$ rpki-client -vvf rpki-rsync.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/323430313a313063303a3a2f33322d3332203d3e20313331373137.roa File: 323430313a313063303a3a2f33322d3332203d3e20313331373137.roa (raw, json) Hash identifier: J+BYXWntjVPciAkV8uAI34vToZOhTHZAVg1OfJSHksA= Subject key identifier: 1B:11:1F:89:DF:08:FC:74:72:B8:1E:48:28:7C:50:47:F1:52:50:D6 Certificate issuer: /CN=CB0A606FD0642E68B5212AE751953E0B9A92959F Certificate serial: 310630A91AB9C7FD688D929CDCD857C9EAB06222 Authority key identifier: CB:0A:60:6F:D0:64:2E:68:B5:21:2A:E7:51:95:3E:0B:9A:92:95:9F Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CB0A606FD0642E68B5212AE751953E0B9A92959F.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/323430313a313063303a3a2f33322d3332203d3e20313331373137.roa Signing time: Sun 03 May 2026 03:08:07 +0000 ROA not before: Sun 03 May 2026 03:03:07 +0000 ROA not after: Sun 02 May 2027 03:08:07 +0000 asID: 131717 IP address blocks: 2401:10c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/CB0A606FD0642E68B5212AE751953E0B9A92959F.crl rsync://rpki-rsync.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/CB0A606FD0642E68B5212AE751953E0B9A92959F.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CB0A606FD0642E68B5212AE751953E0B9A92959F.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 01:20:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:06:30:a9:1a:b9:c7:fd:68:8d:92:9c:dc:d8:57:c9:ea:b0:62:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CB0A606FD0642E68B5212AE751953E0B9A92959F Validity Not Before: May 3 03:03:07 2026 GMT Not After : May 2 03:08:07 2027 GMT Subject: CN=1B111F89DF08FC7472B81E48287C5047F15250D6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:47:fb:8c:86:03:c4:3c:28:57:81:d9:57:0e: 93:44:f1:53:27:6b:ab:13:7e:0e:0f:5f:63:cd:f8: bf:25:48:ca:54:23:d0:a3:25:62:40:2e:61:f1:b8: a4:65:da:86:ca:2c:88:8d:ce:b8:71:bb:42:c7:b1: ad:bf:d5:de:d0:75:51:09:32:5b:8d:0e:15:10:a4: 31:72:bc:77:6d:aa:cf:b6:9a:df:81:b1:f9:91:54: 83:6f:e5:4c:31:c6:58:92:c1:fe:ce:68:82:7f:cc: d4:79:6b:d3:25:e6:75:e8:10:94:0f:8d:57:4e:c7: 4e:4b:f1:6b:9c:f6:8f:70:23:99:4a:7a:aa:63:1a: 94:df:a1:8b:94:c7:d8:90:15:32:f8:b4:75:b8:d8: 18:6e:ce:8f:ef:07:8e:20:69:1c:4d:3a:97:9b:b8: c8:66:66:66:66:11:6e:d4:28:69:5c:08:fb:8f:14: e2:63:1a:4c:a4:fe:34:70:31:4c:86:9e:79:60:7a: 8e:4d:4b:83:07:de:3c:30:17:5a:8a:f7:9d:bf:de: 7c:9d:20:9a:16:0f:6e:4a:83:05:62:09:93:f5:d1: 94:98:bb:4b:a6:c4:28:ba:af:73:3a:75:1f:f6:20: 9d:8e:59:78:93:fb:af:42:32:c6:85:a8:18:8b:93: c1:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:11:1F:89:DF:08:FC:74:72:B8:1E:48:28:7C:50:47:F1:52:50:D6 X509v3 Authority Key Identifier: keyid:CB:0A:60:6F:D0:64:2E:68:B5:21:2A:E7:51:95:3E:0B:9A:92:95:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/CB0A606FD0642E68B5212AE751953E0B9A92959F.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CB0A606FD0642E68B5212AE751953E0B9A92959F.