$ rpki-client -vvf rpki-rsync.idnic.net/repo/d231e6b1-1841-476d-b46b-b44b9cb968b0/0/323430323a316134303a3a2f33322d3332203d3e20313336383639.roa File: 323430323a316134303a3a2f33322d3332203d3e20313336383639.roa (raw, json) Hash identifier: nb8z2N9rnH96t5B0H624NhPlR7I0KYPMhvCR0O/fhs4= Subject key identifier: 64:05:03:22:AB:61:D0:6C:A0:B4:65:AB:76:29:23:7F:D1:27:89:7F Certificate issuer: /CN=D626CC25972BF9948C6B3BDE4E354C71F2570880 Certificate serial: 57153C5D2C79F25E0D2EC21CAA9AD7E96151934D Authority key identifier: D6:26:CC:25:97:2B:F9:94:8C:6B:3B:DE:4E:35:4C:71:F2:57:08:80 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D626CC25972BF9948C6B3BDE4E354C71F2570880.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/d231e6b1-1841-476d-b46b-b44b9cb968b0/0/323430323a316134303a3a2f33322d3332203d3e20313336383639.roa Signing time: Sun 03 May 2026 03:09:08 +0000 ROA not before: Sun 03 May 2026 03:04:08 +0000 ROA not after: Sun 02 May 2027 03:09:08 +0000 asID: 136869 IP address blocks: 2402:1a40::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/d231e6b1-1841-476d-b46b-b44b9cb968b0/0/D626CC25972BF9948C6B3BDE4E354C71F2570880.crl rsync://rpki-rsync.idnic.net/repo/d231e6b1-1841-476d-b46b-b44b9cb968b0/0/D626CC25972BF9948C6B3BDE4E354C71F2570880.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D626CC25972BF9948C6B3BDE4E354C71F2570880.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 00:50:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:15:3c:5d:2c:79:f2:5e:0d:2e:c2:1c:aa:9a:d7:e9:61:51:93:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D626CC25972BF9948C6B3BDE4E354C71F2570880 Validity Not Before: May 3 03:04:08 2026 GMT Not After : May 2 03:09:08 2027 GMT Subject: CN=64050322AB61D06CA0B465AB7629237FD127897F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:c9:3e:44:7c:fb:e7:62:fa:93:9c:cc:87:bc: 96:6b:7d:e8:ba:95:14:26:60:29:60:d2:fa:c7:c2: 51:a2:e3:0a:17:f8:60:ea:c1:a3:2c:f7:6d:31:31: ad:3e:39:8d:18:ad:10:51:e0:26:d8:d1:49:bb:02: aa:05:b4:0c:27:fa:34:21:d2:e4:5a:1b:3e:f2:59: 41:21:fe:b6:44:41:96:3d:b6:37:7d:d9:7b:27:20: d2:08:51:81:20:e5:37:f5:e2:d5:f4:4b:bc:ea:05: ae:b7:fa:6f:60:15:81:e6:3e:12:b2:4a:96:89:e6: 48:02:27:0a:a5:71:8c:35:89:86:ee:e0:60:0f:4d: 22:4d:f0:fc:29:7a:92:17:d2:23:17:12:f3:d4:2c: 66:3e:76:15:6f:c0:fd:f7:86:67:0f:70:4b:ce:40: 5e:58:1a:29:77:f9:82:25:42:ad:c1:fe:1a:46:3e: 32:2f:68:e9:ef:ff:ab:e2:3b:e0:1a:70:d9:63:db: 2c:01:b0:3e:e7:b7:02:df:65:40:ee:c2:55:73:3c: 5c:f8:1a:c1:e8:fa:56:09:21:c8:f4:38:c8:7b:8a: 99:11:50:f0:0a:19:cd:7e:be:19:d3:8d:0a:f3:65: 16:59:02:0a:1b:75:ad:a6:19:2c:40:bc:62:41:4c: d2:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:05:03:22:AB:61:D0:6C:A0:B4:65:AB:76:29:23:7F:D1:27:89:7F X509v3 Authority Key Identifier: keyid:D6:26:CC:25:97:2B:F9:94:8C:6B:3B:DE:4E:35:4C:71:F2:57:08:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/d231e6b1-1841-476d-b46b-b44b9cb968b0/0/D626CC25972BF9948C6B3BDE4E354C71F2570880.