$ rpki-client -vvf rpki-rsync.idnic.net/repo/d387e85d-b185-4334-801b-49c8c8b91844/0/323430343a663963303a3a2f33322d3332203d3e20313338383931.roa File: 323430343a663963303a3a2f33322d3332203d3e20313338383931.roa (raw, json) Hash identifier: 0ts/w6oKmrt+r0C8EDap/FK5Uc/o23APxLZIMW88Oo4= Subject key identifier: 89:A5:A0:CD:41:78:26:EA:E4:5C:C2:9B:93:3E:81:2B:6D:40:AE:2F Certificate issuer: /CN=8ABD4558C9F94FFC670A52DB39F0C9B0B8398225 Certificate serial: 4B7813EE633D41FADA6FDAB6B5C5A87BF000A4D9 Authority key identifier: 8A:BD:45:58:C9:F9:4F:FC:67:0A:52:DB:39:F0:C9:B0:B8:39:82:25 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/8ABD4558C9F94FFC670A52DB39F0C9B0B8398225.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/d387e85d-b185-4334-801b-49c8c8b91844/0/323430343a663963303a3a2f33322d3332203d3e20313338383931.roa Signing time: Sun 03 May 2026 03:09:21 +0000 ROA not before: Sun 03 May 2026 03:04:21 +0000 ROA not after: Sun 02 May 2027 03:09:21 +0000 asID: 138891 IP address blocks: 2404:f9c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/d387e85d-b185-4334-801b-49c8c8b91844/0/8ABD4558C9F94FFC670A52DB39F0C9B0B8398225.crl rsync://rpki-rsync.idnic.net/repo/d387e85d-b185-4334-801b-49c8c8b91844/0/8ABD4558C9F94FFC670A52DB39F0C9B0B8398225.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/8ABD4558C9F94FFC670A52DB39F0C9B0B8398225.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 22:37:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:78:13:ee:63:3d:41:fa:da:6f:da:b6:b5:c5:a8:7b:f0:00:a4:d9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8ABD4558C9F94FFC670A52DB39F0C9B0B8398225 Validity Not Before: May 3 03:04:21 2026 GMT Not After : May 2 03:09:21 2027 GMT Subject: CN=89A5A0CD417826EAE45CC29B933E812B6D40AE2F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:20:52:b8:47:81:b3:a2:48:42:5b:68:f4:e1: 7e:58:63:53:c5:53:8f:91:24:5e:80:5a:90:85:c5: 9d:42:ad:80:82:dd:83:8f:e0:f8:81:e1:64:b3:83: 94:d7:49:82:ca:12:e5:1d:ba:0a:90:6a:ae:16:ea: c6:35:65:b1:a8:7e:8b:f9:64:87:79:76:7a:71:5b: ad:73:42:4f:53:56:35:1f:70:69:1f:b3:c0:a1:0e: 0a:fd:42:d1:16:f0:4f:b2:8b:4a:7c:26:b1:10:0b: 48:cb:1a:8b:66:1d:45:7b:9b:e9:5a:1d:bd:08:7c: 7b:93:be:76:1c:da:6c:37:90:9e:aa:84:c9:b8:7f: 14:c9:25:27:1b:cb:3d:71:87:98:51:48:68:2f:bc: 5b:2d:8d:f7:ea:b0:6f:0b:20:91:25:db:a2:b6:7a: 3d:94:16:72:b4:0b:80:73:df:27:c8:00:04:86:4b: 02:32:91:ad:eb:38:23:c5:8f:06:8f:3a:e7:6c:9b: 9a:e8:d7:80:69:e3:44:0d:a5:59:cb:cf:ef:0c:c0: 5d:1e:e4:97:2f:2d:86:d3:98:00:23:61:12:a7:30: c9:c3:0c:b3:90:9a:7d:fb:96:90:25:b9:b8:2f:09: fe:88:f1:b1:b1:2f:bf:24:ed:27:8c:33:1c:3f:df: c6:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:A5:A0:CD:41:78:26:EA:E4:5C:C2:9B:93:3E:81:2B:6D:40:AE:2F X509v3 Authority Key Identifier: keyid:8A:BD:45:58:C9:F9:4F:FC:67:0A:52:DB:39:F0:C9:B0:B8:39:82:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/d387e85d-b185-4334-801b-49c8c8b91844/0/8ABD4558C9F94FFC670A52DB39F0C9B0B8398225.