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/323430313a313063303a3a2f33322d3332203d3e20313331373137.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:10c0::/32 Signature Algorithm: sha256WithRSAEncryption 9c:12:12:b2:c5:91:e3:95:32:ff:19:1e:4a:1a:bc:b1:b0:53: fe:17:d9:54:99:5d:4e:ff:76:a4:9a:e1:e3:72:d3:6e:41:67: ac:13:73:99:61:0f:be:ec:f6:ff:24:aa:97:6d:92:1c:4b:90: be:82:3e:69:99:86:92:41:10:bf:0f:6a:65:e2:6c:29:8b:04: cf:14:39:7c:e7:d4:fb:8b:2d:0f:c0:b4:85:3b:07:d4:07:50: b0:4f:7d:42:f4:70:71:48:5c:a7:f0:79:be:5b:da:e6:08:0d: cb:64:47:01:66:af:c3:83:7d:3a:1a:d2:c6:60:c5:7c:e5:8e: e7:4a:1d:b3:8d:9a:d6:33:0b:97:e9:d7:59:9e:8e:d5:6a:f0: e7:6c:22:29:7d:b4:f5:a3:5a:8c:6f:f0:d7:ff:1b:86:c1:e6: 80:cd:0f:4e:74:81:9c:92:a5:24:2d:86:01:ca:a3:9c:63:99: f6:12:b1:37:84:fd:26:dd:c2:f5:3f:24:a4:63:44:12:37:b0: 09:ad:84:67:83:22:90:57:a2:c0:ce:e8:4e:4f:97:e1:cb:8b: 7c:e9:0f:ee:3a:76:b4:78:c7:90:13:0f:55:5b:b6:83:d7:4f: 3e:41:be:50:d5:2d:13:17:86:0a:8e:93:63:a8:b6:f9:4e:86: 3d:27:ca:b4 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUMQYwqRq5x/1ojZKc3NhXyeqwYiIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0IwQTYwNkZEMDY0MkU2OEI1MjEyQUU3NTE5NTNFMEI5 QTkyOTU5RjAeFw0yNjA1MDMwMzAzMDdaFw0yNzA1MDIwMzA4MDdaMDMxMTAvBgNV BAMTKDFCMTExRjg5REYwOEZDNzQ3MkI4MUU0ODI4N0M1MDQ3RjE1MjUwRDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtR/uMhgPEPChXgdlXDpNE8VMn a6sTfg4PX2PN+L8lSMpUI9CjJWJALmHxuKRl2obKLIiNzrhxu0LHsa2/1d7QdVEJ MluNDhUQpDFyvHdtqs+2mt+BsfmRVINv5UwxxliSwf7OaIJ/zNR5a9Ml5nXoEJQP jVdOx05L8Wuc9o9wI5lKeqpjGpTfoYuUx9iQFTL4tHW42Bhuzo/vB44gaRxNOpeb uMhmZmZmEW7UKGlcCPuPFOJjGkyk/jRwMUyGnnlgeo5NS4MH3jwwF1qK952/3nyd IJoWD25KgwViCZP10ZSYu0umxCi6r3M6dR/2IJ2OWXiT+69CMsaFqBiLk8E7AgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUGxEfid8I/HRyuB5IKHxQR/FSUNYwHwYDVR0j BBgwFoAUywpgb9BkLmi1ISrnUZU+C5qSlZ8wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZDA3NDcxYTMtZWU1My00OTljLTlmMmQtY2YxNmIxZTRhMzUzLzAvQ0IwQTYwNkZE MDY0MkU2OEI1MjEyQUU3NTE5NTNFMEI5QTkyOTU5Ri5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9DQjBBNjA2RkQwNjQyRTY4QjUyMTJBRTc1MTk1M0UwQjlBOTI5 NTlGLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2QwNzQ3MWEzLWVlNTMtNDk5Yy05 ZjJkLWNmMTZiMWU0YTM1My8wLzMyMzQzMDMxM2EzMTMwNjMzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzMzMTM3MzEzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQBEMAwDQYJKoZI hvcNAQELBQADggEBAJwSErLFkeOVMv8ZHkoavLGwU/4X2VSZXU7/dqSa4eNy025B Z6wTc5lhD77s9v8kqpdtkhxLkL6CPmmZhpJBEL8PamXibCmLBM8UOXzn1PuLLQ/A tIU7B9QHULBPfUL0cHFIXKfweb5b2uYIDctkRwFmr8ODfToa0sZgxXzljudKHbON mtYzC5fp11mejtVq8OdsIil9tPWjWoxv8Nf/G4bB5oDND050gZySpSQthgHKo5xj mfYSsTeE/SbdwvU/JKRjRBI3sAmthGeDIpBXosDO6E5Pl+HLi3zpD+46drR4x5AT D1VbtoPXTz5BvlDVLRMXhgqOk2OotvlOhj0nyrQ= -----END CERTIFICATE-----Generated at Wed May 13 12:01:53 2026 by rpki-client