$ rpki-client -vvf rpki-rsync.idnic.net/repo/d2502205-5c54-47db-ae6f-9d48e183241c/0/323430343a643563303a3a2f33322d3438203d3e20313338383534.roa File: 323430343a643563303a3a2f33322d3438203d3e20313338383534.roa (raw, json) Hash identifier: Rh9qnUB02qhjNfXj2g1O5tEu9u7bYMmnyx0Vs0JNy30= Subject key identifier: 66:AE:33:A6:B6:17:4B:93:34:19:9A:61:5E:E6:9D:33:FA:9D:27:FD Certificate issuer: /CN=00841DBDE5F6CEBF8C94FDEE227771946E2152CF Certificate serial: 1568404B3E0E6ACD5B0D0830BA6952691E764AE0 Authority key identifier: 00:84:1D:BD:E5:F6:CE:BF:8C:94:FD:EE:22:77:71:94:6E:21:52:CF Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/00841DBDE5F6CEBF8C94FDEE227771946E2152CF.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/d2502205-5c54-47db-ae6f-9d48e183241c/0/323430343a643563303a3a2f33322d3438203d3e20313338383534.roa Signing time: Sun 03 May 2026 03:09:10 +0000 ROA not before: Sun 03 May 2026 03:04:10 +0000 ROA not after: Sun 02 May 2027 03:09:10 +0000 asID: 138854 IP address blocks: 2404:d5c0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/d2502205-5c54-47db-ae6f-9d48e183241c/0/00841DBDE5F6CEBF8C94FDEE227771946E2152CF.crl rsync://rpki-rsync.idnic.net/repo/d2502205-5c54-47db-ae6f-9d48e183241c/0/00841DBDE5F6CEBF8C94FDEE227771946E2152CF.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/00841DBDE5F6CEBF8C94FDEE227771946E2152CF.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 17:43:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:68:40:4b:3e:0e:6a:cd:5b:0d:08:30:ba:69:52:69:1e:76:4a:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=00841DBDE5F6CEBF8C94FDEE227771946E2152CF Validity Not Before: May 3 03:04:10 2026 GMT Not After : May 2 03:09:10 2027 GMT Subject: CN=66AE33A6B6174B9334199A615EE69D33FA9D27FD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:86:24:5a:8e:98:e2:11:bb:15:40:0c:e4:77:ab: 73:67:f4:46:71:c8:17:f7:32:66:39:51:70:1d:a1: 4c:ba:2a:33:2f:7d:1c:e8:57:0f:96:a2:63:0b:91: 50:bb:6a:07:ec:bd:e4:44:c8:ec:b5:43:0b:97:c4: 05:80:ce:22:e0:4f:f5:93:44:f3:2d:03:17:f6:c2: 3c:e5:81:12:02:81:e4:1d:fd:88:14:58:e3:92:59: 44:36:18:77:c0:88:83:40:06:14:63:7c:33:95:cc: 69:46:2a:33:d2:bb:5e:95:69:26:a0:42:01:a2:90: 24:4c:b9:3b:b3:26:fe:03:34:94:68:73:00:7a:8b: e5:8a:80:1c:8b:7f:8b:59:25:85:54:e2:2d:03:0f: a5:f7:96:45:29:fc:c0:ee:14:13:ac:7a:cc:09:9e: 40:22:42:a8:ff:47:88:82:e7:b1:e7:bc:c3:2c:67: a2:22:1f:9d:d0:86:2f:a5:f9:da:dd:13:bc:ea:95: 7d:68:16:20:2a:6f:64:59:d0:e4:a6:5e:7d:8b:a8: 4a:fb:2c:bb:85:bc:ed:f8:3a:b3:86:35:ea:29:4b: 0f:f4:ff:13:84:cd:24:da:72:81:4e:a5:43:f3:aa: 96:f0:dd:ba:b2:ef:73:2e:30:29:4e:78:fc:97:44: 32:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:AE:33:A6:B6:17:4B:93:34:19:9A:61:5E:E6:9D:33:FA:9D:27:FD X509v3 Authority Key Identifier: keyid:00:84:1D:BD:E5:F6:CE:BF:8C:94:FD:EE:22:77:71:94:6E:21:52:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/d2502205-5c54-47db-ae6f-9d48e183241c/0/00841DBDE5F6CEBF8C94FDEE227771946E2152CF.