$ rpki-client -vvf rpki-rsync.idnic.net/repo/d4f48a89-90c5-4f5a-8015-36f1196a71c8/0/323430373a343630303a3a2f33322d3438203d3e203435323935.roa File: 323430373a343630303a3a2f33322d3438203d3e203435323935.roa (raw, json) Hash identifier: pwFWQeeNE8aLdvpKEf3Cftf5A02g3uDsYu8O+3yCUbE= Subject key identifier: 41:21:D2:A9:6F:19:C9:2E:C6:9F:19:47:B2:F7:62:7C:A0:BE:B3:B8 Certificate issuer: /CN=EBF23572810F8726C4B72E50589964A910C50B4B Certificate serial: 732C110F05536F2AE3B92ACD41990A1CF3ABAB33 Authority key identifier: EB:F2:35:72:81:0F:87:26:C4:B7:2E:50:58:99:64:A9:10:C5:0B:4B Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/EBF23572810F8726C4B72E50589964A910C50B4B.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/d4f48a89-90c5-4f5a-8015-36f1196a71c8/0/323430373a343630303a3a2f33322d3438203d3e203435323935.roa Signing time: Sun 03 May 2026 03:09:41 +0000 ROA not before: Sun 03 May 2026 03:04:41 +0000 ROA not after: Sun 02 May 2027 03:09:41 +0000 asID: 45295 IP address blocks: 2407:4600::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/d4f48a89-90c5-4f5a-8015-36f1196a71c8/0/EBF23572810F8726C4B72E50589964A910C50B4B.crl rsync://rpki-rsync.idnic.net/repo/d4f48a89-90c5-4f5a-8015-36f1196a71c8/0/EBF23572810F8726C4B72E50589964A910C50B4B.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/EBF23572810F8726C4B72E50589964A910C50B4B.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 03:18:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:2c:11:0f:05:53:6f:2a:e3:b9:2a:cd:41:99:0a:1c:f3:ab:ab:33 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EBF23572810F8726C4B72E50589964A910C50B4B Validity Not Before: May 3 03:04:41 2026 GMT Not After : May 2 03:09:41 2027 GMT Subject: CN=4121D2A96F19C92EC69F1947B2F7627CA0BEB3B8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:e1:9f:4b:b0:4c:bf:9d:14:04:8c:f9:f9:c0: 21:fa:ab:f3:d1:45:72:10:58:cb:1a:71:86:31:02: 7f:83:26:2c:32:87:cc:0b:98:32:6b:6f:f2:67:2d: 49:96:82:b4:1b:94:bb:95:59:97:6c:d1:f4:85:af: 85:e8:0d:2f:c4:41:03:77:76:d5:79:1b:a0:25:02: 56:cd:36:f1:e6:41:24:3e:48:e0:c4:fb:33:cf:a6: 8e:e3:d6:58:2f:69:b1:5f:2d:b9:4b:29:ea:e7:19: df:b9:66:82:4d:68:1d:8a:b6:31:72:a4:23:72:ad: 6d:97:3a:b9:6a:17:34:39:3a:2b:0b:00:3d:06:6a: 54:a7:94:63:64:9f:d9:9d:7e:2e:b2:ac:d9:f8:79: a8:13:75:8e:c1:b8:10:e2:b1:7f:06:d0:02:c5:b0: 48:d8:1e:b1:44:52:52:5e:22:a8:a5:3d:1d:0f:6d: 15:34:3c:16:06:d3:47:a5:26:94:32:8c:97:13:d9: 2c:4c:ca:07:c9:f4:76:4e:0c:7d:fc:b9:46:ad:f7: e5:18:83:de:b6:da:41:50:31:27:a9:29:21:18:0d: d2:77:d5:28:0f:1f:26:92:69:73:e2:f3:c4:14:c0: 66:22:33:ef:b3:9b:2f:44:df:72:8a:29:79:b8:dd: 69:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:21:D2:A9:6F:19:C9:2E:C6:9F:19:47:B2:F7:62:7C:A0:BE:B3:B8 X509v3 Authority Key Identifier: