$ rpki-client -vvf rpki-rsync.idnic.net/repo/d6c8b3a9-4eff-460d-b01d-6ba5d99dadb9/0/323430353a356534303a3a2f33322d3332203d3e20313339343038.roa File: 323430353a356534303a3a2f33322d3332203d3e20313339343038.roa (raw, json) Hash identifier: DX9De2RZ1fwPjXYRliJoG3vcnnWQkcrXmm5lY0DlQ8c= Subject key identifier: 0E:BC:24:98:ED:A5:5F:D6:C7:99:95:7F:D3:B1:7F:08:83:65:7C:EF Certificate issuer: /CN=28051FF190AD60F286AE69A5C2C2A75002CD5C22 Certificate serial: 4C396A8CA74940F7464BDDE24B7E11980F8FDF43 Authority key identifier: 28:05:1F:F1:90:AD:60:F2:86:AE:69:A5:C2:C2:A7:50:02:CD:5C:22 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/28051FF190AD60F286AE69A5C2C2A75002CD5C22.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/d6c8b3a9-4eff-460d-b01d-6ba5d99dadb9/0/323430353a356534303a3a2f33322d3332203d3e20313339343038.roa Signing time: Sun 03 May 2026 03:09:56 +0000 ROA not before: Sun 03 May 2026 03:04:56 +0000 ROA not after: Sun 02 May 2027 03:09:56 +0000 asID: 139408 IP address blocks: 2405:5e40::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/d6c8b3a9-4eff-460d-b01d-6ba5d99dadb9/0/28051FF190AD60F286AE69A5C2C2A75002CD5C22.crl rsync://rpki-rsync.idnic.net/repo/d6c8b3a9-4eff-460d-b01d-6ba5d99dadb9/0/28051FF190AD60F286AE69A5C2C2A75002CD5C22.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/28051FF190AD60F286AE69A5C2C2A75002CD5C22.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 02:11:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:39:6a:8c:a7:49:40:f7:46:4b:dd:e2:4b:7e:11:98:0f:8f:df:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=28051FF190AD60F286AE69A5C2C2A75002CD5C22 Validity Not Before: May 3 03:04:56 2026 GMT Not After : May 2 03:09:56 2027 GMT Subject: CN=0EBC2498EDA55FD6C799957FD3B17F0883657CEF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8b:0f:45:a6:93:30:04:94:78:6f:7c:da:1c:82: 30:d4:cf:6b:39:26:bb:b2:0b:a9:55:b5:9b:a9:07: e9:64:55:27:8a:36:8a:c1:2e:23:86:63:5f:ba:3b: fe:9d:a9:e3:21:a0:2c:e6:77:a2:cb:47:4b:f8:90: 57:ec:a3:92:e5:4c:74:d3:19:b9:ac:e0:8a:8f:52: 6d:0e:88:d0:42:27:e8:9d:04:6e:08:d9:d2:20:6f: 2f:f8:61:f5:dc:5d:a8:8b:03:18:54:9d:4e:2a:9c: ac:35:50:ca:7c:06:69:b4:48:4b:d1:fd:e7:05:ea: 57:25:54:7e:68:7f:d0:2a:a7:f5:c4:c9:d1:70:5a: 42:47:39:ac:e6:cd:e5:c4:2a:54:c2:1f:22:b9:63: fc:db:71:6b:41:dc:07:eb:97:3b:27:79:12:c2:52: 29:f6:41:f2:61:c9:c0:d0:86:06:f0:c7:fc:ab:a7: 6a:c0:08:1c:14:8f:98:89:e1:6f:de:87:15:12:08: d0:ec:41:1a:36:c0:18:8c:54:d8:76:8f:eb:dd:ae: ee:79:34:f6:63:73:ed:a1:34:08:de:4b:15:20:60: a9:9e:93:af:ba:82:0c:5f:9c:a2:00:b3:31:3a:1d: d0:c9:19:35:5a:e6:dd:4f:19:2f:41:6f:45:55:d3: 06:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:BC:24:98:ED:A5:5F:D6:C7:99:95:7F:D3:B1:7F:08:83:65:7C:EF X509v3 Authority Key Identifier: keyid:28:05:1F:F1:90:AD:60:F2:86:AE:69:A5:C2:C2:A7:50:02:CD:5C:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/d6c8b3a9-4eff-460d-b01d-6ba5d99dadb9/0/28051FF190AD60F286AE69A5C2C2A75002CD5C22.