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/00841DBDE5F6CEBF8C94FDEE227771946E2152CF.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/d2502205-5c54-47db-ae6f-9d48e183241c/0/323430343a643563303a3a2f33322d3438203d3e20313338383534.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:d5c0::/32 Signature Algorithm: sha256WithRSAEncryption 13:27:36:1e:ff:61:58:81:a0:ad:be:30:e0:ab:71:a2:c1:9d: ea:ad:d5:c4:fa:5b:66:e9:f1:08:87:83:be:70:48:d1:59:54: ce:49:9e:fe:9f:e1:bd:2b:42:ac:fc:2a:cd:25:e0:4d:f3:47: db:70:be:a6:1b:51:86:41:e4:b1:d5:43:b3:60:0f:01:de:69: 4d:f2:d8:72:9a:56:08:da:3b:46:ba:d1:29:30:d4:94:73:79: c0:33:cb:f1:d4:3e:4e:23:c0:e9:4a:a1:8e:ac:8a:56:96:bd: 27:71:6f:2b:52:27:bc:86:c4:e5:e5:b8:54:d8:ed:0c:83:09: 10:31:9a:3e:bb:5b:f2:97:58:f9:d1:29:f2:08:74:89:f8:e7: 12:9c:08:49:30:c9:2d:f9:47:29:39:c0:03:16:98:85:8d:34: 59:8a:85:c5:30:64:bc:68:29:77:c2:e0:f2:4b:11:f0:26:ab: 12:01:d9:bb:d5:0e:9a:27:57:c0:3f:14:3c:64:5e:09:ea:96: d0:0f:7f:c1:75:0c:af:36:77:14:5d:19:47:2f:bb:92:02:c9: cb:11:2b:e2:b1:63:8e:e6:06:44:5f:c8:45:40:c0:88:31:f9: 60:85:73:38:9c:00:2e:23:21:16:f5:ac:7d:5b:ef:09:47:69: de:03:98:07 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUFWhASz4Oas1bDQgwumlSaR52SuAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDA4NDFEQkRFNUY2Q0VCRjhDOTRGREVFMjI3NzcxOTQ2 RTIxNTJDRjAeFw0yNjA1MDMwMzA0MTBaFw0yNzA1MDIwMzA5MTBaMDMxMTAvBgNV BAMTKDY2QUUzM0E2QjYxNzRCOTMzNDE5OUE2MTVFRTY5RDMzRkE5RDI3RkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCGJFqOmOIRuxVADOR3q3Nn9EZx yBf3MmY5UXAdoUy6KjMvfRzoVw+WomMLkVC7agfsveREyOy1QwuXxAWAziLgT/WT RPMtAxf2wjzlgRICgeQd/YgUWOOSWUQ2GHfAiINABhRjfDOVzGlGKjPSu16VaSag QgGikCRMuTuzJv4DNJRocwB6i+WKgByLf4tZJYVU4i0DD6X3lkUp/MDuFBOseswJ nkAiQqj/R4iC57HnvMMsZ6IiH53Qhi+l+drdE7zqlX1oFiAqb2RZ0OSmXn2LqEr7 LLuFvO34OrOGNeopSw/0/xOEzSTacoFOpUPzqpbw3bqy73MuMClOePyXRDKfAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUZq4zprYXS5M0GZphXuadM/qdJ/0wHwYDVR0j BBgwFoAUAIQdveX2zr+MlP3uIndxlG4hUs8wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZDI1MDIyMDUtNWM1NC00N2RiLWFlNmYtOWQ0OGUxODMyNDFjLzAvMDA4NDFEQkRF NUY2Q0VCRjhDOTRGREVFMjI3NzcxOTQ2RTIxNTJDRi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8wMDg0MURCREU1RjZDRUJGOEM5NEZERUUyMjc3NzE5NDZFMjE1 MkNGLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2QyNTAyMjA1LTVjNTQtNDdkYi1h ZTZmLTlkNDhlMTgzMjQxYy8wLzMyMzQzMDM0M2E2NDM1NjMzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMxMzMzODM4MzUzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQE1cAwDQYJKoZI hvcNAQELBQADggEBABMnNh7/YViBoK2+MOCrcaLBneqt1cT6W2bp8QiHg75wSNFZ VM5Jnv6f4b0rQqz8Ks0l4E3zR9twvqYbUYZB5LHVQ7NgDwHeaU3y2HKaVgjaO0a6 0Skw1JRzecAzy/HUPk4jwOlKoY6silaWvSdxbytSJ7yGxOXluFTY7QyDCRAxmj67 W/KXWPnRKfIIdIn45xKcCEkwyS35Ryk5wAMWmIWNNFmKhcUwZLxoKXfC4PJLEfAm qxIB2bvVDponV8A/FDxkXgnqltAPf8F1DK82dxRdGUcvu5ICycsRK+KxY47mBkRf yEVAwIgx+WCFczicAC4jIRb1rH1b7wlHad4DmAc= -----END CERTIFICATE-----Generated at Wed May 13 10:32:51 2026 by rpki-client