$ rpki-client -vvf rpki-rsync.idnic.net/repo/d4b4fb88-8f42-47f2-be80-09e43560dddf/0/323430343a3763303a3a2f33322d3332203d3e20313338313039.roa File: 323430343a3763303a3a2f33322d3332203d3e20313338313039.roa (raw, json) Hash identifier: lcXF2ukAyeD79WJ/+d/LiALmLjnDTwGdGGkGmI9GuQ8= Subject key identifier: 83:D2:B6:7A:6C:25:8E:1A:E2:E7:EB:05:59:46:F5:6E:95:46:90:6C Certificate issuer: /CN=11FFFA845980AD12347D7297657117A393722635 Certificate serial: 34B0B8AFF514C457BBC1FF5275056732B2DD075A Authority key identifier: 11:FF:FA:84:59:80:AD:12:34:7D:72:97:65:71:17:A3:93:72:26:35 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/11FFFA845980AD12347D7297657117A393722635.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/d4b4fb88-8f42-47f2-be80-09e43560dddf/0/323430343a3763303a3a2f33322d3332203d3e20313338313039.roa Signing time: Sun 03 May 2026 03:09:35 +0000 ROA not before: Sun 03 May 2026 03:04:35 +0000 ROA not after: Sun 02 May 2027 03:09:35 +0000 asID: 138109 IP address blocks: 2404:7c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/d4b4fb88-8f42-47f2-be80-09e43560dddf/0/11FFFA845980AD12347D7297657117A393722635.crl rsync://rpki-rsync.idnic.net/repo/d4b4fb88-8f42-47f2-be80-09e43560dddf/0/11FFFA845980AD12347D7297657117A393722635.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/11FFFA845980AD12347D7297657117A393722635.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 03:22:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:b0:b8:af:f5:14:c4:57:bb:c1:ff:52:75:05:67:32:b2:dd:07:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=11FFFA845980AD12347D7297657117A393722635 Validity Not Before: May 3 03:04:35 2026 GMT Not After : May 2 03:09:35 2027 GMT Subject: CN=83D2B67A6C258E1AE2E7EB055946F56E9546906C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:c3:b7:c2:74:05:ab:e3:ec:a9:f2:4d:ed:9d: 52:c4:f5:9f:d1:b3:32:64:5e:d6:a3:98:4b:6e:a8: 55:ad:c6:c9:4c:f7:26:96:99:5d:11:ce:3f:da:58: dc:9e:cc:7d:e0:e9:5d:05:90:b8:90:f6:eb:86:27: 93:23:8d:ba:d4:9d:e2:fe:1a:94:f3:c0:e1:63:fe: be:61:4e:3b:4a:e7:eb:19:4a:02:0c:fe:18:74:a3: 2a:4c:da:ff:07:49:53:b9:bc:a8:68:09:f4:c8:e9: 6c:a0:60:2d:41:76:c6:23:35:1a:2c:90:f3:d4:f0: bc:62:8d:4a:86:ec:3b:67:34:bf:bb:45:25:9c:e3: c2:7f:91:00:a6:3a:05:c4:a3:69:82:1d:8c:31:ae: 9b:db:df:da:5c:aa:c4:32:16:e9:b7:7e:7e:f0:fd: 8a:54:92:c8:fb:1e:4d:bd:70:23:02:31:c5:b0:fb: 3e:77:1c:a8:ef:2d:41:23:64:06:bf:1a:c1:30:35: 56:b7:9a:ba:b9:f5:20:f8:c0:f7:ae:34:b2:b6:31: 07:6a:32:42:aa:db:ee:31:e0:cc:35:50:e8:7f:d9: 43:25:50:f3:1f:89:52:1e:29:21:0d:1a:f7:a8:02: de:29:f6:f9:58:64:35:9b:1a:63:59:7a:fd:d1:76: af:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:D2:B6:7A:6C:25:8E:1A:E2:E7:EB:05:59:46:F5:6E:95:46:90:6C X509v3 Authority Key Identifier: keyid:11:FF:FA:84:59:80:AD:12:34:7D:72:97:65:71:17:A3:93:72:26:35 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/d4b4fb88-8f42-47f2-be80-09e43560dddf/0/11FFFA845980AD12347D7297657117A393722635.