nK9MRQ1AgMB AAGjggIzMIICLzAdBgNVHQ4EFgQU1zyoUDhKyXeuvZ3qpvZRJu/h2OUwHwYDVR0j BBgwFoAU8aPauQASEtn9b4RjBJ8xLXJ7/ywwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v Y2NmMTcwNmItNmMxNy00Nzg2LWFiZDktNDdhMzg0NGRhOGY4LzAvRjFBM0RBQjkw MDEyMTJEOUZENkY4NDYzMDQ5RjMxMkQ3MjdCRkYyQy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9GMUEzREFCOTAwMTIxMkQ5RkQ2Rjg0NjMwNDlGMzEyRDcyN0JG RjJDLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2NjZjE3MDZiLTZjMTctNDc4Ni1h YmQ5LTQ3YTM4NDRkYThmOC8wLzMyMzQzMDM1M2EzODYzNjMzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzMzOTM0MzUzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQFjMAwDQYJKoZI hvcNAQELBQADggEBAJKU/kckdxVdkkxQxL+51IepM530aePoP5/fhDKoMEFg2ckt DTU/wbm5A/MO/wlbB4eAyVYVCl0ELvJYFpYwY3IZn9fEa95sHm8PR2fwhGpcVkzG /O0Dp0PGVAic18ErkF+20+1lvLHVLVtfDjZlzTHzEU6+eIlqHWQAtE0figxmn1y0 v/IGgjBYv6Bw2epV4H9hMVaUP7+MmPC7sDLpdofq6X8RkojJS7DgpBOiHe1oBGCR BgsPRe7qIhFMEqTCpPjv0nzBXc5a75FPL5UOq2hnOATYpeNlPa3dLnN3+00ad5a/ Qtexkt6jVXfM5WTDaWS/tqmSCRMJHo5K7TxhSaU= -----END CERTIFICATE-----Generated at Wed May 13 14:03:52 2026 by rpki-client