$ rpki-client -vvf rpki-rsync.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/323430313a313063303a383030303a3a2f33342d3334203d3e20313331373137.roa File: 323430313a313063303a383030303a3a2f33342d3334203d3e20313331373137.roa (raw, json) Hash identifier: zvyBHXFbCbQNnOHxvObPOxxpHvAaypqH5xRId3rVWNo= Subject key identifier: 89:3F:F8:04:C3:04:96:35:6C:85:0E:74:AB:87:9F:40:17:41:BE:E1 Certificate issuer: /CN=CB0A606FD0642E68B5212AE751953E0B9A92959F Certificate serial: 5BFDF4A26712F4639DF3B4F0981F96611DCEC54D Authority key identifier: CB:0A:60:6F:D0:64:2E:68:B5:21:2A:E7:51:95:3E:0B:9A:92:95:9F Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CB0A606FD0642E68B5212AE751953E0B9A92959F.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/323430313a313063303a383030303a3a2f33342d3334203d3e20313331373137.roa Signing time: Sun 03 May 2026 03:08:12 +0000 ROA not before: Sun 03 May 2026 03:03:12 +0000 ROA not after: Sun 02 May 2027 03:08:12 +0000 asID: 131717 IP address blocks: 2401:10c0:8000::/34 maxlen: 34 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/CB0A606FD0642E68B5212AE751953E0B9A92959F.crl rsync://rpki-rsync.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/CB0A606FD0642E68B5212AE751953E0B9A92959F.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CB0A606FD0642E68B5212AE751953E0B9A92959F.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 01:20:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:fd:f4:a2:67:12:f4:63:9d:f3:b4:f0:98:1f:96:61:1d:ce:c5:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CB0A606FD0642E68B5212AE751953E0B9A92959F Validity Not Before: May 3 03:03:12 2026 GMT Not After : May 2 03:08:12 2027 GMT Subject: CN=893FF804C30496356C850E74AB879F401741BEE1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:70:b9:93:98:77:fd:cf:46:38:cf:b2:6c:73: eb:34:46:22:51:c1:88:9d:1a:ff:70:24:85:5e:4d: 43:00:41:d1:7e:31:63:ea:d8:6c:a8:8f:33:ca:79: a2:83:65:10:36:26:ad:32:8d:dc:b3:77:57:cc:07: a6:aa:4e:34:e5:0d:4f:34:70:cb:fc:07:3d:27:a8: c1:ad:48:1b:cf:a3:b6:50:34:46:ec:02:7b:d2:10: c4:63:99:5f:e0:e9:52:70:f6:7b:58:f9:27:37:37: bd:01:3f:e8:53:e9:32:f3:60:8f:5b:04:ea:b5:25: 57:f5:e2:95:64:66:98:79:20:3d:de:21:00:0a:ad: 09:1d:11:0c:bb:72:79:0d:78:1f:09:90:4f:16:44: 19:14:58:06:0b:78:23:58:9a:68:3f:f4:1f:2f:37: 18:3c:6f:ae:c8:04:16:c7:42:10:fa:ec:4c:04:f3: 8c:cd:02:9b:ba:a5:7d:7e:a1:78:4e:6b:60:3e:32: 4e:6f:e9:d6:3d:82:17:df:bd:ed:e6:dd:31:6a:6b: 0c:6d:24:a2:3c:66:1c:6e:6b:9f:a5:08:42:1d:62: 69:c3:48:0c:8a:c7:bc:c2:4b:da:88:f1:4f:84:fa: 8e:35:89:96:4c:c7:bd:da:72:fb:b4:39:73:84:0c: fc:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:3F:F8:04:C3:04:96:35:6C:85:0E:74:AB:87:9F:40:17:41:BE:E1 X509v3 Authority Key Identifier: keyid:CB:0A:60:6F:D0:64:2E:68:B5:21:2A:E7:51:95:3E:0B:9A:92:95:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/CB0A606FD0642E68B5212AE751953E0B9A92959F.