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/28051FF190AD60F286AE69A5C2C2A75002CD5C22.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/d6c8b3a9-4eff-460d-b01d-6ba5d99dadb9/0/323430353a356534303a3a2f33322d3332203d3e20313339343038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:5e40::/32 Signature Algorithm: sha256WithRSAEncryption 66:99:51:26:fc:4b:73:77:8f:02:59:b4:9b:89:75:d4:ef:c1: 90:1b:03:1c:38:0f:33:74:42:8d:cf:82:55:e5:51:8a:84:0a: 5a:01:9b:42:0f:30:cd:ef:f9:bb:78:50:16:86:ad:bd:58:eb: ef:d6:87:ec:9f:8c:96:d5:7a:38:bc:2b:c5:02:9c:9d:fe:7c: 03:82:06:ef:3c:eb:e8:f0:fa:68:78:65:4d:9e:15:6b:dd:8a: 7c:6d:ea:be:8a:fd:ff:83:85:a3:2e:44:73:b5:03:e6:a1:7f: d3:06:b1:4d:55:f0:55:46:b1:64:3d:cf:c2:12:84:d2:56:10: 98:05:05:c3:72:3c:5f:42:5b:35:f7:24:8d:82:a4:1c:be:b3: 06:04:97:46:c3:4c:6f:7a:54:8f:66:63:b0:74:75:9f:0a:44: 1b:d7:e4:70:00:f9:b5:6f:d3:60:6d:52:5c:a4:83:2e:97:9e: a0:35:e6:0e:8c:59:e9:fe:d3:83:68:42:1a:4b:72:2c:bb:ae: 34:67:d1:02:15:5f:a5:d0:77:d0:f8:a8:de:b5:31:76:55:2c: 6b:c4:f6:7e:e6:e6:62:a3:f9:9d:70:e8:ab:d0:2c:63:32:ae: 5e:88:6b:82:fa:2f:69:08:62:71:25:bd:9d:f6:a9:c6:40:a3: 15:8c:72:c6 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUTDlqjKdJQPdGS93iS34RmA+P30MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjgwNTFGRjE5MEFENjBGMjg2QUU2OUE1QzJDMkE3NTAw MkNENUMyMjAeFw0yNjA1MDMwMzA0NTZaFw0yNzA1MDIwMzA5NTZaMDMxMTAvBgNV BAMTKDBFQkMyNDk4RURBNTVGRDZDNzk5OTU3RkQzQjE3RjA4ODM2NTdDRUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCLD0WmkzAElHhvfNocgjDUz2s5 JruyC6lVtZupB+lkVSeKNorBLiOGY1+6O/6dqeMhoCzmd6LLR0v4kFfso5LlTHTT Gbms4IqPUm0OiNBCJ+idBG4I2dIgby/4YfXcXaiLAxhUnU4qnKw1UMp8Bmm0SEvR /ecF6lclVH5of9Aqp/XEydFwWkJHOazmzeXEKlTCHyK5Y/zbcWtB3AfrlzsneRLC Uin2QfJhycDQhgbwx/yrp2rACBwUj5iJ4W/ehxUSCNDsQRo2wBiMVNh2j+vdru55 NPZjc+2hNAjeSxUgYKmek6+6ggxfnKIAszE6HdDJGTVa5t1PGS9Bb0VV0wb1AgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUDrwkmO2lX9bHmZV/07F/CINlfO8wHwYDVR0j BBgwFoAUKAUf8ZCtYPKGrmmlwsKnUALNXCIwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZDZjOGIzYTktNGVmZi00NjBkLWIwMWQtNmJhNWQ5OWRhZGI5LzAvMjgwNTFGRjE5 MEFENjBGMjg2QUU2OUE1QzJDMkE3NTAwMkNENUMyMi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8yODA1MUZGMTkwQUQ2MEYyODZBRTY5QTVDMkMyQTc1MDAyQ0Q1 QzIyLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2Q2YzhiM2E5LTRlZmYtNDYwZC1i MDFkLTZiYTVkOTlkYWRiOS8wLzMyMzQzMDM1M2EzNTY1MzQzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzMzOTM0MzAzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQFXkAwDQYJKoZI hvcNAQELBQADggEBAGaZUSb8S3N3jwJZtJuJddTvwZAbAxw4DzN0Qo3PglXlUYqE CloBm0IPMM3v+bt4UBaGrb1Y6+/Wh+yfjJbVeji8K8UCnJ3+fAOCBu886+jw+mh4 ZU2eFWvdinxt6r6K/f+DhaMuRHO1A+ahf9MGsU1V8FVGsWQ9z8IShNJWEJgFBcNy PF9CWzX3JI2CpBy+swYEl0bDTG96VI9mY7B0dZ8KRBvX5HAA+bVv02BtUlykgy6X nqA15g6MWen+04NoQhpLciy7rjRn0QIVX6XQd9D4qN61MXZVLGvE9n7m5mKj+Z1w 6KvQLGMyrl6Ia4L6L2kIYnElvZ32qcZAoxWMcsY= -----END CERTIFICATE-----Generated at Wed May 13 05:58:15 2026 by rpki-client