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/8ABD4558C9F94FFC670A52DB39F0C9B0B8398225.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/d387e85d-b185-4334-801b-49c8c8b91844/0/323430343a663963303a3a2f33322d3332203d3e20313338383931.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:f9c0::/32 Signature Algorithm: sha256WithRSAEncryption 57:47:43:0d:a9:e7:5e:21:03:30:48:05:fa:3e:ea:14:bb:c5: 21:d4:50:17:86:10:15:8b:1b:fb:c5:b0:f3:81:84:78:0a:42: c3:f5:8b:5c:c4:64:1f:bc:30:1a:c3:d9:92:70:ff:85:71:65: 80:af:c4:c5:a3:63:ee:2a:e4:e0:ad:12:ad:92:b9:99:d2:6a: 37:ac:2c:bb:b4:7b:cb:af:de:c7:38:1e:11:d8:4f:65:7b:59: a4:2e:fa:81:55:12:f8:87:ef:63:e9:75:73:af:ac:ef:66:c9: aa:d4:dc:2b:34:9f:9f:ca:84:ff:25:d8:e1:3e:89:92:c1:3a: ad:ff:76:12:d0:fc:78:3a:3d:42:70:5e:b2:b6:7b:c8:f3:55: a4:35:5c:7f:e3:f8:80:5a:ff:a7:aa:e3:61:50:f7:4a:95:e2: 04:d3:2c:c8:4f:aa:a3:03:b6:80:58:ac:44:40:8f:bf:11:f3: 5f:f1:92:fc:11:62:65:02:28:e5:8c:88:9f:74:7d:51:d1:54: 7f:16:12:4d:61:9b:7f:ed:e0:57:28:21:2b:a5:2b:5b:bb:ac: f6:9b:4e:9a:ee:b9:c7:7e:e9:b9:04:a4:87:ab:ab:26:50:da: 36:93:e7:f7:64:54:d8:91:8e:cf:5f:2f:29:e3:7c:40:79:39: 90:01:33:86 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUS3gT7mM9Qfrab9q2tcWoe/AApNkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEFCRDQ1NThDOUY5NEZGQzY3MEE1MkRCMzlGMEM5QjBC ODM5ODIyNTAeFw0yNjA1MDMwMzA0MjFaFw0yNzA1MDIwMzA5MjFaMDMxMTAvBgNV BAMTKDg5QTVBMENENDE3ODI2RUFFNDVDQzI5QjkzM0U4MTJCNkQ0MEFFMkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxIFK4R4GzokhCW2j04X5YY1PF U4+RJF6AWpCFxZ1CrYCC3YOP4PiB4WSzg5TXSYLKEuUdugqQaq4W6sY1ZbGofov5 ZId5dnpxW61zQk9TVjUfcGkfs8ChDgr9QtEW8E+yi0p8JrEQC0jLGotmHUV7m+la Hb0IfHuTvnYc2mw3kJ6qhMm4fxTJJScbyz1xh5hRSGgvvFstjffqsG8LIJEl26K2 ej2UFnK0C4Bz3yfIAASGSwIyka3rOCPFjwaPOudsm5ro14Bp40QNpVnLz+8MwF0e 5JcvLYbTmAAjYRKnMMnDDLOQmn37lpAlubgvCf6I8bGxL78k7SeMMxw/38alAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUiaWgzUF4JurkXMKbkz6BK21Ari8wHwYDVR0j BBgwFoAUir1FWMn5T/xnClLbOfDJsLg5giUwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZDM4N2U4NWQtYjE4NS00MzM0LTgwMWItNDljOGM4YjkxODQ0LzAvOEFCRDQ1NThD OUY5NEZGQzY3MEE1MkRCMzlGMEM5QjBCODM5ODIyNS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS84QUJENDU1OEM5Rjk0RkZDNjcwQTUyREIzOUYwQzlCMEI4Mzk4 MjI1LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2QzODdlODVkLWIxODUtNDMzNC04 MDFiLTQ5YzhjOGI5MTg0NC8wLzMyMzQzMDM0M2E2NjM5NjMzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzMzODM4MzkzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQE+cAwDQYJKoZI hvcNAQELBQADggEBAFdHQw2p514hAzBIBfo+6hS7xSHUUBeGEBWLG/vFsPOBhHgK QsP1i1zEZB+8MBrD2ZJw/4VxZYCvxMWjY+4q5OCtEq2SuZnSajesLLu0e8uv3sc4 HhHYT2V7WaQu+oFVEviH72PpdXOvrO9myarU3Cs0n5/KhP8l2OE+iZLBOq3/dhLQ /Hg6PUJwXrK2e8jzVaQ1XH/j+IBa/6eq42FQ90qV4gTTLMhPqqMDtoBYrERAj78R 81/xkvwRYmUCKOWMiJ90fVHRVH8WEk1hm3/t4FcoISulK1u7rPabTpruucd+6bkE pIerqyZQ2jaT5/dkVNiRjs9fLynjfEB5OZABM4Y= -----END CERTIFICATE-----Generated at Wed May 13 12:02:59 2026 by rpki-client