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/11FFFA845980AD12347D7297657117A393722635.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/d4b4fb88-8f42-47f2-be80-09e43560dddf/0/323430343a3763303a3a2f33322d3332203d3e20313338313039.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:7c0::/32 Signature Algorithm: sha256WithRSAEncryption 1a:a4:0c:64:7d:3a:0e:09:17:cf:d0:fd:03:20:82:97:26:1e: 0b:1a:fe:08:e7:ab:5e:d2:2a:13:b9:45:38:5c:78:72:e3:7c: b1:19:4a:38:a3:a6:3f:a5:d6:a6:9e:3c:27:73:fd:c8:69:78: 5f:93:a7:c8:18:60:2b:83:84:9e:a3:3d:06:63:e3:6e:41:db: 52:6d:0e:62:cf:8b:23:9a:2a:a6:10:35:d1:d9:bb:7d:5b:f6: 20:bf:90:75:46:97:65:99:e9:8b:33:12:b7:ce:02:fc:80:73: e3:56:98:1a:4c:fc:20:06:90:59:54:a3:b6:d0:5e:ac:90:01: 7c:fe:25:69:d2:60:32:3e:68:1b:e3:00:c3:3e:55:0f:a0:b0: 19:4a:23:53:2c:e4:20:b8:d5:36:f1:b6:eb:38:18:96:0c:ec: 53:a9:69:2a:ab:21:ec:54:95:6c:bf:54:86:6a:48:07:94:dc: f4:d5:dc:60:97:45:63:95:88:11:68:7c:1f:84:d3:7f:8c:2f: d3:03:ec:58:ee:d0:a3:a8:a3:56:24:1a:b7:45:38:05:b8:80: d2:09:de:54:e6:e5:85:73:29:2b:c7:4f:40:10:b2:8b:d0:ea: c1:b9:f7:f0:ef:93:ac:f9:7b:1e:c9:92:58:13:88:fd:41:7b: f4:36:32:68 -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUNLC4r/UUxFe7wf9SdQVnMrLdB1owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTFGRkZBODQ1OTgwQUQxMjM0N0Q3Mjk3NjU3MTE3QTM5 MzcyMjYzNTAeFw0yNjA1MDMwMzA0MzVaFw0yNzA1MDIwMzA5MzVaMDMxMTAvBgNV BAMTKDgzRDJCNjdBNkMyNThFMUFFMkU3RUIwNTU5NDZGNTZFOTU0NjkwNkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzw7fCdAWr4+yp8k3tnVLE9Z/R szJkXtajmEtuqFWtxslM9yaWmV0Rzj/aWNyezH3g6V0FkLiQ9uuGJ5MjjbrUneL+ GpTzwOFj/r5hTjtK5+sZSgIM/hh0oypM2v8HSVO5vKhoCfTI6WygYC1BdsYjNRos kPPU8LxijUqG7DtnNL+7RSWc48J/kQCmOgXEo2mCHYwxrpvb39pcqsQyFum3fn7w /YpUksj7Hk29cCMCMcWw+z53HKjvLUEjZAa/GsEwNVa3mrq59SD4wPeuNLK2MQdq MkKq2+4x4Mw1UOh/2UMlUPMfiVIeKSENGveoAt4p9vlYZDWbGmNZev3Rdq8bAgMB AAGjggIxMIICLTAdBgNVHQ4EFgQUg9K2emwljhri5+sFWUb1bpVGkGwwHwYDVR0j BBgwFoAUEf/6hFmArRI0fXKXZXEXo5NyJjUwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZDRiNGZiODgtOGY0Mi00N2YyLWJlODAtMDllNDM1NjBkZGRmLzAvMTFGRkZBODQ1 OTgwQUQxMjM0N0Q3Mjk3NjU3MTE3QTM5MzcyMjYzNS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8xMUZGRkE4NDU5ODBBRDEyMzQ3RDcyOTc2NTcxMTdBMzkzNzIy NjM1LmNlcjCBoQYIKwYBBQUHAQsEgZQwgZEwgY4GCCsGAQUFBzALhoGBcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2Q0YjRmYjg4LThmNDItNDdmMi1i ZTgwLTA5ZTQzNTYwZGRkZi8wLzMyMzQzMDM0M2EzNzYzMzAzYTNhMmYzMzMyMmQz MzMyMjAzZDNlMjAzMTMzMzgzMTMwMzkucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkBAfAMA0GCSqGSIb3 DQEBCwUAA4IBAQAapAxkfToOCRfP0P0DIIKXJh4LGv4I56te0ioTuUU4XHhy43yx GUo4o6Y/pdamnjwnc/3IaXhfk6fIGGArg4Seoz0GY+NuQdtSbQ5iz4sjmiqmEDXR 2bt9W/Ygv5B1RpdlmemLMxK3zgL8gHPjVpgaTPwgBpBZVKO20F6skAF8/iVp0mAy Pmgb4wDDPlUPoLAZSiNTLOQguNU28bbrOBiWDOxTqWkqqyHsVJVsv1SGakgHlNz0 1dxgl0VjlYgRaHwfhNN/jC/TA+xY7tCjqKNWJBq3RTgFuIDSCd5U5uWFcykrx09A ELKL0OrBuffw75Os+XseyZJYE4j9QXv0NjJo -----END CERTIFICATE-----Generated at Wed May 13 07:59:38 2026 by rpki-client