keyid:EB:F2:35:72:81:0F:87:26:C4:B7:2E:50:58:99:64:A9:10:C5:0B:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/d4f48a89-90c5-4f5a-8015-36f1196a71c8/0/EBF23572810F8726C4B72E50589964A910C50B4B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/EBF23572810F8726C4B72E50589964A910C50B4B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/d4f48a89-90c5-4f5a-8015-36f1196a71c8/0/323430373a343630303a3a2f33322d3438203d3e203435323935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2407:4600::/32 Signature Algorithm: sha256WithRSAEncryption 90:27:96:36:33:11:ee:86:71:66:b2:6d:d6:05:61:29:7a:b5: 22:ea:a7:99:39:fd:3b:93:4f:63:1f:40:29:ab:11:48:bf:03: 58:66:14:3e:27:41:a0:b7:01:41:d8:13:92:67:6c:85:14:98: 58:31:31:68:53:61:a0:db:4e:18:fc:03:62:e5:66:ff:f2:d5: c1:ce:e1:fc:c9:cb:d8:dc:6a:68:7b:14:68:e9:0b:e8:e9:18: 16:84:84:9e:83:26:fe:45:70:83:ac:be:74:fc:b2:db:ca:b2: de:76:3f:69:78:7b:f4:4e:6c:54:a3:18:55:52:5b:c7:6a:da: e4:3c:e0:14:42:e9:d8:93:78:c0:6d:3d:9d:04:43:08:e6:d6: 21:0f:8c:27:bf:67:91:69:54:70:df:c8:e6:65:c0:ed:df:37: ec:b4:1b:22:36:5d:ec:0e:60:b1:d5:9f:85:dd:79:0f:82:0a: 2e:1f:fe:31:37:ea:60:73:cb:bf:35:bb:ea:c2:ac:ba:f3:b1: 13:40:3f:35:5b:cd:17:5e:01:f6:24:41:61:1f:07:6a:6f:ff: 02:fd:b4:b3:ae:6d:de:29:c9:f7:08:be:d8:68:24:ac:df:54: 83:10:79:92:d6:77:d1:2d:3d:f2:b7:d5:19:f2:40:cc:9e:22: 9c:97:eb:8b -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUcywRDwVTbyrjuSrNQZkKHPOrqzMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRUJGMjM1NzI4MTBGODcyNkM0QjcyRTUwNTg5OTY0QTkx MEM1MEI0QjAeFw0yNjA1MDMwMzA0NDFaFw0yNzA1MDIwMzA5NDFaMDMxMTAvBgNV BAMTKDQxMjFEMkE5NkYxOUM5MkVDNjlGMTk0N0IyRjc2MjdDQTBCRUIzQjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJ4Z9LsEy/nRQEjPn5wCH6q/PR RXIQWMsacYYxAn+DJiwyh8wLmDJrb/JnLUmWgrQblLuVWZds0fSFr4XoDS/EQQN3 dtV5G6AlAlbNNvHmQSQ+SODE+zPPpo7j1lgvabFfLblLKernGd+5ZoJNaB2KtjFy pCNyrW2XOrlqFzQ5OisLAD0GalSnlGNkn9mdfi6yrNn4eagTdY7BuBDisX8G0ALF sEjYHrFEUlJeIqilPR0PbRU0PBYG00elJpQyjJcT2SxMygfJ9HZODH38uUat9+UY g9622kFQMSepKSEYDdJ31SgPHyaSaXPi88QUwGYiM++zmy9E33KKKXm43WmbAgMB AAGjggIxMIICLTAdBgNVHQ4EFgQUQSHSqW8ZyS7GnxlHsvdifKC+s7gwHwYDVR0j BBgwFoAU6/I1coEPhybEty5QWJlkqRDFC0swDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZDRmNDhhODktOTBjNS00ZjVhLTgwMTUtMzZmMTE5NmE3MWM4LzAvRUJGMjM1NzI4 MTBGODcyNkM0QjcyRTUwNTg5OTY0QTkxMEM1MEI0Qi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9FQkYyMzU3MjgxMEY4NzI2QzRCNzJFNTA1ODk5NjRBOTEwQzUw QjRCLmNlcjCBoQYIKwYBBQUHAQsEgZQwgZEwgY4GCCsGAQUFBzALhoGBcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2Q0ZjQ4YTg5LTkwYzUtNGY1YS04 MDE1LTM2ZjExOTZhNzFjOC8wLzMyMzQzMDM3M2EzNDM2MzAzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDM0MzUzMjM5MzUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkB0YAMA0GCSqGSIb3 DQEBCwUAA4IBAQCQJ5Y2MxHuhnFmsm3WBWEperUi6qeZOf07k09jH0ApqxFIvwNY ZhQ+J0GgtwFB2BOSZ2yFFJhYMTFoU2Gg204Y/ANi5Wb/8tXBzuH8ycvY3GpoexRo 6Qvo6RgWhISegyb+RXCDrL50/LLbyrLedj9peHv0TmxUoxhVUlvHatrkPOAUQunY k3jAbT2dBEMI5tYhD4wnv2eRaVRw38jmZcDt3zfstBsiNl3sDmCx1Z+F3XkPggou H/4xN+pgc8u/Nbvqwqy687ETQD81W80XXgH2JEFhHwdqb/8C/bSzrm3eKcn3CL7Y aCSs31SDEHmS1nfRLT3yt9UZ8kDMniKcl+uL -----END CERTIFICATE-----Generated at Wed May 13 05:58:04 2026 by rpki-client