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D626CC25972BF9948C6B3BDE4E354C71F2570880.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/d231e6b1-1841-476d-b46b-b44b9cb968b0/0/323430323a316134303a3a2f33322d3332203d3e20313336383639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:1a40::/32 Signature Algorithm: sha256WithRSAEncryption 87:cc:0f:39:b2:8f:38:81:c7:8e:3a:70:71:fd:db:90:5e:8f: be:e4:f1:60:0e:af:3e:80:e9:f6:e4:bf:1c:bc:5e:13:69:59: 29:a8:14:7a:35:f8:0f:ee:90:fc:3e:e4:03:cd:06:ed:af:81: 2f:e6:11:d7:dd:ff:2e:41:0d:72:82:31:d7:a3:47:d0:d3:fe: 1a:75:8f:61:4a:ae:34:f1:b4:23:b1:53:bc:5d:f9:5b:b9:58: 36:b8:ee:34:a4:cb:b3:33:9c:ae:22:4f:a8:50:78:28:00:a7: 26:1c:c6:a3:fe:88:5f:de:65:50:20:f2:e0:f3:76:2c:75:9e: 16:35:f7:63:41:51:54:31:52:6f:f2:f5:4c:39:eb:80:4d:31: 4d:07:4f:cc:58:ad:cd:e4:38:bd:ef:3e:fa:6e:f4:e3:9a:bc: 54:ca:a2:31:08:77:e2:4e:6a:59:27:25:2d:04:e7:c6:5e:13: 53:5a:a9:5b:76:ce:e8:ba:6a:4c:7d:b4:1b:ac:b0:0f:e5:49: 9a:58:97:ed:47:ef:8d:70:0a:44:22:d7:0f:01:b6:c3:84:4f: 6e:cd:d3:6f:24:cd:4b:46:7c:93:8a:0a:43:56:60:15:47:36: 5a:5f:f9:c5:07:80:52:45:d9:80:27:a4:df:b0:d2:ee:ba:f3: 2b:99:69:2b -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUVxU8XSx58l4NLsIcqprX6WFRk00wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDYyNkNDMjU5NzJCRjk5NDhDNkIzQkRFNEUzNTRDNzFG MjU3MDg4MDAeFw0yNjA1MDMwMzA0MDhaFw0yNzA1MDIwMzA5MDhaMDMxMTAvBgNV BAMTKDY0MDUwMzIyQUI2MUQwNkNBMEI0NjVBQjc2MjkyMzdGRDEyNzg5N0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCkyT5EfPvnYvqTnMyHvJZrfei6 lRQmYClg0vrHwlGi4woX+GDqwaMs920xMa0+OY0YrRBR4CbY0Um7AqoFtAwn+jQh 0uRaGz7yWUEh/rZEQZY9tjd92XsnINIIUYEg5Tf14tX0S7zqBa63+m9gFYHmPhKy SpaJ5kgCJwqlcYw1iYbu4GAPTSJN8PwpepIX0iMXEvPULGY+dhVvwP33hmcPcEvO QF5YGil3+YIlQq3B/hpGPjIvaOnv/6viO+AacNlj2ywBsD7ntwLfZUDuwlVzPFz4 GsHo+lYJIcj0OMh7ipkRUPAKGc1+vhnTjQrzZRZZAgobda2mGSxAvGJBTNLfAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUZAUDIqth0GygtGWrdikjf9EniX8wHwYDVR0j BBgwFoAU1ibMJZcr+ZSMazveTjVMcfJXCIAwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZDIzMWU2YjEtMTg0MS00NzZkLWI0NmItYjQ0YjljYjk2OGIwLzAvRDYyNkNDMjU5 NzJCRjk5NDhDNkIzQkRFNEUzNTRDNzFGMjU3MDg4MC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9ENjI2Q0MyNTk3MkJGOTk0OEM2QjNCREU0RTM1NEM3MUYyNTcw ODgwLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2QyMzFlNmIxLTE4NDEtNDc2ZC1i NDZiLWI0NGI5Y2I5NjhiMC8wLzMyMzQzMDMyM2EzMTYxMzQzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzMzNjM4MzYzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQCGkAwDQYJKoZI hvcNAQELBQADggEBAIfMDzmyjziBx446cHH925Bej77k8WAOrz6A6fbkvxy8XhNp WSmoFHo1+A/ukPw+5APNBu2vgS/mEdfd/y5BDXKCMdejR9DT/hp1j2FKrjTxtCOx U7xd+Vu5WDa47jSky7MznK4iT6hQeCgApyYcxqP+iF/eZVAg8uDzdix1nhY192NB UVQxUm/y9Uw564BNMU0HT8xYrc3kOL3vPvpu9OOavFTKojEId+JOalknJS0E58Ze E1NaqVt2zui6akx9tBussA/lSZpYl+1H741wCkQi1w8BtsOET27N028kzUtGfJOK CkNWYBVHNlpf+cUHgFJF2YAnpN+w0u668yuZaSs= -----END CERTIFICATE-----Generated at Wed May 13 13:08:18 2026 by rpki-client