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CB0A606FD0642E68B5212AE751953E0B9A92959F.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/323430313a313063303a383030303a3a2f33342d3334203d3e20313331373137.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:10c0:8000::/34 Signature Algorithm: sha256WithRSAEncryption 46:60:56:be:2e:49:2f:8d:e3:d7:53:dd:34:e0:16:14:16:b6: c6:00:13:98:a3:c8:50:0c:5e:4e:9d:01:ac:aa:10:94:7b:2e: 58:95:50:bd:b0:4d:91:a0:30:fb:1c:76:7b:d8:7b:0b:f8:e9: 5a:c3:d5:2f:15:a6:d9:70:1b:bb:f1:e0:cb:97:15:1d:13:ab: bb:94:23:6f:18:0b:0e:b3:83:d6:9b:cd:91:40:1a:df:85:be: 48:df:51:cb:49:77:d0:01:b0:9e:a0:9b:8d:cb:0c:6e:f3:26: 21:b2:1e:21:2a:78:67:96:2c:d3:9a:7b:29:dd:05:10:8c:77: d1:3b:ca:84:f1:be:30:0f:ff:0b:9d:d9:12:9f:f2:cb:8f:6c: c3:ea:c9:95:61:f3:ce:bf:b5:a1:70:06:22:6e:db:79:5b:53: 6b:9b:be:18:60:74:6b:e0:97:ec:a5:7f:4b:9d:2f:9c:cd:74: c2:47:48:50:f2:0b:c2:5f:18:b0:62:9b:19:82:04:45:f1:c3: 09:59:09:65:0b:e9:43:77:15:c2:27:25:9b:0a:82:f9:0b:2e: cc:1d:bd:c6:1f:19:29:79:54:30:1b:af:28:8e:c1:aa:c6:f4: ae:32:88:84:4a:24:91:c7:33:7d:9b:83:61:02:85:34:8c:39: 23:df:70:fc -----BEGIN CERTIFICATE----- MIIFNDCCBBygAwIBAgIUW/30omcS9GOd87TwmB+WYR3OxU0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0IwQTYwNkZEMDY0MkU2OEI1MjEyQUU3NTE5NTNFMEI5 QTkyOTU5RjAeFw0yNjA1MDMwMzAzMTJaFw0yNzA1MDIwMzA4MTJaMDMxMTAvBgNV BAMTKDg5M0ZGODA0QzMwNDk2MzU2Qzg1MEU3NEFCODc5RjQwMTc0MUJFRTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDacLmTmHf9z0Y4z7Jsc+s0RiJR wYidGv9wJIVeTUMAQdF+MWPq2GyojzPKeaKDZRA2Jq0yjdyzd1fMB6aqTjTlDU80 cMv8Bz0nqMGtSBvPo7ZQNEbsAnvSEMRjmV/g6VJw9ntY+Sc3N70BP+hT6TLzYI9b BOq1JVf14pVkZph5ID3eIQAKrQkdEQy7cnkNeB8JkE8WRBkUWAYLeCNYmmg/9B8v Nxg8b67IBBbHQhD67EwE84zNApu6pX1+oXhOa2A+Mk5v6dY9ghffve3m3TFqawxt JKI8Zhxua5+lCEIdYmnDSAyKx7zCS9qI8U+E+o41iZZMx73acvu0OXOEDPzJAgMB AAGjggI+MIICOjAdBgNVHQ4EFgQUiT/4BMMEljVshQ50q4efQBdBvuEwHwYDVR0j BBgwFoAUywpgb9BkLmi1ISrnUZU+C5qSlZ8wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZDA3NDcxYTMtZWU1My00OTljLTlmMmQtY2YxNmIxZTRhMzUzLzAvQ0IwQTYwNkZE MDY0MkU2OEI1MjEyQUU3NTE5NTNFMEI5QTkyOTU5Ri5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9DQjBBNjA2RkQwNjQyRTY4QjUyMTJBRTc1MTk1M0UwQjlBOTI5 NTlGLmNlcjCBrQYIKwYBBQUHAQsEgaAwgZ0wgZoGCCsGAQUFBzALhoGNcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2QwNzQ3MWEzLWVlNTMtNDk5Yy05 ZjJkLWNmMTZiMWU0YTM1My8wLzMyMzQzMDMxM2EzMTMwNjMzMDNhMzgzMDMwMzAz YTNhMmYzMzM0MmQzMzM0MjAzZDNlMjAzMTMzMzEzNzMxMzcucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgYk ARDAgDANBgkqhkiG9w0BAQsFAAOCAQEARmBWvi5JL43j11PdNOAWFBa2xgATmKPI UAxeTp0BrKoQlHsuWJVQvbBNkaAw+xx2e9h7C/jpWsPVLxWm2XAbu/Hgy5cVHROr u5QjbxgLDrOD1pvNkUAa34W+SN9Ry0l30AGwnqCbjcsMbvMmIbIeISp4Z5Ys05p7 Kd0FEIx30TvKhPG+MA//C53ZEp/yy49sw+rJlWHzzr+1oXAGIm7beVtTa5u+GGB0 a+CX7KV/S50vnM10wkdIUPILwl8YsGKbGYIERfHDCVkJZQvpQ3cVwiclmwqC+Qsu zB29xh8ZKXlUMBuvKI7Bqsb0rjKIhEokkcczfZuDYQKFNIw5I99w/A== -----END CERTIFICATE-----Generated at Wed May 13 11:56:19 2026 by rpki-client